Lucene search
+L

70 matches found

BDU FSTEC
BDU FSTEC
added 2023/08/17 12:0 a.m.11 views

The vulnerability of the Smart Card Resource Management Server, a server for managing smart card resources on the Windows operating system, allows a perpetrator to disclose protected information.

The vulnerability of the Smart Card Resource Management Server, a server for managing smart card resources on the Windows operating system, is related to the lack of protection for service data. Exploiting this vulnerability can allow attackers to disclose the protected information...

5.5CVSS6.6AI score0.00589EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/07/26 12:0 a.m.5 views

The vulnerability of the PostScript Printer Driver (Pscript) and PCL6 Class Printer operating systems for Windows allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the PostScript Printer Driver Pscript and PCL6 Class Printer operating systems for Windows is related to insufficient protection of operational data. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...

5.5CVSS6.6AI score0.0052EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/04/11 12:0 a.m.2 views

PT-2023-2297 · Microsoft · Windows Ntfs +1

Name of the Vulnerable Software and Affected Versions: Windows Network File System NFS affected versions not specified Description: The issue is related to insufficient protection of service data in the Network File System NFS of Windows operating systems. It allows a remote attacker to gain...

7.8CVSS9.2AI score0.0159EPSS
Exploits0References7
BDU FSTEC
BDU FSTEC
added 2022/12/14 12:0 a.m.8 views

The vulnerability of microprogrammed software in Schneider Electric’s programmable logic controllers, such as Modicon M340 and Modicon Quantum/Premium, arises from insufficient protection of operational data. This allows attackers to gain unauthorized access to protected information.

The vulnerability of microprogrammed software in Schneider Electric Modicon M340 and Modicon Quantum/Premium programmable logic controllers is related to insufficient protection of operational data. Exploiting this vulnerability can allow unauthorized individuals to gain unauthorized access to...

7.8CVSS7.2AI score0.00954EPSS
Exploits0References3Affected Software2
Positive Technologies
Positive Technologies
added 2022/12/05 12:0 a.m.6 views

PT-2022-6244 · Ami · Ami Megarac

Name of the Vulnerable Software and Affected Versions: AMI MegaRAC affected versions not specified Description: The issue is related to insufficient protection of service data in the implementation of the application programming interface of the AMI MegaRAC firmware controllers for remote...

7.8CVSS7.9AI score0.0171EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2022/11/08 12:0 a.m.5 views

PT-2022-5494 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to insufficient protection of internal data in the Windows GDI+ interface, which can allow an attacker to gain unauthorized access to protected information using a...

5.5CVSS6.1AI score0.00723EPSS
Exploits0References9
BDU FSTEC
BDU FSTEC
added 2022/10/20 12:0 a.m.10 views

The vulnerability of the multimedia viewing function of Cisco Webex Meetings Server and Cisco Webex Meetings allows attackers to circumvent existing security restrictions.

The vulnerability of the multimedia viewing function in Cisco Webex Meetings Server and Cisco Webex Meetings relates to a flaw in the data protection mechanism. Exploiting this vulnerability allows an attacker to circumvent existing security restrictions remotely...

5CVSS5.5AI score0.00825EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2022/06/08 12:0 a.m.14 views

The vulnerability of HID Mercury programmable logic controllers’ microprogramming software relates to a flaw in the data protection mechanism, allowing an attacker to execute arbitrary shell commands.

The vulnerability of HID Mercury programmable logic controllers’ microprogramming software is related to a breach in data protection mechanisms. Exploiting this vulnerability allows an attacker, operating remotely, to execute arbitrary shell commands by replacing the hostname with a specially...

10CVSS8.3AI score0.02323EPSS
Exploits0References7Affected Software9
BDU FSTEC
BDU FSTEC
added 2022/05/17 12:0 a.m.7 views

The vulnerability of the automatic decryption process of Cisco Umbrella Secure Web Gateway (SWG) allows attackers to circumvent existing security restrictions.

The vulnerability of the automatic decryption process of the Cisco Umbrella Secure Web Gateway SWG is related to a flaw in the data protection mechanism. Exploiting this vulnerability allows an attacker to bypass existing security restrictions remotely...

4.1CVSS5.4AI score0.00176EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2022/03/23 12:0 a.m.10 views

The vulnerability of the Jenkins HashiCorp Vault’s software for storing API keys, tokens, and passwords arises from a flaw in its data protection mechanism. This flaw allows attackers to disclose the protected information.

The vulnerability of the Jenkins HashiCorp Vault’s software for storing API keys, tokens, and passwords is related to a flaw in the data protection mechanism. Exploiting this vulnerability could allow an attacker, operating remotely, to expose the protected information...

6.8CVSS6.5AI score0.00809EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/05/24 12:0 a.m.9 views

The vulnerability of the CSC service in the Windows operating system allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the CSC service in the Windows operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

5.5CVSS5.9AI score0.0076EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2021/03/30 12:0 a.m.7 views

The vulnerability of the Microsoft Quantum Development Kit for Visual Studio Code, related to the lack of data protection for service data, allows a hacker to execute arbitrary code.

The vulnerability of the Microsoft Quantum Development Kit for Visual Studio Code, which is used for developing and optimizing quantum computing applications, relates to the lack of protection for application data. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

7.8CVSS7.5AI score0.03726EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/02/23 12:0 a.m.7 views

The vulnerability of Skype for Business Server (Microsoft Lync Server) in corporate communication servers, related to the lack of protection for operational data, allows attackers to carry out spoofing attacks.

The vulnerability of Skype for Business Server Microsoft Lync Server corporate communication servers is related to errors in information representation by the user interface. Exploiting this vulnerability can allow attackers to perform spoofing attacks remotely...

6.5CVSS6.5AI score0.0162EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2021/02/09 12:0 a.m.3 views

PT-2021-1924 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to a lack of protection for service data in the Windows Local Print Spooler Service. This allows a remote attacker to execute arbitrary code on the system...

9CVSS8.9AI score0.02276EPSS
Exploits0References7
BDU FSTEC
BDU FSTEC
added 2021/01/13 12:0 a.m.9 views

The vulnerability of the Azure SDK for Java development software package lies in a data protection mechanism flaw, which allows attackers to compromise the confidentiality and integrity of the protected information.

The vulnerability of the Azure SDK for Java development software package is related to a flaw in the data protection mechanism. Exploiting this vulnerability allows an attacker, operating remotely, to compromise the confidentiality and integrity of the protected information...

9.4CVSS7.2AI score0.0359EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2021/01/13 12:0 a.m.10 views

The vulnerability of the software development package for Azure SDK for C lies in a flaw related to data protection mechanisms. This flaw allows attackers to compromise the confidentiality and integrity of the protected information.

The vulnerability of the Azure SDK for C development software package is related to a flaw in the data protection mechanism. Exploiting this vulnerability allows an attacker, operating remotely, to compromise the confidentiality and integrity of the protected information...

9.4CVSS7.2AI score0.03233EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2020/12/28 12:0 a.m.8 views

The vulnerability of the integrated enterprise management system of Microsoft Dynamics NAV, related to the lack of protection for operational data, allows a perpetrator to gain access to protected information.

The vulnerability of the integrated Microsoft Dynamics NAV enterprise management system is related to the lack of protection for operational data. Exploiting this vulnerability can allow a malicious actor to gain access to protected information...

6.8CVSS6.5AI score0.03658EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/10/13 12:0 a.m.9 views

The vulnerability of the MESSAGING and SAP_XIAF components of the software for integrating corporate applications in SAP NetWeaver Process Integration allows a hacker to disclose protected information.

The vulnerability of the MESSAGING and SAPXIAF components of the SAP NetWeaver Process Integration software lies in the lack of protection for operational data. Exploiting this vulnerability can allow a malicious actor to disclose the protected information remotely...

4.3CVSS5.5AI score0.00704EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/07/03 12:0 a.m.6 views

The vulnerability of the Microsoft Visual Studio Code Live Share Extension, related to the lack of data protection for service data, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Microsoft Visual Studio Code Live Share Extension relates to the lack of protection for service data. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information by intercepting tokens from the client to...

5.9CVSS6.8AI score0.02826EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2020/06/30 12:0 a.m.10 views

The vulnerability of the toolsadmin.php component of the D-Link DIR-865L router’s microprogramming software allows a hacker to gain unauthorized access to protected data.

The vulnerability of the toolsadmin.php component in the D-Link DIR-865L router’s microprogramming software is related to the lack of protection for operational data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected data...

7.8CVSS7.2AI score0.00904EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder