ROS-20260529-73-0013

The vulnerability of HashiCorp’s Vault Community Edition and Vault Enterprise storage platforms relates to the disclosure of information during data transmission. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...

PT-2026-34109

Name of the Vulnerable Software and Affected Versions Oracle Identity Manager Connector version 12.2.1.4.0 Description An issue in the Core component of Oracle Fusion Middleware allows an unauthenticated attacker with network access via HTTPS to compromise the system. This can lead to unauthorize...

CVE-2022-27837

A vulnerability using PendingIntent in Accessibility prior to version 12.5.3.2 in Android R11.0 and 13.0.1.1 in Android S12.0 allows attacker to access the file with system privilege...

The vulnerability of the nfs3_proc_create() function in the fs/nfs/nfs3proc.c module of the Linux file system support module allows a attacker to compromise the confidentiality and accessibility of protected information.

The vulnerability of the nfs3proccreate function in the fs/nfs/nfs3proc.c module of the Linux file system support module is related to improper memory release before deleting the last reference memory leak. Exploiting this vulnerability could allow an attacker to compromise the confidentiality an...

The vulnerability of the `ice_sriov_set_msix_vec_count()` function in the `drivers/net/ethernet/intel/ice/ice_sriov.c` file of the Linux operating system allows a attacker to compromise the confidentiality and accessibility of protected information.

The vulnerability of the icesriovsetmsixveccount function in the drivers/net/ethernet/intel/ice/icesriov.c file of the Linux operating system is related to reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to compromise the confidentiality and accessibili...

The vulnerability of the cleanup_bearer() function in the net/tipc/udp-media.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the cleanupbearer function in the net/tipc/udp-media.c module of the Linux operating system is related to the reutilization of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of...

The vulnerability of the distributed database management system Apache Cassandra, related to improper handling of privileges, allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the distributed database management system Apache Cassandra is related to improper handling of privileges. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of the TTF_RenderText_Solid() function in the SDL_ttf library allows attackers to influence the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the TTFRenderTextSolid function in the SDLttf library is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of the cleanup_net() function in the include/net/net_namespace.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the cleanupnet function in the include/net/netnamespace.c module of the Linux kernel is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...

The vulnerability of the mgmt_set_powered_complete() function in the net/bluetooth/mgmt.c module of the Linux operating system allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the mgmtsetpoweredcomplete function in the net/bluetooth/mgmt.c module of the Linux kernel is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...

The vulnerability of the EFI loader in microprogrammed software for SIMATIC IPC devices, SIMATIC PC tablets, and SIMATIC Field PG notebooks allows a perpetrator to influence the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the EFI loader in microprogrammed software for SIMATIC IPC devices, SIMATIC PC tablets, and SIMATIC Field PG notebooks is related to the breach of data protection mechanisms. Exploiting this vulnerability could allow attackers to compromise the confidentiality, integrity, and...

The vulnerability of the accountablemapping() function in the mm/mmap.c module of the Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the accountablemapping function in the mm/mmap.c module of the Linux kernel is related to improper control of resource identifiers “resource injection”. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of...

The vulnerability of the Core server component of Oracle WebLogic Server allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the Oracle WebLogic Server application server’s Core component is related to the absence of authentication procedures. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of the cxl_decoder_reset() function in the Linux operating system allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the cxldecoderreset function in the drivers/cxl/core/hdm.c file of the Linux kernel is related to the repeated use of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protecte...

The vulnerability of the __ext4_fill_super() function in the ext4 file system of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the ext4fillsuper function in the fs/ext4/super.c file of the Linux kernel’s file system relates to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...

The vulnerability of the formdumpeasysetup function (/goform/formdumpeasysetup) in D-Link DIR-605L router software allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the formdumpeasysetup function /goform/formdumpeasysetup in D-Link DIR-605L router microprogramming software is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker to compromise the confidentiality...

The vulnerability of the seqpacket_allow() function in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the seqpacketallow function in the Linux operating system’s kernel is related to improper initialization. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of the qcom-geni-serial component in the Linux operating system allows for interference with the confidentiality and accessibility of protected information.

The vulnerability of the qcom-geni-serial component in the Linux operating system is related to it exceeding the buffer limits of the RX FIFO. Exploiting this vulnerability could allow an attacker to influence the confidentiality and accessibility of the protected information...

The vulnerability of the netfilter component in the Linux operating system’s kernel, which arises from the use of memory after deallocation, allows for interference with privacy, integrity, and accessibility.

The vulnerability of the netfilter component in the Linux operating system’s kernel relates to the ability to exploit memory after it is freed. Exploiting this vulnerability could allow an attacker to compromise privacy, integrity, and accessibility...

The vulnerability of the Py_FindObjects() function in the Python programming language library, which is open-source and part of scipy, allows a attacker to compromise the confidentiality, integrity, and accessibility of the system.

The vulnerability of the PyFindObjects function in the Python programming language library, which is open-source and part of scipy, relates to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to influence the confidentiality, integrity, and accessibility ...