Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from erroneous data leading to an infinite loop...

BIT-PHP-MIN-2024-8925 Erroneous parsing of multipart form data

In PHP versions 8.1. before 8.1.30, 8.2. before 8.2.24, 8.3. before 8.3.12, erroneous parsing of multipart form data contained in an HTTP POST request could lead to legitimate data not being processed. This could lead to malicious attacker able to control part of the submitted data being able to...

The vulnerability of the Intel Alias Checking Trusted Module (Intel ACTM), a microprogramming software component for Intel 4th Generation and 5th Generation processors, allows attackers to exploit it to increase their privileges.

The vulnerability of the Intel Alias Checking Trusted Module Intel ACTM, a microprogramming software component of Intel’s 4th and 5th generation processors, relates to the disclosure of information in the erroneous data area. Exploiting this vulnerability can allow attackers to enhance their...

ROS-20240918-02

A vulnerability in the WebKitGTK web page display module is related to disclosure of information in an erroneous data area of data. Exploitation of the vulnerability allows an attacker acting remotely to gain access to the sensitive data...

The vulnerability of the `filter_var` function in the PHP programming language allows attackers to replace URLs with erroneous data.

The vulnerability of the filterVar function in the PHP programming language is related to insufficient validation of data authenticity. Exploiting this vulnerability could allow an attacker to substitute URLs with erroneous data remotely...

The vulnerability of the IPv6 protocol implementation in the software environment for creating containerized systems called Moby allows a attacker to obtain confidential information.

The vulnerability of the IPv6 protocol implementation for the Moby container isolation system is related to the disclosure of information in the erroneous data field. Exploiting this vulnerability can allow an attacker to obtain confidential information...

The vulnerability in the avatar loading function of the OTRS application allows a violator to execute arbitrary code.

The vulnerability of the avatar loading function in the OTRS application relates to the disclosure of information in the erroneous data area. Exploiting this vulnerability could allow a malicious actor, operating remotely, to execute arbitrary code...

The vulnerability of the Packet Forwarding Engine (PFE) in Juniper Networks’ Junos operating system, which allows a hacker to gain access to confidential data

The vulnerability of the packet forwarding engine PFE in Juniper Networks’ Junos operating system is related to the disclosure of information in the erroneous data area. Exploiting this vulnerability can allow a malicious actor to gain access to confidential data...

The vulnerability of the Bluetooth module of the EMUI operating system of HarmonyOS allows a hacker to disable the Bluetooth function.

The vulnerability of the Bluetooth module of the EMUI operating system of HarmonyOS is related to the disclosure of information in an erroneous data field. Exploiting this vulnerability could allow a remote attacker to cause the Bluetooth function to become unavailable...

The vulnerability of the WebExtension component in the Firefox web browser, related to the disclosure of information in the erroneous data area, allows attackers to gain access to confidential data.

The vulnerability of the WebExtension component in the Firefox web browser is related to the disclosure of information in the erroneous data area. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to confidential data...

EulerOS Virtualization 2.11.0 : curl (EulerOS-SA-2023-2118)

According to the versions of the curl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - When doing HTTPS transfers, libcurl might erroneously use the read callback CURLOPTREADFUNCTION to ask for data to send, even when...

The vulnerability of the Codesys industrial automation software suite, related to the disclosure of information in the erroneous data area, allows a intruder to gain unauthorized access or cause service failures.

The vulnerability of the Codesys industrial automation software suite is related to the disclosure of information in the erroneous data area. Exploiting this vulnerability can allow an intruder to gain unauthorized access or cause service failures...

The vulnerability of the HTTP.sys driver on Windows operating systems allows a hacker to gain unauthorized access to protected information.

The vulnerability of the HTTP.sys driver in Windows operating systems is related to the disclosure of information in the erroneous data area. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the SPNEGO security mechanism for Microsoft Windows operating systems allows a perpetrator to disclose protected information.

The vulnerability of the SPNEGO NEGOEX security mechanism for Microsoft Windows operating systems is related to the disclosure of information in the erroneous data area. Exploiting this vulnerability can allow a malicious actor to disclose the protected information...

The vulnerability of the WebPage rendering module in WebKitGTK, related to the disclosure of information in erroneous data areas, allows attackers to access confidential data.

The vulnerability of the WebPageRendering module in WebKitGTK relates to the disclosure of information in erroneous data areas. Exploiting this vulnerability allows a remote attacker to gain access to confidential data...

The vulnerability of the monitoring tool for VMware vRealize Operations, related to the disclosure of information in the erroneous data area, allows a perpetrator to disclose protected information.

The vulnerability of the monitoring tool for VMware vRealize Operations relates to the disclosure of information in the erroneous data range. Exploiting this vulnerability can allow a malicious actor, operating remotely, to disclose the protected information...

The vulnerability of the Windows operating system’s kernel, which allows a hacker to disclose protected information

The vulnerability of the Windows operating system’s kernel is related to the disclosure of information in the erroneous data area. Exploiting this vulnerability can allow an attacker to disclose the protected information...

The vulnerability of the CIFS file system mounting utility package provided by cifs-utils for Linux operating systems allows a hacker to gain unauthorized access to protected information.

The vulnerability of the CIFS file system mounting utility package developed by cifs-utils for Linux operating systems is related to the disclosure of information in the erroneous data area. Exploiting this vulnerability allows a malicious actor to disclose the protected information remotely...

The vulnerability of the Remote Desktop Protocol Client protocol on the Windows operating system, which allows a hacker to disclose protected information

The vulnerability of the Remote Desktop Protocol Client on the Windows operating system is related to the disclosure of information in the erroneous data field. Exploiting this vulnerability allows a malicious actor to disclose the protected information from a remote location...

The vulnerability of the software for implementing the hypertext environment MediaWiki allows a perpetrator to compromise the integrity of the data.

The vulnerability of the software for implementing the hypertext environment MediaWiki is related to the disclosure of information in the erroneous data area. Exploiting this vulnerability allows a malicious actor, operating remotely, to compromise the integrity of the data...