The vulnerability of the Ruby interpreter’s methods Dir.open, Dir.new, Dir.entries, and Dir.empty allows attackers to gain unauthorized access to protected data or compromise the integrity of protected information.

The vulnerability of the Dir.open, Dir.new, Dir.entries, and Dir.empty methods in the Ruby programming language exists due to incorrect path name restrictions for restricted-access directories. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected data or...

The vulnerability of the Core RDBMS component of the database management system Oracle Database Server allows a hacker to disclose protected information.

The vulnerability of the Core RDBMS component of the database management system, Oracle Database Server, is related to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor to disclose protected information remotely...

The vulnerability of the Oracle Hospitality Reporting and Analytics component in the Oracle Food and Beverage Applications software package allows a perpetrator to gain unauthorized access to protected data.

The vulnerability of the Oracle Hospitality Reporting and Analytics component in the Oracle Food and Beverage Applications suite is related to access control deficiencies. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected data usin...

The vulnerability of the Siebel UI Framework component of the Oracle Siebel CRM system allows a malicious actor to gain unauthorized access to protected data.

The vulnerability of the Siebel UI Framework component of the Oracle Siebel CRM system relates to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected data using the HTTP protocol...

The vulnerability of the Information Schema component of the MySQL Server database management system allows attackers to gain unauthorized access to protected information.

The vulnerability of the Information Schema component of the MySQL Server database management system is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information using the MySQL networ...

The vulnerability of the Kerberos component in Java SE and Java SE Embedded software allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Kerberos component in Java SE and Java SE Embedded software platforms is related to deficiencies in access control. Exploiting this vulnerability may allow a malicious actor, operating remotely, to gain unauthorized access to protected information using Kerberos network...

The vulnerability of the Open Enclave SDK, a software development tool, is related to an error in object processing in memory, which allows a hacker to disclose sensitive information that is protected by this security measure.

The vulnerability of the Open Enclave SDK software development tools is related to an object handling error in memory. Exploiting this vulnerability can allow a remote attacker to gain access to protected information...

The vulnerability of the Microsoft SQL Server Management Studio database management system, related to the improper assignment of permissions for files, allows a perpetrator to gain access to protected information.

The vulnerability of the Microsoft SQL Server Management Studio database management system is related to the improper assignment of permissions for files. Exploiting this vulnerability can allow an attacker to gain access to protected information remotely...

The vulnerability of the Performance Monitor sub-component of the PeopleSoft Enterprise PeopleTools component of the Oracle PeopleSoft Enterprise business application suite allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Performance Monitor sub-component of the PeopleSoft Enterprise component of the Oracle PeopleSoft Enterprise business application suite is related to access control deficiencies. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthoriz...

The vulnerability of the ZingBox Inspector, a network traffic processor, lies in the unencrypted storage of user credentials, allowing attackers to gain unauthorized access to protected information.

The vulnerability of the ZingBox Inspector network traffic processor is related to the unencrypted storage of user credentials. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the fd_locked_ioctl function in the Linux operating system’s kernel allows a hacker to disclose protected information.

The vulnerability of the fdlockedioctl function in the Linux kernel’s drivers/block/floppy.c file is related to the lack of protection for service data. Exploiting this vulnerability could allow an attacker to disclose protected information...

The vulnerability of the cross-browser system used for developing WebExtensions extensions in the Firefox web browser allows a hacker to gain unauthorized access to protected information.

The vulnerability of the cross-browser system used for developing WebExtensions extensions in the Firefox web browser is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the fly-admin-viewaudit security journal in the FLY environment of the Astra Linux operating system allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the security journal “fly-admin-viewaudit” in the FLY operating system of Astra Linux relates to a bug in log opening with identical modification times. Exploiting this vulnerability could allow an attacker, working remotely, to gain unauthorized access to protected informati...

The vulnerability in the Firefox ESR web console and JavaScript debugger allows a malicious individual to gain unauthorized access to protected information.

The vulnerability in the web console and the JavaScript debugger of the Firefox ESR browser is related to the lack of protection for service data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the microprogramming software for Moxa MGate MB3170, MB3180, MB3270, MB3280, MB3480, and MB3660 arises from the use of a unstable cryptographic algorithm. This allows attackers to gain unauthorized access to protected information.

The vulnerability of the microprogrammed software of Moxa MGate MB3170, MB3180, MB3270, MB3280, MB3480, and MB3660 is related to the use of a unstable cryptographic algorithm. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected...

The vulnerability of the Windows operating system’s kernel allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Windows operating system’s kernel is related to memory initialization errors. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information through a specially created application...

The vulnerability of the Level 3 Maintenance Functions component of the Oracle Retail Convenience Store Back Office software allows a perpetrator to gain access to protected information, alter file access rights, or cause partial service interruption.

The vulnerability of the Level 3 Maintenance Functions component of Oracle Retail Convenience Store Back Office software is related to lack of access control. Exploiting this vulnerability could allow a malicious actor to gain access to protected information, modify file access rights, or cause...

The vulnerability of the Windows Graphics component of the Windows operating system allows attackers to disclose protected information.

The vulnerability of the Windows Graphics component of the Windows operating system is related to errors in object handling in memory. Exploiting this vulnerability can allow an attacker to disclose sensitive information through a specially created application...

The vulnerability of the URL parser in the Node.js library allows a hacker to gain unauthorized access to protected data.

The vulnerability of Node.js’s URL parser lies in errors during the processing of HTTP packets. Exploiting this vulnerability allows a malicious actor, operating remotely, to gain unauthorized access to protected data through HTTP requests...

The vulnerability of the performance optimization function in Lazy FPU context switching of Intel Core processors lies in the lack of protection for service data, allowing attackers to gain unauthorized access to protected information.

The vulnerability of the performance optimization function in Lazy FPU context switching of Intel Core processors is related to the lack of protection for service data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...