14 matches found
CLSA-2025-1757427840 mpfr: Fix of CVE-2014-9474
CVE-2014-9474: Fix of a buffer overflow due to incorrect GMP documentation for mpnsetstr...
CLSA-2025-1757409276 mpfr: Fix of CVE-2014-9474
CVE-2014-9474: Fix of a buffer overflow due to incorrect GMP documentation for mpnsetstr...
CVE-2023-48807
In TOTOLINK X6000R V9.4.0cu.852B20230719, the shttpd file, sub4119A0 function obtains fields from the front-end through Uci Set The Str function when passed to the CsteSystem function creates a command execution vulnerability...
TOTOLINK X6000R 安全漏洞
TOTOLINK X6000R is a wireless router from China's Gion Electronics TOTOLINK. A security vulnerability exists in the TOTOLINK X6000R, which stems from a failure to strictly filter the parameters of the UciSet Str function, and can be exploited by an attacker to execute arbitrary commands by...
In Go before 1.15.13 and 1.16.x before 1.16.5 there can be a panic for a large exponent to the math/big.Rat SetString or UnmarshalText method.
...
CVE-2023-48803
In TOTOLINK X6000R V9.4.0cu.852B20230719, the shttpd file, sub4119A0 function obtains fields from the front-end through Uci Set The Str function when passed to the CsteSystem function creates a command execution vulnerability...
PT-2023-7438 · Totolink · Totolink X6000R
Name of the Vulnerable Software and Affected Versions: TOTOLINK X6000R version 9.4.0cu.852 B20230719 Description: The issue is related to the sub 4119A0 function in the shttpd file, which obtains fields from the front-end through the Uci Set The Str function. When these fields are passed to the...
golang: math/big: uncontrolled memory consumption due to an unhandled overflow via Rat.SetString
A flaw was found in the big package of the math library in golang. The Rat.SetString could cause an overflow, and if left unhandled, it could lead to excessive memory use. This issue could allow a remote attacker to impact the availability of the system...
golang: math/big: uncontrolled memory consumption due to an unhandled overflow via Rat.SetString
A flaw was found in the big package of the math library in golang. The Rat.SetString could cause an overflow, and if left unhandled, it could lead to excessive memory use. This issue could allow a remote attacker to impact the availability of the system...
golang: math/big: uncontrolled memory consumption due to an unhandled overflow via Rat.SetString
A flaw was found in the big package of the math library in golang. The Rat.SetString could cause an overflow, and if left unhandled, it could lead to excessive memory use. This issue could allow a remote attacker to impact the availability of the system...
Integer Overflow or Wraparound
Overview std/math/big is a Go standard library package std/math/big Affected versions of this package are vulnerable to Integer Overflow or Wraparound. Go Vulnerability Report: Rat.SetString had an overflow issue that can lead to uncontrolled memory consumption. Remediation Upgrade std/math/big t...
golang: math/big: uncontrolled memory consumption due to an unhandled overflow via Rat.SetString
A flaw was found in the big package of the math library in golang. The Rat.SetString could cause an overflow, and if left unhandled, it could lead to excessive memory use. This issue could allow a remote attacker to impact the availability of the system...
CVE-2014-9474
Buffer overflow in the mpfrstrtofr function in GNU MPFR before 3.1.2-p11 allows context-dependent attackers to have unspecified impact via vectors related to incorrect documentation for mpnsetstr...
DEBIAN-CVE-2012-1012
server/serverstubs.c in the kadmin protocol implementation in MIT Kerberos 5 aka krb5 1.10 before 1.10.1 does not properly restrict access to 1 SETSTRING and 2 GETSTRINGS operations, which might allow remote authenticated administrators to modify or read string attributes by leveraging the global...