Lucene search
+L

98 matches found

Snyk
Snyk
added 2024/07/09 5:41 p.m.3 views

Numeric Truncation Error

Overview Affected versions of this package are vulnerable to Numeric Truncation Error through the handling of specially crafted inputs. An attacker can execute arbitrary code on the target system by sending a malformed data packet. Remediation Upgrade Microsoft.Azure.Kinect.Sensor to version or...

6.4CVSS7.8AI score0.0061EPSS
Exploits0References2
OSV
OSV
added 2024/05/03 2:15 a.m.3 views

CVE-2023-32143

D-Link DAP-1360 webupg UPGCGICheckAuth Numeric Truncation Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1360 routers. Authentication is not required to exploit this vulnerability. The...

8.8CVSS6.2AI score0.01134EPSS
Exploits0References2
NVD
NVD
added 2024/05/03 2:15 a.m.18 views

CVE-2023-32143

D-Link DAP-1360 webupg UPGCGICheckAuth Numeric Truncation Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1360 routers. Authentication is not required to exploit this vulnerability. The...

8.8CVSS9.1AI score0.01134EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/05/03 1:56 a.m.51 views

CVE-2023-32143 D-Link DAP-1360 webupg UPGCGI_CheckAuth Numeric Truncation Remote Code Execution Vulnerability

D-Link DAP-1360 webupg UPGCGICheckAuth Numeric Truncation Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1360 routers. Authentication is not required to exploit this vulnerability. The...

8.8CVSS9.3AI score0.01134EPSS
Exploits0References2
CNVD
CNVD
added 2023/11/17 12:0 a.m.22 views

Fortinet FortiOS and FortiProxy Denial of Service Vulnerabilities

Fortinet FortiOS is a set of security operating system dedicated to FortiGate network security platform from American Fita Fortinet. The system provides users with firewall, anti-virus, IPSec/SSLVPN, Web content filtering and anti-spam and other security features. FortiProxy is a web proxy soluti...

6.5CVSS6.6AI score0.01269EPSS
Exploits0References1
NVD
NVD
added 2023/11/14 6:15 p.m.33 views

CVE-2023-36641

A numeric truncation error in Fortinet FortiProxy version 7.2.0 through 7.2.4, FortiProxy version 7.0.0 through 7.0.10, FortiProxy 2.0 all versions, FortiProxy 1.2 all versions, FortiProxy 1.1, all versions, FortiProxy 1.0 all versions, FortiOS version 7.4.0, FortiOS version 7.2.0 through 7.2.5,...

6.5CVSS0.01269EPSS
Exploits0References1
OSV
OSV
added 2023/11/14 6:15 p.m.4 views

CVE-2023-36641

A numeric truncation error in Fortinet FortiProxy version 7.2.0 through 7.2.4, FortiProxy version 7.0.0 through 7.0.10, FortiProxy 2.0 all versions, FortiProxy 1.2 all versions, FortiProxy 1.1, all versions, FortiProxy 1.0 all versions, FortiOS version 7.4.0, FortiOS version 7.2.0 through 7.2.5,...

6.5CVSS5.8AI score0.01269EPSS
Exploits0References1
Prion
Prion
added 2023/11/14 6:15 p.m.20 views

Code injection

A numeric truncation error in Fortinet FortiProxy version 7.2.0 through 7.2.4, FortiProxy version 7.0.0 through 7.0.10, FortiProxy 2.0 all versions, FortiProxy 1.2 all versions, FortiProxy 1.1, all versions, FortiProxy 1.0 all versions, FortiOS version 7.4.0, FortiOS version 7.2.0 through 7.2.5,...

4CVSS6.9AI score0.01269EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2023/11/14 6:5 p.m.114 views

CVE-2023-36641

CVE-2023-36641 is a DoS vulnerability caused by a numeric truncation error in Fortinet FortiProxy/FortiOS. Affected products include FortiProxy 1.0–2.0 and FortiOS 6.x–7.x, with exploits triggered by specially crafted HTTP requests. Red Hat, CNVD, and other sources corroborate the DoS impact and ...

6.5CVSS6.3AI score0.01269EPSS
Exploits0References1Affected Software2
CNNVD
CNNVD
added 2023/11/14 12:0 a.m.5 views

Fortinet FortiProxy 安全漏洞

Fortinet FortiOS is a set of security operating system dedicated to FortiGate network security platform from American Fita Fortinet. The system provides users with firewall, anti-virus, IPSec/SSLVPN, Web content filtering and anti-spam and other security features. FortiProxy is a web proxy soluti...

6.5CVSS6.6AI score0.01269EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/11/14 12:0 a.m.47 views

Fortinet Fortigate DOS in headers management (FG-IR-23-151)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-23-151 advisory. - A numeric truncation error in Fortinet FortiProxy version 7.2.0 through 7.2.4, FortiProxy version 7.0.0 through 7.0.10,...

6.5CVSS6.5AI score0.01269EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2022/12/28 12:0 a.m.29 views

X.Org Server ProcXIChangeProperty Numeric Truncation Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of X.Org Server. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling...

6.1CVSS7.8AI score0.02685EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2021/07/22 12:0 a.m.64 views

Oracle VirtualBox NAT Numeric Truncation Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Oracle VirtualBox. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the...

7.5CVSS3.9AI score0.00731EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2021/02/01 12:0 a.m.33 views

CentOS 8 : edk2 (CESA-2020:1712)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2020:1712 advisory. - edk2: numeric truncation in MdeModulePkg/PiDxeS3BootScriptLib CVE-2019-14563 Note that Nessus has not tested for this issue but has instead relied only on the...

7.8CVSS6.6AI score0.004EPSS
Exploits0References2
Amazon
Amazon
added 2020/10/27 12:0 a.m.43 views

Medium: edk2

Issue Overview: Insufficient control flow management in BIOS firmware for 8th, 9th, 10th Generation IntelR CoreTM, IntelR CeleronR Processor 4000 & 5000 Series Processors may allow an authenticated user to potentially enable denial of service via adjacent access. CVE-2019-14558 Memory leak in...

8CVSS6.8AI score0.01308EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2020/04/28 3:35 p.m.7 views

edk2: numeric truncation in MdeModulePkg/PiDxeS3BootScriptLib

Integer truncation in EDK II may allow an authenticated user to potentially enable escalation of privilege via local access...

7.8CVSS7.3AI score0.004EPSS
Exploits0References4
Zero Day Initiative
Zero Day Initiative
added 2020/04/16 12:0 a.m.26 views

Oracle VirtualBox Virtual USB Numeric Truncation Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Oracle VirtualBox. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the virtual...

7.5CVSS3.5AI score0.00576EPSS
Exploits0References1
Veracode
Veracode
added 2020/04/10 12:25 a.m.37 views

Arbitrary Code Execution

openoffice.org is vulnerable to arbitrary code execution. The vulnerability exists as a numeric truncation error was found in the OpenOffice.org memory allocator. If a carefully crafted file was opened by a victim, an attacker could use this flaw to crash OpenOffice.org or, possibly, execute...

7.8CVSS4.1AI score0.10755EPSS
Exploits1References16Affected Software1
Zero Day Initiative
Zero Day Initiative
added 2019/02/12 12:0 a.m.29 views

Microsoft HID Driver Numeric Truncation Information Disclosure Vulnerability

This vulnerability allows attackers to disclose sensitive information on vulnerable installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists in the hidparse.sy...

7.1CVSS2.2AI score0.01711EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.73 views

Oracle Linux 5 : php (ELSA-2010-0919)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2010-0919 advisory. - add security fix for CVE-2010-3870 626735 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Not...

6.8CVSS6.9AI score0.11528EPSS
Exploits7References8
Rows per page
Query Builder