DEBIAN-CVE-2020-13143

gadgetdevdescUDCstore in drivers/usb/gadget/configfs.c in the Linux kernel 3.16 through 5.6.13 relies on kstrdup without considering the possibility of an internal '\0' value, which allows attackers to trigger an out-of-bounds read, aka CID-15753588bcd4...

DEBIAN-CVE-2020-9429

In Wireshark 3.2.0 to 3.2.1, the WireGuard dissector could crash. This was addressed in epan/dissectors/packet-wireguard.c by handling the situation where a certain data structure intentionally has a NULL value...

CVE-2020-9429

In Wireshark 3.2.0 to 3.2.1, the WireGuard dissector could crash. This was addressed in epan/dissectors/packet-wireguard.c by handling the situation where a certain data structure intentionally has a NULL value...

CVE-2019-15299

An issue was discovered in Centreon Web through 19.04.3. When a user changes his password on his profile page, the contactautologinkey field in the database becomes blank when it should be NULL. This makes it possible to partially bypass authentication...

CVE-2011-4120

Yubico PAM Module before 2.10 performed user authentication when 'usefirstpass' PAM configuration option was not used and the module was configured as 'sufficient' in the PAM configuration. A remote attacker could use this flaw to circumvent common authentication process and obtain access to the...

CORS-Vulnerable-Lab: with COSR configuration error related to the vulnerability code range-vulnerability warning-the black bar safety net

This repository contains the CORS configuration error related to the vulnerable code. You can be on the local machine to configure the vulnerable code, and to the actual use of the CORS related error configuration issue. In this case, I would first like to thank@albinowax, the AKReddy, And Vivek...

CVE-2019-13296

ImageMagick 7.0.8-50 Q16 has direct memory leaks in AcquireMagickMemory because of an error in CLIListOperatorImages in MagickWand/operation.c for a NULL value...

ALPINE-CVE-2019-13296

ImageMagick 7.0.8-50 Q16 has direct memory leaks in AcquireMagickMemory because of an error in CLIListOperatorImages in MagickWand/operation.c for a NULL value...

CVE-2019-13296

ImageMagick 7.0.8-50 Q16 has direct memory leaks in AcquireMagickMemory because of an error in CLIListOperatorImages in MagickWand/operation.c for a NULL value...

CVE-2019-13296

ImageMagick 7.0.8-50 Q16 has direct memory leaks in AcquireMagickMemory because of an error in CLIListOperatorImages in MagickWand/operation.c for a NULL value...

CVE-2019-13296

ImageMagick 7.0.8-50 Q16 has direct memory leaks in AcquireMagickMemory because of an error in CLIListOperatorImages in MagickWand/operation.c for a NULL value...

Denial Of Service (DoS)

tensorflow is vulnerable to denial of service DoS attacks. The vulnerability exists as it was possible to pass a null value into strcat when parsing a GIF, causing DoS attacks...

Debian: Security Advisory (DLA-1522-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2018-14884

Removed by vendor...

Authorization Bypass

symfony is vulnerable to authorization bypasses. A malicious user can pass a valid username and a null value as the password to gain unauthorized access to another user's account...

Moxa OnCell G3100-HSPA Series Null Pointer Reference Denial of Service Vulnerability

The Moxa OnCell G3100-HSPA is an intelligent, feature-rich wireless communications platform that enables networked and serial devices to connect to cellular TCP/IP networks. A null pointer reference denial of service vulnerability exists in the Moxa OnCell G3100-HSPA Series, which stems from an...

TG Soft Vir.IT eXplorer Lite Denial of Service Vulnerability (CNVD-2017-37064)

TG Soft Vir.IT eXplorer Lite is a suite of virus protection software. The program features anti-virus, anti-spyware, malware and virus detection. A security vulnerability exists in TG Soft Vir.IT eXplorer Lite version 8.5.42. A local attacker can exploit the vulnerability by sending a message to...

TG Soft Vir.IT eXplorer Lite Denial of Service Vulnerability (CNVD-2017-37063)

TG Soft Vir.IT eXplorer Lite is a suite of virus protection software. The program features anti-virus, anti-spyware, malware and virus detection. A security vulnerability exists in TG Soft Vir.IT eXplorer Lite version 8.5.42. A local attacker can exploit the vulnerability by sending a message to...

DEBIAN-CVE-2016-7053

In OpenSSL 1.1.0 before 1.1.0c, applications parsing invalid CMS structures can crash with a NULL pointer dereference. This is caused by a bug in the handling of the ASN.1 CHOICE type in OpenSSL 1.1.0 which can result in a NULL value being passed to the structure callback if an attempt is made to...

CVE-2016-4465

The URLValidator class in Apache Struts 2 2.3.20 through 2.3.28.1 and 2.5.x before 2.5.1 allows remote attackers to cause a denial of service via a null value for a URL field...