Huawei HarmonyOS and EMUI kernel module memory misreference vulnerability (CNVD-2026-17177)

Huawei HarmonyOS is an operating system from Huawei, a Chinese company. It provides a full-scenario distributed operating system based on a microkernel.Huawei EMUI is a user interface developed by Huawei based on the Android operating system. A memory misreference vulnerability exists in Huawei...

Availability Attacks without an Adversary: Evidence from Enterprise LANs

Denial-of-Service DoS conditions in enterprise networks are commonly attributed to malicious actors. However, availability can also be compromised by benign non-malicious insider behavior. This paper presents an empirical study of a production enterprise LAN that demonstrates how routine docking...

The vulnerability of TOTOLINK N150RT router microprogramming software, related to the execution of operations outside the buffer in memory, allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of TOTOLINK N150RT router microprogramming software lies in the fact that the operation values are stored outside of the buffer in memory. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected...

The vulnerability of the PCMan FTP Server relates to the occurrence of operations beyond the buffer boundaries in memory. This allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the PCMan FTP Server relates to the execution of operations beyond the buffer boundaries during the processing of the PASV parameter. Exploiting this vulnerability allows a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected...

The vulnerability of D-Link router microprogramming software arises from the lack of measures taken to neutralize special elements used in the operating system command. This allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of D-Link DIR-1960-US, DIR-2640-US, DIR-2660-US, DIR-3040-US, DIR-3060-US, DIR-867-US, DIR-878, DIR-882-US, DIR-882/RE, DIR-882-CA, and DIR-882-US/RE routers exists due to the lack of measures to neutralize specific elements. Exploiting this vulnerability can allow a malicious...

The vulnerability of the formSetUplinkInfo function (/goform/setUplinkInfo) in the Tenda i21 router software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the formSetUplinkInfo /goform/setUplinkInfo function in the Tenda i21 router microprogramming software is related to buffer overflow during the processing of the pingHostIp2 parameter. Exploiting this vulnerability allows an attacker to compromise the confidentiality,...

SUSE CVE-2013-0426

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.240 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vecto...

The vulnerability of embedded images of safety controller and microprogrammed logic controllers Honeywell Experion PKS allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of embedded images of safety controller and microprogrammed logic controllers Honeywell Experion PKS is related to insufficient verification of data authenticity. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibilit...

The vulnerability of TP-Link’s IP cameras with microprogrammed software, such as TP-Link NC200, TP-Link NC210, TP-Link NC220, TP-Link NC230, TP-Link NC250, TP-Link NC260, TP-Link NC450, arises due to buffer overflows in the stack. This allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of TP-Link’s IP cameras with microprogrammed software, such as TP-Link NC200, TP-Link NC210, TP-Link NC220, TP-Link NC230, TP-Link NC250, TP-Link NC260, and TP-Link NC450, arises due to buffer overflow on the stack. Exploiting this vulnerability can allow an attacker, operating...

The vulnerability of the web interface of the microprogramming software for threat detection and prevention, Juniper Advanced Threat Prevention, allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the web interface of Juniper Advanced Threat Prevention software for detecting and preventing threats is related to deficiencies in access control. Exploiting this vulnerability could allow attackers to compromise the confidentiality, integrity, and accessibility of protected...

Unspecified Vulnerability in Oracle VM VirtualBox (CNVD-2017-17508)

VirtualBox is cross-platform virtualization software for x86-based systems. A security vulnerability exists in the Core component implementation of Oracle VM VirtualBox versions prior to 5.1.24, which can be exploited by attackers to compromise system confidentiality, integrity, and availability...

Vulnerability of the Java Platform software platform, which allows attackers to compromise the confidentiality, integrity, and accessibility of information

The vulnerability of the Java Platform-related software platform is associated with errors in the code. Exploiting this vulnerability can allow a malicious actor, operating remotely, to compromise the confidentiality, integrity, and accessibility of information through actions related to deployme...

Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the proftpd-common package of the Debian GNU/Linux operating system can be exploited, leading to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...

Vulnerabilities in the Debian GNU/Linux operating system that allow a local malicious individual to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the kernel-pcmcia-modules-2.4.18-1-686-smp package of the Debian GNU/Linux operating system may lead to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited by malicious individuals locally...

Vulnerabilities in the Debian GNU/Linux operating system that allow a local malicious individual to compromise the confidentiality, integrity, and accessibility of protected information

Multiple vulnerabilities in the unicon-imc2 operating system package of Debian GNU/Linux; exploiting these vulnerabilities may lead to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited by local malicious actors who have...

Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the kernel-headers-2.6.8-2-itanium-smp package of the Debian GNU/Linux operating system may lead to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...

Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the Debian GNU/Linux operating system’s kernel-headers-2.6.8-3-k7-smp package can lead to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...

Vulnerabilities in the Debian GNU/Linux operating system that allow a local malicious individual to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the kernel-headers-2.2.19 package of the Debian GNU/Linux operating system may lead to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited by local malicious individuals...

Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the kernel-image-2.6.8-3-power3 Debian GNU/Linux operating system can be exploited, leading to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...

Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the junkbuster package of the Debian GNU/Linux operating system may lead to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...