Insyde InsydeH2O 缓冲区错误漏洞

Insyde InsydeH2O is a C-language source from Insyde Corporation of Taiwan that implements the new technology "EFI/UEFI" specification, designed to replace the traditional BIOS Basic Input/Output System. A security vulnerability exists in Insyde InsydeH2O 5.0 to 5.5, which stems from the use of...

kernel: BPF: Fix potential bad pointer dereference in bpf_sys_bpf()

In the Linux kernel, the following vulnerability has been resolved: BPF: Fix potential bad pointer dereference in bpfsysbpf The bpfsysbpf helper function allows an eBPF program to load another eBPF program from within the kernel. In this case the argument union bpfattr pointer as well as the insn...

PT-2022-26447 · Unknown · Openharmony

Name of the Vulnerable Software and Affected Versions: OpenHarmony versions 3.1.2 and prior OpenHarmony versions 3.0.6 and prior Description: The issue is related to a Kernel memory pool override vulnerability in the /dev/mmz userdev device driver. The impact depends on the privileges of the...

CVE-2022-41177

Due to lack of proper memory management, when a victim opens a manipulated Iges Part and Assembly .igs, .iges, CoreCadTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload force...

CVE-2022-38138

The Triangle Microworks IEC 61850 Library Any client or server using the C language library with a version number of 11.2.0 or earlier and any client or server using the C++, C, or Java language library with a version number of 5.0.1 or earlier and 60870-6 ICCP/TASE.2 Library Any client or server...

CVE-2022-38138

The CVE-2022-38138 vulnerability affects Triangle Microworks IEC 61850 Library (C: 11.2.0 and earlier) and IEC 60870-6 ICCP/TASE.2 Library (C++: 4.4.3 and earlier); as well as the C++, C#, or Java variants (5.0.1 and earlier). Root cause: access to a small set of uninitialized pointers in the lib...

PT-2022-25708 · Sap · Sap 3D Visual Enterprise Author

Name of the Vulnerable Software and Affected Versions: SAP 3D Visual Enterprise Author version 9 Description: The issue is caused by a lack of proper memory management. When a victim opens a manipulated Visual Design Stream .vds, MataiPersistence.dll file from untrusted sources, it can trigger a...

DEBIAN-CVE-2022-2785

There exists an arbitrary memory read within the Linux Kernel BPF - Constants provided to fill pointers in structs passed in to bpfsysbpf are not verified and can point anywhere, including memory not owned by BPF. An attacker with CAPBPF can arbitrarily read memory from anywhere on the system. We...

UBUNTU-CVE-2022-2785

There exists an arbitrary memory read within the Linux Kernel BPF - Constants provided to fill pointers in structs passed in to bpfsysbpf are not verified and can point anywhere, including memory not owned by BPF. An attacker with CAPBPF can arbitrarily read memory from anywhere on the system. We...

Linux kernel 缓冲区错误漏洞

The Linux kernel is an open source Unix-like operating system macro kernel for efficient resource management. A security vulnerability exists in the Linux Kernel where constants used to populate pointers in structures passed to bpfsysbpf are unverified and can point anywhere, and an attacker with...

Ansys SpaceClaim 缓冲区错误漏洞

Ansys SpaceClaim is a solid modeling CAD software from Ansys Corporation. A security vulnerability exists in Ansys SpaceClaim 2022 R1, which arises from the parsing of XB files that are not properly initialized before accessing pointers, allowing an attacker to execute code in the context of the...

多款Triangle Microworks产品缓冲区错误漏洞

Triangle Microworks TMW IEC 61850 Software Library and Triangle Microworks TMW IEC 60870-6 ICCP/TASE.2 Software Library are both SCADA communication protocol software libraries from Triangle Microworks, Inc. Triangle Microworks TMW IEC 60870-6 ICCP/TASE.2 Software Library are SCADA communication...

Measuresoft ScadaPro Server and Client 安全漏洞

Measuresoft ScadaPro Server and Client is a powerful real-time data acquisition software package from Measuresoft Ireland. It provides monitoring, data logging, simulation development and report generation. A security vulnerability exists in Measuresoft ScadaPro Server and Client, which stems fro...

OESA-2022-1755 nodejs-jsonpointer security update

Simple JSON Addressing. Security Fixes: This affects the package jsonpointer before 5.0.0. A type confusion vulnerability can lead to a bypass of a previous Prototype Pollution fix when the pointer components are arrays.CVE-2021-23807...

HUAWEI EMUI information leakage vulnerability

HUAWEI EMUI is an Android-based mobile operating system developed by China's Huawei HUAWEI. version 12.0.0 of HUAWEI EMUI has an information disclosure vulnerability that stems from the improper use of pointers during data transfer in the video framework, which is used by attackers to affect devi...

CVE-2021-40012

Vulnerability of pointers being incorrectly used during data transmission in the video framework. Successful exploitation of this vulnerability may affect confidentiality...

CVE-2021-40012

Vulnerability of pointers being incorrectly used during data transmission in the video framework. Successful exploitation of this vulnerability may affect confidentiality...

Design/Logic Flaw

Vulnerability of pointers being incorrectly used during data transmission in the video framework. Successful exploitation of this vulnerability may affect confidentiality...

CVE-2021-40012

CVE-2021-40012 affects Huawei EMUI (notably EMUI 12.x) via the video framework where pointers are improperly used during data transmission, exposing confidentiality. Root cause: incorrect handling of pointers in the data transfer path within the video framework. Impact: information disclosure pot...

CVE-2021-40012

Vulnerability of pointers being incorrectly used during data transmission in the video framework. Successful exploitation of this vulnerability may affect confidentiality...