16 matches found
CVE-2026-2401
Technical details for CVE-2026-2401 are not publicly available in the provided documents; monitor for updates.
CVE-2026-1475
An out-of-band SQL injection vulnerability OOB SQLi has been detected in the Performance Evaluation EDD application developed by Gabinete Técnico de Programación. Exploiting this vulnerability in the parameter ‘Idusuario' in ‘/evaluacionaccionesevalua.aspx’, could allow an attacker to extract...
CVE-2023-52139
Misskey is an open source, decentralized social media platform. Third-party applications may be able to access some endpoints or Websocket APIs that are incorrectly specified as kind or secure without the user's permission and perform operations such as reading or adding non-public content. As a...
CVE-2020-8481
For ABB products ABB Ability™ System 800xA and related system extensions versions 5.1, 6.0 and 6.1, Compact HMI versions 5.1 and 6.0, Control Builder Safe 1.0, 1.1 and 2.0, Symphony Plus -S+ Operations 3.0 to 3.2 Symphony Plus -S+ Engineering 1.1 to 2.2, Composer Harmony 5.1, 6.0 and 6.1, Melody...
The vulnerability of the uvc kernel component in the Linux operating system, which allows a hacker to trigger a service failure
The vulnerability of the uvc component in the Linux operating system is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to access confidential information...
Huawei EMUI和Huawei HarmonyOS 安全漏洞
Huawei EMUI is a mobile operating system developed based on Android.Huawei HarmonyOS is an operating system. Provides a full-scene distributed operating system based on a microkernel. Huawei HarmonyOS and EMUI have a security vulnerability that can be exploited by an attacker to cause...
ALPINE-CVE-2023-20588
A division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality...
Juniper Networks Junos OS Evolved 安全漏洞
Juniper Networks Junos OS Evolved is an updated version of Juniper Networks' Junos OS. A security vulnerability in Juniper Networks Junos OS Evolved, which arises from an insecure default resource initialization, can be exploited by an attacker to gain access to certain confidential information a...
The vulnerability in the LDAP Account Manager web application, related to the lack of measures taken to protect confidential information, allows a perpetrator to obtain LDAP authentication credentials.
The vulnerability in the LDAP Account Manager web application relates to the lack of measures taken to protect confidential information. Exploiting this vulnerability could allow a perpetrator to obtain LDAP authentication credentials...
CVE-2021-41092
A confidential data leak vulnerability was found in Docker CLI. The execution of docker login to a private registry may send provided credentials in a misconfigured docker credentials store to the registry-1.docker.io rather than the specified private registry. This flaw allows an attacker to ste...
U.S. Dept Of Defense: [HTA2] Authorization Bypass on https://██████ leaks confidential aircraft/missile information
Vulnerability description not provided...
CVE-2017-1002151
Pagure 3.3.0 and earlier is vulnerable to loss of confidentially due to improper authorization...
The vulnerability of the Android operating system, which allows a perpetrator to compromise the confidentiality of information
The vulnerability of the Android operating system’s Framework API is related to lack of access control. Exploiting this vulnerability can allow a malicious actor to compromise the confidentiality of sensitive information...
The vulnerability of the SSH network protocol, related to the disclosure of information, allows a perpetrator to gain access to confidential data.
The vulnerability of the SSH network protocol is related to an error in password hashing. Exploiting this vulnerability can allow a malicious actor to gain access to confidential data remotely...
The vulnerability of the Flash Player software allows attackers to obtain confidential information or circumvent existing access restrictions.
The vulnerability of the Flash Player software is related to the lack of protection for service data. Exploiting this vulnerability can allow a malicious actor to bypass existing access restrictions or obtain confidential information using uncertain vectors...
The vulnerability of the Windows operating system allows a perpetrator to bypass the Secure Kernel Mode protection mechanism and obtain confidential information.
The vulnerability of the Windows operating system is related to the lack of protection for service data. Exploiting this vulnerability allows a malicious actor, operating locally, to bypass the security mechanisms of Secure Kernel Mode and obtain confidential information through a specially creat...