91 matches found
The vulnerability of the bootloader component in Android operating systems of Samsung mobile devices allows attackers to influence the confidentiality and accessibility of the protected information.
The vulnerability of the bootloader component in Android operating systems of Samsung mobile devices relates to the execution of operations beyond the buffer in memory. Exploiting this vulnerability could allow an attacker to influence the confidentiality and accessibility of the protected...
Vulnerability of the MySQL Server component: The Telemetry feature of the MySQL Server management system allows a hacker to gain unauthorized access to protected information.
The vulnerability of the MySQL Server component relates to insufficient protection of operational data due to incorrect validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information using the MySQL network...
CVE-2024-23275
A race condition was addressed with additional validation. This issue is fixed in macOS Sonoma 14.4, macOS Monterey 12.7.4, macOS Ventura 13.6.5. An app may be able to access protected user data...
CVE-2023-38612
The issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.7, iOS 16.7 and iPadOS 16.7, iOS 17 and iPadOS 17, macOS Sonoma 14, macOS Ventura 13.6. An app may be able to access protected user data...
The vulnerability of Firefox’s Reader Mode in the iOS browser allows a hacker to gain unauthorized access to protected information and perform cross-site scripting attacks.
The vulnerability of Firefox’s Reader Mode for iOS relates to the lack of measures taken to eliminate HTML tags. Exploiting this vulnerability can allow a remote attacker to gain unauthorized access to protected information and perform cross-site scripting attacks...
PT-2023-8478 · Apple · Apple Macos
Name of the Vulnerable Software and Affected Versions: macOS versions prior to 14 Description: The issue is related to errors in security settings of the App Sandbox technology in the macOS operating system, which may allow an attacker to exit the isolated software environment and disclose...
The vulnerability of the IPC CanvasTranslator component in browsers such as Mozilla Firefox, Firefox ESR, and the email client Thunderbird allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the IPC CanvasTranslator component in Mozilla Firefox, Firefox ESR, and the Thunderbird email client relates to the use of memory after it is released. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of the...
The vulnerability of the XFRM subsystem in the Linux operating system allows a hacker to gain access to protected information.
The vulnerability of the XFRM subsystem in the Linux operating system is related to reading memory beyond the boundaries of the allocated buffer in the net/xfrm/xfrmuser.c module. Exploiting this vulnerability can allow an attacker to gain access to protected information...
The vulnerability of the Linux operating system’s NFS (Network File System) kernel allows a hacker to gain access to protected information or cause service failures.
The vulnerability of the Linux operating system’s Network File System kernel relates to the reutilization of previously released memory. Exploiting this vulnerability can allow an attacker to gain access to protected information or cause service failures...
The vulnerability of the vector graphics editor CorelDRAW Graphics Suite (formerly CorelDRAW) lies in the ability to read data beyond the buffer boundaries in memory, allowing attackers to gain unauthorized access to protected information.
The vulnerability of the CorelDRAW Graphics Suite formerly CorelDRAW graphic editor relates to reading beyond the buffer boundaries in memory during the syntax analysis of JP2 files. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected information by opening ...
The vulnerability of the network software for social games and heroiclabs/nakama applications relates to insufficient restrictions on authentication attempts, allowing a perpetrator to gain unauthorized access to protected information.
The vulnerability of the network software for social games and heroiclabs/nakama applications is related to insufficient restrictions on authentication attempts. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information...
Vulnerability of the CrlPlatform.dll library in the CorelDRAW Standard graphic editor, which allows a hacker to gain unauthorized access to protected information.
The vulnerability of the CrlPlatform.dll library, which is part of the CorelDRAW Standard graphic editor, relates to reading data outside the buffer in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information using a specially crafted CDR fi...
The vulnerability of the Display Key Combination Fast Access swhkd mechanism in the Wayland display server protocol allows a hacker to gain access to protected information or cause a service failure.
The vulnerability of the Display Key Combination Fast Access daemon, swhkd, in the Wayland display server protocol is related to the ability to connect to the UNIX domain socket /tmp/swhkd.sock. Exploiting this vulnerability allows a remote attacker to gain access to protected information or caus...
SAMSUNG SMR 安全漏洞
Samsung SMR is a system patch package from South Korea's Samsung Samsung. Samsung SMR contains an access control error vulnerability that can be exploited by attackers to access protected data under certain conditions...
The vulnerability of the webNasIPS module of the TerraMaster operating system for TerraMaster TNAS storage devices allows a hacker to gain access to protected information.
The vulnerability of the webNasIPS module in the TerraMaster operating system for data storage devices called TerraMaster TNAS is related to the possibility of executing arbitrary commands. Exploiting this vulnerability could allow a malicious actor to gain access to protected information...
The vulnerability of NETGEAR’s integrated router software, including models R6260, R6800, R6700v2, R6900v2, R7450, AC2100, AC2400, and AC2600, arises due to buffer overflows in the stack. This allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the embedded software of NETGEAR routers such as R6260, R6800, R6700v2, R6900v2, R7450, AC2100, AC2400, and AC2600 arises due to buffer overflow on the stack. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility o...
The vulnerability of the Xstream Java library for converting objects into XML or JSON formats stems from deficiencies in the deserialization mechanism. This allows attackers to gain access to protected information and replace objects on the server side.
The vulnerability of the Xstream Java library for converting objects into XML or JSON formats is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability can allow an attacker to gain access to protected information and replace objects on the server side by...
The vulnerability of the FTM command implementation in Qualcomm’s embedded software allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the FTM command implementation in Qualcomm’s embedded software is caused by buffer overflow. Exploiting this vulnerability can allow attackers to compromise the confidentiality, integrity, and accessibility of the protected information...
The vulnerabilities of PDF viewer programs such as Adobe Reader and Document Cloud, as well as PDF editing programs like Adobe Acrobat Document Cloud and Adobe Acrobat, are related to reading beyond the buffer in memory. This allows attackers to gain unauthorized access to protected information.
The vulnerabilities of PDF viewer programs such as Adobe Reader and Document Cloud, as well as PDF editing programs like Adobe Acrobat Document Cloud and Adobe Acrobat, are related to reading data beyond the buffer limit in memory. Exploiting these vulnerabilities can allow an attacker to gain...
The vulnerabilities of PDF viewer programs such as Adobe Reader and Document Cloud, as well as PDF editing programs like Adobe Acrobat Document Cloud and Adobe Acrobat, are related to reading beyond the buffer in memory. This allows attackers to gain unauthorized access to protected information.
The vulnerabilities of PDF viewer programs such as Adobe Reader and Document Cloud, as well as PDF editing programs like Adobe Acrobat Document Cloud and Adobe Acrobat, are related to reading data beyond the buffer limit in memory. Exploiting these vulnerabilities can allow an attacker to gain...