6890 matches found
ASB-A-261068592
In gattendoperation of gattutils.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation...
Medium: opensc
Issue Overview: A heap use after free issue was found in Opensc before version 0.22.0 in scfilevalid. CVE-2021-42779 A use after return issue was found in Opensc before version 0.22.0 in insertpin function that could potentially crash programs using the library. CVE-2021-42780 Heap buffer overflo...
CVE-2023-0972
Description: A vulnerability in SiLabs Z/IP Gateway 7.18.01 and earlier allows an unauthenticated attacker within Z-Wave range to overflow a stack buffer, leading to arbitrary code execution...
CVE-2023-3110
Description: A vulnerability in SiLabs Unify Gateway 1.3.1 and earlier allows an unauthenticated attacker within Z-Wave range to overflow a stack buffer, leading to arbitrary code execution...
CVE-2023-3110
Description: A vulnerability in SiLabs Unify Gateway 1.3.1 and earlier allows an unauthenticated attacker within Z-Wave range to overflow a stack buffer, leading to arbitrary code execution...
Design/Logic Flaw
Description: A vulnerability in SiLabs Z/IP Gateway 7.18.01 and earlier allows an unauthenticated attacker within Z-Wave range to overflow a stack buffer, leading to arbitrary code execution...
Design/Logic Flaw
Description: A vulnerability in SiLabs Unify Gateway 1.3.1 and earlier allows an unauthenticated attacker within Z-Wave range to overflow a stack buffer, leading to arbitrary code execution...
CVE-2023-3110
CVE-2023-3110 affects SiLabs Unify Gateway versions 1.3.1 and earlier. The vulnerability is a stack buffer overflow in S0 decryption that can allow an unauthenticated attacker within Z‑Wave range to achieve arbitrary code execution. Public details consistently cite the affected software as Unify ...
CVE-2023-0972
CVE-2023-0972 describes a stack-buffer overflow in Silicon Labs Z/IP Gateway (versions 7.18.01 and earlier) that can be exploited by an unauthenticated attacker within Z‑Wave range to achieve arbitrary code execution. The connected documentation consistently ties the issue to Z‑Wave end-device ex...
CVE-2023-0972 Buffer overflow in S0 Decryption on Z/IP Gatweay
Description: A vulnerability in SiLabs Z/IP Gateway 7.18.01 and earlier allows an unauthenticated attacker within Z-Wave range to overflow a stack buffer, leading to arbitrary code execution...
Debian dla-3463 : opensc - security update
The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3463 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3463-1 [email protected]...
OSV-2023-497 Stack-buffer-overflow in parse_regex
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=59907 Crash type: Stack-buffer-overflow READ 1 Crash state: parseregex parseregex parseregex...
PT-2023-35874 · Git +1 · Clamav
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a stack-buffer-overflow read error. The crash state indicates repeated calls to the parse regex function, suggesting a potential...
OSV-2022-1276 Stack-buffer-overflow in ntlm_phase_3
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=59818 Crash type: Stack-buffer-overflow WRITE 1 Crash state: ntlmphase3 establishhttpproxypassthru fuzzproxy.c...
CVE-2022-28550
Matthias-Wandel/jhead jhead 3.06 is vulnerable to Buffer Overflow via shellescape, jhead.c, jhead. jhead copies strings to a stack buffer when it detects a &i or &o. However, jhead does not check the boundary of the stack buffer. As a result, there will be a stack buffer overflow problem when...
AutoDesk: CVE-2023-27910 stack buffer overflow vulnerability in Autodesk® FBX® SDK 2020 or prior
...
CVE-2022-28550
CVE-2022-28550 affects JHead 3.06. The vulnerability is a stack buffer overflow caused by copying into a fixed-size stack buffer when processing shellescape(), specifically when handling multiple &i or &o values; boundary checks on the stack buffer are missing. Reports across OSV, NVD, and Nessus...
CVE-2022-28550
Matthias-Wandel/jhead jhead 3.06 is vulnerable to Buffer Overflow via shellescape, jhead.c, jhead. jhead copies strings to a stack buffer when it detects a &i or &o. However, jhead does not check the boundary of the stack buffer. As a result, there will be a stack buffer overflow problem when...
CVE-2022-28550
Matthias-Wandel/jhead jhead 3.06 is vulnerable to Buffer Overflow via shellescape, jhead.c, jhead. jhead copies strings to a stack buffer when it detects a &i or &o. However, jhead does not check the boundary of the stack buffer. As a result, there will be a stack buffer overflow problem when...
OSV-2023-467 Stack-buffer-overflow in SetPitchGradient
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=59636 Crash type: Stack-buffer-overflow WRITE 1 Crash state: SetPitchGradient calcpitches CalcPitches...