2259 matches found
RUSTSEC-2019-0031 spin is no longer actively maintained
The author of the spin crate does not have time or interest to maintain it. Consider the following alternatives all of which support nostd: - conquer-once - lockapi a subproject of parkinglot - spinningtop spinlock crate built on lockapi - spinning...
A New Playground for Cybercrime: Why Supply Chain Security Must Cover Software Development
Most organisations see supply chains as providers of physical goods and services. The supply chain management function in these companies usually provides the governance framework to reduce third-party risks and prevent hackers from stealing data, disrupting daily operations and affecting busines...
The vulnerability of Intel Remote Displays SDK’s remote screens involves permission processing errors, allowing attackers to escalate their privileges.
The vulnerability of Intel Remote Displays SDK’s remote screens involves permission processing errors. Exploiting this vulnerability can allow attackers to enhance their privileges...
SQL Injection Vulnerability in Library Bibliographic Search System op***.php Page
Jiangsu Huiwen Software Co., Ltd. is a company specializing in information management system software development, sales. A SQL injection vulnerability exists in the library bibliographic retrieval system op.php page, which can be exploited by attackers to obtain sensitive information from the...
SUSE SLED12 / SLES12 Security Update : bzip2 (SUSE-SU-2019:2013-1)
This update for bzip2 fixes the following issues : Fixed a regression with the fix for CVE-2019-12900, which caused incompatibilities with files that used many selectors bsc1139083. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security...
IBM SDK, Java Technology Edition Privilege Vulnerability
IBM SDK, Java Technology Edition is a software development kit for Java application development from IBM, USA. An elevation of privilege vulnerability exists in IBM SDK, Java Technology Edition for AIX-based platforms, which can be exploited by a local attacker to inject code and elevate privileg...
Moderate: Red Hat Security Advisory: java-1.7.0-openjdk security update
An update for java-1.7.0-openjdk is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
PT-2022-8603 · Unknown +2 · Platinum Upnp Sdk +2
Name of the Vulnerable Software and Affected Versions: Platinum Upnp SDK versions prior to 1.2.1 Description: The issue allows for a directory traversal attack, which could be exploited by sending a malicious URL, such as "http://ip:port/../privacy.avi", to compromise a victim's privacy. This cou...
CVE-2019-8998
CVE-2019-8998 affects BlackBerry QNX Software Development Platform up to version 6.5.0 SP1. The procfs (/proc) service exposes process information, enabling a less-privileged local attacker to access a target process address space (information disclosure leading to local privilege escalation). Se...
The vulnerability of the Intel Data Center Manager SDK, related to access control deficiencies, allows a perpetrator to disclose protected information.
The vulnerability of the Intel Data Center Manager SDK development tools is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to disclose sensitive information that is protected by these tools...
The vulnerability of the installation mechanism for the software development tools for Intel Data Center Manager SDK allows a perpetrator to disclose protected information due to security flaws in the mechanism.
The vulnerability of the mechanism for installing the software set for developing Intel Data Center Manager SDK is related to security flaws in this mechanism. Exploiting this vulnerability could allow attackers to disclose sensitive information that is protected by this system...
The vulnerability in the Intel Data Center Manager SDK toolset, related to key management errors, allows a hacker to disclose sensitive information that is protected by the software.
The vulnerability of the Intel Data Center Manager SDK development tools is related to key management errors. Exploiting this vulnerability can allow an attacker to disclose sensitive information that is protected by these tools...
The vulnerability of the Intel Data Center Manager SDK software development tools, related to access control deficiencies, allows a perpetrator to disclose protected information.
The vulnerability of the Intel Data Center Manager SDK development tools is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to disclose sensitive information that is protected by these tools...
The vulnerability of the installation mechanism for the software development tools for Intel Data Center Manager SDK allows unauthorized access, enabling attackers to enhance their privileges.
The vulnerability of the installation mechanism for the software development tools for Intel Data Center Manager SDK is related to errors in processing input data. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of the Intel Data Center Manager SDK software development tools, related to access control deficiencies, allows attackers to enhance their privileges.
The vulnerability of the Intel Data Center Manager SDK development tools is related to deficiencies in access control. Exploiting this vulnerability could allow attackers to enhance their privileges...
Foxit PDF SDK ActiveX Buffer Overflow Vulnerability (CNVD-2019-21947)
Foxit PDF SDK ActiveX is China's Foxit Foxit company's a PDF software development kit, but also a visual programming components. The product provides PDF display and annotation features. A security vulnerability exists in Foxit PDF SDK ActiveX 5.5.0 and earlier versions. A remote attacker can...
Moderate: Red Hat Security Advisory: java-11-openjdk security update
An update for java-11-openjdk is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...
Sandbox Restrictions Bypass
IBM Java SE version 6 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update fixes several vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit. Further information about these flaws can be found on the IBM Java...
Sandbox Restrictions Bypass
The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Multiple flaws were discovered in the 2D, CORBA, JMX, Libraries and RMI components in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Ja...
Sandbox Restrictions Bypass
The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Multiple flaws were discovered in the 2D, CORBA, JMX, Libraries and RMI components in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Ja...