The vulnerability of the FortiMail IBE (Identity-Based Encryption) service of the FortiMail email protection system allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the FortiMail IBE Identity-Based Encryption service of the FortiMail email protection system lies in the lack of encryption measures for protected data. Exploiting this vulnerability could allow an attacker operating remotely to gain unauthorized access to protected informati...

PT-2021-3830 · Microsoft · Windows Services For Nfs +1

Name of the Vulnerable Software and Affected Versions: Windows Services for NFS affected versions not specified Description: The issue is related to insufficient protection of service data, which can be exploited by a remote attacker to gain unauthorized access to protected information. This can...

The vulnerability of the microprogrammed IP cameras from Bosch, models CPP6 UHD/MP, CPP7 UHD/MP, and CPP7.3 UHD/MP, is related to the absence of authentication procedures. This allows intruders to gain unauthorized access to protected information or alter settings.

The vulnerability of the microprogrammed IP cameras from Bosch, models CPP6 UHD/MP, CPP7 UHD/MP, and CPP7.3 UHD/MP, is related to the absence of authentication procedures for critical functions. Exploiting this vulnerability can allow an unauthorized person to gain unauthorized access to protecte...

The vulnerabilities of PDF viewing and editing programs like Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, and Adobe Acrobat 2017/Adobe Acrobat Reader 2017 involve reading beyond the buffer in memory, allowing attackers to gain unauthorized access to protected information.

The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2017, and Adobe Acrobat Reader 2017 are related to reading data beyond the buffer in memory. Exploiting these vulnerabilities can allow an attacker to...

The vulnerability of the DevTools set of tools for web development in the Google Chrome web browser allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the DevTools suite for web development in the Google Chrome web browser relates to the use of memory after it is released. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information by opening a specially created malicious web...

The vulnerabilities of PDF viewer programs such as Adobe Reader and Document Cloud, as well as PDF editing programs like Adobe Acrobat Document Cloud and Adobe Acrobat, are related to reading data beyond the buffer in memory. This allows attackers to disclose protected information.

The vulnerabilities of PDF viewer programs such as Adobe Reader and Document Cloud, as well as PDF editing programs like Adobe Acrobat and Document Cloud, are related to reading data beyond the buffer in memory. Exploiting these vulnerabilities can allow attackers to disclose protected informatio...

PT-2021-5015 · Microsoft · Windows +1

Name of the Vulnerable Software and Affected Versions: Microsoft Windows affected versions not specified Description: The issue is related to a component of Microsoft Windows, specifically Media Foundation, and involves the disclosure of information. Exploitation of this issue could allow an...

The vulnerability in the web interface of the Cisco Identity Services Engine allows a perpetrator to execute arbitrary code and disclose protected information.

The vulnerability in the web interface of the Cisco Identity Services Engine exists due to the lack of protective measures for the website structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code and disclose sensitive information...

The vulnerability in the upload.php PHP form creator of Machform allows a hacker to compromise the confidentiality and integrity of the protected information.

The vulnerability in the upload.php PHP form builder of Machform exists due to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality and integrity of the protected information...

The vulnerability of the Keycloak identity and access management software lies in its authentication mechanism, which has flaws. This allows attackers to gain unauthorized access to protected information.

The vulnerability of the Keycloak identity and access management software is related to shortcomings in the WebAuthn authentication mechanism. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the Symfony software platform for developing and managing web applications relates to information disclosure, which allows attackers to gain unauthorized access to protected information.

The vulnerability of the Symfony software platform for developing and managing web applications is related to the exposure of sensitive information. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the portal/patient/_machine_config.php component of the software for managing medical organizations OpenEMR allows a intruder to gain unauthorized access to protected information.

The vulnerability of the portal/patient/machineconfig.php component of the software for managing medical organizations OpenEMR is related to insufficient checking of permission assignment for critical resources. Exploiting this vulnerability may allow a malicious actor, operating remotely, to gai...

The vulnerability of the Magento Commerce software platform for developing and managing online stores relates to access control errors, which allow unauthorized users to gain unauthorized access to protected data.

The vulnerability of the Magento Commerce software platform for developing and managing online stores is related to lack of access control. Exploiting this vulnerability could allow an attacker operating remotely to gain unauthorized access to protected data...

The vulnerability of the Bluetooth stack implementation in the Red Hat Enterprise Linux kernel allows a intruder to gain unauthorized access to protected information.

The vulnerability of the Bluetooth stack implementation in the Red Hat Enterprise Linux kernel is related to errors in processing certain AMP packets. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information remotely...

The vulnerability of the do_hidp_sock_ioctl function in the Linux operating system’s kernel allows a hacker to disclose protected information.

The vulnerability of the dohidpsockioctl function in the Linux kernel’s net/bluetooth/hidp/sock.c file is related to the lack of measures to sanitize input data. Exploiting this vulnerability could allow an attacker to disclose protected information using the HIDPCONNADD command...

The vulnerability of the AVX2 Montgomery procedure in the OpenSSL library allows a hacker to gain unauthorized access to protected information.

The vulnerability of the AVX2 Montgomery procedure in the OpenSSL library is related to deficiencies in data protection. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information using the secret key DH1024...

The vulnerability of Mac OS operating systems, related to deficiencies in data protection for system data, allows attackers to gain unauthorized access to protected information.

The vulnerability of Mac OS operating systems is related to deficiencies in data protection. Exploiting this vulnerability can allow a malicious actor, acting remotely, to gain unauthorized access to protected information...

The vulnerability in the vManage web interface of the software-defined Cisco SD-WAN network allows a malicious individual to gain unauthorized access to protected information.

The vulnerability of the vManage web interface of the Cisco SD-WAN software-defined network is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information by sending specially crafted requests...

The vulnerability of the IBM Security Verify Access access control system, related to the insecure storage of confidential information, allows attackers to gain unauthorized access to protected data.

The vulnerability of the IBM Security Verify Access system is related to the insecure storage of confidential information. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

The vulnerability of the Apache Derby database management system, related to resource management errors, allows attackers to gain unauthorized access to protected information or cause service failures.

The vulnerability of the Apache Derby database management system is related to resource management errors. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information or cause service failures...