The vulnerabilities of Intel Converged Security and Manageability Engine and Trusted Execution Engine implementations allow attackers to gain access to protected information due to insufficient validation of input data.

The vulnerability of Intel Converged Security and Manageability Engine and Trusted Execution Engine implementations is related to insufficient validation of input data. Exploiting this vulnerability can allow attackers to gain access to protected information...

The vulnerability of the Windows operating system’s kernel, which allows a hacker to disclose protected information

The vulnerability of the Windows operating system’s kernel is related to the lack of protection for service data. Exploiting this vulnerability can allow an attacker to disclose protected information through a specially created application...

The vulnerabilities of Intel and ARM processors, related to the use of speculative read operations on system registers, allow attackers to exploit these vulnerabilities to disclose protected information.

The vulnerabilities of Intel and ARM processors are related to the use of speculative read operations for system registers. Exploiting these vulnerabilities can allow attackers to disclose system parameters through a specially crafted application...

The vulnerability of the file system configuration settings in the Cisco NX-OSS device’s networking operating system allows a perpetrator to increase their privileges and gain access to protected information.

The vulnerability of the file system configuration settings in the Cisco NX-OSS network operating system devices relates to deficiencies in access control. Exploiting this vulnerability can allow attackers to enhance their privileges and gain access to protected information...

The vulnerability of the microprogramming software used in Moxa EDS and IKS switches allows a intruder to gain unauthorized access to protected information.

The vulnerability of Microprogrammed Software in Moxa EDS and IKS switches stems from the lack of encryption measures for protected data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

CVE-2019-7161

An issue was discovered in Zoho ManageEngine ADSelfService Plus 5.x through build 5704. It uses fixed ciphering keys to protect information, giving the capacity for an attacker to decipher any protected data...

Information disclosure

An issue was discovered in Zoho ManageEngine ADSelfService Plus 5.x through build 5704. It uses fixed ciphering keys to protect information, giving the capacity for an attacker to decipher any protected data...

CVE-2019-7161

An issue was discovered in Zoho ManageEngine ADSelfService Plus 5.x through build 5704. It uses fixed ciphering keys to protect information, giving the capacity for an attacker to decipher any protected data...

The vulnerability of the SSL_shutdown function in the OpenSSL cryptographic security tool, which allows a hacker to disclose protected information

The vulnerability of the SSLshutdown function in the OpenSSL cryptographic security suite is related to the lack of protection for service data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to disclose the protected information...

The vulnerability of D-Link’s microprogrammed router software, related to deficiencies in authentication procedures, allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of D-Link router microprogramming software is related to deficiencies in authentication procedures. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of protected information...

The vulnerability of Microsoft Exchange Server, related to access control deficiencies, allows a perpetrator to gain access to protected information or modify file access rights.

The vulnerability of Microsoft Exchange Server is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to gain access to protected information or modify file access rights...

The vulnerability of Huawei HG router’s micro-programming software, related to security mechanism failures, allows attackers to gain unauthorized access to protected data.

The vulnerability of Huawei HG router microprogramming software is related to security mechanism errors. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected data...

The vulnerability of the JavaScript script handler ChakraCore in the Microsoft Edge browser, which allows a hacker to exploit it to disclose protected information

The vulnerability of the JavaScript script handler ChakraCore in the Microsoft Edge browser is related to errors in processing service data. Exploiting this vulnerability can allow a malicious actor to disclose protected information remotely...

The vulnerability in the get_getnetworkconf.cgi script of the Orange Livebo wireless router’s microprogramming software allows a attacker to gain access to protected information.

The vulnerability in the getgetnetworkconf.cgi script of the wireless router’s microprogramming system is caused by a error in the management of registration data. Exploiting this vulnerability could allow an attacker, operating remotely, to gain access to protected information using the HTTP...

The vulnerability of the Zyxel VMG1312-B10D router’s microprogramming software arises from deficiencies in the checking of path names for access-limited directories. This vulnerability allows attackers to gain access to protected information.

The vulnerability of Zyxel VMG1312-B10D router microprogramming software is related to deficiencies in the checking of path names to restricted access directories. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to protected information by using a specially...

The vulnerability of the RADIUS configuration menu component of the Juniper ATP intrusion prevention system allows a intruder to inject arbitrary JavaScript code into the loaded page and gain access to protected data.

The vulnerability of the RADIUS configuration menu of the Juniper ATP intrusion prevention system is related to insufficient validation of entered data. Exploiting this vulnerability allows a malicious actor to inject arbitrary JavaScript code into the uploaded page and gain access to protected...

The vulnerability of the file upload menu component in the Juniper ATP intrusion prevention system allows a intruder to inject any desired JavaScript code into the uploaded page and gain access to protected data.

The vulnerability of the file upload menu component in the Juniper ATP intrusion prevention system is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to inject arbitrary JavaScript code into the uploaded page and gain access to protected da...

The vulnerability of the Golden VM component in the Juniper ATP intrusion prevention system allows a intruder to inject arbitrary JavaScript code into the loaded page and gain access to protected data.

The vulnerability of the Golden VM component in the Juniper ATP intrusion prevention system is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to inject arbitrary JavaScript code into the uploaded page and gain access to protected data...

The vulnerability of the Portal component in the Oracle PeopleSoft Enterprise PeopleTools business application suite allows a hacker to modify protected data.

The vulnerability of the Portal component in the Oracle PeopleSoft Enterprise PeopleTools business application suite is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain access to modify, add, or delete protected data...

The vulnerability of the Message Display component of the Oracle Email Center messaging software in the Oracle E-Business Suite system, which is used for automating business operations. This vulnerability allows a malicious individual to modify protected data.

The vulnerability of the Message Display component of the Oracle Email Center messaging software in the Oracle E-Business Suite system, a business automation solution, is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain...