The vulnerability of the DA50N network switch’s web interface allows a intruder to gain unauthorized access to protected information.

The vulnerability of the DA50N network switch web interface is related to insufficient protection of registration data. Exploiting this vulnerability can allow an unauthorized attacker to gain unauthorized access to protected information...

PT-2022-4304 · Microsoft +1 · Azure Storage Library +1

Name of the Vulnerable Software and Affected Versions: Azure Storage Library affected versions not specified Description: The issue is related to insufficient access controls in the system, which can be exploited by a remote attacker to gain unauthorized access to protected information...

PT-2022-3706 · Microsoft · Azure Site Recovery

Name of the Vulnerable Software and Affected Versions: Azure Site Recovery affected versions not specified Description: The issue is related to insufficient access controls in Azure Site Recovery, which can be exploited by a remote attacker to disclose protected information. Recommendations: At t...

PT-2022-3850 · Microsoft · Azure Site Recovery

Name of the Vulnerable Software and Affected Versions: Azure Site Recovery affected versions not specified Description: The issue is related to insufficient access controls in Azure Site Recovery, specifically in the context of VMWare to Azure recovery. It may allow a remote attacker to disclose...

PT-2022-3750 · Microsoft · Azure Site Recovery

Name of the Vulnerable Software and Affected Versions: Azure Site Recovery affected versions not specified Description: The issue is related to insufficient access controls in Azure Site Recovery, specifically in the VMWare to Azure component. This can allow a remote attacker to disclose protecte...

PT-2022-3980 · Microsoft · Windows Hyper-V +1

Name of the Vulnerable Software and Affected Versions: Windows Hyper-V affected versions not specified Description: The issue is related to insufficient boundaries in the controlled area of the system, which can be exploited by a remote attacker to gain unauthorized access to protected informatio...

The vulnerability of the network software for social games and heroiclabs/nakama applications relates to insufficient restrictions on authentication attempts, allowing a perpetrator to gain unauthorized access to protected information.

The vulnerability of the network software for social games and heroiclabs/nakama applications is related to insufficient restrictions on authentication attempts. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

The vulnerability of AMD’s microprogramming software for processors, related to the reordering of load instructions, allows attackers to gain unauthorized access to protected information.

The vulnerability of AMD’s microprogrammed software for processors is related to the reordering of load instructions. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of Intel microprogramming software, related to deficiencies in access control, allows attackers to gain unauthorized access to protected information.

The vulnerability of Intel microprogramming software is related to deficiencies in access control. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...

Vulnerability of the r:wsread() function in the mod_lua module of the Apache HTTP Server, which allows an attacker to gain unauthorized access to protected information

The vulnerability of the r:wsread function in the modlua module of the Apache HTTP Server is related to insufficient protection of service data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the ins_bytes() function in the Vim text editor allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the insbytes function in the Vim text editor is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of the MediaError message in the Mozilla Firefox browser, which allows a violator to disclose protected information

The vulnerability of the MediaError message in the Mozilla Firefox browser is related to insufficient protection of service data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

PT-2022-3488 · Xen +6 · Xen +6

Name of the Vulnerable Software and Affected Versions: Xen affected versions not specified Description: The issue is related to a disclosure of information in the Xen hypervisor Linux kernel. It may allow a remote attacker to gain unauthorized access to protected information. Recommendations: At...

The vulnerability of the lim process in microprogramming software in embedded Qualcomm chips allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the lim process in microprogramming software in embedded Qualcomm chips is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow attackers to compromise the confidentiality, integrity, and accessibility of the...

The vulnerability in the web interface of the Cisco Identity Services Engine (ISE) management platform allows a perpetrator to disclose protected information.

The vulnerability in the web interface of the Cisco Identity Services Engine ISE management platform is related to the improper assignment of privileges. Exploiting this vulnerability can allow a malicious actor to disclose protected information...

The vulnerability of the implementation of the SRTP protocol in microprogrammed software for programmable logic controllers PACsystems allows a intruder to gain unauthorized access to protected information.

The vulnerability of the SRTP protocol implementation in PACsystems microprogrammed logic controllers involves the transmission of data in an open manner. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the File System API interfaces in Google Chrome and Microsoft Edge browsers allows attackers to disclose protected information.

The vulnerability of the File System API interfaces in Google Chrome and Microsoft Edge is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to disclose protected information through a specially created web page...

The vulnerability of PDF browser plugins for Google Chrome and Microsoft Edge allows attackers to disclose protected information.

The vulnerability of PDF browser plugins for Google Chrome and Microsoft Edge is related to improperly implemented security checks for standard elements. Exploiting this vulnerability allows a malicious actor to disclose protected information through a specially created web page...

The vulnerability of Google Chrome and Microsoft Edge arises from insufficient validation of input data during URL formatting, allowing attackers to gain unauthorized access to protected information.

The vulnerabilities of Google Chrome and Microsoft Edge exist due to insufficient validation of input data during URL formatting. Exploiting these vulnerabilities can allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the Extensions API of Google Chrome and Microsoft Edge browsers allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Extensions API in Google Chrome and Microsoft Edge lies in the improperly implemented security checks for standard elements. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...