6583 matches found
CVE-2019-19587
In WSO2 Enterprise Integrator 6.5.0, reflected XSS occurs when updating the message processor configuration from the source view in the Management Console...
CVE-2012-1367
The MallocLite implementation in Cisco IOS 12.0, 12.2, 15.0, 15.1, and 15.2 allows remote attackers to cause a denial of service Route Processor crash via a BGP UPDATE message with a modified local-preference aka LOCALPREF attribute length, aka Bug ID CSCtq06538...
The vulnerability of Intel graphics processor microsoftware is related to an uncontrolled search path element, which allows a hacker to increase their privileges.
The vulnerability of Intel graphics processor microsoftware is related to an uncontrollable element in the search process. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of Intel graphics processor microsoftware, related to the execution of operations beyond buffer boundaries in memory, allows attackers to trigger system failures.
The vulnerability of Intel graphics processor microsoftware is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a system failure...
The vulnerability of Intel graphics processor microsoftware, related to the execution of operations beyond buffer boundaries in memory, allows attackers to disclose protected information.
The vulnerability of Intel graphics processor microsoftware is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to disclose protected information...
The vulnerability of Intel graphics processor microsoftware is related to an uncontrolled search path element, which allows a hacker to increase their privileges.
The vulnerability of Intel graphics processor microsoftware is related to an uncontrollable element in the search process. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of Microprogrammed Graphics Processor Software for Intel Data Center GPU Flex 140 and Intel Data Center GPU Flex 170, related to access control deficiencies, allows attackers to trigger service failures.
The vulnerability of Intel Data Center GPU Flex 140 and Intel Data Center GPU Flex 170 graphics processors is related to deficiencies in access control. Exploiting this vulnerability could allow attackers to cause service failures...
The vulnerability of Intel graphics processor microprogramming software, related to the swapping of a non-trusted pointer, allows attackers to increase their privileges.
The vulnerability of Intel graphics processor microprogramming software is related to the use of a non-trusted pointer. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of Intel graphics processor microprogramming software, related to deficiencies in access control, allows attackers to trigger a service failure.
The vulnerability of Intel graphics processor microsoftware is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to cause service failures...
The vulnerability of Intel graphics processor microprogramming software, related to pointer swapping, allows a hacker to trigger a service failure.
The vulnerability of Intel graphics processor microprogramming software is related to pointer manipulation. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of Intel graphics processor microsoftware, related to insufficient checking of input data, allows a hacker to trigger a service failure.
The vulnerability of Intel graphics processor microsoftware is related to insufficient testing of input data. Exploiting this vulnerability can allow attackers to cause system failures...
The vulnerability of Microprogrammed Graphics Processor Software for Intel Data Center GPU Flex 140 and Intel Data Center GPU Flex 170, related to access control deficiencies, allows attackers to trigger service failures.
The vulnerability of Intel Data Center GPU Flex 140 and Intel Data Center GPU Flex 170 graphics processors is related to deficiencies in access control. Exploiting this vulnerability could allow attackers to cause service failures...
CVE-2025-48060
jq is a command-line JSON processor. In versions up to and including 1.7.1, a heap-buffer-overflow is present in function jvstringvfmt in the jqfuzzexecute harness from oss-fuzz. This crash happens on file jv.c, line 1456 void p = mallocsz;. As of time of publication, no patched versions are...
CVE-2025-48060
CVE-2025-48060 affects jq up to version 1.7.1, where a heap-buffer-overflow in the jv_string_vfmt path can crash the process when formatting strings (OSS-Fuzz harness). The issue is triggered in jq_fuzz_execute and references malloc in jv.c. As of publication, no patch existed in the initial desc...
CVE-2025-48060
jq is a command-line JSON processor. In versions up to and including 1.7.1, a heap-buffer-overflow is present in function jvstringvfmt in the jqfuzzexecute harness from oss-fuzz. This crash happens on file jv.c, line 1456 void p = mallocsz;. As of time of publication, no patched versions are...
CVE-2025-48060 AddressSanitizer: stack-buffer-overflow in jq_fuzz_execute (jv_string_vfmt)
jq is a command-line JSON processor. In versions up to and including 1.7.1, a heap-buffer-overflow is present in function jvstringvfmt in the jqfuzzexecute harness from oss-fuzz. This crash happens on file jv.c, line 1456 void p = mallocsz;. As of time of publication, no patched versions are...
CVE-2025-48060
jq is a command-line JSON processor. In versions up to and including 1.7.1, a heap-buffer-overflow is present in function jvstringvfmt in the jqfuzzexecute harness from oss-fuzz. This crash happens on file jv.c, line 1456 void p = mallocsz;. As of time of publication, no patched versions are...
CVE-2025-48060 AddressSanitizer: stack-buffer-overflow in jq_fuzz_execute (jv_string_vfmt)
jq is a command-line JSON processor. In versions up to and including 1.7.1, a heap-buffer-overflow is present in function jvstringvfmt in the jqfuzzexecute harness from oss-fuzz. This crash happens on file jv.c, line 1456 void p = mallocsz;. As of time of publication, no patched versions are...
CVE-2025-48060 AddressSanitizer: stack-buffer-overflow in jq_fuzz_execute (jv_string_vfmt)
jq is a command-line JSON processor. In versions up to and including 1.7.1, a heap-buffer-overflow is present in function jvstringvfmt in the jqfuzzexecute harness from oss-fuzz. This crash happens on file jv.c, line 1456 void p = mallocsz;. As of time of publication, no patched versions are...
ALPINE-CVE-2024-23337
jq is a command-line JSON processor. In versions up to and including 1.7.1, an integer overflow arises when assigning value using an index of 2147483647, the signed integer limit. This causes a denial of service. Commit de21386681c0df0104a99d9d09db23a9b2a78b1e contains a patch for the issue...