1680 matches found
The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to trigger a service failure.
The vulnerability of the Core component of the Oracle VM VirtualBox software is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to cause a service failure...
CVE-2020-6483
Insufficient policy enforcement in payments in Google Chrome prior to 83.0.4103.61 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page...
LSN-0067-1 Kernel Live Patch Security Notice
It was discovered that the Serial CAN interface driver in the Linux kernel did not properly initialize data. A local attacker could use this to expose sensitive information kernel memory. CVE-2020-11494...
IBM Spectrum Scale Denial of Service Vulnerability (CNVD-2020-30675)
IBM Spectrum Scale is a scalable data and file management solution from IBM USA based on IBM GPFS, an enterprise file management system optimized for petabyte-scale storage management. The product supports helping clients reduce storage costs while improving security and management efficiency in...
Denial of Service Vulnerability in Kingsoft PDF Reader (CNVD-2020-31707)
Kingsoft PDF Reader is a PDF reading tool. A denial of service vulnerability exists in Kingsoft PDF Reader. An attacker can exploit this vulnerability to cause a denial of service...
Lucky9io has a logic flaw vulnerability
Lucky9io is an ethereum-based virtual gambling game.A security vulnerability exists in Lucky9io's implementation of a simple lotto smart contract, which stems from the use of a fallback function to generate random values using the publicly readable variable entrynumber. An attacker could exploit...
Logic Flaw Vulnerability in SpeedCashLite
SpeedCashLite SCSL is an Ether-based digital currency. An integer overflow vulnerability exists in the 'mintToken' function in the smart contract implementation of SCSL. An attacker can exploit this vulnerability to set the balance of any user to an arbitrary value...
Logic Flaw Vulnerability in GOAL Bonanza
GOAL Bonanza GOAL is an ethereum-based virtual currency.A security vulnerability exists in the 'mintToken' function in GOAL's smart contract implementation. An attacker could exploit the vulnerability to increase the balance of a digital asset at any address...
FIBToken has a flawed logic vulnerability
FIBToken FIB is an ethereum-based digital currency.An integer overflow vulnerability exists in the 'mintToken' function in the smart contract implementation of FIB. An attacker can exploit this vulnerability to set the balance of any user to an arbitrary value...
Denial of Service Vulnerability in Multiple NETGEAR Products (CNVD-2021-28036)
NETGEAR SRX5308 and others are products of NETGEAR, Inc.NETGEAR SRX5308 is a VPN firewall device.NETGEAR FVS336G is a VPN virtual private network firewall router.NETGEAR FVS318N is a VPN virtual private network firewall Router. A security vulnerability exists in multiple NETGEAR products. An...
TongTong Coin Logic Flaw Vulnerability
TongTong Coin TTCoin is an Ether-based digital currency. An integer overflow vulnerability exists in the 'mintToken' function in TTCoin's smart contract implementation. An attacker can exploit this vulnerability to set the balance of any user to an arbitrary value...
OpenSSL Code Issues Vulnerabilities
OpenSSL is an open source capable general-purpose cryptographic library from the OpenSSL team that implements the Secure Sockets Layer SSLv2/v3 and Secure Transport Layer TLSv1 protocols. The product supports a variety of cryptographic algorithms , including symmetric ciphers , hash algorithms ,...
Micro Focus Enterprise Server and Enterprise Developer Insufficient Credential Protection Vulnerability
Micro Focus Enterprise Server and Micro Focus Enterprise Developer are both products of Micro Focus, a British company.Micro Focus Enterprise Server is an enterprise server. Micro Focus Enterprise Server is an enterprise server that provides a deployment environment for mainframe applications.Mic...
Design/Logic Flaw
SAP Business Client, versions 6.5, 7.0, does not perform necessary integrity checks which could be exploited by an attacker under certain conditions to modify the installer...
CVE-2020-10631
An attacker could use a specially crafted URL to delete or read files outside the WebAccess/NMS's versions prior to 3.0.2 control...
Unspecified Vulnerability in Multiple Mozilla Products (CNVD-2020-26229)
Mozilla Firefox and others are products of the Mozilla Foundation in the U.S.A. Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox web browser.Mozilla Thunderbird is a suite of e-mail client software separate from the Mozilla Application...
Unspecified vulnerability in Parrot ANAFI (CNVD-2021-27990)
The Parrot ANAFI is a drone device. A security vulnerability exists in the Parrot ANAFI that can be exploited by a remote attacker to disconnect the drone from its controller during flight...
Unspecified Vulnerability in Gallery for Samsung Mobile Devices
Android is a free and open source operating system from Google based on the Linux kernel without GNU components. An unspecified vulnerability exists in Gallery for Samsung mobile devices, which can be exploited by an attacker to permanently disable the Gallery application...
Mozilla Firefox and Firefox ESR Memory Security Error Vulnerability
Mozilla Firefox and Mozilla Firefox ESR are both products of the Mozilla Foundation in the U.S. Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox web browser. Mozilla Firefox and Firefox ESR contain security vulnerabilities. An attacker ca...
Microsoft Windows and Windows Server Code Execution Vulnerabilities
Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. A code execution vulnerability exists in Microsoft Windows and Windows Server that can be...