Lucene search
K

944 matches found

BDU FSTEC
BDU FSTEC
added 2021/11/11 12:0 a.m.4 views

The vulnerability of the Traffic Management Microkernel component of BIG-IP access control and remote authentication tools allows a attacker to cause a service failure.

The vulnerability of the Traffic Management Microkernel component of the BIG-IP access control and remote authentication solutions is related to deficiencies in the segmentation of the controlled system area. Exploiting this vulnerability could allow a malicious actor to cause service interruptio...

7.8CVSS7.5AI score0.0092EPSS
Exploits0References2Affected Software11
BDU FSTEC
BDU FSTEC
added 2021/11/10 12:0 a.m.3 views

The vulnerability of the Mac OS X operating system arises from insufficient checks on the data entered by users in the kernel subsystem of the operating system. This allows attackers to trigger a service failure.

The vulnerability of the Mac OS X operating system arises from insufficient checks on the data entered by users in the kernel subsystem of the operating system. Exploiting this vulnerability allows a remote attacker to cause service interruptions...

7.8CVSS6.8AI score0.01651EPSS
Exploits0References8Affected Software5
BDU FSTEC
BDU FSTEC
added 2021/11/02 12:0 a.m.3 views

The vulnerability of the Squid proxy server, related to insufficient validation of input data, allows attackers to trigger a service failure.

The vulnerability of the Squid proxy server is related to insufficient validation of input data. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

6.5CVSS6.8AI score0.79583EPSS
Exploits0References10Affected Software4
BDU FSTEC
BDU FSTEC
added 2021/11/02 12:0 a.m.3 views

The vulnerability of the SSL/TLS module of the microprogramming-based network interface controllers of Cisco Adaptive Security Appliances (ASA) and Cisco Firepower Threat Defense (FTD) allows attackers to induce service failures.

The vulnerability of the SSL/TLS microprogramming software used in Cisco Adaptive Security Appliances ASA and Cisco Firepower Threat Defense FTD lies in the execution of operations outside of the buffer in memory. Exploitation of this vulnerability could allow a malicious actor to cause service...

8.6CVSS7.5AI score0.0155EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/10/27 12:0 a.m.2 views

The vulnerability in the `os/unix/ngx_files.c` component of the NGINX application monitoring and management platform allows a attacker to cause a service failure.

The vulnerability in the os/unix/ngxfiles.c component of the NGINX application monitoring and management platform is related to the use of a null pointer. Exploiting this vulnerability could allow an attacker to cause service interruptions...

7.8CVSS7.2AI score0.16376EPSS
Exploits0References8Affected Software4
BDU FSTEC
BDU FSTEC
added 2021/10/22 12:0 a.m.2 views

Vulnerability of the Server component: The MySQL Server database management system for Windows, which is vulnerable due to insufficient validation of input data, allows attackers to trigger service failures.

Vulnerability of the MySQL Server component: The MySQL Server component of Windows database management systems has vulnerabilities due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service interruptions remotely...

7.8CVSS6.7AI score0.0297EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/09/29 12:0 a.m.3 views

The vulnerability of the TCP/IP protocol implementation in the Windows operating system allows a hacker to cause a service failure.

The vulnerability of the TCP/IP protocol implementation in the Windows operating system is related to insufficient validation of input data. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

7.5CVSS7.2AI score0.03556EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2021/09/20 12:0 a.m.5 views

The vulnerabilities of the `cdf_read_sat`, `cdf_read_long_sector_chain`, and `cdf_read_ssat` functions, which are utilities for determining the type of specified files in a File object. These vulnerabilities are related to buffer overflows in memory, allowing attackers to gain access to confidential data, compromise its integrity, and cause service interruptions.

The vulnerabilities of the cdfreadsat, cdfreadlongsectorchain, and cdfreadssat functions, which are used to determine the type of the specified files, are related to buffer overflows in memory. Exploiting these vulnerabilities can allow an attacker to gain access to confidential data, compromise...

9.8CVSS8.1AI score0.01134EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/09/20 12:0 a.m.4 views

The vulnerability of the Git-based software platform for collaborative code development on GitLab, related to the allocation of unlimited memory, allows a hacker to trigger a service failure.

The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to the ignoring of a request parameter when working through the API. Exploiting this vulnerability can allow an attacker, operating remotely, to cause service interruptions...

5.3CVSS6AI score0.0115EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/09/20 12:0 a.m.3 views

The vulnerability of the Git-based software platform for collaborative code development on GitLab, related to uncontrolled resource consumption, allows a hacker to trigger a service failure.

The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to the ability to create recursive pipeline connections. Exploiting this vulnerability allows a malicious actor to trigger service interruptions remotely...

6.5CVSS6.9AI score0.01058EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/09/20 12:0 a.m.4 views

The vulnerability of the show-status function of the CGI proxy HTTP Privoxy handler, related to improper memory release before deleting last links, allows a hacker to trigger a service failure.

The vulnerability of the show-status function in the CGI proxy HTTP Privoxy handler is related to improper memory release before deleting last links. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

7.5CVSS7.2AI score0.01897EPSS
Exploits0References8Affected Software4
BDU FSTEC
BDU FSTEC
added 2021/09/15 12:0 a.m.4 views

The vulnerabilities of JunOS Evolved and Junos operating systems are caused by deficiencies in authentication procedures, which allow attackers to gain unauthorized access to protected information or cause partial service interruptions.

The vulnerabilities of JunOS Evolved and Junos are due to deficiencies in the authentication process. Exploiting these vulnerabilities can allow a malicious actor, operating remotely, to gain unauthorized access to protected information or cause partial service interruptions...

6.5CVSS6.6AI score0.01008EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/08/27 12:0 a.m.5 views

The vulnerability of the DVMRP (Distance Vector Multicast Routing Protocol) implementation in Juniper Networks’ Junos OS-based QFX10K routers allows a attacker to cause service interruptions.

The vulnerability of the DVMRP Distance Vector Multicast Routing Protocol implementation in Juniper Networks’ Junos OS-based QFX10K routers stems from packet looping due to incorrect comparison of Ethernet segment identifiers. Exploiting this vulnerability can allow a malicious actor to cause...

6.1CVSS6.3AI score0.01097EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/08/20 12:0 a.m.4 views

The vulnerability of the Scripting Engine component in Windows operating systems allows a hacker to trigger a service failure.

The vulnerability of the Scripting Engine component in Windows operating systems relates to the execution of operations beyond the buffer in memory. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

7.1CVSS7.3AI score0.31825EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2021/08/09 12:0 a.m.4 views

The vulnerability of the sevenz archive software package from Apache Commons Compress allows a hacker to trigger a service failure.

The vulnerability of the sevenz archive software package from Apache Commons Compress is related to errors in processing parameter values related to the length of input data. Exploiting this vulnerability could allow an attacker to cause service interruptions...

7.8CVSS6.6AI score0.12697EPSS
Exploits0References11Affected Software5
BDU FSTEC
BDU FSTEC
added 2021/08/04 12:0 a.m.3 views

The vulnerability of the “Sharing” function in the Google Chrome web browser, which allows a hacker to trigger a service failure.

The vulnerability of the “Sharing” function in the Google Chrome web browser is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service interruptions...

3.1CVSS5.8AI score0.01517EPSS
Exploits0References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/08/03 12:0 a.m.4 views

The vulnerability of the do_uncompress_block and process_block functions in the libarchive library allows a hacker to trigger a service failure.

The vulnerability of the douncompressblock and processblock functions in the libarchive library is related to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

7.1CVSS7AI score0.02845EPSS
Exploits0References11Affected Software3
BDU FSTEC
BDU FSTEC
added 2021/07/22 12:0 a.m.5 views

The vulnerability of the wav_write_header function in the libsndfile library, which relates to reading beyond the allowable buffer data limits, allows a attacker to cause a service failure.

The vulnerability of the wavwriteheader function in the libsndfile library is related to reading data beyond the allowable buffer size. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

6.5CVSS6.8AI score0.01689EPSS
Exploits1References12Affected Software5
CNNVD
CNNVD
added 2021/07/20 12:0 a.m.4 views

Oracle Java SE 输入验证错误漏洞

Oracle Java SE is an Oracle Corporation Oracle for the development and deployment of Java applications for desktops, servers, and embedded devices and real-time environments. An input validation error vulnerability exists in Oracle Java SE version 7u301, which originates from incorrect input...

4.3CVSS6.5AI score0.03701EPSS
Exploits0References46
BDU FSTEC
BDU FSTEC
added 2021/07/20 12:0 a.m.4 views

The vulnerability of the `caca_resize` function in the library for converting images into ASCII art in libcaca involves an out-of-buffer operation. This vulnerability allows attackers to access confidential data, compromise its integrity, and cause service interruptions.

The vulnerability of the cacaresize function in the library that converts images into ASCII art in libcaca is related to the output of the operation outside of the buffer in memory. Exploiting this vulnerability could allow an attacker to access confidential data, compromise its integrity, and ev...

7.8CVSS7AI score0.00561EPSS
Exploits1References14Affected Software6
Rows per page
Query Builder