PT-2022-6237 · Linux +9 · Linux Kernel +9

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a memory management vulnerability in the Linux kernel, specifically concerning the lack of randomization of exception handling stacks. This could allow an...

The vulnerability of the Apex One antivirus software is related to deficiencies in its authentication process. This allows unauthorized users to gain access to protected information and circumvent security restrictions.

The vulnerability of the Apex One antivirus software is related to deficiencies in the authentication process when processing request parameters. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information and circumvent security...

The vulnerability of the Input component in the Google Chrome browser allows attackers to disclose protected information.

The vulnerability of the Input component in Google Chrome browser relates to the use of memory after it is freed. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information through a specially created web page...

PT-2022-5780 · Microsoft · Network Device Enrollment Service +1

Name of the Vulnerable Software and Affected Versions: Network Device Enrollment Service NDES affected versions not specified Description: The issue is related to errors in security settings, allowing a remote attacker to bypass existing security restrictions and disclose protected information. I...

PT-2022-7383 · Dell · Dell Bsafe Crypto-C Micro Edition +1

Name of the Vulnerable Software and Affected Versions: Dell BSAFE Crypto-C Micro Edition versions before 4.1.5 Dell BSAFE Micro Edition Suite versions before 4.6 Description: The issue is related to an Observable Timing Discrepancy, which can be exploited to reveal protected information. This is...

The vulnerability of the Core component of the ZFS Storage Appliance Kit allows a attacker to compromise the integrity and accessibility of the protected information.

The vulnerability of the Core component of the ZFS Storage Appliance Kit exists due to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to compromise the integrity and accessibility of protected information using the HTTP protocol...

The vulnerability of the webapps component of the server container in Eclipse Jetty allows a hacker to gain unauthorized access to protected information.

The vulnerability of the webapps component of the server container in Eclipse Jetty is related to an incorrect definition of the link before accessing the file. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information...

The vulnerability in the isolated environment of Microsoft Edge and Google Chrome browsers allows attackers to disclose protected information.

The vulnerability in the isolated environment of Microsoft Edge and Google Chrome browsers is related to improperly implemented security checks for standard elements. Exploiting this vulnerability can allow a malicious actor to disclose protected information remotely...

The vulnerability of the LivePreview function in the git-based software platform for collaborative code development on GitLab allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the LivePreview function in the Git-based software platform for collaborative code development on GitLab is related to the lack of protection for operational data. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to...

The vulnerability of the Worklist sub-component of the Workflow component in the Oracle E-Business Suite allows a malicious individual to gain unauthorized access to protected information.

The vulnerability of the Worklist sub-component of the Workflow component in the Oracle E-Business Suite exists due to insufficient validation of input data. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information using the...

The vulnerability of the Background Fetch component in Google Chrome and Microsoft Edge browsers allows attackers to disclose protected information.

The vulnerability of the Background Fetch component in Google Chrome and Microsoft Edge is related to access control deficiencies. Exploiting this vulnerability can allow a malicious actor to disclose protected information through a specially created web page...

The vulnerability of the BIOS microprogramming system of Intel processors allows attackers to disclose protected information.

The vulnerability of the BIOS microprogramming system of Intel processors is related to access control deficiencies. Exploiting this vulnerability can allow an attacker to disclose protected information...

The vulnerability of the Extensions API for Microsoft Edge and Google Chrome browsers allows a perpetrator to disclose protected information.

The vulnerability of the Extensions API for Microsoft Edge and Google Chrome is related to improperly implemented security checks for standard elements. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information through a specially created web page...

The vulnerability of the Azure Storage Library, related to deficiencies in system-defined boundaries, allows attackers to gain unauthorized access to protected information.

The vulnerability of Azure Storage Library is related to deficiencies in the system’s controlled zone segmentation. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of BIG-IP application protection mechanisms, related to reading data beyond the buffer in memory, allows attackers to gain unauthorized access to the protected information.

The vulnerability of BIG-IP application protection mechanisms relates to the reading of data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to the protected information...

The vulnerability of the Linux operating system’s kernel, which allows a hacker to disclose protected information

The vulnerability of the Linux operating system’s kernel is related to the lack of protection for service data. Exploiting this vulnerability allows a malicious actor to disclose the protected information remotely...

The vulnerability of Microsoft Exchange Server servers, related to the disclosure of information, allows attackers to gain unauthorized access to protected information.

The vulnerability of Microsoft Exchange Server servers is related to the exposure of information. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the SAP Authenticator mobile application for Android, related to information disclosure, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the SAP Authenticator mobile application for Android relates to the disclosure of information. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the Windows GDI+ component in Windows operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Windows GDI+ component in Windows operating systems is related to insufficient protection of service data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the Jenkins Coverity Plugin, related to deficiencies in authentication procedures, allows attackers to gain unauthorized access to protected information.

The vulnerability of the Jenkins Coverity Plugin is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...