QNAP Qsync Central 安全漏洞

QNAP Qsync Central is a cloud-based file synchronization service for NAS devices provided by QNAP Technology Co., Ltd. Versions of QNAP Qsync Central prior to 5.0.0.4 contained security vulnerabilities. These vulnerabilities were caused by excessive pointer offsets, which could allow remote...

iccDEV 安全漏洞

iccDEV is an open source color configuration code library from the International Color Consortium ICC. A security vulnerability exists in iccDEV version 2.3.1.1 and earlier, which stems from an out-of-bounds read, use of out-of-range pointer offsets, and improper input validation in the...

wrflib has a soundness issue and is unmaintained

All functions under wrflib::byteextract are simply wrapper of unsafe pointer offset and lacks sufficient checks to it pointer and offset parameter. wrflib is unmaintained...

sslh 安全漏洞

sslh is an application protocol multiplexer by the individual developer Yves Rutschle. A security vulnerability exists in sslh versions prior to 2.2.4, which stems from out-of-bounds pointer offsets and may result in a denial of service...

CVE-2024-45557

CVE-2024-45557 describes memory corruption in Qualcomm’s Trust Management Engine (TME) when it processes addresses from TZ and MPSS requests without proper validation, affecting Qualcomm chipsets. The CVSSv3.1 base score is 7.8 (High) with Local, Low complexity, Low privileges, and no user intera...

Cesanta Mongoose Web Server 安全漏洞

Cesanta Mongoose Web Server is a cross-platform embedded server and web library written in C from Cesanta Ireland. A security vulnerability exists in Cesanta Mongoose Web Server version v7.14, which stems from the presence of out-of-range pointer offsets, which could allow an attacker to send...

Cesanta Mongoose Web Server 安全漏洞

Cesanta Mongoose Web Server is a cross-platform embedded server and web library written in C from Cesanta Ireland. A security vulnerability exists in Cesanta Mongoose Web Server version v7.14, which stems from the presence of out-of-range pointer offsets, which could allow an attacker to send...

Cesanta Mongoose Web Server 安全漏洞

Cesanta Mongoose Web Server is a cross-platform embedded server and web library written in C from Cesanta Ireland. A security vulnerability exists in Cesanta Mongoose Web Server version v7.14, which stems from the presence of out-of-range pointer offsets, which could allow an attacker to send...

Qualcomm Chipsets Security Vulnerability

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that arises from the use of out-of-range pointer offsets in Graphics...

Qualcomm Chipsets Security Vulnerability

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that arises from the use of out-of-range pointer offsets in Audio...

Qualcomm 芯片缓冲区错误漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way to miniaturize circuits mainly semiconductor devices, but also passive components, etc. and is often manufactured on the surface of semiconductor wafers. A security vulnerability exists in the Audio module of the Qualcomm chip that...

NVIDIA GPU Display Driver 缓冲区错误漏洞

NVIDIA GPU Display Driver is a driver from NVIDIA Corporation that is used for interactive support of graphics card display modules in operating systems. A security vulnerability exists in NVIDIA GPU Display Driver, which originates at the kernel mode level, where an unprivileged, casual user cou...

Intel BIOS firmware缓冲区错误漏洞

Intel BIOS firmware is a set of programs from the U.S. company Intel that are solidified onto a ROM chip on the motherboard inside a computer. A security vulnerability exists in the Intel BIOS firmware that arises from the use of out-of-range pointer offsets. An attacker could exploit the...

An unspecified vulnerability exists in vim (CNVD-2022-13206)

Vim is a UNIX-based editor. vim versions prior to 8.2.4418 contain a security vulnerability that stems from the use of out-of-range pointer offsets in vim. No details of the vulnerability are currently available...

Unspecified vulnerability exists in mruby (CNVD-2022-12747)

mruby is a lightweight implementation of the Ruby language. mruby 3.2 previously had a security vulnerability that stemmed from the use of out-of-range pointer offsets. No detailed vulnerability details are currently available...

mruby 缓冲区错误漏洞

mruby is a lightweight implementation of the Ruby language. mruby 3.2 previously had a security vulnerability that stemmed from the use of out-of-range pointer offsets. No detailed vulnerability details are currently available...

Libmobi 缓冲区错误漏洞

Libmobi is a C library . Used to handle Mobipocket/Kindle MOBI e-book format documents. An out-of-bounds read vulnerability exists in Libmobi, which stems from the program being vulnerable to the use of out-of-range pointer offsets, and can be exploited by an attacker to read memory information...

Libmobi 缓冲区错误漏洞

Libmobi is a C library . Used to handle Mobipocket/Kindle MOBI e-book format documents. A buffer overflow vulnerability exists in Libmobi, which stems from the fact that libmobi is susceptible to out-of-range pointer offsets, which can be exploited by an attacker to read memory information beyond...

CVE-2020-27738

A vulnerability has been identified in APOGEE PXC Compact BACnet All versions V3.5.5, APOGEE PXC Compact P2 Ethernet All versions V2.8.20, APOGEE PXC Modular BACnet All versions V3.5.5, APOGEE PXC Modular P2 Ethernet All versions V2.8.20, Nucleus NET All versions, Nucleus ReadyStart V3 All versio...

CVE-2007-5657

TIBCO SmartSockets RTserver 6.8.0 and earlier, RTworks before 4.0.4, and Enterprise Message Service EMS 4.0.0 through 4.4.1 allows remote attackers to execute arbitrary code via crafted requests containing values that are used as pointer offsets...