The vulnerability of the Windows GDI interface on Windows operating systems allows attackers to disclose protected information.

The vulnerability of Windows GDI graphics device interfaces on Windows operating systems is related to errors in handling memory contents. Exploiting this vulnerability can allow an attacker to disclose protected information remotely...

The vulnerability in the web interface for managing Cisco Video Surveillance Manager allows a perpetrator to disclose protected information.

The vulnerability in the web interface for managing Cisco Video Surveillance Manager exists due to an incorrect restriction on the path to the restricted catalog. Exploiting this vulnerability could allow a malicious actor to disclose protected information by sending specially crafted requests...

The vulnerability of the Kernel Mode Driver component in Intel Graphics Drivers allows attackers to disclose sensitive information that is protected by these drivers.

The vulnerability of the Kernel Mode Driver component in Intel Graphics Drivers is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to disclose protected information...

The vulnerability in the web interface of the Cisco Application Policy Infrastructure Controller allows a perpetrator to disclose protected information.

The vulnerability of the Cisco Application Policy Infrastructure Controller web interface is related to the lack of protection for sensitive data. Exploiting this vulnerability could allow a malicious actor to gain access to protected data remotely...

The vulnerability of the Etlas electronic document management system lies in the lack of protection for SQL query structures, which allows attackers to disclose the protected information.

The vulnerability of the Etlas electronic document management system lies in the lack of protection for the SQL query structure. Exploiting this vulnerability allows a malicious actor to gain access to protected information by entering a specially crafted SQL query into the “Process Name” field o...

The vulnerability of the Messages sub-component of the Oracle Work in Process component in the Oracle E-Business Suite allows a perpetrator to gain unauthorized access to protected data.

The vulnerability of the Messages sub-component of the Oracle Work in Process component in the Oracle E-Business Suite is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected data using the...

The vulnerability of the Advanced UI sub-component of the integrated customer service platform for Internet applications, Oracle WebCenter Sites, allows a malicious actor to gain unauthorized access to protected information.

The vulnerability of the Advanced UI sub-component of the integrated customer service platform for Internet applications, Oracle WebCenter Sites, is related to lack of access control. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to...

The vulnerability of the Consolidation Hierarchy Viewer component of the Oracle General Ledger software, a business automation system within the Oracle E-Business Suite. This component allows unauthorized access to protected data by attackers.

The vulnerability of the Consolidation Hierarchy Viewer component of the Oracle Trade Management software, a business automation system within the Oracle E-Business Suite, is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to...

The vulnerability of the User Interface sub-component of the Oracle Trade Management component in the Oracle E-Business Suite, which allows a malicious actor to gain unauthorized access to protected data.

The vulnerability of the User Interface component of the Oracle Trade Management component in the Oracle E-Business Suite is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected data using th...

The vulnerability of the BI Publisher Security sub-component of the BI Publisher reporting tool (formerly XML Publisher) allows a malicious individual to gain unauthorized access to protected information.

The vulnerability of the BI Publisher Security sub-component of the BI Publisher reporting tool formerly XML Publisher is related to lack of access control. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information using...

The vulnerability of the RemoteCall sub-component of the PeopleSoft Enterprise PT PeopleTools component of the Oracle PeopleSoft Products suite allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the RemoteCall sub-component of the PeopleSoft Enterprise PT PeopleTools component of the Oracle PeopleSoft Products suite is related to access control deficiencies. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to...

The vulnerability of WLS Core Components of Oracle WebLogic Server application servers allows attackers to gain unauthorized access to protected information.

The vulnerability of Oracle WebLogic Server’s application server’s WLS core components is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information using the HTTP protocol...

The vulnerability of the Outside In Filters sub-component of Oracle’s software development kit (SDK) allows a malicious actor to gain unauthorized access to protected information or cause partial service disruption.

The vulnerability of the Outside In Filters sub-component of the Oracle Outside In Technology SDK is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information or cause a partial servic...

The vulnerability of the mod_http2 module in the Apache HTTP Server, related to resource exhaustion, allows attackers to compromise the accessibility of protected data.

The vulnerability of the modhttp2 module in the Apache HTTP Server is related to resource management errors. Exploiting this vulnerability can allow a malicious actor to cause service interruptions by sending specially crafted requests...

The vulnerability of the EJB Container component of Oracle WebLogic Server allows a perpetrator to gain unauthorized access to protected data.

The vulnerability of the EJB Container component of Oracle WebLogic Server is related to access control deficiencies. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected data using the T3 protocol...

The vulnerability of the SAP Disclosure Management software in generating financial reports stems from the lack of protective measures for the website structure, allowing unauthorized access to protected information by attackers.

The vulnerability of the SAP Disclosure Management software for generating financial reports is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerabilities of the Rendezvous Routing Daemon (rvrd), Rendezvous Secure Routing Daemon (rvrsd), Rendezvous Secure Daemon (rvsd), Rendezvous Cache (rvcache), and Rendezvous Daemon Manager (rvdm) – platforms for high-speed data distribution by TIBCO Rendezvous – allow attackers to gain unauthorized access to protected information.

The vulnerabilities of the Rendezvous Routing Daemon rvrd, Rendezvous Secure Routing Daemon rvrsd, Rendezvous Secure Daemon rvsd, Rendezvous Cache rvcache, and Rendezvous Daemon Manager rvdm – a platform for high-speed data distribution by TIBCO Rendezvous – are related to the manipulation of...

The vulnerability of the SAP HANA Extended Application Services development tool lies in the fact that the recording of user credentials in a trace file allows an attacker to access protected information.

The vulnerability of the SAP HANA Extended Application Services development tool lies in the process of recording user credentials in a trace file. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to protected information...

The vulnerability of Intel Software Guard Extensions SDK, related to reclaimed memory, allows a hacker to disclose protected information or cause service failures.

The vulnerability of Intel Software Guard Extensions SDK relates to the reallocation of memory. Exploiting this vulnerability can allow attackers to disclose sensitive information or cause service failures...

The vulnerability of the SAP HANA Extended Application Services development tool, related to errors in XML document processing, allows attackers to gain access to protected information or cause service failures.

The vulnerability of the SAP HANA Extended Application Services development tool is related to errors in processing XML documents. Exploiting this vulnerability can allow a malicious actor to gain access to protected information or cause service failures by using a specially created XML file...