ROS-20260512-73-0025

A vulnerability in the kernel of the Oracle VM VirtualBox virtualization software tool is related to a flaw in the data protection mechanism. Exploitation of the vulnerability may allow an attacker to bypass existing security mechanisms...

ROS-20260420-73-0025

Vulnerability in python-aiohttp related to lack of service data protection. Exploitation of the vulnerability may allow a remote attacker to gain unauthorized access to protected information...

PT-2026-30972

OrangeHRM is a comprehensive human resource management HRM system. From 5.0 to 5.8, OrangeHRM Open Source encrypts certain sensitive fields with AES in ECB mode, which preserves block-aligned plaintext patterns in ciphertext and enables pattern disclosure against stored data. This vulnerability i...

CVE-2025-20305

A vulnerability in the web-based management interface of Cisco ISE could allow an authenticated, remote attacker to obtain sensitive information from an affected device. This vulnerability exists because certain files lack proper data protection mechanisms. An attacker with read-only Administrato...

EUVD-2011-4691

Malware in sbrugna...

The vulnerability of the Mozilla Firefox browser on Android operating systems relates to a violation of data protection mechanisms, allowing attackers to circumvent existing security restrictions.

The vulnerability of the Mozilla Firefox browser on Android operating systems is related to a flaw in the data protection mechanism. Exploiting this vulnerability allows an attacker to bypass existing security restrictions remotely...

The vulnerability of Juniper Networks’ Junos OS operating systems arises from a flaw in the data protection mechanism, allowing attackers to circumvent existing security restrictions.

The vulnerability of Juniper Networks’ Junos OS lies in the compromised data protection mechanism. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions remotely...

The vulnerability of the Citrix Secure Access Client software for secure remote access on the Mac OS lies in a flaw related to data protection mechanisms. This flaw allows attackers to gain unauthorized access and modify or read protected information.

The vulnerability of the Citrix Secure Access Client software for secure remote access on the Mac OS is related to a flaw in the data protection mechanism. Exploiting this vulnerability can allow an attacker to gain unauthorized access to and modify, or read, protected information...

CVE-2011-4702

The Nimbuzz com.nimbuzz application 2.0.8 and 2.0.10 for Android does not properly protect data, which allows remote attackers to read or modify a contact list via a crafted application...

The vulnerability of the FactoryTalk Security platform, a manufacturing process management platform, allows attackers to circumvent security restrictions and enhance their privileges.

The vulnerability of the FactoryTalk Security platform for manufacturing process management is related to a flaw in the data protection mechanism. Exploiting this vulnerability allows an attacker to bypass security restrictions and gain increased privileges...

The vulnerability of the Java framework for securing industrial applications using Spring Security involves a flaw in the data protection mechanism, allowing attackers to compromise the integrity of the protected information.

The vulnerability of the Java framework for securing industrial applications using Spring Security is related to a flaw in the data protection mechanism. Exploiting this vulnerability allows an attacker, operating remotely, to compromise the integrity of the protected information...

The vulnerability of the virtual learning environment Moodle, related to insufficient protection of operational data, allows a intruder to gain unauthorized access to protected information.

The vulnerability in the virtual learning environment Moodle is related to insufficient protection of operational data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the SAP NetWeaver Virus Scan Interface (NW-VSI) programming integration platform for SAP NetWeaver Application Server ABAP and ABAP Platform allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the SAP NetWeaver Virus Scan Interface NW-VSI software integration platform for SAP NetWeaver Application Server ABAP and ABAP Platform is related to a flaw in the data protection mechanism. Exploiting this vulnerability allows an attacker to compromise the confidentiality,...

The vulnerability of the Windows operating system’s Network Authentication Protocol NTLM implementation allows a perpetrator to compromise the confidentiality of protected information.

The vulnerability of the Windows operating system’s Network Authentication Protocol NTLM implementation is related to a flaw in the data protection mechanism. Exploiting this vulnerability allows an attacker to compromise the confidentiality of the protected information...

PT-2025-3053 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.7.2 macOS versions prior to 14.7.2 macOS versions prior to 15.2 Description: The issue is related to a lack of protection for sensitive data, which may allow an application to access protected user data. This proble...

The vulnerability of Intel Xeon processors relates to a flaw in the data protection mechanism, which allows attackers to enhance their privileges.

The vulnerability of Intel Xeon processors is related to a breach in the data protection mechanism. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of Windows Defender Application Control (WDAC) on Windows operating systems allows attackers to circumvent existing security restrictions.

The vulnerability of Windows Defender Application Control WDAC on Windows operating systems relates to a flaw in the data protection mechanism. Exploiting this vulnerability can allow attackers to circumvent existing security restrictions...

The vulnerability of the jscript9legacy.dll library in the Antimalware Scan Interface (AMSI) component of Microsoft Windows operating systems allows a malicious actor to circumvent security restrictions.

The vulnerability of the jscript9legacy.dll library in the Antimalware Scan Interface AMSI component of Microsoft Windows operating systems is related to a flaw in the data protection mechanism. Exploiting this vulnerability could allow an attacker to circumvent security restrictions...

PT-2024-7177 · Microsoft · Exchange Server

Name of the Vulnerable Software and Affected Versions: Microsoft Exchange Server affected versions not specified Description: The issue is related to a lack of protection for service data in Microsoft Exchange Server, which can be exploited to disclose protected information. Recommendations: At t...

The vulnerability of Microsoft Publisher software lies in its data protection mechanisms being breached, allowing attackers to circumvent existing security restrictions.

The vulnerability of Microsoft Publisher software is related to a flaw in the data protection mechanism. Exploiting this vulnerability could allow an attacker to circumvent existing security restrictions...