CVE-2023-32273

CVE-2023-32273 affects TELLUS v4.0.15.0 and TELLUS Lite v4.0.15.0. It is a stack-based buffer overflow in parsing a SIM2 file, enabling information disclosure and/or arbitrary code execution. No patch/version details are provided in the documents; remediation is not specified.

CVE-2023-32201

Stack-based buffer overflow vulnerability exists in TELLUS v4.0.15.0 and TELLUS Lite v4.0.15.0. Opening a specially crafted SIM2 file may lead to information disclosure and/or arbitrary code execution. This vulnerability is different from CVE-2023-32538 and CVE-2023-32273...

CVE-2023-32276

CVE-2023-32276 describes a stack-based buffer overflow in Fuji Electric TELLUS v4.0.15.0 and TELLUS Lite v4.0.15.0. The root cause is improper validation of input length when processing a V8 file, which can lead to information disclosure and/or arbitrary code execution. The vulnerability affects ...

CVE-2023-32538

CVE-2023-32538 is a stack-based buffer overflow affecting Fuji Electric TELLUS v4.0.15.0 and TELLUS Lite v4.0.15.0. The vulnerability is triggered by opening a specially crafted SIM2 file and can lead to information disclosure and/or arbitrary code execution. The connected Red Hat advisories and ...

CVE-2023-32538

Stack-based buffer overflow vulnerability exists in TELLUS v4.0.15.0 and TELLUS Lite v4.0.15.0. Opening a specially crafted SIM2 file may lead to information disclosure and/or arbitrary code execution. This vulnerability is different from CVE-2023-32273 and CVE-2023-32201...

CVE-2023-31239

Stack-based buffer overflow vulnerability in V-Server v4.0.15.0 and V-Server Lite v4.0.15.0 and earlier allows an attacker to execute arbitrary code by having user open a specially crafted VPR file...

Datalogics Library Third-Party

1. EXECUTIVE SUMMARY CVSS v3 5.5 ATTENTION: Low attack complexity Vendor: Datalogics Equipment: Library APDFL v18.0.4PlusP1e Vulnerability: Stack-based buffer overflow 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to crash the device. 3. TECHNICAL...

EulerOS Virtualization 3.0.6.0 : vim (EulerOS-SA-2023-2251)

According to the versions of the vim packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Buffer Over-read in function grabfilename in GitHub repository vim/vim prior to 8.2.4956. This vulnerability is capable of crashing...

Amazon Linux 2 : glusterfs (ALAS-2023-2071)

The version of glusterfs installed on the remote host is prior to 3.12.2-18. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2071 advisory. In Gluster GlusterFS 11.0, there is an xlators/mount/fuse/src/fuse-bridge.c notify stack-based buffer over-read. CVE-2023-26253...

CVE-2023-25177

Delta Electronics' CNCSoft-B DOPSoft versions 1.0.0.4 and prior are vulnerable to stack-based buffer overflow, which could allow an attacker to execute arbitrary code...

Stack overflow

Delta Electronics' CNCSoft-B DOPSoft versions 1.0.0.4 and prior are vulnerable to stack-based buffer overflow, which could allow an attacker to execute arbitrary code...

CVE-2023-25177

CVE-2023-25177 affects Delta Electronics CNCSoft-B DOPSoft (HMI). The root cause is a stack-based buffer overflow in the DOPSoft/DPA file parsing, affecting versions prior to 4.0.0.82. Successful exploitation could allow arbitrary code execution. Some advisories note remote code execution requiri...

CVE-2023-1709

Summary of CVE-2023-1709 (Datalogics APDFL) : The vulnerability affects the Datalogics Library APDFL, version 18.0.4PlusP1e and prior. It is a stack-based buffer overflow triggered by documents containing corrupted fonts, which could cause an unhandled crash during rendering. The associated Red H...

CVE-2023-1709 Datalogics Library APDFL Stack-based Buffer Overflow

Datalogics Library APDFLThe v18.0.4PlusP1e and prior contains a stack-based buffer overflow due to documents containing corrupted fonts, which could allow an attack that causes an unhandled crash during the rendering process...

Huawei EulerOS: Security Advisory for vim (EulerOS-SA-2023-2132)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS Virtualization 2.11.1 : vim (EulerOS-SA-2023-2080)

According to the versions of the vim packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0483. CVE-2022-3234 - Use After Free in GitHub repository vim/v...

Huawei EulerOS: Security Advisory for vim (EulerOS-SA-2023-2080)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS Virtualization 2.11.0 : vim (EulerOS-SA-2023-2132)

According to the versions of the vim packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0483. CVE-2022-3234 - Use After Free in GitHub repository vim/v...

CVE-2023-29503

The affected application lacks proper validation of user-supplied data when parsing project files e.g., CSP. This could lead to a stack-based buffer overflow. An attacker could leverage this vulnerability to execute arbitrary code in the context of the current process...

CVE-2023-29503

Summary of CVE-2023-29503 (Horner Automation Cscape/Cscape EnvisionRV) Quellen confirm a stack-based buffer overflow caused by improper validation of user-supplied data when parsing project files (e.g., CSP). Affected products include Horner Automation Cscape (v9.90 SP8) and Cscape EnvisionRV (v4...