The vulnerability of the fread function (ext/standard/file.c) in the PHP programming language allows a hacker to cause a service failure or potentially have other adverse effects.

The vulnerability of the fread function ext/standard/file.c in the PHP programming language interpreter is caused by a numerical overflow. Exploiting this vulnerability could allow an attacker to cause service failures or potentially other adverse effects...

The vulnerability of the phar_parse_pharfile function in the PHP programming language allows a hacker to trigger a service failure.

The vulnerability of the pharparsepharfile function in the PHP programming language is caused by a numerical overflow condition. Exploiting this vulnerability can allow an attacker to cause service interruptions...

The vulnerability of the `gdimagewebpctx` function in the GD Graphics Library, a programming language interpreter for PHP, allows attackers to trigger a service failure or potentially cause other adverse effects.

The vulnerability of the gdimagewebpctx function in the GD Graphics Library, a programming language interpreter for PHP, is caused by a numerical overflow. Exploiting this vulnerability could allow an attacker to cause service interruptions or potentially have other effects through the invocation...

The vulnerability of the NetUSB module in the embedded software of Netgear routers such as D7800, R6220, R6230, R6400v2, R6700v3, R7000, and R7800 allows a hacker to execute arbitrary code.

The vulnerability of the NetUSB module in the embedded software of Netgear routers such as D7800, R6220, R6230, R6400v2, R6700v3, R7000, and R7800 is related to a numerical overflow vulnerability. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely by using port...

Yandex ClickHouse 数字错误漏洞

Yandex ClickHouse is a set of open source columnar databases for online analytical processing from the Russian company Yandex. A numeric error vulnerability exists in Yandex ClickHouse, no information about this vulnerability is available at this time, please stay tuned to CNNVD or vendor...

The vulnerability of the NetUSB.ko module of TP-Link AC1750 Archer C7 router’s microprogramming software allows a hacker to execute arbitrary code.

The vulnerability of the NetUSB.ko module of TP-Link AC1750 Archer C7 router’s microprogramming software is related to a numerical overflow condition. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...

CVE-2022-21824

Due to the formatting logic of the "console.table" function it was not safe to allow user controlled input to be passed to the "properties" parameter while simultaneously passing a plain object with at least one property as the first parameter, which could be "proto". The prototype pollution has...

Blender 数字错误漏洞

Blender is a specialized free and open source 3D computer graphics software. A numeric error vulnerability exists in Blender that could be exploited by an attacker to read sensitive data using a crafted DDS image file...

Google TensorFlow numeric error vulnerability (CNVD-2022-14992)

TensorFlow is an end-to-end open source platform for machine learning from Google USA. Google TensorFlow is vulnerable to a numeric error vulnerability that could be exploited by an attacker to craft a TFLite model that would trigger a division by zero in a deep convolutional implementation...

Google TensorFlow numeric error vulnerability (CNVD-2022-14993)

TensorFlow is an end-to-end open source platform for machine learning from Google. Google TensorFlow is vulnerable to a numerical error that results from the fact that the cost estimator of certain convolution operations can be used to perform an operation divided by zero, and the function fails ...

Sonos One Speaker 数字错误漏洞

Sonos One Speaker is a smart speaker from Sonos USA. The Sonos One Speaker suffers from a numeric error vulnerability that stems from a lack of proper validation of user-supplied data, which could result in an integer underflow before writing to memory. An attacker can exploit this vulnerability ...

Microsoft Windows Named Pipe File System 数字错误漏洞

Microsoft Windows Named Pipe File System is a named pipe file system from Microsoft Corporation USA. A numeric error vulnerability exists in Microsoft Windows Named Pipe File System. The following products and editions are affected:Windows 10 Version 1809 for 32-bit Systems,Windows 10 Version 180...

CVE-2021-41838

An issue was discovered in SdHostDriver in the kernel 5.0 through 5.5 in Insyde InsydeH2O. There is an SMM callout that allows an attacker to access the System Management Mode and execute arbitrary code. This occurs because of a Numeric Range Comparison Without a Minimum Check...

Google TensorFlow 数字错误漏洞

TensorFlow is an end-to-end open source platform for machine learning from Google USA. Google TensorFlow is vulnerable to a numeric error vulnerability that could be exploited by an attacker to craft a TFLite model that would trigger a division by zero in a deep convolutional implementation...

Xen 数字错误漏洞

Xen is an open source virtual machine monitor product from the University of Cambridge, UK. The product enables different and incompatible operating systems to run on the same computer and supports runtime migration to ensure uptime and avoid downtime. A numeric error vulnerability exists in xen,...

HDF5 数字错误漏洞

HDF5 is a suite of tools for managing and storing different types of data from HDF USA. The product supports managing, manipulating, viewing and analyzing data and generating files in portable formats. A security vulnerability exists in HDF5 v1.13.1-1, which can be exploited by an attacker to...

Frontier numeric error vulnerability

Frontier is an ethereum-compatible layer of Substrate. A numeric error vulnerability exists in Frontier, which stems from a bug in Frontier's pre-compiled implementation of MODEXP that could lead to integer underflow in some cases. This would cause the node of the debug build to crash. No detaile...

Frontier 数字错误漏洞

Frontier is an ethereum-compatible layer of Substrate. A numeric error vulnerability exists in Frontier, which stems from a bug in Frontier's pre-compiled implementation of MODEXP that could lead to integer underflow in some cases. This would cause the node of the debug build to crash. No detaile...

CVE-2021-45927

MDB Tools aka mdbtools 0.9.2 has a stack-based buffer overflow at 0x7ffd6e029ee0 in mdbnumerictostring called from mdbxferbounddata and mdbattemptbind...

UBUNTU-CVE-2021-45926

MDB Tools aka mdbtools 0.9.2 has a stack-based buffer overflow at 0x7ffd0c689be0 in mdbnumerictostring called from mdbxferbounddata and mdbattemptbind...