367 matches found
ROS-20260310-73-0013
A vulnerability in the user interface UI of the Google Chrome browser is related to the lack of a user warning about unsafe actions. Exploitation of the vulnerability could allow an attacker acting remotely to bypass existing security restrictions...
Mozilla多款产品 安全漏洞
Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox the web browser.Mozilla Thunderbird is a suite of email client software separate from the Mozilla Application Suite. A security bypass vulnerability exists in several Mozilla products, whic...
Mozilla Firefox ESR Security Update (mfsa_2025-93) - Windows
Mozilla Firefox ESR is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefoxesr";...
Mozilla Thunderbird ESR Security Update (mfsa_2025-91) - Windows
Mozilla Thunderbird ESR is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
ROS-20250813-07
A vulnerability in the Java dnsjava DNS implementation is related to incorrect response checking during processing of DNS queries. Exploitation of the vulnerability could allow a remote attacker to bypass the implemented security restrictions. enforced security restrictions...
The vulnerability of the CI/CD system’s continuous integration and delivery capabilities in JetBrains TeamCity arises from the use of an algorithm that does not meet security requirements for hash functions. This allows attackers to circumvent existing security restrictions and gain unauthorized access to protected information.
The vulnerability of the Continuous Integration and Deployment Application Delivery system CI/CD of JetBrains TeamCity is related to the use of an algorithm that does not meet security requirements for the hash function. Exploiting this vulnerability can allow a malicious actor to bypass existing...
The vulnerability of the Git-based software platform for collaborative code development on GitLab, related to incorrect authentication, allows a hacker to bypass existing security restrictions.
The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to incorrect authentication. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions remotely...
The vulnerability of Juniper Networks’ Junos OS operating systems arises from a flaw in the data protection mechanism, allowing attackers to circumvent existing security restrictions.
The vulnerability of Juniper Networks’ Junos OS lies in the compromised data protection mechanism. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions remotely...
The vulnerability of the BitLocker data protection function in Microsoft Windows operating systems allows attackers to circumvent existing security restrictions.
The vulnerability of the BitLocker data protection function in Microsoft Windows operating systems is related to a breach of the data protection mechanism. Exploiting this vulnerability can allow attackers to circumvent existing security restrictions...
Mozilla Firefox Security Bypass Vulnerability (CNVD-2025-15502)
Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A security bypass vulnerability exists in Mozilla Firefox, which can be exploited by attackers to bypass security restrictions...
Mozilla Firefox 安全漏洞
Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox web browser. A security bypass vulnerability exists in Mozilla Firefox and Firefox ESR, which can be exploited by attackers to bypass security restrictions...
The vulnerability of GE Vernova Intelligent Electronic Devices (IEDs) from the UR series, related to insufficient verification of input data, allows intruders to circumvent existing security restrictions.
The vulnerability of GE Vernova Intelligent Electronic Devices IEDs from the UR series is related to insufficient verification of input data. Exploiting this vulnerability can allow an attacker operating remotely to circumvent existing security restrictions...
The vulnerability of the Windows Shell component in Windows operating systems allows a hacker to bypass security restrictions.
The vulnerability of the Windows Shell component in Windows operating systems is related to a breach of data protection mechanisms. Exploiting this vulnerability allows an attacker to bypass security restrictions remotely...
Google Chrome Security Bypass Vulnerability (CNVD-2025-15180)
Google Chrome is a web browser from Google, an American company. A security bypass vulnerability exists in Google Chrome, which can be exploited by attackers to bypass security restrictions...
The vulnerability of the FactoryTalk Security platform, a manufacturing process management platform, allows attackers to circumvent security restrictions and enhance their privileges.
The vulnerability of the FactoryTalk Security platform for manufacturing process management is related to a flaw in the data protection mechanism. Exploiting this vulnerability allows an attacker to bypass security restrictions and gain increased privileges...
The vulnerability of the FreeIpa server, related to insufficient protection of service data, allows attackers to circumvent existing security restrictions and disclose the protected information.
The vulnerability of the FreeIpa server is related to insufficient protection of operational data. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions and disclose the protected information...
The vulnerability of the Navigation components in Google Chrome and Microsoft Edge allows attackers to circumvent existing security restrictions.
The vulnerability of the Navigation components in Google Chrome and Microsoft Edge is related to a lack of mechanisms for verifying the source of the page. Exploiting this vulnerability allows an attacker to bypass existing security restrictions by using a specially created HTML page...
Security Bulletin: IBM Cognos Controller is affected by vulnerabilities
Summary There are vulnerabilities in IBM® Java™, IBM® Websphere Application Server Liberty and Open-Source Software OSS components used by IBM Cognos Controller. Please refer to the table in the Related Information section for vulnerability impact. This Security Bulletin relates only to the direc...
The vulnerability of the OpenSearch software package, related to deficiencies in authentication procedures, allows attackers to circumvent existing security restrictions.
Vulnerability of the OpenSearch software package, related to deficiencies in authentication procedures. Exploiting this vulnerability can allow a malicious actor to circumvent existing security restrictions remotely...
The vulnerability of the ColdFusion software platform, related to insufficient protection of operational data, allows attackers to circumvent security restrictions.
The vulnerability of the ColdFusion software platform is related to insufficient protection for operational data. Exploiting this vulnerability can allow attackers to circumvent security restrictions...