PT-2026-34109

Name of the Vulnerable Software and Affected Versions Oracle Identity Manager Connector version 12.2.1.4.0 Description An issue in the Core component of Oracle Fusion Middleware allows an unauthenticated attacker with network access via HTTPS to compromise the system. This can lead to unauthorize...

EUVD-2017-4625

Malware in sbrugna...

EUVD-2022-26486

Malicious code in bioql PyPI...

The vulnerability of the Advanced Notification Service (ANS) management service in the HarmonyOS operating system allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the Advanced Notification Service ANS management service in the HarmonyOS operating system is related to the use of memory after deallocation. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protecte...

The vulnerability of the raid1_reshape() function in the Linux operating system allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the raid1reshape function in the Linux operating system is related to improper cleaning or release of resources. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of the squashfs_fill_super() function in the Squashfs component of Linux operating systems allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the squashfsfillsuper function in the Squashfs component of Linux operating systems is related to reading beyond the buffer boundaries of memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...

The vulnerability of the regs_get_kernel_stack_nth() function in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the regsgetkernelstacknth function in the Linux operating system is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected informati...

The vulnerability of the Aggregate Term Handler component in the SQLite database management system allows a attacker to compromise privacy, integrity, and accessibility.

The vulnerability of the Aggregate Term Handler component in the SQLite database management system is related to numerical truncation errors. Exploiting this vulnerability could allow an attacker to compromise privacy, integrity, and accessibility of the data...

The vulnerability of the EMUI audio framework of the HarmonyOS operating system allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the EMUI audio framework of the HarmonyOS operating system is related to deficiencies in access control. Exploiting this vulnerability could allow attackers to compromise the confidentiality, integrity, and accessibility of protected information...

The vulnerability of the nft_tunnel component in the Linux operating system allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the nfttunnel component in the Linux operating system is related to the operation of writing data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...

The vulnerabilities of the Go programming language’s packages net/http, x/net/proxy, and x/net/http/httpproxy allow attackers to compromise the confidentiality and accessibility of protected information.

The vulnerability of the net/http, x/net/proxy, and x/net/http/httpproxy libraries in the Go programming language is related to incorrect matching of hosts with proxy server templates. Exploiting this vulnerability can allow an attacker to compromise the confidentiality and accessibility of...

The vulnerability of the cv_upgrade_sensor_firmware() function in the Dell ControlVault3 security driver package allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the cvupgradesensorfirmware function in the Dell ControlVault3 security driver suite is related to writing beyond buffer boundaries. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...

The vulnerability of the microprogramming software of AMI MegaRAC SP-X controllers, related to the bypassing of authentication mechanisms, allows attackers to influence the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the microprogramming software of AMI MegaRAC SP-X controllers relates to the bypassing of authentication processes. Exploiting this vulnerability allows a malicious actor to influence the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of the check_func_arg() function in the kernel/bpf/verifier.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the checkfuncarg function in the kernel/bpf/verifier.c module of the Linux operating system is related to improper control of resource identifiers “resource injection”. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

The vulnerability of the General component of Oracle Secure Backup software allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the General component of Oracle Secure Backup is related to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of the Ribbon Communications Apollo 9608 platform, related to errors in privilege management, allows attackers to influence the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the Ribbon Communications Apollo 9608 optical transport network platform is related to errors in privilege management. Exploiting this vulnerability could allow an attacker to influence the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of the web_sys_infoContact_post() function in PLANET Technology’s microcontroller software allows a intruder to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the websysinfoContactpost function in PLANET Technology’s microcontroller software stems from the operation of the function beyond the buffer boundaries in memory when processing the contact parameter. Exploiting this vulnerability could allow an attacker to compromise the...

The vulnerability of embedded software developed by Qualcomm, related to unvalidated array indexing, allows attackers to influence the integrity, accessibility, and confidentiality of protected information.

The vulnerability of microprogramming software in embedded Qualcomm chips is related to unverified array indexing. Exploiting this vulnerability can allow attackers to influence the integrity, accessibility, and confidentiality of the protected information...

The vulnerability of Qualcomm’s security microprogramming software, related to unvalidated array indexing, allows attackers to influence the integrity, accessibility, and confidentiality of protected information.

The vulnerability of Qualcomm’s security microprogramming software relates to unverified array indexing. Exploiting this vulnerability could allow attackers to influence the integrity, accessibility, and confidentiality of the protected information...

The vulnerability of the loginAuth function in the TOTOlink EX1800T Wi-Fi extension software allows a perpetrator to influence the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the loginAuth function in the TOTOlink EX1800T Wi-Fi extension software lies in the fact that the operation results are stored outside of the buffer in memory. Exploiting this vulnerability could allow an attacker to influence the confidentiality, integrity, and accessibility...