Microsoft Azure Site Recovery Remote Code Execution Vulnerability

Microsoft Azure Site Recovery is a site recovery DRaaS from Microsoft Corporation for cloud and hybrid cloud architectures. Microsoft Azure Site Recovery is vulnerable to remote code execution. The vulnerability stems from the failure of a network system or product to properly filter special...

Microsoft Windows Kernel Information Disclosure Vulnerability (CNVD-2022-65612)

The Microsoft Windows Kernel is the kernel of the Windows operating system from the American company Microsoft. An information disclosure vulnerability exists in Microsoft Windows Kernel. The vulnerability arises from errors in configuration, etc. in the operation of a networked system or product...

Microsoft Windows DiskUsage.exe remote code execution vulnerability

Microsoft Windows DiskUsage.exe is a remote code execution vulnerability in Microsoft Windows, an operating system used by personal devices. The vulnerability stems from the failure of a network system or product to properly filter special elements in code segments constructed from external input...

Microsoft Windows Graphics Component Information Disclosure Vulnerability (CNVD-2022-74592)

Microsoft Graphics Components is a graphics driver component of Microsoft Corporation USA.An information disclosure vulnerability exists in Microsoft Windows Graphics Components. The vulnerability stems from errors in the configuration of the network system or product during operation. An attacke...

Microsoft Dynamics 365 (on-premises) Remote Code Execution Vulnerability

Microsoft Dynamics is a suite of ERP business solutions for multinational companies from Microsoft Corporation USA. A remote code execution vulnerability exists in Microsoft Dynamics 365 on-premises, which includes financial management, production management, and business intelligence management...

Microsoft Windows Graphics Component Remote Code Execution Vulnerability (CNVD-2022-74593)

A remote code execution vulnerability exists in Microsoft Windows Graphics Components, which originates when a network system or product fails to properly filter external input data during the construction of code segments. elements during the construction of code segments from external input dat...

Microsoft Windows Hyper-V Shared Virtual Hard Disks Information Disclosure Vulnerability

An information disclosure vulnerability exists in Microsoft Windows Hyper-V Shared Virtual Hard Disks, a tool from Microsoft Corporation that provides hardware virtualization. The vulnerability stems from errors in the configuration of the network system or product during operation. An attacker...

Microsoft Windows Remote Procedure Call Runtime Remote Code Execution Vulnerability

Microsoft Windows Remote Procedure Call Runtime is a technology used to create distributed client/server programs from Microsoft Corporation USA.Microsoft Windows Remote Procedure Call Runtime is vulnerable to remote code execution vulnerability. The vulnerability stems from the failure of a...

Microsoft Windows iSCSI Target Service Information Disclosure Vulnerability

Microsoft Windows is a set of operating systems for use on personal devices from the American company Microsoft. An information disclosure vulnerability exists in Microsoft Windows iSCSI Target Service. The vulnerability arises from a configuration or other error in the operation of a networked...

Microsoft Office Remote Code Execution Vulnerability (CNVD-2022-29564)

Microsoft Office is a suite of office software products from Microsoft Corporation USA. Microsoft Office Excel is vulnerable to remote code execution. The vulnerability stems from the process of constructing code segments from external input data, where the network system or product fails to...

KevinLAB Building Energy Management System Access Control Error Vulnerability

KevinLAB Building Energy Management System is a building energy management system from KevinLAB Korea.An access control error vulnerability exists in KevinLAB Building Energy Management System version 1.0.0, which stems from a network system or The product does not properly restrict access to...

IBM System Storage DS8000 Hardware Management Console信息泄露漏洞

IBM System Storage DS8000 Hardware Management Console is a hardware management console for the DS8000, an IBM storage media platform from IBM, U.S.A. The IBM System Storage DS8000 Hardware Management Console An information disclosure vulnerability exists, which stems from a network system or...

WordPress MapPress Maps plugin authorization problem vulnerability

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language. WordPress plugin is a WordPress open source application plugin. WordPress MapPress Maps plugin has an authorization problem vulnerability that stems from a lack of authentication measures or...

HPE OneView File Reading Vulnerability

A file read vulnerability exists in versions prior to HPE OneView 6.6, which stems from a network system or product that does not properly restrict access to resources from unauthorized roles. An attacker could exploit this vulnerability to cause local unauthorized file read access...

HPE OneView Information Disclosure Vulnerability

HPE OneView is a software from Hewlett Packard Enterprise HPE that facilitates automated device management for IT departments. HPE OneView versions prior to 6.6 contain an information disclosure vulnerability that stems from a configuration or other error in the operation of the network system or...

Huawei HarmonyOS DFX module access control error vulnerability

Huawei HarmonyOS is an operating system from Huawei China. An access control error vulnerability exists in the Huawei HarmonyOS DFX module, which provides a microkernel-based, full-scenario distributed operating system. The vulnerability stems from a network system or product that does not proper...

Open5Gs Denial of Service Vulnerability

Open5Gs is a C open source implementation of 5G Core and Epc, the core network for the Lte/Nr network.A denial of service vulnerability exists in Open5Gs version 2.1.4 of AMF, which stems from a network system or product that does not properly validate data boundaries when performing operations o...

Apple iOS and Apple iPadOS Input Validation Error Vulnerability

Apple iOS and Apple iPadOS are both products of Apple Inc. Apple iOS is an operating system developed for mobile devices and Apple iPadOS is an operating system for iPad tablets. Apple iOS and Apple iPadOS are vulnerable to an input validation error, which stems from The vulnerability is caused b...

Samsung ApkInstaller licensing issue vulnerability

Samsung ApkInstaller is a tool from Samsung, a South Korean company, for installing Apk files from Android memory cards. It is used to install Apk files from Android memory cards.An authorization issue vulnerability exists in the dynamic receiver in Samsung ApkInstaller, which stems from a lack o...

Aternity SteelCentral AppInternals Remote Code Execution Vulnerability

Aternity SteelCentral AppInternals is a monitoring modern automation solution from Aternity, Inc. A remote code execution vulnerability exists in Aternity SteelCentral AppInternals, which stems from a failure of a network system or product to properly filter specific elements of external input da...