18 matches found
CVE-2021-47719
COMMAX WebViewer ActiveX Control 2.1.4.5 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by providing excessively long string arrays through multiple functions. Attackers can exploit boundary errors in CommaxWebViewer.ocx to cause buffer overflow condition...
EUVD-2021-34726
COMMAX WebViewer ActiveX Control 2.1.4.5 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by providing excessively long string arrays through multiple functions. Attackers can exploit boundary errors in CommaxWebViewer.ocx to cause buffer overflow condition...
CVE-2021-47719
COMMAX WebViewer ActiveX Control 2.1.4.5 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by providing excessively long string arrays through multiple functions. Attackers can exploit boundary errors in CommaxWebViewer.ocx to cause buffer overflow condition...
CVE-2021-47719 CNC_Ctrl DllUnregisterServer f5501 Access Violation
COMMAX WebViewer ActiveX Control 2.1.4.5 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by providing excessively long string arrays through multiple functions. Attackers can exploit boundary errors in CommaxWebViewer.ocx to cause buffer overflow condition...
CVE-2021-47719 CNC_Ctrl DllUnregisterServer f5501 Access Violation
COMMAX WebViewer ActiveX Control 2.1.4.5 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by providing excessively long string arrays through multiple functions. Attackers can exploit boundary errors in CommaxWebViewer.ocx to cause buffer overflow condition...
CVE-2021-47719
CVE-2021-47719 affects COMMAX WebViewer ActiveX Control 2.1.4.5. The root cause is a buffer overflow in Commax_WebViewer.ocx triggered by processing excessively long string arrays across multiple functions, enabling potentially arbitrary code execution. Documents consistently describe boundary er...
CVE-2021-47705
The vulnerability CVE-2021-47705 affects COMMAX UMS Client ActiveX Control 1.7.0.2. The root cause is a heap-based buffer overflow in CNC_Ctrl.dll, resulting from improper boundary validation. An attacker can supply excessively long string arrays through multiple functions to trigger heap corrupt...
PT-2025-50235
Name of the Vulnerable Software and Affected Versions COMMAX UMS Client ActiveX Control version 1.7.0.2 Description The COMMAX UMS Client ActiveX Control contains a heap-based buffer overflow issue. An attacker can execute arbitrary code by supplying overly long string arrays through multiple...
PT-2025-50243
Name of the Vulnerable Software and Affected Versions COMMAX WebViewer ActiveX Control version 2.1.4.5 Description The COMMAX WebViewer ActiveX Control contains a buffer overflow issue. An attacker can execute arbitrary code by supplying overly long string arrays through multiple functions...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a lack of NULL checking of string arrays in ALSA usb scarlett2, which could lead to null pointer dereferenci...
Distribution 安全漏洞
Distribution is Distribution's individual developer's toolset for packaging, shipping, storing, and delivering content. A security vulnerability exists in Distribution that stems from allowing a malicious user to submit unreasonable values, resulting in the allocation of large arrays of strings...
CVE-2019-13418
Search Guard versions before 24.0 had an issue that values of string arrays in documents are not properly anonymized...
CVE-2019-13418
Search Guard versions before 24.0 had an issue that values of string arrays in documents are not properly anonymized...
CVE-2019-13418
Search Guard versions before 24.0 had an issue that values of string arrays in documents are not properly anonymized...
Input validation
Search Guard versions before 24.0 had an issue that values of string arrays in documents are not properly anonymized...
CVE-2019-13418
Search Guard versions before 24.0 had an issue that values of string arrays in documents are not properly anonymized...
CVE-2019-13418
CVE-2019-13418 concerns floragunn Search Guard (for Elasticsearch/ELK) prior to version 24.0, where string-array values in documents were not properly anonymized. The underlying issue affects confidentiality, as sensitive data could be exposed due to inadequate anonymization. Public references fr...
PT-2019-13330 · Floragunn · Search Guard
Name of the Vulnerable Software and Affected Versions: Search Guard versions prior to 24.0 Description: The issue concerns the improper anonymization of string array values in documents. This affects the confidentiality of the data, as sensitive information may not be properly protected...