Security
Headlines
HeadlinesLatestCVEs

Source

CVE

CVE-2014-125106: Protect against size_t overflows in pb_dec_bytes/pb_dec_string. · nanopb/nanopb@d2099cc

Nanopb before 0.3.1 allows size_t overflows in pb_dec_bytes and pb_dec_string.

CVE
Open in Source
#mac#dos#rce#buffer_overflow
CVE-2023-28295

Microsoft Publisher Remote Code Execution Vulnerability

CVE-2023-28287

Microsoft Publisher Remote Code Execution Vulnerability

CVE-2023-34459: Merge pull request from GHSA-wprv-93r4-jj2p · OpenZeppelin/openzeppelin-contracts@4d2383e

OpenZeppelin Contracts is a library for smart contract development. Starting in version 4.7.0 and prior to version 4.9.2, when the `verifyMultiProof`, `verifyMultiProofCalldata`, `procesprocessMultiProof`, or `processMultiProofCalldat` functions are in use, it is possible to construct merkle trees that allow forging a valid multiproof for an arbitrary set of leaves. A contract may be vulnerable if it uses multiproofs for verification and the merkle tree that is processed includes a node with value 0 at depth 1 (just under the root). This could happen inadvertedly for balanced trees with 3 leaves or less, if the leaves are not hashed. This could happen deliberately if a malicious tree builder includes such a node in the tree. A contract is not vulnerable if it uses single-leaf proving (`verify`, `verifyCalldata`, `processProof`, or `processProofCalldata`), or if it uses multiproofs with a known tree that has hashed leaves. Standard merkle trees produced or validated with the @openzepp...

CVE-2023-35788: security - Linux kernel: off-by-one in fl_set_geneve_opt

An issue was discovered in fl_set_geneve_opt in net/sched/cls_flower.c in the Linux kernel before 6.3.7. It allows an out-of-bounds write in the flower classifier code via TCA_FLOWER_KEY_ENC_OPTS_GENEVE packets. This may result in denial of service or privilege escalation.

CVE-2023-33438: CVEs/CVE-2023-33438/README.md at main · justas-dee/CVEs

A stored Cross-site scripting (XSS) vulnerability in Wolters Kluwer TeamMate+ 35.0.11.0 allows remote attackers to inject arbitrary web script or HTML.

CVE-2023-35790: Release v0.8.2 · libjxl/libjxl

An issue was discovered in dec_patch_dictionary.cc in libjxl before 0.8.2. An integer underflow in patch decoding can lead to a denial of service, such as an infinite loop.

CVE-2023-30905

The MC990 X and UV300 RMC component has and inadequate default configuration that could be exploited to obtain enhanced privilege.

CVE-2023-30904

A security vulnerability in HPE Insight Remote Support may result in the local disclosure of privileged LDAP information.

CVE-2023-30903

HP-UX could be exploited locally to create a Denial of Service (DoS) when any physical interface is configured with IPv6/inet6.