The vulnerability of the embedded software of NETGEAR routers such as D6220, D6400, D7000v2, D8500, DC112A, DGN2200v4, EAX80, R6250, R7000, R7100LG, R7900, R7960P, R8000, RAX200, RS400, XR300, R6400v2, R7000P, R8000P, RAX20, RAX45, RAX80, R6700v3, R6900P, R7900P, RAX15, RAX50, RAX75 arises due to buffer overflows, which allow attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the embedded software of NETGEAR routers such as D6220, D6400, D7000v2, D8500, DC112A, DGN2200v4, EAX80, R6250, R7000, R7100LG, R7900, R7960P, R8000, RAX200, RS400, XR300, R6400v2, R7000P, R8000P, RAX20, RAX45, RAX80, R6700v3, R6900P, R7900P, RAX15, RAX50, RAX75 arises due to...

The vulnerability of the Microsoft Visual Basic development environment and the Microsoft Office suite relates to the disclosure of information in the error-prone data area, allowing the disclosure of protected information.

The vulnerability of the Microsoft Visual Basic development environment and the Microsoft Office suite is related to the disclosure of sensitive information in error-prone data areas. Exploiting this vulnerability can allow attackers to disclose protected information...

The vulnerability of the OneDrive for Android file storage service, related to incorrect authentication, allows a perpetrator to gain access to protected information.

The vulnerability of the OneDrive for Android file storage service is related to incorrect authentication. Exploiting this vulnerability can allow an attacker to gain access to protected information...

The vulnerability of the Windows GDI component in Windows operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Windows GDI component in Windows operating systems is related to the disclosure of information in the erroneous data area. Exploiting this vulnerability can allow an attacker, working remotely, to gain unauthorized access to protected information...

PT-2022-1677 · Microsoft · Onedrive App For Android

Name of the Vulnerable Software and Affected Versions: Microsoft OneDrive for Android affected versions not specified Description: The issue is related to a security feature bypass vulnerability in the file hosting service of OneDrive for Android, associated with improper authorization...

The driver’s vulnerability allows for the functionality of Storage Spaces controllers on Windows operating systems, enabling an attacker to gain unauthorized access to protected information.

The vulnerability of the driver for enabling Storage Spaces on Windows operating systems relates to reading beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the chat and video call messaging application stashcat for operating systems macOS, Windows, iOS, and Android allows a perpetrator to disclose protected information.

The vulnerability of the stashcat messaging and video call application for operating systems macOS, Windows, iOS, and Android relates to the insecure storage of critical information. Exploiting this vulnerability can allow a malicious actor to disclose protected information remotely...

The vulnerability of the Adobe Bridge file manager, related to reading beyond the buffer in memory, allows a malicious actor to gain unauthorized access to protected information.

The vulnerability of the Adobe Bridge file manager is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information through a specially created file...

The vulnerability of the RBR50 router software, the RBS50 router software, and the RBK50 router software relates to the disclosure of protected information, allowing a perpetrator to execute arbitrary commands and gain access to protected information.

The vulnerabilities of the RBR50 router software, the RBS50 router software, and the RBK50 router software are related to the disclosure of protected information. Exploiting these vulnerabilities can allow an attacker to execute arbitrary commands and gain access to protected information...

PT-2022-1532 · Apple +6 · Macos Monterey +14

Name of the Vulnerable Software and Affected Versions: WebKitGTK and WPE WebKit versions prior to the fixed version Safari versions prior to 15.3 iOS versions prior to 15.3 iPadOS versions prior to 15.3 watchOS versions prior to 8.4 tvOS versions prior to 15.3 macOS Monterey versions prior to 12....

The vulnerability of the “Remote Assistance” tool for Windows operating systems, which allows a perpetrator to gain unauthorized access to protected information

The vulnerability of the “Remote Assistance” tool for Windows operating systems is related to insufficient protection of operational data. Exploiting this vulnerability can allow unauthorized actors who operate remotely to gain unauthorized access to protected information...

PT-2022-1564 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to an information disclosure in the Windows GDI component, which can allow a remote attacker to gain unauthorized access to protected information. This can potentially...

PT-2022-1529 · Microsoft · Windows Defender +1

Name of the Vulnerable Software and Affected Versions: Windows Defender affected versions not specified Description: The issue is related to a security feature bypass that may allow attackers to access protected information. This could potentially enable unauthorized access to sensitive data. The...

PT-2022-2422

Name of the Vulnerable Software and Affected Versions follow-redirects affected versions not specified Description The issue is related to errors in handling cookies, which can allow a remote attacker to gain unauthorized access to protected information. This can lead to exposure of private...

The vulnerability of the Google Chrome browser’s Background Fetch API interface, related to the disclosure of information in the erroneous data area, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Background Fetch API programming interface in Google Chrome browsers is related to the disclosure of information in the erroneous data area. Exploiting this vulnerability could allow an attacker operating remotely to gain unauthorized access to protected information...

The vulnerability of the Google Chrome browser’s Background Fetch API programming interface, related to the disclosure of information in the erroneous data area, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Background Fetch API programming interface in Google Chrome browsers is related to the disclosure of information in the erroneous data area. Exploiting this vulnerability could allow an attacker operating remotely to gain unauthorized access to protected information...

The vulnerability of the JavaScript script handler in Google Chrome’s V8 browser allows attackers to disclose protected information.

The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine is related to access to resources through incompatible types. Exploiting this vulnerability can allow a malicious actor to disclose protected information remotely...

The vulnerability of the browser’s Background Fetch API programming interface in Google Chrome allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Google Chrome browser’s software interface is related to the disclosure of information in the erroneous data area. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the WebView component for displaying web pages in Google Chrome browser and on the Android operating system allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the WebView component of Google Chrome’s browser involves errors in the implementation of security checks for standard elements. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the Team Password Manager application, related to the lack of a password recovery mechanism, allows a hacker to gain unauthorized access to the protected information.

The vulnerability of the Team Password Manager password management app is related to the lack of a password recovery mechanism. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information by resetting the password...