Multiple Siemens Products Input Validation Error Vulnerability

Siemens SINAMICS PERFECT HARMONY GH180 is a high-voltage AC frequency converter from Siemens, Germany. An input validation error vulnerability exists in multiple Siemens products. The vulnerability originates from a network system or product that does not properly validate input data. An attacker...

Dovecot Input Validation Error Vulnerability (CNVD-2019-38866)

Dovecot is an open source based on Linux/UNIX-like systems IMAP and POP3 mail server . A security vulnerability exists in Dovecot. An attacker could exploit this vulnerability to cause a denial of service crash with specially crafted network traffic...

Apache Archiva Input Validation Error Vulnerability

Apache Archiva is a suite of software from the Apache USA Software Foundation for managing one or more remote repositories. The software provides features such as remote Repository agents, role-based secure access management, and usage reporting. An input validation error vulnerability exists in...

Apache Archiva Input Validation Error Vulnerability (CNVD-2019-26509)

Apache Archiva is a suite of software from the Apache USA Software Foundation for managing one or more remote repositories. The software provides features such as remote Repository agents, role-based secure access management, and usage reporting. An input validation error vulnerability in Apache...

Mozilla Firefox Input Validation Error Vulnerability

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. An input validation error vulnerability exists in versions of Mozilla Firefox prior to 64, which arises from a network system or product that does not properly validate incoming data. An attacker could...

Google Chrome Input Validation Error Vulnerability

Google Chrome is a web browser from Google, an American company. An input validation error vulnerability in Angle in versions prior to Google Chrome 74.0.3729.108 allows remote attackers to cause heap corruption via a crafted HTML page...

Fujifilm CR-IR 357 FCR Carbon X, FCR XC-2 and FCR Capsula X Input Validation Error Vulnerability

The Fujifilm CR-IR 357 FCR Carbon X, among others, is a radiological medical image reading device from Fujifilm, Japan. An input validation error vulnerability exists in Fujifilm CR-IR 357 FCR Carbon X, FCR XC-2, and FCR Capsula X. The vulnerability, which arises from a networked system or produc...

Multiple Rockwell Automation Products Input Validation Error Vulnerability

Rockwell Automation MicroLogix 1400 Controllers Series A and others are a programmable logic controller from Rockwell Automation. The input validation error vulnerability exists in multiple Rockwell Automation products and stems from a networked system or product that does not properly validate...

CVE-2019-1829

A vulnerability in the CLI of Cisco Aironet Series Access Points APs could allow an authenticated, local attacker to gain access to the underlying Linux operating system OS without the proper authentication. The attacker would need valid administrator device credentials. The vulnerability is due ...

Oracle Hospitality Applications Hospitality Cruise Dining Room Management Component Input Validation Error Vulnerability

Oracle Hospitality Applications is a suite of business applications, servers and storage solutions for hotel management from Oracle. The product provides human resources cost management, provide customer service throughout the journey tracking management to improve customer satisfaction and other...

Cisco Expressway Series and Cisco TelePresence Video Communication Server Input Validation Error Vulnerability

Cisco Expressway Series and Cisco TelePresence Video Communication Server VCS are both products of Cisco Corporation.Cisco Expressway Series is an advanced collaboration gateway for unified communications.Cisco TelePresence Video Communication Server is a video communication server. The Cisco...

Juniper Networks Identity Management Service Input Validation Error Vulnerability

Juniper Networks Identity Management Service JIMS is a network identity authentication management service from Juniper Networks, USA. The product is managed by collecting and mapping user and device information. An input validation error vulnerability exists in Juniper Networks JIMS versions prio...

lighttpd Input Validation Error Vulnerability

lighttpd is a German Jan Kneschke software developers of an open source Web server . An input validation error vulnerability exists in versions of lighttpd prior to 1.4.54. The vulnerability originates from a network system or product that does not properly validate incoming data. An attacker cou...

Microsoft Office Access Connectivity Engine Input Validation Error Vulnerability (CNVD-2019-27311)

Microsoft Office is a U.S. Microsoft Microsoft company's office software suite of products. Common components of the product include Word, Excel, Access, Powerpoint, FrontPage, etc. Office Access Connectivity Engine is one of the database connection engine. A remote code execution vulnerability...

Linux kernel input validation error vulnerability (CNVD-2019-38521)

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. An input validation error vulnerability exists in Linux kernel. An attacker could exploit this vulnerability to cause a denial of service...

Microsoft Office Access Connectivity Engine Input Validation Error Vulnerability

Microsoft Office is a U.S. Microsoft Microsoft company's office software suite of products. Common components of the product include Word, Excel, Access, Powerpoint, FrontPage, etc. Office Access Connectivity Engine is one of the database connection engine. An input validation error vulnerability...

Microsoft Office Access Connectivity Engine Input Validation Error Vulnerability (CNVD-2019-14273)

Microsoft Office is a U.S. Microsoft Microsoft company's office software suite of products. Common components of the product include Word, Excel, Access, Powerpoint, FrontPage, etc. Office Access Connectivity Engine is one of the database connection engine. An input validation error vulnerability...

WordPress wp-google-maps plugin input validation error vulnerability

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. wp-google-maps plugin is a Google Maps plugin used in it. An input validation error vulnerability exists in the...

The vulnerability of the Sanitize library for the Ruby programming language allows a hacker to circumvent the restrictions on the use of HTML attributes.

The vulnerability of the Sanitize library for the Ruby programming language is related to input validation errors. Exploiting this vulnerability could allow an attacker to circumvent the specified restrictions on the use of HTML attributes...

Design/Logic Flaw

An issue was discovered in PoDoFo 0.9.6. The PdfPagesTreeCache class in doc/PdfPagesTreeCache.cpp has an attempted excessive memory allocation because nInitialSize is not validated...