457 matches found
Linux Distros Unpatched Vulnerability : CVE-2020-13776
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - systemd through v245 mishandles numerical usernames such as ones composed of decimal digits or 0x followed by hex digits, as demonstrated by use of root...
The vulnerability of the Linux operating system’s kernel’s media component, allowing a hacker to execute arbitrary code
The vulnerability of the Linux operating system’s kernel media component is related to a numerical overflow in the tda10048setif function. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerabilities of Kaspersky Anti-Virus SDK for Windows, Kaspersky Security for Virtualization Light Agent, Kaspersky Endpoint Security for Windows, Kaspersky Small Office Security, Kaspersky for Windows (Standard, Plus, Premium), Kaspersky Free, Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Security Cloud, Kaspersky Safe Kids, and Kaspersky Anti-Ransomware Tool are related to a full-width overflow vulnerability, which allows an attacker to write arbitrary data and cause service interruptions.
The vulnerabilities of Kaspersky Anti-Virus SDK for Windows, Kaspersky Security for Virtualization Light Agent, Kaspersky Endpoint Security for Windows, Kaspersky Small Office Security, Kaspersky for Windows Standard, Plus, Premium, Kaspersky Free, Kaspersky Anti-Virus, Kaspersky Internet Securit...
CVE-2022-41648
The HEIDENHAIN Controller TNC 640 NC software Version 340590 07 SP5, is vulnerable to improper authentication in its DNC communication for CNC machines. Authentication is not enabled by default for DNC communication. This vulnerability may allow an attacker to deny service on the production line,...
The vulnerability of the DXA demultiplexer in the FFmpeg multimedia library allows a hacker to cause a service failure.
The vulnerability of the DXA demultiplexer in the FFmpeg multimedia library is related to a numerical overflow condition. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the libavformat/westwood_vqa.c component in the FFmpeg multimedia library allows a attacker to cause a service failure.
The vulnerability of the libavformat/westwoodvqa.c component in the FFmpeg multimedia library is related to a numerical overflow condition. Exploiting this vulnerability could allow an attacker to cause a service failure using a specially created VQA file...
The vulnerability of the CAF decoder in the FFmpeg multimedia library allows a hacker to induce a service failure.
The vulnerability of the CAF decoder in the FFmpeg multimedia library is related to a numerical overflow condition. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the NFSD component in the Linux operating system’s kernel allows a hacker to execute arbitrary code.
The vulnerability of the NFSD component in the Linux operating system’s kernel is related to a numerical overflow condition. Exploiting this vulnerability allows an attacker to execute arbitrary code...
The vulnerability of Adobe Illustrator’s graphic editor lies in its numerical loss of significance, allowing a hacker to execute arbitrary code.
The vulnerability of Adobe Illustrator’s graphic editor is related to a countable loss of significance. Exploiting this vulnerability allows an attacker to execute arbitrary code in the context of the current user, using a specially created malicious file...
The vulnerability of the GDI+ component in Microsoft Office programs and the Windows operating system allows a hacker to execute arbitrary code.
The vulnerability of the GDI+ component in Microsoft Office programs and the Windows operating system is related to a numerical overflow condition. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
The vulnerability in the implementation of IPSec protocols on the SonicOS operating system allows a attacker to trigger a Denial-of-Service attack (DoS) or execute arbitrary code.
The vulnerability of the implementation of IPSec protocols on the SonicOS operating system is related to a numerical overflow condition. Exploiting this vulnerability allows a malicious actor to trigger a Denial-of-Service attack or execute arbitrary code by sending a specially crafted IKEv2...
The vulnerability of the Adobe Animate software for creating multimedia and computer animations, related to integer overflow, allows attackers to execute arbitrary code.
The vulnerability of the Adobe Animate software for creating multimedia and computer animations is related to a numerical overflow condition. Exploiting this vulnerability allows an attacker to execute arbitrary code...
CVE-2024-7747
The Wallet for WooCommerce plugin for WordPress is vulnerable to incorrect conversion between numeric types in all versions up to, and including, 1.5.6. This is due to a numerical logic flaw when transferring funds to another user. This makes it possible for authenticated attackers, with...
The vulnerability of the Native Client component of the Microsoft SQL Server database management system allows a hacker to execute arbitrary code.
The vulnerability of Native Client components in the Microsoft SQL Server database management system is related to numerical truncation errors. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...
The vulnerability of the netfilter component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the netfilter component in the Linux operating system’s kernel is related to a numerical overflow in the nftablesaddchain function. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the Windows Registry system allows attackers to increase their privileges.
The vulnerability of the Windows Registry system in operating systems is related to numerical overflow. Exploiting this vulnerability can allow an attacker to increase their privileges...
PT-2024-8604 · Microsoft · Sql Server Native Client
Name of the Vulnerable Software and Affected Versions: Microsoft SQL Server Native Client affected versions not specified Description: The issue is related to errors of numerical truncation in the Native Client component of Microsoft SQL Server. It allows a remote attacker to execute arbitrary co...
Unspecified Vulnerability in GNU Scientific Library
GNU Scientific Library is an open source numerical computation library developed by the GNU organization , providing rich mathematical and scientific computing functions , support for C/C++ language development . A security vulnerability exists in GNU Scientific Library, which originates from an...
The vulnerability of the WDAC OLE DB driver for SQL Server on Windows operating systems allows a hacker to execute arbitrary code.
The vulnerability of the WDAC OLE DB driver for SQL Server on Windows operating systems is related to numerical truncation errors. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
The vulnerability of the Adobe Animate software for creating multimedia and computer animations, related to integer overflow, allows attackers to execute arbitrary code.
The vulnerability of the Adobe Animate software for creating multimedia and computer animations is related to a numerical overflow condition. Exploiting this vulnerability allows an attacker to execute arbitrary code...