6109 matches found
Arcserve Unified Data Protection - Authentication Bypass
An authentication bypass vulnerability exists in Arcserve Unified Data Protection 9.2 and 8.1 in the edge-app-base-webui.jar!com.ca.arcserve.edge.app.base.ui.server.EdgeLoginServiceImpl.doLogin function within wizardLogin. id: CVE-2024-0799 info: name: Arcserve Unified Data Protection -...
Mitel MiCollab - Authentication Bypass
A vulnerability in the NuPoint Unified Messaging NPM component of Mitel MiCollab through 9.8 SP1 FP2 9.8.1.201 could allow an unauthenticated attacker to conduct a path traversal attack, due to insufficient input validation. A successful exploit could allow unauthorized access, enabling the...
Cisco Unified Communications Manager 7/8/9 - Directory Traversal
A directory traversal vulnerability in the Tomcat administrative web interface in Cisco Unified Communications Manager allows remote authenticated users to read arbitrary files via directory traversal sequences in an unspecified input string, aka Bug ID CSCui78815 id: CVE-2013-5528 info: name:...
CVE-2026-50326
Use after free in Windows Unified Consent System allows an authorized attacker to elevate privileges locally...
CVE-2026-50326 Windows Unified Consent System Elevation of Privilege Vulnerability
...
CVE-2026-50326
CVE-2026-50326 affects the Windows Unified Consent System. Description: use-after-free leading to local privilege escalation for an authorized attacker. Connected sources confirm the vulnerability and indicate Microsoft patches are available (e.g., MSRC/KB articles). In any write-up, cite that th...
CVE-2026-50326 Windows Unified Consent System Elevation of Privilege Vulnerability
...
Windows Unified Consent System Elevation of Privilege Vulnerability
Use after free in Windows Unified Consent System allows an authorized attacker to elevate privileges locally...
PT-2026-58317
Name of the Vulnerable Software and Affected Versions Windows Unified Consent System affected versions not specified Description A use after free issue in the Windows Unified Consent System allows an authorized attacker to elevate privileges locally. Use after free is a memory corruption flaw tha...
SUSE-SU-2026:2922-1 Security update for patch
This update for patch fixes the following issues - CVE-2021-45261: Invalid Pointer via anotherhunk function bsc1194037. - CVE-2026-56288: crafted unified-diff patch file can cause null pointer derefence bsc1271167. - CVE-2026-56289: improper validation of hunk line offsets can lead to denial of...
SUSE CVE-2026-56289
GNU patch is vulnerable to a denial of service DoS due to improper validation of hunk single block of changes in diff line offsets in unified-diff input. A specially crafted patch can specify an extremely large line number, causing the application to enter an effectively infinite processing loop...
CVE-2026-54800
A vulnerability has been identified in CPCI85 Central Processing/Communication All versions V26.20, SICORE Base system All versions V26.20.0. The affected application ships with a default configuration that disables all OPC UA security mechanisms. This could allow an attacker to gain unauthorized...
CVE-2026-54800
A vulnerability has been identified in CPCI85 Central Processing/Communication All versions V26.20, SICORE Base system All versions V26.20.0. The affected application ships with a default configuration that disables all OPC UA security mechanisms. This could allow an attacker to gain unauthorized...
EUVD-2026-42595
A vulnerability has been identified in CPCI85 Central Processing/Communication All versions V26.20, SICORE Base system All versions V26.20.0. The affected application ships with a default configuration that disables all OPC UA security mechanisms. This could allow an attacker to gain unauthorized...
CVE-2026-54800
CVE-2026-54800 affects CPCI85 Central Processing/Communication and SICORE Base system (all versions < V26.20 /
DEBIAN-CVE-2026-56289
GNU patch is vulnerable to a denial of service DoS due to improper validation of hunk single block of changes in diff line offsets in unified-diff input. A specially crafted patch can specify an extremely large line number, causing the application to enter an effectively infinite processing loop...
CVE-2026-56288
GNU patch is vulnerable to a NULL pointer dereference when processing a specially crafted unified-diff patch file. Improper handling of consecutive end-of-file newline markers can corrupt internal hunk single block of changes in diff data structures, causing the application to pass a NULL pointer...
CVE-2026-56289
GNU patch is vulnerable to a denial of service DoS due to improper validation of hunk single block of changes in diff line offsets in unified-diff input. A specially crafted patch can specify an extremely large line number, causing the application to enter an effectively infinite processing loop...
UBUNTU-CVE-2026-56289
GNU patch is vulnerable to a denial of service DoS due to improper validation of hunk single block of changes in diff line offsets in unified-diff input. A specially crafted patch can specify an extremely large line number, causing the application to enter an effectively infinite processing loop...
CVE-2026-56289 Loop with Unreachable Exit Condition in GNU patch
GNU patch is vulnerable to a denial of service DoS due to improper validation of hunk single block of changes in diff line offsets in unified-diff input. A specially crafted patch can specify an extremely large line number, causing the application to enter an effectively infinite processing loop...