115 matches found
AZL-31880 CVE-2023-5678 affecting package openssl for versions less than 1.1.1k-28
Issue summary: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow. Impact summary: Applications that use the functions DHgeneratekey to generate an X9.42 DH key may experience long delays. Likewise, applications that use...
Apache InLong 代码问题漏洞
Apache InLong is the U.S. Apache Apache Foundation's one-stop massive data integration framework. Provides automated, secure and reliable data transfer capabilities. A code issue vulnerability exists in Apache InLong versions 1.4.0 to 1.8.0, which stems from the fact that some sensitive parameter...
Huawei HarmonyOS Input Validation Error Vulnerability (CNVD-2023-97828)
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from an input validation error vulnerability that stems from improper parameter checks in the window module. An attacker could explo...
OS Command Injection
cacti is vulnerable to OS Command Injection. The vulnerability exists in the snmp.php due to lack of parameter checks which allows an attacker to inject and execute arbitrary commands...
The vulnerability of the Zabbix universal monitoring system, related to insufficient validation of input data, allows a perpetrator to gain access to confidential information.
The vulnerability of the Zabbix universal monitoring system is related to the improper implementation of URL parameter checking before file reading. Exploiting this vulnerability can allow a malicious actor to gain access to confidential data...
Command Injection
snapd is vulnerable to Command Injection. The vulnerability exists in the IOCTL system call handler due to lack of parameter checks which allows an attacker to inject and execute arbitrary commands...
Huawei HarmonyOS Path Traversal Vulnerability
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from a path traversal vulnerability that stems from insufficient checksumming of parameters. An attacker can use this vulnerability ...
Huawei HarmonyOS Path Traversal Vulnerability
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from a path traversal vulnerability that stems from insufficient checksumming of parameters. An attacker can use this vulnerability ...
OS Command Injection
mlflow is vulnerable to OS Command Injection. The vulnerability exists in the cli due to lack of parameter checks which allows an attacker to inject and execute arbitrary commands...
SUSE CVE-2023-3817
Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DHcheck, DHcheckex or EVPPKEYparamcheck to check a DH key or DH parameters may experience long delays. Where the key or parameters that are being checked have been...
AZL-37764 CVE-2023-3817 affecting package hvloader for versions less than 1.0.1-9
Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DHcheck, DHcheckex or EVPPKEYparamcheck to check a DH key or DH parameters may experience long delays. Where the key or parameters that are being checked have been...
AZL-27815 CVE-2023-3817 affecting package openssl for versions less than 1.1.1k-26
Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DHcheck, DHcheckex or EVPPKEYparamcheck to check a DH key or DH parameters may experience long delays. Where the key or parameters that are being checked have been...
DEBIAN-CVE-2023-3446
Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DHcheck, DHcheckex or EVPPKEYparamcheck to check a DH key or DH parameters may experience long delays. Where the key or parameters that are being checked have been...
CVE-2023-33903
In FM service, there is a possible missing params check. This could lead to local denial of service with System execution privileges needed...
PT-2023-4011 · Unisoc · Unisoc Bluetooth Service
Name of the Vulnerable Software and Affected Versions: Unisoc bluetooth service affected versions not specified Description: The issue is related to a possible missing parameters check in the bluetooth service, which could lead to a local denial of service. System execution privileges are needed ...
CVE-2021-46893
Vulnerability of unstrict data verification and parameter check. Successful exploitation of this vulnerability may affect integrity...
PT-2023-12613 · Huawei · Emui +1
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: The issue concerns unstrict data verification and parameter checks. Successful exploitation may impact integrity. Recommendations: At the moment, there is no information about a new...
CVE-2022-48233
In FM service , there is a possible missing params check. This could lead to local denial of service in FM service...
CVE-2022-48234
In FM service , there is a possible missing params check. This could lead to local denial of service in FM service...
UNISOC Chipsets 缓冲区错误漏洞
UNISOC Chipsets is a chipset from China's Purple Spreadtrum UNISOC. A security vulnerability exists in the UNISOC Chipsets FM service module due to a lack of parameter checking...