CVE-2023-36641

A numeric truncation error in Fortinet FortiProxy version 7.2.0 through 7.2.4, FortiProxy version 7.0.0 through 7.0.10, FortiProxy 2.0 all versions, FortiProxy 1.2 all versions, FortiProxy 1.1, all versions, FortiProxy 1.0 all versions, FortiOS version 7.4.0, FortiOS version 7.2.0 through 7.2.5,...

Code injection

A numeric truncation error in Fortinet FortiProxy version 7.2.0 through 7.2.4, FortiProxy version 7.0.0 through 7.0.10, FortiProxy 2.0 all versions, FortiProxy 1.2 all versions, FortiProxy 1.1, all versions, FortiProxy 1.0 all versions, FortiOS version 7.4.0, FortiOS version 7.2.0 through 7.2.5,...

CVE-2023-36641

CVE-2023-36641 is a DoS vulnerability caused by a numeric truncation error in Fortinet FortiProxy/FortiOS. Affected products include FortiProxy 1.0–2.0 and FortiOS 6.x–7.x, with exploits triggered by specially crafted HTTP requests. Red Hat, CNVD, and other sources corroborate the DoS impact and ...

Fortinet FortiProxy 安全漏洞

Fortinet FortiOS is a set of security operating system dedicated to FortiGate network security platform from American Fita Fortinet. The system provides users with firewall, anti-virus, IPSec/SSLVPN, Web content filtering and anti-spam and other security features. FortiProxy is a web proxy soluti...

Fortinet Fortigate DOS in headers management (FG-IR-23-151)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-23-151 advisory. - A numeric truncation error in Fortinet FortiProxy version 7.2.0 through 7.2.4, FortiProxy version 7.0.0 through 7.0.10,...

The vulnerability of the `simple_object_elf_match` function in the `libiberty/simple-object-elf.c` development toolset of the GNU Binutils allows a attacker to trigger a service failure.

The vulnerability of the simpleobjectelfmatch function in the libiberty/simple-object-elf.c development tool of the GNU Binutils library is related to a numerical overflow condition. Exploiting this vulnerability allows an attacker to cause service failures remotely...

The vulnerability of the _bfd_dwarf2_slurpdebug_info function in the bfd/dwarf2.c component of the GNU Binutils development environment allows a hacker to cause a service failure.

The vulnerability of the bfddwarf2slurpdebuginfo function in the bfd/dwarf2.c component of the GNU Binutils development environment is related to a numerical overflow condition. Exploiting this vulnerability allows an attacker to cause service interruptions...

7-Zip Number Error Vulnerability

7-Zip is a compression software. A numeric error vulnerability exists in 7-Zip version 22.01 and earlier, which stems from allowing integer underflow and code execution via a carefully crafted 7Z archive...

Denial Of Services (DoS)

libsquid.so is vulnerable to Denial of Service DoS. This vulnerability exists because it does not properly manage the conversion between numeric types, which allows an attacker to cause an application crash...

The vulnerability of the Herces library on the C++ platform of the BigFix Platform for collaborative management of IT equipment allows a hacker to execute arbitrary code.

The vulnerability of the Herces library on the C++ platform used by the BigFix Platform for jointly managing IT equipment is due to a numerical overflow. Exploiting this vulnerability allows an attacker, operating remotely, to execute arbitrary code by sending a specially crafted HTTP request...

The vulnerability of the manage_post function in the microprogramming software of industrial Wi-Fi routers Yifan YF325 allows a hacker to execute arbitrary code.

The vulnerability of the managepost function in the microprogramming software for industrial Wi-Fi routers Yifan YF325 is related to a numerical overflow condition. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

Squid security vulnerability

Squid is a suite of proxy server and web caching server software. The software provides features such as caching the World Wide Web, filtering traffic, and proxying the Internet. A security vulnerability exists in versions prior to Squid 6.4, which stems from an incorrect conversion between numer...

Siemens InsydeH2O Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2021-41838)

An issue was discovered in SdHostDriver in the kernel 5.0 through 5.5 in Insyde InsydeH2O. There is an SMM callout that allows an attacker to access the System Management Mode and execute arbitrary code. This occurs because of a Numeric Range Comparison Without a Minimum Check. Insyde BIOS is...

The vulnerability of the read_samples() function in the Sound eXchange (SoX) audio processing software allows a hacker to cause a service failure.

The vulnerability of the readsamples function in the Sound eXchange SoX sound processing software is related to incorrect numerical calculations when processing values with a comma. Exploiting this vulnerability could allow an attacker to cause a service failure...

SUSE CVE-2023-39357

Cacti is an open source operational monitoring and fault management framework. A defect in the sqlsave function was discovered. When the column type is numeric, the sqlsave function directly utilizes user input. Many files and functions calling the sqlsave function do not perform prior validation...

CVE-2023-39357

Cacti is an open source operational monitoring and fault management framework. A defect in the sqlsave function was discovered. When the column type is numeric, the sqlsave function directly utilizes user input. Many files and functions calling the sqlsave function do not perform prior validation...

CVE-2023-3222

Vulnerability in the password recovery mechanism of Password Recovery plugin for Roundcube, in its 1.2 version, which could allow a remote attacker to change an existing user´s password by adding a 6-digit numeric token. An attacker could create an automatic script to test all possible values...

Default credentials

Vulnerability in the password recovery mechanism of Password Recovery plugin for Roundcube, in its 1.2 version, which could allow a remote attacker to change an existing user´s password by adding a 6-digit numeric token. An attacker could create an automatic script to test all possible values...

CVE-2023-3222 Vulnerability in the password recovery mechanism of Roundcube Password Recovery Plugin

Vulnerability in the password recovery mechanism of Password Recovery plugin for Roundcube, in its 1.2 version, which could allow a remote attacker to change an existing user´s password by adding a 6-digit numeric token. An attacker could create an automatic script to test all possible values...

GPAC 数字错误漏洞

GPAC is an open source multimedia framework. A numeric error vulnerability exists in versions prior to GPAC 2.3-DEV, which stems from a divide by zero flaw in scenemanager/swfsvg.c, filters/dasher.c, filters/muxisom.c, and scenemanager/swfparse.c. The flaw is caused by a division by zero...