1680 matches found
Google TensorFlow 代码问题漏洞
Google TensorFlow is a suite of end-to-end open source platforms for machine learning from Google USA. Google TensorFlow has a code issue vulnerability that can be exploited by an attacker to cause the program to crash...
Emlog Authorization Issues Vulnerabilities
Emlog is a PHP and MySQL based CMS builder for Emlog personal developers. A license issue vulnerability exists in Emlog, which stems from the product's lack of an effective restriction added to the admin/plugin.php file deletion feature. An attacker can exploit this vulnerability to delete...
Google Android 资源管理错误漏洞
Android is a Linux-based open source operating system developed by Google Inc. and the Open Handheld Alliance OHA. an elevation of privilege vulnerability exists in the Android runtime component of Google Android. An attacker could exploit this vulnerability to gain elevated privileges on the...
IBM Security Guardium Hardcoded Credential Vulnerability
IBM Security Guardium is a suite of platforms from IBM USA that provides data protection capabilities. The platform includes features such as custom UI, report management and streamlined audit process building. IBM Security Guardium version 11.3 contains a hard-coded credential vulnerability. An...
Adobe Digital Editions Elevation of Privilege Vulnerability (CNVD-2021-79751)
Adobe Digital Editions software provides an engaging way to help you view and manage eBooks and other digital publications. an elevation of privilege vulnerability exists in Adobe Digital Editions 4.5.11.187646 and earlier versions. The vulnerability stems from the creation of temporary files in ...
Fortinet FortiOS 安全漏洞
Fortinet FortiOS is a security operating system from Fortinet that is dedicated to the FortiGate network security platform. The system provides users with a variety of security features such as firewall, anti-virus, IPSec/SSLVPN, Web content filtering and anti-spam.Fortinet FortiOS has a security...
Google Android Denial of Service Vulnerability (CNVD-2021-78778)
Android is a Linux-based open source operating system developed by Google Inc. and the Open Handheld Alliance OHA. a denial-of-service vulnerability exists in the Framework component of Google Android. A remote attacker can exploit this vulnerability to cause a denial of service...
ROS-2-1825
2.1825 Multiple vulnerabilities in ISC BIND CVE-2021-25216, CVE-2021-25215, CVE-2021-25214 1. Vulnerability Description: CVE-2021-25216 A vulnerability exists due to a boundary error in the GSS-TSIG extension. A remote attacker can send specially crafted requests to the server, trigger a buffer...
Huawei HarmonyOS 安全漏洞
Huawei HarmonyOS is an operating system from Huawei, a Chinese company that provides a microkernel-based, distributed operating system. Huawei HarmonyOS has a security vulnerability that could be exploited by an attacker to cause a device to reboot...
Google Chrome 访问控制错误漏洞
Google Chrome is a web browser from Google, Inc. A security bypass vulnerability exists in Google Chrome Blink. An attacker could exploit this vulnerability to bypass security restrictions...
Google Chrome 安全特征问题漏洞
Google Chrome is a web browser from Google, Inc. A security bypass vulnerability exists in Google Chrome DevTools. An attacker could exploit this vulnerability to bypass security restrictions...
Adobe Bridge Memory Out-of-Bounds Access Vulnerability (CNVD-2021-63266)
Adobe Bridge is a free digital asset management application from Adobe. 11.1 and earlier versions of Adobe Bridge contain a memory out-of-bounds access vulnerability. An attacker could exploit the vulnerability to execute arbitrary code...
Apache Roller 资源管理错误漏洞
Apache Roller is a Java-based multi-user open source blogging system from the Apache Foundation. a security vulnerability exists in Apache Roller. An attacker could exploit this vulnerability to cause security issues...
Google TensorFlow 安全漏洞
Google TensorFlow is a suite of end-to-end open source platforms for machine learning from Google USA. Google TensorFlow suffers from a security vulnerability that can be exploited by an attacker to cause a runtime abort process...
golang: crypto/tls: certificate of wrong type is causing TLS client to panic
A flaw was found in golang. A panic can be triggered by an attacker in a privileged network position without access to the server certificate's private key, as long as a trusted ECDSA or Ed25519 certificate for the server exists or can be issued, or the client is configured with...
Linux kernel 输入验证错误漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that can be exploited by an attacker to read uninitialized memory...
Ansible Galaxy Collections 安全漏洞
Red Hat Ansible is a computer system configuration manager from Red Hat, an American company. The product can be used to distribute, manage, and organize computer systems. A security vulnerability exists in Ansible Galaxy Collections that can be exploited by an attacker to obtain sensitive system...
Unspecified Vulnerability in Oracle Commerce Platform
Oracle Commerce Platform is Oracle's omnichannel technology that creates a seamless customer experience and integrates data from various customer channels. A security vulnerability exists in Oracle Commerce Platform versions 11.0.0, 11.1.0, 11.2.0, 11.3.0-11.3.2. An attacker could exploit this...
Oracle BI Publisher has an unspecified vulnerability (CNVD-2021-54729)
Oracle BI Publisher is a reporting solution that makes it easier and faster to produce, manage, and deliver all reports and documents than traditional reporting tools.Oracle BI Publisher versions 5.5.0.0.0, 11.1.1.9.0, 12.2.1.3.0, 12.2.1.4.0 of the E- Business Suite - XDO component contains a...
WordPress plugin code injection vulnerability (CNVD-2021-52420)
WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports PHP and MySQL servers to set up a personal blog site.WordPress Plugin is a WordPress open source application plugin . A code injection vulnerability exists in WordPress Plugin...