31 matches found
CVE-2023-4883 Multiple vulnerabilities in Open5GS
Invalid pointer release vulnerability. Exploitation of this vulnerability could allow an attacker to interrupt the correct operation of the service by sending a specially crafted json string to the VNF Virtual Network Function, and triggering the ogssbimessagefree function, which could cause a...
Open5GS 安全漏洞
Open5GS is an open source implementation in C of 5G Core and Epc, the core network of the Lte/Nr network. A denial of service vulnerability exists in Open5GS version 2.4.10 and earlier due to an invalid pointer release flaw in the ogssbimessagefree function, which can be exploited by an attacker ...
Microsoft Office Excel FreePhisxdb arbitrary free vulnerability
Talos Vulnerability Report TALOS-2023-1730 Microsoft Office Excel FreePhisxdb arbitrary free vulnerability June 13, 2023 CVE Number CVE-2023-32029 SUMMARY An arbitrary free vulnerability exists in the FreePhisxdb functionality of Microsoft Office Excel 2019 Plus 16.0.16130.20218. A...
Mozilla Firefox ESR 资源管理错误漏洞
Mozilla Firefox ESR is an extended support release of Firefox web browser from the Mozilla Foundation in the United States. A security vulnerability exists in versions of Mozilla Firefox ESR prior to 102.10, which can be exploited by an attacker to incorrectly release a pointer to control memory...
The vulnerability of the FpdtStatusCodeListenerPei() function in open-source development environments for UEFI EDK2 allows a perpetrator to access confidential data, compromise its integrity, and cause service failures.
The vulnerability of the FpdtStatusCodeListenerPei function in open-source development environments for UEFI EDK2 is related to the release of an incorrect pointer. Exploiting this vulnerability allows attackers to access confidential data, compromise its integrity, and cause service failures...
PT-2021-6806 · Edk2 +2 · Edk2 +2
Name of the Vulnerable Software and Affected Versions: EDK2 affected versions not specified Description: The issue is related to the function FpdtStatusCodeListenerPei in the open-source UEFI EDK2 development environment. It involves the release of an incorrect pointer, which can be exploited by ...
Multiple Huawei CloudEngine Products Duplicate Release Pointer Vulnerability
Huawei CloudEngine 12800 and others are products of Huawei, China.Huawei CloudEngine 12800 is a 12800 series data center switch.Huawei Cloudengine 5800 is a 5800 series data center switch.Huawei Cloudengine 6800 is a 6800 series data center switch. A duplicate pointer release vulnerability exists...
OpenLDAP Invalid Pointer Release Vulnerability
OpenLDAP is a free, open source implementation of the Lightweight Directory Access Protocol LDAP. An invalid pointer release vulnerability exists in OpenLDAP versions prior to 2.4.57. An attacker could exploit this vulnerability to cause a slapd crash in saslAuthzTo processing...
OpenLDAP 安全漏洞
OpenLDAP is a free, open source implementation of the Lightweight Directory Access Protocol LDAP. An invalid pointer release vulnerability exists in OpenLDAP versions prior to 2.4.57. An attacker could exploit this vulnerability to cause a slapd crash in saslAuthzTo processing...
MatrixSSL Invalid Pointer Release Vulnerability
MatrixSSL is an embedded, open source SSLv3 stack designed for small applications and devices. An invalid pointer release vulnerability exists in the DTLS server in versions prior to MatrixSSL 4.2.2 Open. An attacker could exploit this vulnerability via specially crafted incoming network messages...
Inside Secure MatrixSSL 缓冲区错误漏洞
MatrixSSL is an embedded, open source SSLv3 stack designed for small applications and devices. An invalid pointer release vulnerability exists in the DTLS server in versions prior to MatrixSSL 4.2.2 Open. An attacker could exploit this vulnerability via specially crafted incoming network messages...