The vulnerability of the software’s user interface for running large language models (LLMs) like GPT NVIDIA ChatRTX for Windows allows a hacker to execute arbitrary code, cause service failures, or disclose sensitive information.

The vulnerability of the user interface of the software for running large language models LLM GPT NVIDIA ChatRTX for Windows exists due to the lack of measures taken to protect the web page structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code, cause service...

The vulnerability of Adobe Experience Manager’s content and media data management system, which exists due to the lack of measures taken to protect the website structure, allows attackers to execute arbitrary JavaScript code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary JavaScript code remotely...

PT-2024-2188 · Vmware · Vmware Cloud Director

Name of the Vulnerable Software and Affected Versions: VMware Cloud Director affected versions not specified Description: The issue is related to a partial information disclosure, where a malicious actor can potentially gather information about organization names based on the behavior of the...

The vulnerability of Microsoft Teams’ corporate platform for Android, related to insufficient protection of sensitive data, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of Microsoft Teams’ corporate platform for Android is related to insufficient protection of sensitive data. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information by downloading and running a specially created application...

The vulnerability of the NEXO-OS operating system in the Bosch Nexo cordless nutrunner and Bosch Nexo special cordless nutrunner tools used in production lines allows a intruder to gain unauthorized access to the database.

The vulnerability of the NEXO-OS operating system for tools used in production line assembly work, such as the Bosch Nexo cordless nutrunner and the Bosch Nexo special cordless nutrunner, is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability ca...

The vulnerability of the args4j library in the Jenkins automation server’s command-line interface (CLI) allows a hacker to execute arbitrary code.

The vulnerability of the args4j library, a built-in command-line interface CLI for Jenkins automation servers, is related to insufficient protection of service data. Exploiting this vulnerability allows an attacker, operating remotely, to execute arbitrary code...

The vulnerability of iCloud Photo Library on operating systems macOS, iOS, and iPadOS allows attackers to disclose protected information.

The vulnerability of iCloud Photo Library in operating systems such as macOS, iOS, and iPadOS lies in the lack of data protection measures. Exploiting this vulnerability could allow an attacker to disclose protected information...

The vulnerability of Windows operating systems’ message queues allows attackers to gain unauthorized access to protected information.

The vulnerability of Message Queuing in Windows operating systems is related to insufficient protection of operational data. Exploiting this vulnerability can allow an attacker, working remotely, to gain unauthorized access to protected information...

The vulnerability of Adobe Experience Manager’s content and media data management system, related to the lack of measures taken to protect the website structure, allows attackers to carry out XSS attacks.

The vulnerability of the Adobe Experience Manager content and media data management system is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability could allow a malicious actor to carry out XSS attacks...

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system, related to the lack of measures taken to protect the website structure, allows a perpetrator to execute arbitrary code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the microprogrammed network device software of ZyXEL USG, USG FLEX, USG20(W)-VPN, and VPN lies in the lack of protective measures for the website structure. This allows attackers to execute arbitrary scripts on the vulnerable device.

The vulnerability of the microprogrammed network device software of ZyXEL USG, USG FLEX, USG20W-VPN, and VPN is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary scripts on the vulnerable device...

The vulnerability of the DHCP server service for Windows operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the DHCP server service for Windows operating systems is related to insufficient protection of service-related data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the Symfony software platform for developing and managing web applications allows attackers to exploit it to disclose sensitive information, perform phishing attacks, and carry out diskloading attacks.

The vulnerability of the Symfony software platform for developing and managing web applications exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to disclose sensitive information, perform phishing attacks, and...

The vulnerability of the Zoho ManageEngine ServiceDesk Plus system, which exists due to the lack of measures taken to protect the website structure, allows attackers to carry out XSS attacks.

The vulnerability of the Zoho ManageEngine ServiceDesk Plus system exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

The vulnerability of Firefox browser, related to insufficient protection of service data, allows attackers to gain unauthorized access to protected information.

The vulnerability of Firefox browsers is related to insufficient protection of service data during the processing of the Vary response header for comparing request headers. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information by sending iterativ...

The vulnerability of Milesight UR5X, UR32L, UR32, UR35, and UR41 router microprogramming systems lies in the insufficient protection of service data, allowing attackers to gain unauthorized access to protected information.

The vulnerability of Milesight UR5X, UR32L, UR32, UR35, and UR41 router microprogramming systems is related to insufficient protection of service data. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected information...

The vulnerability of the Crucible code-checking tool and the Fisheye code-searching tool lies in the insufficient protection of operational data, allowing unauthorized access by attackers to protected information.

The vulnerability of the Crucible code-checking tool and the Fisheye code-searching tool is related to insufficient protection for service data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

The vulnerability of backup and data recovery software on computers and servers with Acronis Agent software for data protection, Acronis Cyber Protect 15, arises from insufficient protection of operational data. This vulnerability allows attackers to gain unauthorized access to protected information.

The vulnerability of backup and data recovery software on computers and servers with Acronis Agent software for data protection, Acronis Cyber Protect 15, is related to insufficient protection of operational data. Exploiting this vulnerability can allow attackers to gain unauthorized access to...

The vulnerability of the microprogramming software of the Elenos ETG150 transmitter allows a intruder to gain unauthorized access to the protected information.

The vulnerability of the microprogramming software of the Elenos ETG150 transmitter is related to insufficient protection of operational data. Exploiting this vulnerability could allow an intruder, operating remotely, to gain unauthorized access to the protected information...

The vulnerability of the Python Requests HTTP request library relates to insufficient protection of sensitive data, allowing attackers to gain unauthorized access to protected information.

The vulnerability of the Python Requests HTTP request library is related to insufficient protection of sensitive data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...