PT-2024-17096 · Irfanview · Irfanview

Name of the Vulnerable Software and Affected Versions: IrfanView affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this issue, where the target must visit a...

PT-2024-40593 · Git +1 · Assimp

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a crash type of UNKNOWN READ. The crash state involves several functions, including dynamic cast, HandleDynamicTypeCacheMiss, and...

PT-2024-39237 · Unknown · Vllm Library

Name of the Vulnerable Software and Affected Versions: vLLM library affected versions not specified Description: A flaw was found in the vLLM library. A completions API request with an empty prompt will crash the vLLM API server, resulting in a denial of service. Recommendations: At the moment,...

PT-2024-40842 · Git +1 · Hdf5

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a crash type of UNKNOWN READ. The crash state involves several functions, including H5SL search, H5FS sect remove real, and H5FS...

CVE-2024-32645 vyper performs incorrect topic logging in raw_log

Vyper is a pythonic Smart Contract Language for the Ethereum virtual machine. In versions 0.3.10 and prior, incorrect values can be logged when rawlog builtin is called with memory or storage arguments to be used as topics. A contract search was performed and no vulnerable contracts were found in...

PT-2024-13831 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: No information is available about the vulnerable software and its affected versions. Description: The provided information does not contain details about the issue. There is a mention of a rejected reason stating that the referenced item is...

PT-2023-31128 · Huawei · Emui +1

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue concerns an API permission control vulnerability in the network management module. Successful exploitation of this vulnerability may affect...

PT-2023-20360 · Danfoss · Ak-Sm800A +1

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: Due to improper input validation, an authenticated remote attacker could execute arbitrary commands on the target system. The issue allows for the...

PT-2023-17614 · Swpm · Swpm

Name of the Vulnerable Software and Affected Versions: swpm affected versions not specified Description: The issue is related to a possible out of bounds write due to a race condition, which could lead to local information disclosure. System execution privileges are needed for exploitation, and...

PT-2022-28066 · Solarwinds · Hybrid Cloud Observability +1

Name of the Vulnerable Software and Affected Versions: Hybrid Cloud Observability HCO/ SolarWinds Platform version 2022.4 Description: Sensitive information was stored in plain text in a file that is accessible by a user with a local account. Recommendations: For Hybrid Cloud Observability HCO/...

PT-2022-8942 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: No vulnerable software or affected versions specified. Description: The candidate number was withdrawn after further investigation showed that it was not a vulnerability. Recommendations: At the moment, there is no information about a newer...

PT-2022-20193 · Red Os · Red Os

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: The issue allows for SQL injection, both authenticated and unauthenticated, through a vulnerable parameter. This parameter can be used to craft and inject complex SQL commands due t...

PT-2022-37242 · Exiv2 · Exiv2

Name of the Vulnerable Software and Affected Versions: Exiv2 affected versions not specified Description: The issue is related to a heap-buffer-overflow error. Technical details about the error include the crash type being a Heap-buffer-overflow WRITE 8. The crash state involves functions such as...

PT-2022-22192 · Dedecms · Dedecms

Name of the Vulnerable Software and Affected Versions: DedeCMS version 5.7.95 Description: A remote code execution issue was discovered in DedeCMS via the mytag main.php component. Recommendations: For DedeCMS version 5.7.95, at the moment, there is no information about a newer version that...

PT-2021-1828 · Microsoft · Windows Dns +1

Name of the Vulnerable Software and Affected Versions: Windows DNS versions affected versions not specified Description: The issue is related to weaknesses in the security mechanisms of the Windows DNS server, allowing an attacker to gain unauthorized access to protected information. It enables...

PT-2019-17011 · Ibm · Ibm Jazz For Service Management

Name of the Vulnerable Software and Affected Versions: IBM Jazz for Service Management versions 1.1.3 through 1.1.3.2 Description: The issue could allow an unauthorized local user to create unique catalog names, potentially causing a denial of service. Recommendations: For versions 1.1.3 through...

PT-2019-1372 · Cisco · Cisco Firepower Management Center

Name of the Vulnerable Software and Affected Versions: Cisco Firepower Management Center affected versions not specified Description: The issue is related to errors in resource management in the Shell Access Filter feature of Cisco Firepower Management Center. It could allow a remote attacker to...

PT-2013-1400 · Xen +1 · Xen +1

Name of the Vulnerable Software and Affected Versions: Xen versions 3.3 and earlier Description: The issue is related to an off-by-one error in the addr ok macro, which can be exploited by local 64-bit PV guest administrators to cause a denial of service, resulting in a host crash. This can be...

PT-1996-1018 · Ibm +4 · Aix +8

Name of the Vulnerable Software and Affected Versions: No specific software or versions mentioned Description: The issue involves oversized ICMP ping packets that can cause a denial of service. This is also known as the "Ping o' Death". Recommendations: At the moment, there is no information abou...