Apple macOS 安全漏洞

Apple macOS is a suite of specialized operating systems developed for Mac computers by Apple Inc. in the United States. A security vulnerability exists in Apple macOS Sonoma prior to 14.8.3 and Sequoia prior to 15.7.3, which stems from insufficient data protection and could result in access to...

The vulnerability of the virtual learning environment Moodle, related to insufficient protection of operational data, allows a hacker to disclose protected information.

The vulnerability in the virtual learning environment Moodle is related to insufficient protection of operational data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to disclose the protected information...

The vulnerability of the Jenkins automation server, related to insufficient protection of service data, allows a malicious actor to gain unauthorized access to protected information.

The vulnerability of the Jenkins automation server is related to insufficient protection for service data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

The vulnerability of Zoom’s video conferencing software lies in the insufficient protection of sensitive data, allowing attackers to gain unauthorized access to protected information.

The vulnerability of Zoom video conferencing software is related to insufficient protection of sensitive data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

ROS-20250203-06

A vulnerability in the LibreOffice office suite is related to insufficient protection of proprietary data. Exploitation of the vulnerability could allow an attacker to disclose confidential information LibreOffice office suite vulnerability is related to incorrect path name restriction to a...

The vulnerability of the SAP Commerce Cloud e-commerce platform, related to insufficient protection of sensitive data, allows attackers to disclose protected information.

The vulnerability of the SAP Commerce Cloud e-commerce platform is related to insufficient protection for operational data. Exploiting this vulnerability could allow a malicious actor to disclose the protected information...

The vulnerability of Zoom’s video conferencing software lies in the insufficient protection of sensitive data, allowing attackers to gain unauthorized access to protected information.

The vulnerability of Zoom video conferencing software is related to insufficient protection of sensitive data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the Yealink Meeting Server lies in the insufficient protection of operational data, which allows attackers to gain access to user authentication information.

The vulnerability of the Yealink Meeting Server lies in the insufficient protection of sensitive data. Exploiting this vulnerability can allow a malicious actor to gain access to user authentication credentials remotely...

The vulnerability of the Serial Peripheral Interface (SPI) protection function in AMD microprocessor software allows attackers to circumvent security restrictions, enhance their privileges, or execute arbitrary code.

The vulnerability of the Serial Peripheral Interface SPI protection function in AMD microprocessor-based software is related to insufficient protection of system data. Exploiting this vulnerability can allow attackers to circumvent security restrictions, gain additional privileges, or execute...

The vulnerability of the WP Encryption plugin in the WordPress content management system allows attackers to disclose protected information.

The vulnerability of the WP Encryption plugin in the WordPress content management system is related to insufficient protection of sensitive data. Exploiting this vulnerability can allow a malicious actor to disclose the protected information remotely...

PT-2024-3198 · Oracle · Oracle Webcenter Portal

Name of the Vulnerable Software and Affected Versions: Oracle WebCenter Portal version 12.2.1.4.0 Description: The vulnerability in the Oracle WebCenter Portal product is related to insufficient protection of internal data. It allows a remote attacker to gain unauthorized access to read, add,...

The vulnerability of Windows operating systems’ message queues allows attackers to gain unauthorized access to protected information.

The vulnerability of Message Queuing in Windows operating systems is related to insufficient protection of operational data. Exploiting this vulnerability can allow an attacker, working remotely, to gain unauthorized access to protected information...

The vulnerability of the IBM QRadar SIEM system for event collection and analysis, related to insufficient protection of operational data, allows attackers to gain unauthorized access to protected information.

The vulnerability of the IBM QRadar SIEM event collection and analysis system is related to insufficient protection for operational data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the TCC component in the macOS operating system allows a hacker to gain access to protected information.

The vulnerability of the TCC component in the macOS operating system is related to insufficient protection of service data. Exploiting this vulnerability can allow an attacker to gain access to protected information...

Microsoft Edge browser’s vulnerability, related to insufficient protection of service data, allows attackers to gain unauthorized access to protected information.

The vulnerability of Microsoft Edge relates to insufficient protection of service data. Exploiting this vulnerability can allow a remote attacker to gain unauthorized access to protected information...

The vulnerability of the NTFS file system in Windows operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the NTFS file system in Windows operating systems is related to insufficient protection of operational data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

PT-2023-5959 · Microsoft · Dynamics 365

Name of the Vulnerable Software and Affected Versions: Microsoft Dynamics 365 affected versions not specified Description: The issue is related to insufficient protection of service data in Microsoft Dynamics 365, which can be exploited by a remote attacker to gain unauthorized access to protecte...

The vulnerability of the libxslt library in iPadOS, tvOS, iOS, watchOS, and macOS allows attackers to gain unauthorized access to protected information.

The vulnerability of the libxslt library in iPadOS, tvOS, iOS, watchOS, and macOS relates to insufficient protection of sensitive data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information remotely...

The vulnerability of the TCP/IP protocol implementation in Windows operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the TCP/IP protocol implementation in Windows operating systems is related to insufficient protection of sensitive data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the PostScript Printer Driver (Pscript) and PCL6 Class Printer operating systems for Windows allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the PostScript Printer Driver Pscript and PCL6 Class Printer operating systems for Windows is related to insufficient protection of operational data. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...