Buffer Overflow

fis-gtm:sid is vulnerable to buffer overflow.The vulnerability exists due improper configuration of buffer size which allows an attacker to crash the system via memcpy call...

Denial Of Service (DoS)

OPCFoundation.NetStandard.Opc.Ua is vulnerable to denial of service. The vulnerability exists due to improper configuration of maximum chunk count which allows malicious clients to cause an application crash via a carefully crafted message...

Information Disclosure

play2.12 is vulnerable to information disclosure. The vulnerability exists due to the improper configuration use in DefaultHttpErrorHandler, allowing an attacker to gain access to sensitive information through the error message in stack trace by providing some invalid values...

GHSA-5JJR-GMQ3-F986 MoinMoin has improper default configuration

The default configuration of cfg.packagepagesactionsexcluded in MoinMoin before 1.8.7 does not prevent unsafe package actions, which has unspecified impact and attack vectors...

SQL Injection

moodle/moodle is vulnerable to SQL Injection. The vulnerability exists due to improper configuration in the getoptions function of awardcriteriaprofile.php which allows an attacker to inject malicious sql queries...

CVE-2021-39992

There is an improper security permission configuration vulnerability on ACPU.Successful exploitation of this vulnerability may affect service confidentiality, integrity, and availability...

Design/Logic Flaw

There is an improper security permission configuration vulnerability on ACPU.Successful exploitation of this vulnerability may affect service confidentiality, integrity, and availability...

CVE-2021-39992

There is an improper security permission configuration vulnerability on ACPU.Successful exploitation of this vulnerability may affect service confidentiality, integrity, and availability...

Mageia: Security Advisory (MGASA-2021-0035)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

GHSA-X6JV-5VFG-GM7X Path traversal in ServiceCenter

Improper configuration will cause ServiceComb ServiceCenter Directory Traversal problem in ServcieCenter 1.x.x versions and fixed in 2.0.0...

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Improper configuration will cause ServiceComb ServiceCenter Directory Traversal problem in ServcieCenter 1.x.x versions and fixed in 2.0.0...

CVE-2021-21501

Improper configuration will cause ServiceComb ServiceCenter Directory Traversal problem in ServcieCenter 1.x.x versions and fixed in 2.0.0...

CVE-2021-21501

Improper configuration will cause ServiceComb ServiceCenter Directory Traversal problem in ServcieCenter 1.x.x versions and fixed in 2.0.0...

Important: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

Design/Logic Flaw

Node.js before 16.4.1, 14.17.2, and 12.22.2 is vulnerable to local privilege escalation attacks under certain conditions on Windows platforms. More specifically, improper configuration of permissions in the installation directory allows an attacker to perform two different escalation attacks: PAT...

CVE-2021-22921

Node.js before 16.4.1, 14.17.2, and 12.22.2 is vulnerable to local privilege escalation attacks under certain conditions on Windows platforms. More specifically, improper configuration of permissions in the installation directory allows an attacker to perform two different escalation attacks: PAT...

CVE-2021-25399

Improper configuration in Smart Manager prior to version 11.0.05.0 allows attacker to access the file with system privilege...

CVE-2021-25399

Improper configuration in Smart Manager prior to version 11.0.05.0 allows attacker to access the file with system privilege...

CVE-2021-25399

CVE-2021-25399 describes an improper configuration in Samsung Mobile Smart Manager prior to version 11.0.05.0 that allows an attacker to access a file with system privileges. The vulnerability affects Smart Manager (older Samsung devices) and is rooted in misconfiguration rather than code exploit...

CVE-2021-25399

Improper configuration in Smart Manager prior to version 11.0.05.0 allows attacker to access the file with system privilege...