ROS-20260505-73-0046

A vulnerability in the urllib.request.DataHandler component of the Python programming language interpreter is related to the failure to take measures to neutralize CRLF sequences. Exploitation of the vulnerability may allow a remote attacker to affect the integrity of protected information...

The vulnerability of software products for conducting Zoom Workplace video conferences, related to the manipulation of cross-site requests, allows a perpetrator to influence the integrity of protected information.

The vulnerability of Zoom Workplace, a software product for conducting video conferences, is related to the manipulation of cross-site requests. Exploiting this vulnerability could allow an attacker to influence the integrity of the protected information...

The vulnerability of Nomad application developers, related to errors in processing hypertext links, allows attackers to compromise the integrity of the protected information.

The vulnerability of Nomad application developers is related to errors in processing hypertext links. Exploiting this vulnerability can allow an attacker to compromise the integrity of the protected information...

The vulnerabilities of Mozilla Firefox, Firefox ESR, and the email client Thunderbird, Thunderbird ESR, are related to information representation errors in the user interface. These vulnerabilities allow attackers to influence the integrity of protected information.

The vulnerabilities of Mozilla Firefox, Firefox ESR, and the email client Thunderbird, Thunderbird ESR, are related to information representation errors in the user interface. Exploiting these vulnerabilities can allow an attacker to influence the integrity of protected information...

The vulnerability of the SharedFileList component in MacOS operating systems allows a perpetrator to compromise the integrity of protected information.

The vulnerability of the SharedFileList component in MacOS operating systems is related to improper storage of permissions. Exploiting this vulnerability can allow an attacker to compromise the integrity of the protected information...

The vulnerability of the os.path.normpath() function in the Python interpreter lies in its ability to bypass permission checks when shortening a path by inserting a zero byte. This allows an attacker to compromise the integrity of the protected information.

The vulnerability of the os.path.normpath function in the Python interpreter relates to the handling of permission lists when shortening a path by inserting a zero byte. Exploiting this vulnerability could allow an attacker, operating remotely, to compromise the integrity of protected information...

The vulnerability of RPD operating systems such as Juniper Networks’ Junos OS Evolved and Junos allows attackers to influence the integrity of protected information.

The vulnerability of RPD operating systems such as Juniper Networks’ Junos OS Evolved and Junos is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability can allow a malicious actor to influence the integrity of protected information...

The vulnerability of the Mozilla Firefox browser’s fetch function is related to resource management errors, allowing attackers to compromise the integrity of protected information.

The vulnerability of the Mozilla Firefox browser’s fetch function is related to resource management errors. Exploiting this vulnerability can allow an attacker to compromise the integrity of protected information...

The vulnerability of Google Chrome’s Autofill function allows attackers to influence the integrity of the protected information.

The vulnerability of Google Chrome’s Autofill function is related to improperly implemented security checks for standard elements. Exploiting this vulnerability allows an attacker to influence the integrity of protected information by loading a specially created HTML page...

The vulnerability of the full-screen mode implementation in Google Chrome allows a perpetrator to influence the integrity of the protected information.

The vulnerability of the full-screen browser mode implementation in Google Chrome is related to improperly implemented security checks for standard elements. Exploiting this vulnerability allows a malicious actor to influence the integrity of protected information by installing a malicious...

The vulnerability of the inspector module in the Node.js software platform allows a perpetrator to compromise the integrity of protected information.

The vulnerability of the inspector module in the Node.js software platform is related to access control deficiencies. Exploiting this vulnerability allows a malicious actor to compromise the integrity of the protected information...

The vulnerability of the Autofill function implementation in Google Chrome browsers allows attackers to compromise the integrity of the protected information.

The vulnerability of the Autofill function in Google Chrome browsers exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to compromise the integrity of protected information by using a specially crafted HTML page...

The vulnerability of the UNIX command shell Zsh operating systems and Mac OS allows attackers to compromise the integrity of protected information.

The vulnerability of the UNIX command shell Zsh operating systems and Mac OS lies in the improper assignment of permissions to files. Exploiting this vulnerability can allow an attacker to compromise the integrity of protected information...

The vulnerability of the macOS operating system, related to deficiencies in access control, allows attackers to compromise the integrity of protected information.

The vulnerability of the macOS operating system is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to compromise the integrity of protected information...

The vulnerability of the ContentModelChange function in the software for implementing a hypertext environment like MediaWiki allows attackers to compromise the integrity of the protected information.

The vulnerability of the ContentModelChange function in the MediaWiki software, which is used to implement the hypertext environment, relates to the absence of authentication. Exploiting this vulnerability could allow a malicious actor, operating remotely, to compromise the integrity of the...

The vulnerability of the Snort intrusion detection system of Cisco Firepower Threat Defense (FTD), which includes network devices like Cisco Catalyst, routers such as ISR and ISA, and the virtual router with integrated ISRv services, allows attackers to compromise the integrity of protected information.

The vulnerability of the Snort intrusion detection system of Cisco Firepower Threat Defense FTD, as well as Cisco Catalyst network devices, ISR and ISA routers, and the integrated-service virtual router ISRv, is related to security configuration errors. Exploiting this vulnerability can allow a...

The vulnerability of the userfaultfd component in Linux operating systems allows attackers to compromise the integrity of protected information.

The vulnerability of the userfaultfd component in Linux operating systems exists due to insufficient validation of input data. Exploiting this vulnerability can allow attackers to compromise the integrity of protected information...

The vulnerability of the PDFium rendering mechanism in Google Chrome browsers, related to memory usage after deallocation, allows attackers to compromise the integrity of the protected information.

The vulnerability of the PDFium rendering mechanism in the Google Chrome browser relates to the use of memory after deallocation. Exploiting this vulnerability allows an attacker to compromise the integrity of protected information by using a specially created PDF file...

Vulnerabilities of the Debian GNU/Linux operating system that allow a remote attacker to compromise the integrity of protected information

Multiple vulnerabilities exist in the gij-3.4 package of the Debian GNU/Linux operating system. Exploitation of these vulnerabilities may lead to the compromise of protected information. These vulnerabilities can be exploited remotely...

Vulnerabilities of the Debian GNU/Linux operating system that allow a remote attacker to compromise the integrity of protected information

The multiple vulnerabilities in the libshib6 package of the Debian GNU/Linux operating system may lead to a breach of the integrity of protected information. These vulnerabilities can be exploited remotely...