CWE:
 

Topic
Date
Author
High
Google SketchUp lib3ds 3DS Importer Memory Corruption
18.01.2010
CORE


CVEMAP Search Results

CVE
Details
Description
2020-01-16
Medium
CVE-2020-7039

Vendor: Libslirp project
Software: Libslirp
 

 
tcp_emu in tcp_subr.c in libslirp 4.1.0, as used in QEMU 4.2.0, mismanages memory, as demonstrated by IRC DCC commands in EMU_IRC. This can cause a heap-based buffer overflow or other out-of-bounds access which can lead to a DoS or potential execute arbitrary code.

 
2020-01-14
Medium
CVE-2020-7054

Vendor: Mz-automation
Software: Libiec61850
 

 
MmsValue_decodeMmsData in mms/iso_mms/server/mms_access_result.c in libIEC61850 through 1.4.0 has a heap-based buffer overflow when parsing the MMS_BIT_STRING data type.

 
Low
CVE-2019-13722

Updating...
 

 
Inappropriate implementation in WebRTC in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

 
Medium
CVE-2019-13537

Updating...
 

 
The IEC870IP driver for AVEVA?s Vijeo Citect and Citect SCADA and Schneider Electric?s Power SCADA Operation has a buffer overflow vulnerability that could result in a server-side crash.

 
2020-01-13
Medium
CVE-2020-6851

Vendor: Openjpeg
Software: Openjpeg
 

 
OpenJPEG through 2.3.1 has a heap-based buffer overflow in opj_t1_clbl_decode_processor in libopenjp2.so.

 
Medium
CVE-2020-6860

Vendor: Symonics
Software: Libmysofa
 

 
libmysofa 0.9.1 has a stack-based buffer overflow in readDataVar in hdf/dataobject.c during the reading of a header message attribute.

 
2020-01-11
Medium
CVE-2020-6839

Vendor: Mruby
Software: Mruby
 

 
In mruby 2.1.0, there is a stack-based buffer overflow in mrb_str_len_to_dbl in string.c.

 
2020-01-08
Medium
CVE-2014-2072

Vendor: 3DS
Software: Catia
 

 
Dassault Systemes Catia V5-6R2013: Stack Buffer Overflow due to inadequate boundary checks

 
High
CVE-2014-1598

Vendor: Centurystar project
Software: Centurystar
 

 
centurystar 7.12 ActiveX Control has a Stack Buffer Overflow

 
Medium
CVE-2019-5082

Updating...
 

 
An exploitable heap buffer overflow vulnerability exists in the iocheckd service I/O-Check functionality of WAGO PFC200 Firmware version 03.01.07(13), WAGO PFC200 Firmware version 03.00.39(12), and WAGO PFC100 Firmware version 03.00.39(12). A specially crafted set of packets can cause a heap buffer overflow, potentially resulting in code execution. An attacker can send unauthenticated packets to trigger this vulnerability.

 

 


Copyright 2020, cxsecurity.com

 

Back to Top