Filtered by vendor Fisglobal Subscriptions
Total 28 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2021-44488 2 Fisglobal, Yottadb 2 Gt.m, Yottadb 2024-11-21 9.1 Critical
An issue was discovered in YottaDB through r1.32 and V7.0-000. Using crafted input, attackers can control the size and input to calls to memcpy in op_fnfnumber in sr_port/op_fnfnumber.c in order to corrupt memory or crash the application.
CVE-2021-44487 2 Fisglobal, Yottadb 2 Gt.m, Yottadb 2024-11-21 7.5 High
An issue was discovered in YottaDB through r1.32 and V7.0-000. A lack of NULL checks in calls to ious_open in sr_unix/ious_open.c allows attackers to crash the application by dereferencing a NULL pointer.
CVE-2021-44486 2 Fisglobal, Yottadb 2 Gt.m, Yottadb 2024-11-21 9.8 Critical
An issue was discovered in YottaDB through r1.32 and V7.0-000. Using crafted input, attackers can manipulate the value of a function pointer used in op_write in sr_port/op_write.c in order to gain control of the flow of execution.
CVE-2021-44485 2 Fisglobal, Yottadb 2 Gt.m, Yottadb 2024-11-21 7.5 High
An issue was discovered in YottaDB through r1.32 and V7.0-000. A lack of NULL checks in trip_gen in sr_port/emit_code.c allows attackers to crash the application by dereferencing a NULL pointer.
CVE-2021-44484 2 Fisglobal, Yottadb 2 Gt.m, Yottadb 2024-11-21 7.5 High
An issue was discovered in YottaDB through r1.32 and V7.0-000. A lack of NULL checks in calls to emit_trip in sr_port/emit_code.c allows attackers to crash the application by dereferencing a NULL pointer.
CVE-2021-44483 2 Fisglobal, Yottadb 2 Gt.m, Yottadb 2024-11-21 7.5 High
An issue was discovered in YottaDB through r1.32 and V7.0-000. A lack of input validation in calls to eb_div in sr_port/eb_muldiv.c allows attackers to crash the application by performing a divide by zero.
CVE-2021-44482 2 Fisglobal, Yottadb 2 Gt.m, Yottadb 2024-11-21 7.5 High
An issue was discovered in YottaDB through r1.32 and V7.0-000. A lack of input validation in calls to do_verify in sr_unix/do_verify.c allows attackers to attempt to jump to a NULL pointer by corrupting a function pointer.
CVE-2021-44481 2 Fisglobal, Yottadb 2 Gt.m, Yottadb 2024-11-21 7.5 High
An issue was discovered in YottaDB through r1.32 and V7.0-000. A lack of parameter validation in calls to memcpy in check_and_set_timeout in sr_unix/ztimeoutroutines.c allows attackers to attempt to read from a NULL pointer.