Lucene search
K

51 matches found

OSV
OSV
added 2023/02/15 6:15 p.m.2 views

CVE-2023-0103

If an attacker were to access memory locations of LS ELECTRIC XBC-DN32U with operating system version 01.80 that are outside of the communication buffer, the device stops operating. This could allow an attacker to cause a denial-of-service condition...

7.5CVSS7.1AI score0.00663EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2023/01/25 12:0 a.m.6 views

The vulnerability of the PDF document viewing program Foxit PDF Reader (formerly Foxit Reader) and the PDF file editing program Foxit PDF Editor (formerly Foxit PhantomPDF) lies in the fact that operations are performed outside the buffer in memory, allowing an intruder to gain unauthorized access to protected information.

The vulnerability of the PDF document viewing program Foxit PDF Reader formerly Foxit Reader and the PDF file editing program Foxit PDF Editor formerly Foxit PhantomPDF is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow an attacker to...

5CVSS7.2AI score0.00698EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2022/09/05 12:0 a.m.10 views

The vulnerability of the Vim text editor lies in the fact that an operation can be performed outside the buffer, allowing an attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the Vim text editor is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

7.8CVSS7.6AI score0.01461EPSS
Exploits1References17Affected Software10
BDU FSTEC
BDU FSTEC
added 2022/08/02 12:0 a.m.9 views

The vulnerability of the implementation of the finfo_buffer() function in the PHP programming language allows a hacker to execute arbitrary code.

The vulnerability of the finfobuffer function implementation in the PHP programming language is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS7.6AI score0.01659EPSS
Exploits1References11Affected Software3
BDU FSTEC
BDU FSTEC
added 2022/04/05 12:0 a.m.15 views

The vulnerability of the infe_box_read function in the MP4Box component of the GPAC multimedia platform allows a hacker to gain access to confidential data.

The vulnerability of the infeboxread function in the MP4Box component of the GPAC multimedia platform is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to gain access to confidential data through a specially created file...

7.1CVSS7.1AI score0.00847EPSS
Exploits0References6Affected Software3
BDU FSTEC
BDU FSTEC
added 2022/03/04 12:0 a.m.5 views

The vulnerability of the libssh library, related to the occurrence of operations outside the buffer in memory, allows a hacker to trigger a service failure.

The vulnerability of the libssh library is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

6.8CVSS6.9AI score0.04683EPSS
Exploits0References13Affected Software8
CNNVD
CNNVD
added 2021/12/27 12:0 a.m.5 views

gif2apng 缓冲区错误漏洞

gif2apng is a simple program that converts animations from GIF to APNG format. gif2apng suffers from a buffer overflow vulnerability that could be exploited by an attacker to write data outside the allocated buffer...

7.8CVSS6AI score0.00871EPSS
Exploits1References5
BDU FSTEC
BDU FSTEC
added 2021/12/20 12:0 a.m.5 views

The vulnerability of the kernel of operating systems such as Mac OS, tvOS, iOS, iPadOS, and watchOS allows attackers to gain increased privileges.

The vulnerability in the kernel of operating systems such as Mac OS, tvOS, iOS, iPadOS, and watchOS relates to operations that occur outside of the buffer in memory. Exploiting this vulnerability can allow an attacker to gain increased privileges...

7.8CVSS7AI score0.0162EPSS
Exploits0References7Affected Software5
BDU FSTEC
BDU FSTEC
added 2021/02/16 12:0 a.m.6 views

The vulnerability of the gst_aac_parse_sink_setcaps function (gst/audioparsers/gstaacparse.c) in the gst-plugins-good plugin for the Gstreamer multimedia framework allows a malicious actor to cause a service failure.

The vulnerability of the gstaacparsesinksetcaps function gst/audioparsers/gstaacparse.c in the gst-plugins-good plugin for the Gstreamer multimedia framework is related to the execution of operations outside of the buffer memory. Exploiting this vulnerability could allow a remote attacker to caus...

7.8CVSS7AI score0.02668EPSS
Exploits0References6Affected Software4
BDU FSTEC
BDU FSTEC
added 2020/11/19 12:0 a.m.5 views

The vulnerability of the Microsoft Exchange Server mail server arises from a transaction that occurs outside the buffer in memory, allowing an attacker to execute arbitrary code.

The vulnerability of Microsoft Exchange Server arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

10CVSS8.7AI score0.03568EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2020/11/19 12:0 a.m.3 views

The vulnerability of the Intel Active Management Technology implementation arises from the possibility of writing operations outside of the buffer in memory, allowing an attacker to exploit their privileges.

The vulnerability of the Intel Active Management Technology implementation is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to enhance their privileges...

6.4CVSS7AI score0.00412EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/09/09 12:0 a.m.4 views

The vulnerability of the Microsoft Outlook email client, as well as Microsoft Office and Microsoft 365 applications, allows attackers to gain control over programs, access data for viewing, modification, or deletion, and create new accounts with full user rights.

The vulnerability of the Microsoft Outlook email client, as well as Microsoft Office and Microsoft 365 applications, stems from an operation that occurs outside the buffer in memory. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain privileges to install...

10CVSS7AI score0.08876EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2020/09/09 12:0 a.m.4 views

The vulnerability of the Microsoft Outlook email client arises from an operation that occurs outside the buffer in memory, allowing an attacker to disclose protected information.

The vulnerability of the Microsoft Outlook email client arises from an operation that goes beyond the buffer in memory. Exploiting this vulnerability can allow a malicious actor, operating remotely, to disclose sensitive information by sending an email containing a linked file...

5CVSS6.7AI score0.07296EPSS
Exploits1References3
BDU FSTEC
BDU FSTEC
added 2020/07/07 12:0 a.m.6 views

The vulnerability of the exif_process_IFD_in_MAKERNOTE function in the EXIF interpreter for the PHP programming language allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the exifprocessIFDinMAKERNOTE function in the EXIF interpreter for the PHP programming language is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

5.9CVSS6.9AI score0.08202EPSS
Exploits1References14Affected Software5
OSV
OSV
added 2020/04/07 4:15 p.m.3 views

CVE-2017-18688

An issue was discovered on Samsung mobile devices with L5.1, M6.0, and N7.0 software. There is an information disclosure of memory locations outside a buffer via /dev/dsmctrldev. The Samsung ID is SVE-2016-7340 January 2017...

7.5CVSS5.8AI score0.00413EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2020/03/20 12:0 a.m.5 views

The vulnerability in the built-in software of Intel NUC Kits, Intel Compute Sticks, and Intel Compute Cards arises from the execution of operations outside the buffer in memory, allowing attackers to exploit their privileges.

The vulnerability in the built-in software of Intel NUC Kits, Intel Compute Sticks, and Intel Compute Cards relates to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow attackers to gain increased privileges...

7.8CVSS7.6AI score0.00337EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2020/03/18 12:0 a.m.4 views

Vulnerability of the rwsem_down_write_slowpath function (kernel/locking/rwsem.c) in the Linux operating system’s kernel, which allows an attacker to disclose protected information or cause service failure

The vulnerability of the rwsemdownwriteslowpath function in the Linux kernel’s locking/rwsem.c file relates to operations that occur outside of the buffer memory. Exploiting this vulnerability could allow an attacker to disclose sensitive information or cause service failures...

7.1CVSS6.5AI score0.00731EPSS
Exploits0References32Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/12/09 12:0 a.m.5 views

The vulnerability of the Trusted Execution Technology (TXT) implementation in Intel processors allows attackers to enhance their privileges.

The vulnerability of the Trusted Execution Technology TXT implementation in Intel processors lies in the fact that the operation’s output is stored outside of the buffer in memory. Exploiting this vulnerability can allow an attacker to enhance their privileges...

8.2CVSS7.6AI score0.00361EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2019/10/16 12:0 a.m.8 views

The vulnerability of WebGL buffer data in Firefox browsers (Firefox ESR), Thunderbird email client, arises from the possibility of operations occurring outside the buffer in memory. This allows attackers to compromise data integrity, gain unauthorized access to protected information, and cause service failures.

The vulnerability of WebGL buffer data in Firefox browsers, Firefox ESR, and the Thunderbird email client is related to buffer overflows in certain graphics drivers. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and cause servic...

10CVSS5.8AI score0.02408EPSS
Exploits0References8Affected Software6
BDU FSTEC
BDU FSTEC
added 2018/12/04 12:0 a.m.5 views

The vulnerability of the Microsoft Project project management software and the Office 365 suite, related to the execution of operations outside the buffer in memory, allows a hacker to execute arbitrary code.

The vulnerability of Microsoft Project project management software and the Office 365 suite arises from an operation that occurs outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially created file...

10CVSS8.4AI score0.19268EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder