859 matches found
PT-2023-6970 · Microsoft · Exchange Server
Name of the Vulnerable Software and Affected Versions: Microsoft Exchange Server affected versions not specified Description: The issue is related to insufficient protection of service data during NTLM authentication, specifically with the IsUNCPath method. This can allow a remote attacker to...
The vulnerability of the Windows Group Policy component of the operating system allows attackers to disclose sensitive information that is protected by this mechanism.
The vulnerability of the Windows Group Policy component of the operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow an attacker to disclose protected information...
The vulnerability of the Windows Wireless Wide Area Network Service (WwanSvc) allows a hacker to compromise the protected information.
The vulnerability of the Windows Wireless Wide Area Network Service WwanSvc operating system is related to the lack of protection for service-related data. Exploiting this vulnerability can allow an attacker to disclose protected information...
The vulnerability of the Cryptographic Services in the Windows operating system allows a perpetrator to disclose protected information.
The vulnerability of the Cryptographic Services in the Windows operating system is related to the lack of protection for service-related data. Exploiting this vulnerability could allow a perpetrator to disclose the protected information...
The vulnerability of the Cryptographic Services in the Windows operating system allows a perpetrator to disclose protected information.
The vulnerability of the Cryptographic Services in the Windows operating system is related to the lack of protection for service-related data. Exploiting this vulnerability can allow a perpetrator to disclose the protected information...
PT-2023-9213 · Qnap · Qnap Ts-X41
Name of the Vulnerable Software and Affected Versions: QNAP TS-X41 affected versions not specified Description: The issue is related to a lack of protection for service data in the QNAP TS-X41 network storage. It allows a remote attacker to identify an existing user in the system. Recommendations...
The vulnerability of AMD’s microprogramming software lies in the lack of protection for service data, which allows attackers to access the memory contents of other users’ processes.
The vulnerability of AMD’s microprogrammed software lies in the lack of protection for system data. Exploiting this vulnerability can allow attackers to access the memory contents of other users’ processes...
PT-2023-4331 · Microsoft · Message Queuing +1
Name of the Vulnerable Software and Affected Versions: Microsoft Message Queuing affected versions not specified Description: The issue is related to insufficient protection of service data in Microsoft Message Queuing MSMQ in Windows operating systems. This can allow a remote attacker to obtain...
PT-2023-4384 · Microsoft · Message Queuing +1
Name of the Vulnerable Software and Affected Versions: Microsoft Message Queuing affected versions not specified Description: The issue is related to a lack of protection for service data in the Windows operating system's message queuing component. Exploitation of this issue may allow an attacker...
PT-2023-4382 · Microsoft · Windows Cryptographic Services +1
Name of the Vulnerable Software and Affected Versions: Windows Cryptographic Services affected versions not specified Description: The issue is related to a lack of protection for service data in the Windows Cryptographic Services, which can be exploited to disclose protected information. This...
OESA-2023-1443 curl security update
cURL is a computer software project providing a library libcurl and command-line tool curl for transferring data using various protocols. Security Fixes: libcurl can be told to save cookie, HSTS and/or alt-svc data to files. When doing this, it called stat followed by fopen in a way that made it...
The vulnerability of the Windows Print Spooler daemon in the Windows operating system allows a hacker to exploit it to disclose protected information.
The vulnerability of the Windows Print Spooler daemon in the Windows operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow an attacker to disclose protected information...
The vulnerability of the DirectMusic component in Windows operating systems allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the DirectMusic component in Windows operating systems is related to insufficient protection of service data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...
The vulnerability of the Windows CDP component of the Windows operating system allows attackers to disclose sensitive information that is protected by this component.
The vulnerability of the Windows CDP component of the Windows operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow an attacker to disclose protected information...
The vulnerability of the Jenkins server plugin “Dimensions” in automation tools stems from insufficient protection of service data, allowing attackers to gain unauthorized access to protected information.
The vulnerability of the Jenkins server plugin “Dimensions” relates to insufficient protection of service data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information...
The vulnerability of the VP9 video compression extension lies in its insufficient protection of service data, allowing attackers to gain unauthorized access to protected information.
The vulnerability of the VP9 video compression extension lies in the insufficient protection of service data. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected information by downloading a specially created malicious file...
The vulnerability in the implementation of the Bluetooth Classic protocol, as specified in the Bluetooth Core Specification, allows a perpetrator to disclose protected information.
The vulnerability of the Bluetooth Classic protocol implementation, as described in the Bluetooth Core Specification, is related to insufficient protection of service data. Exploiting this vulnerability can allow a malicious actor to disclose the protected information...
PT-2023-3870 · Microsoft · Windows Print Spooler +1
Name of the Vulnerable Software and Affected Versions: Windows Print Spooler affected versions not specified Description: The issue is related to a lack of protection for service data in the Windows Print Spooler. Exploitation of this issue may allow an attacker to disclose protected information...
PT-2023-5717 · Aruba · Arubaos
Name of the Vulnerable Software and Affected Versions: ArubaOS affected versions not specified Description: The issue is related to the ArubaOS command line interface, where vulnerabilities exist that allow an authenticated attacker to access sensitive information. Successful exploitation could...
The vulnerability of the Windows Installer component on Windows operating systems allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the Windows Installer component in Windows operating systems is related to insufficient protection of service data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...