Lucene search
+L

486 matches found

BDU FSTEC
BDU FSTEC
added 2024/11/14 12:0 a.m.6 views

The vulnerability of the software backup function for Brocade SANnav network management systems allows a intruder to gain unauthorized access to protected information.

The vulnerability of the software backup function for Brocade SANnav management involves the insecure storage of confidential information. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information...

6.8CVSS5.4AI score0.00411EPSS
Exploits0References2Affected Software1
RedHat Linux
RedHat Linux
added 2024/10/16 12:25 p.m.4 views

JDK: Integer conversion error leads to incorrect range check (8332644)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 8u421, 8u421-perf, 11.0.24, 17.0.12, 21.0.4, 23; Oracle GraalVM for JDK: 17.0.12, 21.0.4, 23; Oracl...

4.8CVSS7.4AI score0.0095EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/10/15 12:0 a.m.6 views

PT-2024-7007 · Oracle · Oracle Product Hub +1

Name of the Vulnerable Software and Affected Versions: Oracle E-Business Suite versions 12.2.3 through 12.2.13 Description: The issue is related to a vulnerability in the Item Catalog component of Oracle Product Hub, which can be exploited by a low-privileged attacker with network access via HTTP...

8.5CVSS8AI score0.00422EPSS
Exploits0References7
CNNVD
CNNVD
added 2024/10/14 12:0 a.m.4 views

PCS Engineering com.prestoncinema.app 安全漏洞

PCS Engineering com.prestoncinema.app is a driver from PCS Engineering. A security vulnerability exists in PCS Engineering com.prestoncinema.app version 0.2.0. A remote attacker could exploit the vulnerability to obtain sensitive information through the firmware update process...

7.5CVSS6.4AI score0.00512EPSS
Exploits0References3
OSV
OSV
added 2024/10/07 3:15 p.m.2 views

CVE-2024-9574

SQL injection vulnerability in SOPlanning 1.45, via /soplanning/www/usergroupes.php in the by parameter, which could allow a remote user to submit a specially crafted query, allowing an attacker to retrieve all the information stored in the DB...

6.5CVSS5.9AI score0.00526EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/09/23 12:0 a.m.5 views

The vulnerability of the web page rendering module in WebKitGTK and WPE WebKit, related to the occurrence of operations outside the buffer in memory, allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the Web page rendering module in WebKitGTK and WPE WebKit relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to access confidential data, compromise its integrity, and cause service failures...

10CVSS8AI score0.00902EPSS
Exploits0References14Affected Software5
BDU FSTEC
BDU FSTEC
added 2024/09/23 12:0 a.m.8 views

The vulnerability of the WPE WebKit and WebKitGTK web page rendering modules, related to the use of memory after it is freed, allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the WPE WebKit and WebKitGTK web page rendering modules is related to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to access confidential data, compromise its integrity, and cause service failures...

10CVSS7.3AI score0.01065EPSS
Exploits0References10Affected Software5
BDU FSTEC
BDU FSTEC
added 2024/09/23 12:0 a.m.9 views

The vulnerability of Microsoft Edge and Google Chrome browsers, related to the use of memory after it is freed, allows attackers to access confidential data, compromise its integrity, and cause service interruptions.

The vulnerability of Microsoft Edge and Google Chrome relates to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to access confidential data, compromise its integrity, and cause service interruptions...

10CVSS7.8AI score0.0048EPSS
Exploits0References9Affected Software5
BDU FSTEC
BDU FSTEC
added 2024/09/16 12:0 a.m.6 views

The vulnerabilities of event monitoring platforms, threat detection systems, and security analytics tools from IBM QRadar Suite and IBM Cloud Pak for Security are related to information leaks through process environments, allowing attackers to gain unauthorized access to protected information.

The vulnerabilities of event monitoring platforms, threat detection systems, and security analytics tools from IBM QRadar Suite and IBM Cloud Pak for Security are related to information leaks through the process environment. Exploiting these vulnerabilities can allow attackers operating remotely ...

7.8CVSS6.4AI score0.00301EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/09/13 12:0 a.m.6 views

The vulnerability in implementations of ASN.1/DER, PKIX, Kerberos Heimdal, and the Samba network communication software package, related to repeated memory release, allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerabilities of ASN.1/DER, PKIX, Kerberos Heimdal, and the Samba networking software package are related to repeated memory release. Exploiting these vulnerabilities can allow a remote attacker to access confidential data, compromise its integrity, and cause service failures...

10CVSS6.4AI score0.01844EPSS
Exploits0References11Affected Software5
BDU FSTEC
BDU FSTEC
added 2024/09/13 12:0 a.m.8 views

Vulnerability of Firefox web browsers, Firefox ESR, and Thunderbird email client, due to insufficient validation of various types of elements, allowing attackers to access confidential data

The vulnerability in web browsers Firefox, Firefox ESR, and the email client Thunderbird is related to insufficient checking of various types of elements. Exploiting this vulnerability can allow a remote attacker to gain access to confidential data...

5.9CVSS7AI score0.00366EPSS
Exploits0References15Affected Software7
BDU FSTEC
BDU FSTEC
added 2024/09/13 12:0 a.m.7 views

The vulnerability of the decode_status_report() function in the OFono mobile communication interface, related to the issue of operations going beyond the buffer in memory, allows a perpetrator to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the decodestatusreport function in the OFono mobile communication interface is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a remote attacker to access confidential data, compromise its integrity, and cause...

8.1CVSS7.9AI score0.00947EPSS
Exploits1References9Affected Software4
Positive Technologies
Positive Technologies
added 2024/09/10 12:0 a.m.6 views

PT-2024-6359 · Microsoft · Sql Server

Name of the Vulnerable Software and Affected Versions: Microsoft SQL Server affected versions not specified Description: The issue is related to errors in numerical truncation in the Microsoft SQL Server system, which can allow a remote attacker to gain unauthorized access to protected informatio...

7.5CVSS7.9AI score0.0166EPSS
Exploits0References8
Redos
Redos
added 2024/08/26 12:0 a.m.12 views

ROS-20240826-23

A vulnerability in the Blender three-dimensional computer graphics software suite is related to the lack of validation for values less than 0. Exploitation of the vulnerability allows an attacker acting remotely to gain access to sensitive data, compromise its integrity, and cause a denial of...

7.8CVSS7.2AI score0.01174EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/07/19 12:0 a.m.9 views

The vulnerability of the LOV component in terms of technical maintenance, repairs, and major overhauls of Oracle Complex Maintenance, Repair, and Overhaul systems—a system for automating business operations in Oracle E-Business Suite—allows a perpetrator to gain access to read, modify, add, or delete data.

The vulnerability of the LOV component in terms of technical maintenance, repairs, and major overhauls of Oracle system equipment exists due to insufficient verification of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to read, modify, add, or...

6.4CVSS7.2AI score0.00362EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/07/19 12:0 a.m.7 views

The vulnerability of the LOV component in terms of technical maintenance, repairs, and major overhauls of Oracle Complex Maintenance, Repair, and Overhaul systems—a system for automating business operations in Oracle E-Business Suite—allows a perpetrator to gain access to read, modify, add, or delete data.

The vulnerability of the LOV component in terms of technical maintenance, repairs, and major overhauls of Oracle system equipment exists due to insufficient verification of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to read, modify, add, or...

6.4CVSS7.2AI score0.00197EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/07/19 12:0 a.m.9 views

The vulnerability of the LOV component in terms of technical maintenance, repairs, and major overhauls of Oracle Complex Maintenance, Repair, and Overhaul systems—a system for automating business operations in Oracle E-Business Suite—allows a perpetrator to gain access to read, modify, add, or delete data.

The vulnerability of the LOV component in terms of technical maintenance, repairs, and major overhauls of Oracle system equipment exists due to insufficient verification of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to read, modify, add, or...

6.4CVSS7.2AI score0.00328EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/07/19 12:0 a.m.6 views

The vulnerability of the LOV component in terms of technical maintenance, repairs, and major overhauls of Oracle Complex Maintenance, Repair, and Overhaul systems—a system for automating business operations in Oracle E-Business Suite—allows a perpetrator to gain access to read, modify, add, or delete data.

The vulnerability of the LOV component in terms of technical maintenance, repairs, and major overhauls of Oracle system equipment exists due to insufficient verification of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to read, modify, add, or...

6.4CVSS7.2AI score0.00382EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/07/19 12:0 a.m.8 views

The vulnerability of the LOV component in terms of technical maintenance, repairs, and major overhauls of Oracle Complex Maintenance, Repair, and Overhaul systems—a system for automating business operations in Oracle E-Business Suite—allows a perpetrator to gain access to read, modify, add, or delete data.

The vulnerability of the LOV component in terms of technical maintenance, repairs, and major overhauls of Oracle system equipment exists due to insufficient verification of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to read, modify, add, or...

6.4CVSS7.2AI score0.00382EPSS
Exploits0References3Affected Software2
RedHat Linux
RedHat Linux
added 2024/07/18 10:47 a.m.8 views

OpenJDK: Out-of-bounds access in 2D image handling (8324559)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: 2D. Supported versions that are affected are Oracle Java SE: 8u411, 8u411-perf, 11.0.23, 17.0.11, 21.0.3, 22.0.1; Oracle GraalVM for JDK: 17.0.11, 21.0.3, 22.0.1;...

4.8CVSS7.4AI score0.00864EPSS
Exploits0References4
Rows per page
Query Builder