Buffer Overflow Vulnerability in Multiple Qualcomm Products (CNVD-2020-20195)

Qualcomm MDM9206 and others are products of Qualcomm Incorporated.MDM9206 is a central processing unit CPU product.SDX24 is a modem.MSM8917 is a central processing unit CPU product. A buffer overflow vulnerability exists in Multi-Mode Call Processor in multiple Qualcomm products. The vulnerabilit...

Arbitrary File Deletion Vulnerability in SIYUCMS

SIYUCMS is a content management system based on ThinkPHP5 and Bootstrap. SIYUCMS has an arbitrary file deletion vulnerability that can be exploited by an attacker to delete arbitrary files...

CVE-2020-6383

Type confusion in V8 in Google Chrome prior to 80.0.3987.116 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

The vulnerability of Xen hypervisors, related to the swapping of the zero pointer, allows a attacker to trigger a service failure.

The vulnerability of Xen hypervisors is related to the handling of the zero pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

Memory Corruption Vulnerability in WPS Office of Zhuhai Kingsoft Office Software Co.

Kingsoft WPS is Kingsoft Office Software office software, you can realize the office software commonly used text, forms, presentations and other functions. Zhuhai Kingsoft Office Software Co., Ltd WPS Office memory corruption vulnerability, an attacker can exploit the vulnerability caused by buff...

Multiple SQL Injection Vulnerabilities in SuiteCRM

SuiteCRM is a free and open source customer relationship management application. Multiple SQL injection vulnerabilities exist in SuiteCRM. An attacker could exploit to obtain sensitive information...

Encryption Issues Vulnerabilities in Joomla!

Joomla! is the U.S. Open Source Matters team of a set of PHP and MySQL development using open source , cross-platform content management system CMS. A vulnerability exists in a cryptographic issue in Joomla! An attacker can exploit this vulnerability to obtain sensitive information...

The vulnerability of the Oracle Solaris operating system’s kernel, which allows a hacker to trigger a service failure

The vulnerability of the Oracle Solaris operating system’s kernel is related to access control deficiencies. Exploiting this vulnerability can allow an attacker to cause a service failure...

Microsoft Update Notification Manager Privilege Vulnerability

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation, a U.S. company.Microsoft Windows is a set of operating systems for use on personal devices. An elevation of privilege vulnerability exists in the way files are handled in Microsoft Update Notification...

PT-2020-1540 · Oracle · Oracle Net +4

Name of the Vulnerable Software and Affected Versions: Oracle Database Server versions 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c, 19c Description: The issue is related to inadequate access control in the Oracle ODBC database gateway, which can be exploited by a remote attacker to cause a denial of servic...

Unspecified Vulnerability in IBM QRadar SIEM

IBM QRadar SIEM is an IBM USA solution that utilizes security intelligence to protect assets and information from advanced threats. The solution provides oversight of the entire scope of the IT architecture, generates detailed reports on data access and user activity, and more. A security...

CVE-2019-5188

A code execution vulnerability exists in the directory rehashing functionality of E2fsprogs e2fsck 1.45.4. A specially crafted ext4 directory can cause an out-of-bounds write on the stack, resulting in code execution. An attacker can corrupt a partition to trigger this vulnerability...

TextCrawler Denial of Service Vulnerability

TextCrawler is a program that helps you replace text. TextCrawler suffers from a denial of service vulnerability. An attacker can exploit the vulnerability to launch a denial of service attack...

CVE-2019-5845

Out of bounds access in SwiftShader in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

The vulnerability of the resident relational SAP HANA database, which exists due to insufficient validation of input data, allows a perpetrator to trigger a service failure.

The vulnerability of the resident relational SAP HANA database exists due to insufficient verification of input data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause service failures...

Unspecified Vulnerability in Lava Iris 88 Lite

Lava Iris 88 Lite is a smartphone from Lava India. Lava Iris 88 Lite has an unspecified vulnerability. An attacker can exploit the vulnerability to unauthorized switching of Wi-Fi...

Google Android System Information Disclosure Vulnerability (CNVD-2019-44270)

Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. There is a security vulnerability in System in Google Android. An attacker can exploit the vulnerability to leak information...

CVE-2019-13724

Out of bounds memory access in WebBluetooth in Google Chrome prior to 78.0.3904.108 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page...

CVE-2019-13717

Incorrect security UI in full screen mode in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to hide security UI via a crafted HTML page...

CloudBees Jenkins Input Validation Error Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version of the release/test project and some timed tasks . LTS is a long-term support for...