19 matches found
EUVD-2024-46787
Malicious code in bioql PyPI...
EUVD-2023-28538
Malicious code in bioql PyPI...
CVE-2023-24520
Two OS command injection vulnerability exist in the vtyshubus toolshexcute.constprop.1 functionality of Milesight UR32L v32.3.0.5. A specially-crafted network request can lead to command execution. An attacker can send a network request to trigger these vulnerabilities.This command injection is i...
PT-2025-8357 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A null pointer dereference issue has been identified in the Linux kernel. The problem occurs when the record variable is NULL before calling the osnoise init trace tool function. This...
CVE-2024-5602
A stack-based buffer overflow vulnerability due to a missing bounds check in the NI I/O Trace Tool may result in arbitrary code execution. Successful exploitation requires an attacker to provide a user with a specially crafted nitrace file. The NI I/O Trace tool is installed as part of the NI...
CVE-2024-5602
A stack-based buffer overflow vulnerability due to a missing bounds check in the NI I/O Trace Tool may result in arbitrary code execution. Successful exploitation requires an attacker to provide a user with a specially crafted nitrace file. The NI I/O Trace tool is installed as part of the NI...
CVE-2024-5602 Stack-based Buffer Overflow Vulnerability in NI I/O Trace Tool
A stack-based buffer overflow vulnerability due to a missing bounds check in the NI I/O Trace Tool may result in arbitrary code execution. Successful exploitation requires an attacker to provide a user with a specially crafted nitrace file. The NI I/O Trace tool is installed as part of the NI...
CVE-2024-5602 Stack-based Buffer Overflow Vulnerability in NI I/O Trace Tool
A stack-based buffer overflow vulnerability due to a missing bounds check in the NI I/O Trace Tool may result in arbitrary code execution. Successful exploitation requires an attacker to provide a user with a specially crafted nitrace file. The NI I/O Trace tool is installed as part of the NI...
NI I/O Trace Tool 安全漏洞
NI I/O Trace Tool National Instruments I/O Trace Tool is a utility program from National Instruments NI. It can be used to view ongoing VISA driver calls, parameters passed to the VISA driver calls, and results. A security vulnerability exists in NI I/O Trace Tool version 24.3 and earlier, which...
PT-2024-5245 · National Instruments · Ni I/O Trace Tool
Name of the Vulnerable Software and Affected Versions: NI I/O Trace Tool affected versions not specified Description: A stack-based buffer overflow vulnerability due to a missing bounds check in the NI I/O Trace Tool may result in arbitrary code execution. Successful exploitation requires an...
CVE-2023-24520
Two OS command injection vulnerability exist in the vtyshubus toolshexcute.constprop.1 functionality of Milesight UR32L v32.3.0.5. A specially-crafted network request can lead to command execution. An attacker can send a network request to trigger these vulnerabilities.This command injection is i...
CVE-2023-24520
Two OS command injection vulnerability exist in the vtyshubus toolshexcute.constprop.1 functionality of Milesight UR32L v32.3.0.5. A specially-crafted network request can lead to command execution. An attacker can send a network request to trigger these vulnerabilities.This command injection is i...
Command injection
Two OS command injection vulnerability exist in the vtyshubus toolshexcute.constprop.1 functionality of Milesight UR32L v32.3.0.5. A specially-crafted network request can lead to command execution. An attacker can send a network request to trigger these vulnerabilities.This command injection is i...
CVE-2023-24520
Two OS command injection vulnerability exist in the vtyshubus toolshexcute.constprop.1 functionality of Milesight UR32L v32.3.0.5. A specially-crafted network request can lead to command execution. An attacker can send a network request to trigger these vulnerabilities.This command injection is i...
CVE-2023-24520
Two OS command injection vulnerability exist in the vtyshubus toolshexcute.constprop.1 functionality of Milesight UR32L v32.3.0.5. A specially-crafted network request can lead to command execution. An attacker can send a network request to trigger these vulnerabilities.This command injection is i...
Intel VISA Tech Can Be Abused, Researchers Allege
UPDATE Researchers allege that a technology in Intel microchips could potentially be activated and abused by bad actors – giving them complete access to all data across an affected device. The Intel technology is called Visualization of Internal Signals Architecture VISA, and is used for...
Microsoft ATL/MFC跟踪工具'dwmapi.dll' DLL装载任意代码执行漏洞
Bugtraq ID: 42811 CVE ID:CVE-2010-3190 Microsoft Visual Studio是微软公司的开发工具套件系列产品,是一个基本完整的开发工具集,包括了软件整个生命周期中所需要的大部分工具。 Microsoft Visual Studio中使用的ATL MFC Trace Tool AtlTraceTool8.exe工具不安全装载'dwmapi.dll'库,攻击者可以诱使用户在远程WebDAV或SMB共享上打开 TRC,cu,rs,rc或res文件,可以以用户安全上下文装载任意库。 Microsoft Visual Studio 2010 0...
Microsoft Visual Studio Insecure Library Loading Vulnerability
Microsoft Visual Studio is prone to an insecure library loading vulnerability. This VT has been deprecated and replaced by the VT with the OID: 1.3.6.1.4.1.25623.1.0.900285. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are...
CVE-2010-3190
Untrusted search path vulnerability in the Microsoft Foundation Class MFC Library in Microsoft Visual Studio .NET 2003 SP1; Visual Studio 2005 SP1, 2008 SP1, and 2010; Visual C++ 2005 SP1, 2008 SP1, and 2010; and Exchange Server 2010 Service Pack 3, 2013, and 2013 allows local users to gain...