Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read in the ptpunpackOI function when processing a malicious PTP ObjectInfo response. An attacker can cause the application to read memory beyond the intended buffer by supplying specially crafted data, potentially leading...

CVE-2026-40340 libgphoto2 has OOB read in ptp_unpack_OI() in ptp-pack.c via malicious PTP ObjectInfo response

libgphoto2 is a camera access and control library. Versions up to and including 2.5.33 have an out-of-bounds read vulnerability in ptpunpackOI in camlibs/ptp2/ptp-pack.c lines 530–563. The function validates len PTPoiSequenceNumber i.e., len 48 but subsequently accesses offsets 48–56, up to 9 byt...

CVE-2026-40340 libgphoto2 has OOB read in ptp_unpack_OI() in ptp-pack.c via malicious PTP ObjectInfo response

libgphoto2 is a camera access and control library. Versions up to and including 2.5.33 have an out-of-bounds read vulnerability in ptpunpackOI in camlibs/ptp2/ptp-pack.c lines 530–563. The function validates len PTPoiSequenceNumber i.e., len 48 but subsequently accesses offsets 48–56, up to 9 byt...

HDF5 H5Ofsinfo.c H5O__fsinfo_encode heap-based overflow

...

CVE-2024-11176

Improper access control vulnerability in M-Files Aino in versions before 24.10 allowed an authenticated user to access object information via incorrect evaluation of effective permissions...

CVE-2024-11176

The CVE-2024-11176 entry describes an improper access control vulnerability in M-Files Aino prior to version 24.10. An authenticated user could access object information due to an incorrect evaluation of effective permissions. Affected software: M-Files Aino; vulnerable component/behavior: evalua...

CVE-2024-11176 Incorrect evaluation of effective permissions in M-Files Aino

Improper access control vulnerability in M-Files Aino in versions before 24.10 allowed an authenticated user to access object information via incorrect evaluation of effective permissions...

PT-2024-16799 · M Files · M-Files Aino

Name of the Vulnerable Software and Affected Versions: M-Files Aino versions prior to 24.10 Description: The issue is related to improper access control, allowing an authenticated user to access object information due to an incorrect calculation of effective permissions. Recommendations: For...

CVE-2022-36622

Samsung Electronics mTower v0.3.0 and earlier was discovered to contain a NULL pointer dereference via the function TEEGetObjectInfo1...

PPstream 2.6.86.8900 PPSMediaList ActiveX Remote BOF PoC

No description provided by source. !-- PPStream is the most huge p2p media player in the world. There are two hundred million ppstream users in the world. The vulnerability is exploitable,but I have no time to make it,you could visit my blog for detail.^@^ welcome to http://0dayexpose.blogspot.co...