16 matches found
Astra Linux - уязвимость в mariadb-10.3
It has been discovered that MariaDB Server v10.6.3 and earlier contain a use-after-free in the VDec::VDec component at /sql/sqltype.cc...
EUVD-2023-24988
Malicious code in bioql PyPI...
CVE-2024-20092
In vdec, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09028313; Issue ID: MSV-1700...
CVE-2024-20093
In vdec, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09028313; Issue ID: MSV-1699...
CVE-2024-20124
In vdec, there is a possible out of bounds read due to improper structure design. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09008925; Issue ID: MSV-1568...
CVE-2024-20125
In vdec, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained System privileges. User interaction is not needed for exploitation. Patch ID: ALPS09046782; Issue ID: MSV-1728...
CVE-2023-20684
In vdec, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07671069; Issue ID: ALPS07671069...
PT-2025-15169 · Vdec · Vdec
Name of the Vulnerable Software and Affected Versions: vdec affected versions not specified Description: The issue is related to a possible permission bypass due to improper input validation in vdec. This could lead to local escalation of privilege if a malicious actor has already obtained the...
PT-2024-18603 · Vdec · Vdec
Name of the Vulnerable Software and Affected Versions: vdec affected versions not specified Description: The issue is related to an out of bounds read in vdec due to improper structure design, which could lead to local information disclosure. System execution privileges are needed for exploitatio...
PT-2024-18610 · Vdec · Vdec
Name of the Vulnerable Software and Affected Versions: vdec affected versions not specified Description: The issue is related to a possible out of bounds read in vdec due to improper structure design, which could lead to local information disclosure. System execution privileges are needed for...
PT-2024-18609 · Vdec · Vdec
Name of the Vulnerable Software and Affected Versions: vdec affected versions not specified Description: The issue is related to a possible out of bounds read in vdec due to improper structure design, which could lead to local information disclosure. System execution privileges are needed for...
PT-2024-18611 · Vdec · Vdec
Name of the Vulnerable Software and Affected Versions: vdec affected versions not specified Description: The issue is related to a possible out of bounds read in vdec due to improper structure design, which could lead to local information disclosure. System execution privileges are needed for...
CVE-2024-20092
In vdec, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09028313; Issue ID: MSV-1700...
PT-2024-18577 · Mediatek · Mediatek
Name of the Vulnerable Software and Affected Versions: MediaTek products affected versions not specified Description: The issue is related to a possible out of bounds write in vdec due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges...
CVE-2024-20086
In vdec, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08932916; Issue ID: MSV-1551...
CVE-2023-20685
In vdec, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07608575; Issue ID: ALPS07608575...