6715 matches found
DEBIAN-CVE-2022-27950
In drivers/hid/hid-elo.c in the Linux kernel before 5.16.11, a memory leak exists for a certain hidparse error condition...
CVE-2022-27950
In drivers/hid/hid-elo.c in the Linux kernel before 5.16.11, a memory leak exists for a certain hidparse error condition...
AZL-9209 CVE-2022-27950 affecting package kernel for versions less than 5.15.37.1-2
In drivers/hid/hid-elo.c in the Linux kernel before 5.16.11, a memory leak exists for a certain hidparse error condition...
UBUNTU-CVE-2022-27950
In drivers/hid/hid-elo.c in the Linux kernel before 5.16.11, a memory leak exists for a certain hidparse error condition...
CVE-2022-27942
tcpprep in Tcpreplay 4.4.1 has a heap-based buffer over-read in parsempls in common/get.c...
Appneta Tcpreplay 缓冲区错误漏洞
Appneta Tcpreplay is a suite of open source utilities for editing and replaying network traffic on UNIX-based operating systems from AppNeta Appneta, USA. AppNeta Tcpreplay 4.4.1 suffers from a buffer error vulnerability that stems from tcpprep having a heap-based buffer over-read in common/get.c...
PT-2022-18710 · Tcpreplay +2 · Tcpreplay +2
Name of the Vulnerable Software and Affected Versions: Tcpreplay version 4.4.1 Description: The issue is related to a heap-based buffer over-read in the parse mpls function located in common/get.c. This occurs in the tcpprep component of Tcpreplay. Recommendations: For Tcpreplay version 4.4.1, at...
TotoLink T10 安全漏洞
TotoLink T10 is a wireless network system router from TotoLink, Taiwan, China.A security vulnerability exists in the TOTOLINK T10 V2Firmware V4.1.8cu.5207B20210320 version, which stems from a buffer overflow vulnerability in the httprequestparse function. No detailed vulnerability details are...
CVE-2022-1061
Heap Buffer Overflow in parseDragons in GitHub repository radareorg/radare2 prior to 5.6.8...
UBUNTU-CVE-2022-1061
Heap Buffer Overflow in parseDragons in GitHub repository radareorg/radare2 prior to 5.6.8...
Prototype Pollution
simple-plist is vulnerable to prototype pollution. The vulnerability exists because the validations are not handled properly which allows an attacker to inject properties into existing construct prototypes and modify attributes via .parse function...
GHSA-GFF7-G5R8-MG8M Prototype Pollution in simple-plist
simple-plist v1.3.0 was discovered to contain a prototype pollution vulnerability via .parse...
CVE-2022-26260
Simple-Plist v1.3.0 was discovered to contain a prototype pollution vulnerability via .parse...
CVE-2022-26260
Simple-Plist v1.3.0 was discovered to contain a prototype pollution vulnerability via .parse...
CVE-2022-26260
Simple-Plist v1.3.0 was discovered to contain a prototype pollution vulnerability via .parse...
CVE-2022-26260
Simple-Plist v1.3.0 was discovered to contain a prototype pollution vulnerability via .parse...
CVE-2022-26260
CVE-2022-26260 affects Simple-Plist v1.3.0. The Red Hat, Veracode, and OSV entries, plus CVE records, confirm a prototype-pollution vulnerability in the library exposed via the .parse() function. Root cause: improper handling during parsing that allows injection of properties into construct proto...
Simple-Plist 安全漏洞
Simple-Plist is a simple API for interacting with binary and plain text Plist data from Joe Wollard, a personal developer in the US. A security vulnerability exists in wollardj Simple-Plist v1.3.0, which stems from a prototype contamination vulnerability in .parse...
PT-2022-15865 · Netatalk +4 · Netatalk +4
Name of the Vulnerable Software and Affected Versions: Netatalk affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of Netatalk. Authentication is not required to exploit this issue. The specific flaw exists within th...
CVE-2021-39667
In ih264dparsedecodeslice of ih264dparseslice.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10...