The vulnerability of Google Chrome’s Autofill component allows a hacker to compromise the privacy and integrity of the protected information.

The vulnerability of Google Chrome’s Autofill component exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality and integrity of protected information through a specially created web page...

The vulnerability of the Xstream Java library for converting objects into XML or JSON formats stems from deficiencies in the deserialization mechanism. This allows attackers to gain access to protected information and replace objects on the server side.

The vulnerability of the Xstream Java library for converting objects into XML or JSON formats is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability can allow an attacker to gain access to protected information and replace objects on the server side by...

The vulnerability of the Audio component in the Google Chrome browser, related to reading beyond the buffer in memory, allows an attacker to gain unauthorized access to protected information.

The vulnerability of the Audio component in the Google Chrome browser relates to reading beyond the buffer in memory. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

The vulnerability of OPPO’s 5G router, related to the insecure storage of confidential information, allows a intruder to gain unauthorized access to protected data.

The vulnerability of OPPO’s 5G router is related to the insecure storage of confidential information. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the Android EMUI operating system’s shell, which arises due to insufficient validation of input data, allows a hacker to disclose protected information or cause service failures.

The vulnerability of the Android EMUI operating system’s shell exists due to insufficient verification of input data. Exploiting this vulnerability can allow a malicious actor to disclose protected information or cause service failures...

The vulnerability of the Snap Creek Duplicator plugin of the WordPress content management system allows a hacker to disclose protected information.

The vulnerability of the Snap Creek Duplicator plugin for the WordPress content management system exists due to an incorrect restriction on the path to the restricted catalog. Exploiting this vulnerability could allow a malicious actor to disclose the protected information...

The vulnerability of the FTM command implementation in Qualcomm’s embedded software allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the FTM command implementation in Qualcomm’s embedded software is caused by buffer overflow. Exploiting this vulnerability can allow attackers to compromise the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of the Navigation component in Google Chrome and Microsoft Edge allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Navigation component in Google Chrome and Microsoft Edge is related to deficiencies in system-defined boundary controls. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information through a specially creat...

The vulnerability of the Azure Sphere operating system, related to the lack of protection for service data, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Azure Sphere operating system is related to the lack of protection for service data. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

The vulnerability of the software for creating metadata, processing, and exchanging sets of Adobe XMP-Toolkit-SDK standards lies in buffer overflows in dynamic memory. This allows attackers to gain access to protected information or cause service failures.

The vulnerability of the software for creating metadata, processing, and exchanging standard sets within the Adobe XMP-Toolkit-SDK is related to buffer overflows in dynamic memory. Exploiting this vulnerability can allow an attacker to access protected information or cause service failures...

The vulnerability of the `check_attachment_for_errors` function in the `data/general-hooks/ubuntu.py` file of the Apport operating system’s error registration service allows a hacker to disclose protected information.

The vulnerability of the checkattachmentforerrors function in the data/general-hooks/ubuntu.py file of the Apport Ubuntu system registry service is related to a data leak regarding files and directories. Exploiting this vulnerability could allow an attacker to disclose sensitive information that ...

The vulnerability of the macOS operating system, related to the ability to read data beyond the buffer in memory, allows attackers to gain access to protected information.

The vulnerability of the macOS operating system is related to the ability to read data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to gain access to protected information...

The vulnerability of the decode_mcu() function in the libjpeg-turbo library allows a attacker to compromise the accessibility of protected information.

The vulnerability of the decodemcu function in the libjpeg-turbo library is related to resource management errors. Exploiting this vulnerability allows a remote attacker to compromise the accessibility of protected information by excessive consumption of processor resources...

PT-2021-7120 · Microsoft · Edge

Name of the Vulnerable Software and Affected Versions: Microsoft Edge Chromium-based affected versions not specified Description: The issue is related to information disclosure. It may allow a remote attacker to gain unauthorized access to protected information. Recommendations: At the moment,...

The vulnerability of the Rich Text Edit Control text editor in the Windows operating system allows a hacker to gain unauthorized access to protected information.

The vulnerability of the Rich Text Edit Control text editor in the Windows operating system is related to the disclosure of information. Exploiting this vulnerability could allow an intruder to gain unauthorized access to protected information...

The vulnerability of Microsoft Excel editors, related to information disclosure, allows attackers to gain unauthorized access to protected information.

The vulnerability of Microsoft Excel editors is related to the disclosure of information. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...

The vulnerability of Microsoft SharePoint Server packages, related to errors in information presentation by the user interface, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of Microsoft SharePoint Server packages is related to errors in information presentation by the user interface. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability in the VMI web interface of vCenter Server Appliance, a management tool for VMware vCenter Server virtual infrastructure, allows an attacker to gain unauthorized access to protected information.

The vulnerability in the VCenter Server Management Interface of the VMware vCenter Server web interface relates to deficiencies in system security restrictions. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information by sending a specially crafte...

PT-2021-4914 · Microsoft · System Center Operations Manager

Name of the Vulnerable Software and Affected Versions: System Center Operations Manager SCOM affected versions not specified Description: The issue is related to insufficient protection of service data in System Center Operations Manager SCOM, which can allow a remote attacker to gain unauthorize...

The vulnerability of Google Chrome’s browser, related to the disclosure of information, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of Google Chrome relates to the disclosure of information. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information...