12 matches found
ROS-20250819-02
Vulnerability in dfeninorder component of virtuoso-opensource web application development platform is related to creation of special SQL statements. Exploitation of the vulnerability could allow an attacker acting remotely, allowing an attacker to cause a denial of service...
The vulnerability of the `postprocess_terminfo()` function in the `tinfo/parse_entry.c` component of the input/output control library for the Ncurses terminal emulator, related to buffer out-of-bounds writing, allows a malicious actor to cause a service failure.
The vulnerability of the postprocessterminfo function in the tinfo/parseentry.c component of the input/output control library for the Ncurses terminal emulator is related to writing beyond the buffer boundaries. Exploiting this vulnerability could allow a remote attacker to cause a service failur...
Ubuntu: Security Advisory (USN-6658-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
The vulnerability of the xen_free_irq() function in the drivers/xen/events/events_base.c module of the Xen hypervisor in the Linux operating system allows a malicious actor to cause a service failure.
The vulnerability of the xenfreeirq function in the driver/xen/events/eventsbase.c file of the Xen hypervisor in the Linux operating system is related to the occurrence of mutual locking. Exploiting this vulnerability could allow a remote attacker to cause a service failure...
The vulnerability in the implementation of the zipx_lzma_alone_init() function of the libarchive library allows a attacker to disclose protected information or cause service failures.
The vulnerability of the implementation of the zipxlzmaaloneinit function in the libarchive library is related to reading beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to disclose sensitive information or cause service failures...
The vulnerability of the exif_data_load_data_content function in the Android operating system, which allows a hacker to trigger a service failure
The vulnerability of the exifdataloaddatacontent function in the Android operating system is related to integer overflow. Exploiting this vulnerability could allow a remote attacker to cause a service failure...
OpenSSL Multiple Vulnerabilities (Nov 2017) - Windows
OpenSSL is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:openssl:openssl"; ifdescription...
Ruby on Rails Active Model Security Bypass Vulnerability (Jan 2016) - Linux
Ruby on Rails is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:rubyonrails:rails";...
Security Advisory - Buffer Overflow Vulnerability in Huawei USG Products
The Authentication, Authorization and Accounting AAA module in the USG products has a buffer overflow vulnerability. A remote attacker can send crafted Enterprise Application Platform EAP packets to the USG products through a Remote Authentication Dial In User Service RADIUS server which has...
wireshark: MEGACO dissector infinite loop (wnpa-sec-2014-13)
The tvbrawtextadd function in epan/dissectors/packet-megaco.c in the MEGACO dissector in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 allows remote attackers to cause a denial of service infinite loop via an empty line...
SQL Injection Vulnerability in Z-Vote
High-Tech Bridge SA Security Research Lab has discovered vulnerability in Z-Vote WordPress plugin which could be exploited to perform SQL injection attacks. 1 SQL injection vulnerability in Z-Vote The vulnerability exists due to input sanitation errors in the "zvote" parameter in zvote.php. A...
Apache 1.3.x < 1.3.42 mod_proxy Integer Overflow
According to its banner, the version of Apache 1.3.x running on the remote host is prior 1.3.42. It is, therefore, potentially affected by an integer overflow vulnerability in the modproxy Apache module. A remote attacker can exploit this to cause a denial of service condition or to execute...