Lucene search
K

91 matches found

BDU FSTEC
BDU FSTEC
added 2024/10/31 12:0 a.m.5 views

The vulnerability of the bootloader component in Android operating systems of Samsung mobile devices allows attackers to influence the confidentiality and accessibility of the protected information.

The vulnerability of the bootloader component in Android operating systems of Samsung mobile devices relates to the execution of operations beyond the buffer in memory. Exploiting this vulnerability could allow an attacker to influence the confidentiality and accessibility of the protected...

7.1CVSS7.5AI score0.00203EPSS
Exploits1References7Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/10/23 12:0 a.m.6 views

Vulnerability of the MySQL Server component: The Telemetry feature of the MySQL Server management system allows a hacker to gain unauthorized access to protected information.

The vulnerability of the MySQL Server component relates to insufficient protection of operational data due to incorrect validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information using the MySQL network...

2.2CVSS6.6AI score0.00639EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2024/03/08 2:15 a.m.3 views

CVE-2024-23275

A race condition was addressed with additional validation. This issue is fixed in macOS Sonoma 14.4, macOS Monterey 12.7.4, macOS Ventura 13.6.5. An app may be able to access protected user data...

4.7CVSS5.7AI score0.00171EPSS
Exploits0References9
OSV
OSV
added 2024/01/10 10:15 p.m.4 views

CVE-2023-38612

The issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.7, iOS 16.7 and iPadOS 16.7, iOS 17 and iPadOS 17, macOS Sonoma 14, macOS Ventura 13.6. An app may be able to access protected user data...

3.3CVSS5.7AI score
Exploits0References9
BDU FSTEC
BDU FSTEC
added 2023/11/27 12:0 a.m.4 views

The vulnerability of Firefox’s Reader Mode in the iOS browser allows a hacker to gain unauthorized access to protected information and perform cross-site scripting attacks.

The vulnerability of Firefox’s Reader Mode for iOS relates to the lack of measures taken to eliminate HTML tags. Exploiting this vulnerability can allow a remote attacker to gain unauthorized access to protected information and perform cross-site scripting attacks...

7.5CVSS6.1AI score0.0031EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2023/09/26 12:0 a.m.3 views

PT-2023-8478 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 14 Description: The issue is related to errors in security settings of the App Sandbox technology in the macOS operating system, which may allow an attacker to exit the isolated software environment and disclose...

5.5CVSS5.8AI score0.00197EPSS
Exploits0References9
BDU FSTEC
BDU FSTEC
added 2023/09/05 12:0 a.m.4 views

The vulnerability of the IPC CanvasTranslator component in browsers such as Mozilla Firefox, Firefox ESR, and the email client Thunderbird allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the IPC CanvasTranslator component in Mozilla Firefox, Firefox ESR, and the Thunderbird email client relates to the use of memory after it is released. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of the...

7.6CVSS6.5AI score0.00545EPSS
Exploits0References14Affected Software11
BDU FSTEC
BDU FSTEC
added 2023/08/01 12:0 a.m.5 views

The vulnerability of the XFRM subsystem in the Linux operating system allows a hacker to gain access to protected information.

The vulnerability of the XFRM subsystem in the Linux operating system is related to reading memory beyond the boundaries of the allocated buffer in the net/xfrm/xfrmuser.c module. Exploiting this vulnerability can allow an attacker to gain access to protected information...

4.4CVSS6.5AI score0.00237EPSS
Exploits0References9Affected Software3
BDU FSTEC
BDU FSTEC
added 2023/04/03 12:0 a.m.7 views

The vulnerability of the Linux operating system’s NFS (Network File System) kernel allows a hacker to gain access to protected information or cause service failures.

The vulnerability of the Linux operating system’s Network File System kernel relates to the reutilization of previously released memory. Exploiting this vulnerability can allow an attacker to gain access to protected information or cause service failures...

7.1CVSS6.4AI score0.00246EPSS
Exploits0References8Affected Software4
BDU FSTEC
BDU FSTEC
added 2022/11/14 12:0 a.m.5 views

The vulnerability of the vector graphics editor CorelDRAW Graphics Suite (formerly CorelDRAW) lies in the ability to read data beyond the buffer boundaries in memory, allowing attackers to gain unauthorized access to protected information.

The vulnerability of the CorelDRAW Graphics Suite formerly CorelDRAW graphic editor relates to reading beyond the buffer boundaries in memory during the syntax analysis of JP2 files. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected information by opening ...

3.3CVSS5.6AI score0.00828EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2022/07/11 12:0 a.m.10 views

The vulnerability of the network software for social games and heroiclabs/nakama applications relates to insufficient restrictions on authentication attempts, allowing a perpetrator to gain unauthorized access to protected information.

The vulnerability of the network software for social games and heroiclabs/nakama applications is related to insufficient restrictions on authentication attempts. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

7.8CVSS7.2AI score0.01468EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/06/06 12:0 a.m.7 views

Vulnerability of the CrlPlatform.dll library in the CorelDRAW Standard graphic editor, which allows a hacker to gain unauthorized access to protected information.

The vulnerability of the CrlPlatform.dll library, which is part of the CorelDRAW Standard graphic editor, relates to reading data outside the buffer in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information using a specially crafted CDR fi...

7.1CVSS6.1AI score0.01533EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/04/20 12:0 a.m.9 views

The vulnerability of the Display Key Combination Fast Access swhkd mechanism in the Wayland display server protocol allows a hacker to gain access to protected information or cause a service failure.

The vulnerability of the Display Key Combination Fast Access daemon, swhkd, in the Wayland display server protocol is related to the ability to connect to the UNIX domain socket /tmp/swhkd.sock. Exploiting this vulnerability allows a remote attacker to gain access to protected information or caus...

9.4CVSS7.8AI score0.01737EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2022/04/11 12:0 a.m.2 views

SAMSUNG SMR 安全漏洞

Samsung SMR is a system patch package from South Korea's Samsung Samsung. Samsung SMR contains an access control error vulnerability that can be exploited by attackers to access protected data under certain conditions...

4.6CVSS5.6AI score0.00098EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2022/03/11 12:0 a.m.19 views

The vulnerability of the webNasIPS module of the TerraMaster operating system for TerraMaster TNAS storage devices allows a hacker to gain access to protected information.

The vulnerability of the webNasIPS module in the TerraMaster operating system for data storage devices called TerraMaster TNAS is related to the possibility of executing arbitrary commands. Exploiting this vulnerability could allow a malicious actor to gain access to protected information...

7.8CVSS5.6AI score0.8405EPSS
Exploits9References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/03/05 12:0 a.m.13 views

The vulnerability of NETGEAR’s integrated router software, including models R6260, R6800, R6700v2, R6900v2, R7450, AC2100, AC2400, and AC2600, arises due to buffer overflows in the stack. This allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the embedded software of NETGEAR routers such as R6260, R6800, R6700v2, R6900v2, R7450, AC2100, AC2400, and AC2600 arises due to buffer overflow on the stack. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility o...

10CVSS8.2AI score0.01199EPSS
Exploits0References3Affected Software8
BDU FSTEC
BDU FSTEC
added 2021/12/17 12:0 a.m.5 views

The vulnerability of the Xstream Java library for converting objects into XML or JSON formats stems from deficiencies in the deserialization mechanism. This allows attackers to gain access to protected information and replace objects on the server side.

The vulnerability of the Xstream Java library for converting objects into XML or JSON formats is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability can allow an attacker to gain access to protected information and replace objects on the server side by...

9.4CVSS6.9AI score0.4999EPSS
Exploits1References19Affected Software29
BDU FSTEC
BDU FSTEC
added 2021/12/07 12:0 a.m.6 views

The vulnerability of the FTM command implementation in Qualcomm’s embedded software allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the FTM command implementation in Qualcomm’s embedded software is caused by buffer overflow. Exploiting this vulnerability can allow attackers to compromise the confidentiality, integrity, and accessibility of the protected information...

7.8CVSS7.7AI score0.00151EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2021/09/01 12:0 a.m.6 views

The vulnerabilities of PDF viewer programs such as Adobe Reader and Document Cloud, as well as PDF editing programs like Adobe Acrobat Document Cloud and Adobe Acrobat, are related to reading beyond the buffer in memory. This allows attackers to gain unauthorized access to protected information.

The vulnerabilities of PDF viewer programs such as Adobe Reader and Document Cloud, as well as PDF editing programs like Adobe Acrobat Document Cloud and Adobe Acrobat, are related to reading data beyond the buffer limit in memory. Exploiting these vulnerabilities can allow an attacker to gain...

7.5CVSS7.7AI score0.03207EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2021/09/01 12:0 a.m.6 views

The vulnerabilities of PDF viewer programs such as Adobe Reader and Document Cloud, as well as PDF editing programs like Adobe Acrobat Document Cloud and Adobe Acrobat, are related to reading beyond the buffer in memory. This allows attackers to gain unauthorized access to protected information.

The vulnerabilities of PDF viewer programs such as Adobe Reader and Document Cloud, as well as PDF editing programs like Adobe Acrobat Document Cloud and Adobe Acrobat, are related to reading data beyond the buffer limit in memory. Exploiting these vulnerabilities can allow an attacker to gain...

7.5CVSS7.7AI score0.03207EPSS
Exploits0References3
Rows per page
Query Builder