The vulnerability of the graphical user interface of the artificial intelligence-based security threat detection software FortiAIOps allows a perpetrator to disclose protected information.

The vulnerability of the graphical user interface of the artificial intelligence-based security threat detection software FortiAIOps is related to the lack of protection for operational data. Exploiting this vulnerability can allow a malicious actor to disclose the protected information stored in...

The vulnerability of the Git-based software platform for collaborative code development on GitLab relates to an error in token processing by LFS. This error allows attackers to gain unauthorized access to protected information and write arbitrary files.

The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to an error in token processing for LFS operations. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information and...

CVE-2024-34610

Improper access control in ExtControlDeviceService prior to SMR Aug-2024 Release 1 allows local attackers to access protected data...

CVE-2024-34610

Improper access control in ExtControlDeviceService prior to SMR Aug-2024 Release 1 allows local attackers to access protected data...

CVE-2024-34610

Improper access control in ExtControlDeviceService prior to SMR Aug-2024 Release 1 allows local attackers to access protected data...

CVE-2024-34610

CVE-2024-34610 is an improper access-control flaw in Samsung’s ExtControlDeviceService (affecting Samsung Mobile devices) that permits local attackers to access data they should not access. The underlying issue is restricted by the release scope noted as SMR Aug-2024 Release 1; multiple sources (...

CVE-2024-34610

Improper access control in ExtControlDeviceService prior to SMR Aug-2024 Release 1 allows local attackers to access protected data...

ROS-20240807-05

A vulnerability in the PostPolicyBucket component of the MinIO object storage server is related to errors in privilege management. privilege management errors. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code by sending specially crafted HTTP...

The vulnerability of the svc_tcp_listen_data_ready() function in the Linux operating system’s RPC (Remote Procedure Call) kernel implementation allows a attacker to compromise the accessibility of protected information.

The vulnerability of the svctcplistendataready function in the net/sunrpc/svcsock.c module, which is part of the Linux operating system’s RPC Remote Procedure Call protocol, relates to the reallocation of previously freed memory due to concurrent access to resources. Exploiting this vulnerability...

The vulnerability of the cachefiles_ondemand_daemon_read() function in the cachefiles file system of the Linux operating system allows a attacker to compromise the accessibility of protected information.

The vulnerability of the cachefilesondemanddaemonread function in the fs/cachefiles/ondemand.c file of the Linux kernel’s cachefile file system is related to the reutilization of previously freed memory due to competitive access to resources race condition. Exploiting this vulnerability could all...

The vulnerability in the web-based client of IBM Datacap Navigator software for document collection and processing involves the unencrypted storage of critical information, allowing an intruder to gain unauthorized access to protected data.

The vulnerability of the IBM Datacap Navigator web client software for document collection and processing involves the unencrypted storage of critical information. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected data...

The vulnerability of platformes for monitoring events, detecting threats, and performing security analytics in IBM QRadar Suite and IBM Cloud Pak for Security lies in the fact that protected information is stored in unencrypted form, allowing attackers to gain unauthorized access to this protected information.

The vulnerabilities of event monitoring platforms, threat detection systems, and security analytics tools from IBM QRadar Suite and IBM Cloud Pak for Security are related to the storage of protected information in unencrypted form. Exploiting these vulnerabilities can allow attackers to gain...

The vulnerability of Acronis Agent, a software protection tool from Acronis Cyber Protect 15, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of Acronis Agent, a software solution for data protection, within Acronis Cyber Protect 15, is related to insufficient protection of operational data due to improper privilege assignment. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthoriz...

The vulnerability of the Experimental Permission Model component in the Node.js software platform allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Experimental Permission Model component in the Node.js software platform is related to errors in permission handling when the --allow-fs-read flag is used. Exploiting this vulnerability can allow a perpetrator to gain unauthorized access to protected information...

The vulnerability of the WorkBench64 module in the GENESIS64 SCADA system allows a intruder to disclose protected information.

The vulnerability of the WorkBench64 module in the GENESIS64 SCADA system is related to improper security checks for standard elements. Exploiting this vulnerability can allow a malicious actor, operating remotely, to disclose protected information...

The vulnerability of the SCADA system MasterSCADA 4D, related to the transmission of information in an open manner, allows a intruder to disclose the protected information.

The vulnerability of the SCADA system MasterSCADA 4D is related to the transmission of information in an open manner. Exploiting this vulnerability can allow a malicious actor to disclose the protected information...

The vulnerability of Fanuc Series 32i CNC controller’s microprogramming software, related to resource management errors, allows attackers to gain unauthorized access to protected information.

The vulnerability of Fanuc Series 32i CNC controller’s microprogramming software is related to resource management errors. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...

The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to gain unauthorized access to protected information.

The vulnerability of the Core component of the Oracle VM VirtualBox software relates to insufficient protection of operational data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information using the HTTP protocol...

The vulnerability of the IBM InfoSphere Information Server software platform, related to the leakage of information in error messages, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the IBM InfoSphere Information Server software platform is related to the leakage of information in error messages. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the MarketplaceKit component in iPadOS and iOS operating systems allows a hacker to disclose protected information.

The vulnerability of the MarketplaceKit component for iPadOS and iOS lies in the lack of protection for sensitive data. Exploiting this vulnerability can allow a malicious actor to disclose the protected information remotely...