Intel CIP 代码问题漏洞

Intel CIP is an optional program from Intel designed to improve products by collecting performance data from users' computers. Intel CIP suffers from an elevation of privilege vulnerability that stems from an uncontrolled search path, which can be exploited by an attacker to cause elevation of...

Red Hat build of Keycloak 代码问题漏洞

Red Hat build of Keycloak is a web application for single sign-on from Red Hat USA. A code issue vulnerability exists in the Red Hat build of Keycloak, which stems from a proxy misconfiguration that could result in accessing the /admin path via a non-normalized path...

Zimbra Collaboration 代码问题漏洞

Zimbra Collaboration is an open source enterprise-class email and collaboration platform from Zimbra, Inc. that supports email, calendaring, document management, and team collaboration features. A code issue vulnerability exists in Zimbra Collaboration versions prior to 10.1.12, which stems from ...

F5 BIG-IP Next SPK 代码问题漏洞

F5 BIG-IP Next SPK is a cloud-native application traffic management solution from F5 USA. A code issue vulnerability exists in F5 BIG-IP Next SPK, which stems from the possibility that undisclosed traffic in an HTTP/2 Ingress configuration could lead to the termination of the Traffic Management...

QNAP operating system 代码问题漏洞

The QNAP operating system is an operating system from Taiwan, China-based QNAP Technology QNAP. A code issue vulnerability exists in the QNAP operating system that stems from a null pointer dereference that could lead to a denial of service attack...

FreshRSS 代码问题漏洞

FreshRSS is a free, self-hosted RSS aggregator from FreshRSS Open Source. A code issue vulnerability exists in FreshRSS 1.26.3 and prior versions that stems from a failure to properly terminate a session when logging out, which could lead to session hijacking and fixed vulnerabilities...

NVIDIA CUDA Toolkit 代码问题漏洞

NVIDIA CUDA Toolkit is a development software application for creating high-performance GPU-accelerated applications from NVIDIA. A code issue vulnerability exists in NVIDIA CUDA Toolkit that stems from a null pointer dereference in cuobjdump, which can be exploited by an attacker to cause a...

UPDF 代码问题漏洞

UPDF is a multi-platform PDF editor from the Chinese company UPDF. A code issue vulnerability exists in UPDF version 1.8.5.0, which stems from DLL search path hijacking and could lead to the execution of arbitrary code...

UPDF 代码问题漏洞

UPDF is a multi-platform PDF editor from the Chinese company UPDF. A code issue vulnerability exists in UPDF version 1.8.5.0, which stems from DLL search path hijacking and could lead to the execution of arbitrary code...

NVIDIA NeMo Framework Code Issue Vulnerability

NVIDIA Nemo Framework is a framework for building and deploying generative AI models from NVIDIA. A code issue vulnerability exists in the NVIDIA NeMo Framework, which can be exploited by an attacker to execute malicious code by uploading arbitrary files and bypassing file size limits...

AVEVA PI Integrator 代码问题漏洞

AVEVA PI Integrator is a business analysis tool from AVEVA UK. AVEVA PI Integrator suffers from a code issue vulnerability that originates from an authenticated attacker who could upload and execute files...

Siemens多款产品 代码问题漏洞

Siemens SIPROTEC 4 is a multifunction relay from Siemens Germany. A code issue vulnerability exists in various Siemens products that stems from mishandling of a file transfer operation, which could result in a denial of service. The following products are affected: SIPROTEC 4 6MD61, 6MD63, 6MD66,...

Intel oneAPI Toolkits 代码问题漏洞

Intel oneAPI Toolkits is a set of core tools and libraries from Intel Corporation USA. It is used to develop high-performance, data-centric applications across different architectures. A code issue vulnerability exists in Intel oneAPI Toolkits that stems from an uncontrolled search path that coul...

OpenPLC Runtime version 3 代码问题漏洞

OpenPLC Runtime version 3 is a programmable logic controller by the individual developer Thiago Alves. A code issue vulnerability exists in OpenPLC Runtime version 3 that originates from allowing an authenticated user to upload arbitrary files and access them publicly...

BentoML 代码问题漏洞

BentoML is an open source modeling service library from BentoML Open Source. It is used to build high-performance and scalable artificial intelligence applications using Python. A code issue vulnerability exists in BentoML versions 1.4.0 through 1.4.19 that stems from the file upload processing...

WordPress Broken Link Notifier plugin code issue vulnerability

WordPress Broken Link Notifier plugin is a plugin for monitoring broken links e.g. 404 errors, timeout links, etc. within a website. The WordPress Broken Link Notifier plugin suffers from a code issue vulnerability that stems from the server not implementing an adequate validation mechanism to...

7-Zip 代码问题漏洞

7-Zip is a compression software from the 7-Zip open source. A code issue vulnerability exists in versions prior to 7-Zip 25.0.0 that stems from the presence of a null pointer dereference in the Compound handler, which could lead to a denial of service...

Emerson ValveLink 代码问题漏洞

Emerson ValveLink is a suite of digital valve configuration and diagnostic software from Emerson Electric USA. A code issue vulnerability exists in Emerson ValveLink that stems from an improperly controlled resource search path that could lead to unintended behavior...

IBM Analytics Content Hub 代码问题漏洞

IBM Analytics Content Hub is a clean streaming experience from International Business Machines IBM that visualizes relevant analytics by extracting content from IBM and other analytics providers. A code issue vulnerability exists in IBM Analytics Content Hub versions 2.0, 2.1, 2.2, and 2.3 that...

WordPress Forminator Forms Code Issue Vulnerability

WordPress Forminator Forms is a powerful free form builder plugin that supports the creation of many types of interactive forms. WordPress Forminator Forms suffers from a code issue vulnerability that stems from deserializing untrusted inputs in the function entrydeleteuploadfiles, which can be...