CWE:
 

Nic nie znaleziono w bazie WLB2


Common Weakness Enumeration (CWE)

CVE
Szczegóły
Opis
2022-06-24
Low
CVE-2022-32141

Vendor: Codesys
Software: Runtime toolkit
 

 
Multiple CODESYS Products are prone to a buffer over read. A low privileged remote attacker may craft a request with an invalid offset, which can cause an internal buffer over-read, resulting in a denial-of-service condition. User interaction is not required.

 
2022-06-23
Medium
CVE-2022-2175

Vendor: VIM
Software: VIM
 

 
Buffer Over-read in GitHub repository vim/vim prior to 8.2.

 
2022-06-19
Medium
CVE-2022-2124

Vendor: VIM
Software: VIM
 

 
Buffer Over-read in GitHub repository vim/vim prior to 8.2.

 
2022-04-07
Waiting for details
CVE-2022-22519

Updating...
 

 
A remote, authenticated attacker can send a specific crafted HTTP or HTTPS requests causing a buffer over-read resulting in a crash of the webserver and the CODESYS Control runtime system.

 
2021-10-26
Medium
CVE-2021-34584

Vendor: Codesys
Software: Codesys
 

 
Crafted web server requests can be utilised to read partial stack or heap memory or may trigger a denial-of- service condition due to a crash in the CODESYS V2 web server prior to V1.1.9.22.

 
2021-03-24
High
CVE-2021-1373

Vendor: Cisco
Software: Ios xe
 

 
A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE Wireless Controller Software for the Cisco Catalyst 9000 Family Wireless Controllers could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition of an affected device. The vulnerability is due to insufficient validation of CAPWAP packets. An attacker could exploit this vulnerability by sending a malformed CAPWAP packet to an affected device. A successful exploit could allow the attacker to cause the affected device to crash and reload, resulting in a DoS condition.

 

 


Copyright 2022, cxsecurity.com

 

Back to Top