5309 matches found
Treck TCP/IP ARP Component Input Validation Error Vulnerability
Treck TCP/IP is a suite of TCP Transmission Control Protocol/IP Internet Interconnection Protocol from Treck, Inc. dedicated to embedded systems. An input validation error vulnerability exists in the Treck TCP/IP ARP component. An attacker could exploit the vulnerability to cause an out-of-bounds...
Treck IPv6 stack input validation error vulnerability
Treck TCP/IP is a suite of TCP Transmission Control Protocol/IP Internet Interconnection Protocol from Treck, Inc. dedicated to embedded systems. An input validation error vulnerability exists in the Treck IPv6 stack. The vulnerability arises from a network system or product that does not properl...
Huawei FusionAccess Input Validation Error Vulnerability
Huawei FusionAccess is a virtual desktop application based on Huawei Cloud Platform from Huawei China. An input validation error vulnerability exists in Huawei FusionAccess versions prior to 6.5.1.SPC002, which stems from insufficient validation of specific input by the program. An attacker can...
Redis Labs Redis Input Validation Error Vulnerability
Redis Labs Redis is the United States Redis Labs, Inc. of a set of open-source use of ANSI C written to support the network , can be based on the memory can also be a persistent log-type , key-value Key-Value storage database , and provides a variety of languages API. An input validation error...
libEMF Input Validation Error Vulnerability
libEMF is a library for generating enhanced metafiles. An input validation error vulnerability exists in the ScaleViewPortExtEx of the libemf.cpp file in libEMF version 1.0.12. An attacker can exploit this vulnerability to cause a denial of service with a specially crafted EMF file...
WordPress Input Validation Error Vulnerability (CNVD-2021-24380)
WordPress is a set of blogging platforms developed using the PHP language by the WordPress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. An input validation error vulnerability exists in WordPress that originates from a web system or product that...
Multiple Rockwell Automation Products Input Validation Error Vulnerability
Rockwell Automation RSLinx Classic is an industrial communications solution.Rockwell Automation RSLinx Classic is an industrial communications solution.Rockwell Automation FactoryTalk Linx is an industrial communications solution.Rockwell Automation ControlFLASH is a firmware update...
Intel CSME Input Validation Error Vulnerability
Intel Converged Security and Management Engine CSME is a security management engine from Intel Corporation USA. An input validation error vulnerability exists in the DAL subsystem in Intel CSME. An attacker could exploit this vulnerability to cause a denial of service...
cd-messenger input validation error vulnerability
cd-messenger is a console and file recorder with Gulp automated build tool support by American software developer Mike Erickson. An input validation error vulnerability exists in cd-messenger 2.7.26 and earlier versions, which stems from the 'eval' function executing user input passed to the...
Intel AMT Input Validation Error Vulnerability (CNVD-2020-34704)
Intel Active Management Technology AMT is a set of hardware-based computer remote active management technology software from Intel Intel. An input validation error vulnerability exists in Intel AMT. An attacker could exploit this vulnerability to cause a denial of service...
Intel AMT Input Validation Error Vulnerability (CNVD-2020-35710)
Intel Active Management Technology AMT is a set of hardware-based computer remote active management technology software from Intel Intel. An input validation error vulnerability exists in a subsystem within Intel AMT. An attacker could exploit this vulnerability to cause a denial of service or...
Intel AMT Input Validation Error Vulnerability (CNVD-2020-34705)
Intel Active Management Technology AMT is a set of hardware-based computer remote active management technology software from Intel Intel. An input validation error vulnerability exists in Intel AMT. An attacker could exploit this vulnerability to cause a denial of service...
Linux kernel input validation error vulnerability (CNVD-2020-36521)
Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. An input validation error vulnerability exists in the drivers/tty/vt/keyboard.c file in Linux kernel 5.7.1 and earlier. A local attacker could exploit this vulnerabili...
LibreOffice Input Validation Error Vulnerability (CNVD-2020-35943)
LibreOffice is an open source office software suite from The Document Foundation TDF. The product includes applications such as Writer text documents, Calc spreadsheets and Impress presentations. A security vulnerability exists in LibreOffice versions prior to 6.4.4. An attacker can exploit the...
Zephyr Input Validation Error Vulnerability (CNVD-2020-35963)
Zephyr is an open source, small, scalable real-time operating system from the Linux Foundation. An input validation error vulnerability exists in Zephyr version 2.2.0 and later fixed in version 2.3.0. An attacker can exploit this vulnerability to cause a denial of service with arbitrary CoAP...
Cheetah free wifi input validation error vulnerability
Cheetah free wifi is a calculator wireless network sharing software from China Cheetah Mobile Cheetah. An input validation error vulnerability exists in the liebaonat.sys file in Cheetah free wifi version 5.1, which originates from the program not validating the input value of IOCtl 0x830020f8,...
Elliptic package input validation error vulnerability
Elliptic package is a JavaScript-based elliptic curve cryptographic library. A security vulnerability exists in Elliptic package version 6.5.2 Node.js. An attacker can exploit the vulnerability to elevate privileges...
ntp input validation error vulnerability
Network Time Protocol NTP, Network Time Protocol is a network protocol that synchronizes the clocks of two computers by exchanging packets. A security vulnerability exists in ntpd in versions prior to ntp 4.2.8p14 and 4.3.100 prior to 4.3.x. A remote attacker could exploit this vulnerability by...
bind: A logic error in code which checks TSIG validity can be used to trigger an assertion failure in tsig.c
An assertion failure was found in BIND, which checks the validity of messages containing TSIG resource records. This flaw allows an attacker that knows or successfully guesses the name of the TSIG key used by the server to use a specially-crafted message, potentially causing a BIND server to reac...
Google Android Media Framework Input Validation Error Vulnerability (CNVD-2020-34462)
Android is a Linux-based open source operating system from Google and the Open Handset Alliance OHA in the U.S. Media Framework is one of the multimedia development frameworks. A security vulnerability exists in Media Framework in Android version 10.0. An attacker could exploit this vulnerability...