859 matches found
CVE-2021-23009
On BIG-IP version 16.0.x before 16.0.1.1 and 15.1.x before 15.1.3, malformed HTTP/2 requests may cause an infinite loop which causes a Denial of Service for Data Plane traffic. TMM takes the configured HA action when the TMM process is aborted. There is no control plane exposure, this is a data...
CVE-2013-4839
Unspecified vulnerability in Virtual User Generator in HP LoadRunner before 11.52 allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via unknown vectors, aka ZDI-CAN-1851...
WordPress plugin Ninja Forms Webhooks 代码问题漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability...
The vulnerability of the BRS_netgear_success.html component of the NETGEAR WNR2000v5 router’s embedded software allows a hacker to influence the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the BRSnetgearsuccess.html component of the NETGEAR WNR2000v5 router’s embedded software is related to insufficient protection for service data. Exploiting this vulnerability could allow an attacker to influence the confidentiality, integrity, and accessibility of the protect...
Drive Data Should Be Managed in Partitions
When installing the OS, plan different partitions for OS data and service data based on the scenario. Do not store all data in the same drive or partition. Properly planning drive partitions avoids or reduces the following risks: 1. Log files are too large and use up the space of the service driv...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates from a post-release reuse when Bluetooth L2CAP reorganizes the SDU, which could lead to memory corruption...
CVE-2025-30202
vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Versions starting from 0.5.2 and prior to 0.8.5 are vulnerable to denial of service and data exposure via ZeroMQ on multi-node vLLM deployment. In a multi-node vLLM deployment, vLLM uses ZeroMQ for some multi-no...
CVE-2025-30202 Data exposure via ZeroMQ on multi-node vLLM deployment
vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Versions starting from 0.5.2 and prior to 0.8.5 are vulnerable to denial of service and data exposure via ZeroMQ on multi-node vLLM deployment. In a multi-node vLLM deployment, vLLM uses ZeroMQ for some multi-no...
The vulnerability of the Synology Router Manager operating system, related to insufficient protection of sensitive data, allows a hacker to gain unauthorized access to protected information.
The vulnerability of the Synology Router Manager operating system is related to insufficient protection for service data. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to protected information...
The vulnerability of the Synology Router Manager operating system, related to insufficient protection of service data, allows a intruder to gain unauthorized access to protected information.
The vulnerability of the Synology Router Manager operating system is related to insufficient protection for service data. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to protected information...
The vulnerability of the Synology Router Manager operating system, related to insufficient protection of service data, allows a intruder to gain unauthorized access to protected information.
The vulnerability of the Synology Router Manager operating system is related to insufficient protection for service data. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to protected information...
The vulnerability of the FreeIpa server, related to insufficient protection of service data, allows attackers to circumvent existing security restrictions and disclose the protected information.
The vulnerability of the FreeIpa server is related to insufficient protection of operational data. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions and disclose the protected information...
The vulnerability of the Jenkins automation server, related to insufficient protection of service data, allows a malicious actor to gain unauthorized access to protected information.
The vulnerability of the Jenkins automation server is related to insufficient protection for service data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information...
The vulnerability of the Jenkins automation server, related to insufficient protection of service data, allows a malicious actor to gain unauthorized access to protected information.
The vulnerability of the Jenkins automation server is related to insufficient protection for service data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information...
The vulnerability of the fuse component’s __readahead_folio function in the Linux operating system’s kernel allows a hacker to disclose protected information.
The vulnerability of the fuse component’s readaheadfolio function in the Linux operating system is related to insufficient protection for service data. Exploiting this vulnerability can allow a remote attacker to disclose sensitive information that is protected by this function...
The vulnerability of the macOS operating system, related to the lack of protection for service data, allows attackers to disclose protected information.
The vulnerability of the macOS operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow a malicious actor to disclose the protected information remotely...
The vulnerability of the Power Dependency Coordinator component in the Windows operating system allows a hacker to disclose protected information.
The vulnerability of the Power Dependency Coordinator component in the Windows operating system is related to insufficient protection of service data. Exploiting this vulnerability can allow an attacker to disclose the protected information...
CVE-2024-6483
A vulnerability in the runs/delete-batch endpoint of aimhubio/aim version 3.19.3 allows for arbitrary file or directory deletion through path traversal. The endpoint does not mitigate path traversal when handling user-specified run-names, which are used to specify log/metadata files for deletion...
Aim Relative Path Traversal vulnerability
A vulnerability in the runs/delete-batch endpoint of aimhubio/aim version 3.19.3 allows for arbitrary file or directory deletion through path traversal. The endpoint does not mitigate path traversal when handling user-specified run-names, which are used to specify log/metadata files for deletion...
CVE-2024-6483
A vulnerability in the runs/delete-batch endpoint of aimhubio/aim version 3.19.3 allows for arbitrary file or directory deletion through path traversal. The endpoint does not mitigate path traversal when handling user-specified run-names, which are used to specify log/metadata files for deletion...