429 matches found
CVE-2023-31973
yasm v1.3.0 was discovered to contain a use after free via the function expandmmacparams at /nasm/nasm-pp.c. Note: Multiple third parties dispute this as a bug and not a vulnerability according to the YASM security policy...
UBUNTU-CVE-2023-31973
DISPUTED yasm v1.3.0 was discovered to contain a use after free via the function expandmmacparams at /nasm/nasm-pp.c. Note: Multiple third parties dispute this as a bug and not a vulnerability according to the YASM security policy...
CVE-2022-48234
In FM service , there is a possible missing params check. This could lead to local denial of service in FM service...
CVE-2022-48232
In FM service , there is a possible missing params check. This could lead to local denial of service in FM service...
CVE-2022-48233
In FM service , there is a possible missing params check. This could lead to local denial of service in FM service...
Denial of service
In FM service , there is a possible missing params check. This could lead to local denial of service in FM service...
Denial of service
In FM service , there is a possible missing params check. This could lead to local denial of service in FM service...
CVE-2022-48234
CVE-2022-48234 affects UNISOC chipsets’ FM service module. The entry notes a missing parameter check in FM service, enabling local denial of service. Documents list NVD/Red Hat/CVE records with CVSS v3.1 metrics (AV:L, AC:L, PR:L/H, UI:N, S:U, C:N/I:N/A:H) and a base score around 5.5 (NVD) or 4.4...
CVE-2022-48234
In FM service , there is a possible missing params check. This could lead to local denial of service in FM service...
CVE-2022-48233
In FM service , there is a possible missing params check. This could lead to local denial of service in FM service...
CVE-2022-48233
CVE-2022-48233 involves the FM service (notably in UNISOC Chipsets’ FM service module) with a missing parameters check that can lead to local denial of service. The linked sources consistently describe the issue as a local DoS due to insufficient input validation, with no public details on affect...
CVE-2022-48232
CVE-2022-48232 concerns UNISOC chipsets’ FM service with a missing parameter check, enabling local denial of service. Connected sources corroborate a local impact; exploitation details are not provided, and there is no publicly available fix information in the supplied documents. Monitor for upda...
CVE-2022-48232
In FM service , there is a possible missing params check. This could lead to local denial of service in FM service...
PT-2023-23548 · Yasm +1 · Yasm +1
Name of the Vulnerable Software and Affected Versions: yasm version 1.3.0 Description: The issue is related to a use after free via the function expand mmac params at /nasm/nasm-pp.c. Note that multiple third parties dispute this as a bug and not a vulnerability according to the YASM security...
yasm 安全漏洞
yasm is a completely rewritten Netwide assembler from the yasm open source. A security vulnerability exists in yasm version v1.3.0, which stems from a post-release reuse issue in the function expandmmacparams in /nasm/nasm-pp.c. The vulnerability is caused by the use of the function...
WordPress URL Params Plugin < 2.5 is vulnerable to Cross Site Scripting (XSS)
Software URL Params Type Plugin Vulnerable versions 2.5 Fixed in 2.5 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-0274 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID c07bdc476562 Credits Lana Codes Required privilege...
URL Params < 2.5 - Contributor+ Stored XSS
The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks. PoC urlparam htmltag='h1' attr='a'...
H3C Magic R200 缓冲区错误漏洞
The H3C Magic R200 is a router from China's Xinhua San H3C. A security vulnerability exists in the H3C Magic R200 R200V100R004 version, which stems from the discovery of a stack overflow vulnerability contained in the UpdateWanParams interface via /goform/aspForm...
PT-2023-17831 · Google · Android Kernel
Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue is related to an incorrect bounds check in the append to params function of param util.c, which could lead to a possible out of bounds write. This might result in local escalation of privilege without...
CVE-2022-47458
In wlan driver, there is a possible missing params check. This could lead to local denial of service in wlan services...