CVE-2024-43704

Software installed and run as a non-privileged user may conduct improper GPU system calls to gain access to the graphics buffers of a parent process...

CVE-2022-43704

The Sinilink XY-WFT1 WiFi Remote Thermostat, running firmware 1.3.6, allows an attacker to bypass the intended requirement to communicate using MQTT. It is possible to replay Sinilink aka SINILINK521 protocol udp/1024 commands interfacing directly with the target device. This, in turn, allows for...

CVE-2025-43704

creationtimestamp| type| source ---|---|--- 2025-04-16 23:58:41+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/12174 2025-04-17 02:06:29+00:00| seen| https://t.me/cvedetector/23194 2025-04-17 02:48:38+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmy3ryhuhp2v...

CVE-2025-43704

CVE-2025-43704 affects Arctera/Veritas Data Insight prior to 7.1.2. The issue allows sending cleartext credentials when the product is configured to use HTTP Basic Authentication to a Dell Isilon OneFS server. The reported remediation is to upgrade to version 7.1.2 or later. Exploit details or ac...

CVE-2025-43704

Arctera/Veritas Data Insight before 7.1.2 can send cleartext credentials when configured to use HTTP Basic Authentication to a Dell Isilon OneFS server...

CVE-2024-43704

creationtimestamp| type| source ---|---|--- 2024-11-18 04:55:41+00:00| seen| https://infosec.exchange/users/cve/statuses/113502174618817833 2024-11-18 06:30:38+00:00| seen| https://t.me/cvedetector/11280...

CVE-2024-43704 GPU DDK - PowerVR: PVRSRVAcquireProcessHandleBase can cause psProcessHandleBase reuse when PIDs are reused

Software installed and run as a non-privileged user may conduct improper GPU system calls to gain access to the graphics buffers of a parent process...

CVE-2024-43704 GPU DDK - PowerVR: PVRSRVAcquireProcessHandleBase can cause psProcessHandleBase reuse when PIDs are reused

Software installed and run as a non-privileged user may conduct improper GPU system calls to gain access to the graphics buffers of a parent process...

CVE-2023-43704

creationtimestamp| type| source ---|---|--- 2023-09-30 07:38:24+00:00| seen| https://t.me/cibsecurity/71347...

CVE-2023-43704

Os Commerce is currently susceptible to a Cross-Site Scripting XSS vulnerability. This vulnerability allows attackers to inject JS through the "title" parameter, potentially leading to unauthorized execution of scripts within a user's web browser...

CVE-2023-43704

CVE-2023-43704 affects OsCommerce and is described as a Cross-Site Scripting (XSS) vulnerability where an attacker can inject JavaScript through the title parameter, potentially leading to unauthorized script execution in a user’s browser. Technical details across connected sources consistently i...

CVE-2022-43704

creationtimestamp| type| source ---|---|--- 2023-01-20 20:22:57+00:00| seen| https://t.me/cibsecurity/56779...

CVE-2022-43704

CVE-2022-43704 affects Sinilink XY-WFT1 WiFi Remote Thermostat (firmware 1.3.6). The issue allows an attacker to bypass the requirement to use MQTT and replay SINILINK521 protocol commands over UDP/1024, interfacing directly with the device to control the onboard relay without mobile-app authenti...

Microsoft IE Anchor元素信息泄露漏洞（MS10-071）

BUGTRAQ ID: 43704 CVE ID: CVE-2010-3327 Internet Explorer是Windows操作系统中默认捆绑的WEB浏览器。 Internet Explorer没有正确地处理Anchor元素导致了信息泄露漏洞。在用户操作期间粘贴和编辑内容时如果没有移除Anchor元素就会出现这种行为，可能泄露本应删除的个人可识别信息。 Microsoft Internet Explorer 8.0 Microsoft Internet Explorer 7.0 Microsoft Internet Explorer 6.0 厂商补丁： Microsoft...