48 matches found
Amazon Web Services JDBC Driver 安全漏洞
The Amazon Web Services JDBC Driver is an open-source Go language wrapper developed by Amazon Web Services. There is a security vulnerability in the Amazon Web Services JDBC Driver, which stems from an unreliable search path issue in the GlobalDatabasePlugin. This vulnerability allows remote,...
Advisory ROSA-SA-2026-3180
Software: perl 5.26.3 OS: ROSA Virtualization 3.0 unaffected versions = perl-5.26.3-423.rv30 affected versions perl-5.26.3-423.rv30 CVE-ID: CVE-2025-40909 BDU-ID: 2025-10307 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the Perl programming language interpreter is related to the use of an...
Advisory ROSA-SA-2026-3160
Software: perl 5.26.3 OS: ROSA Virtualization 3.1 unaffected versions = perl-5.26.3-423.rv31 affected versions perl-5.26.3-423.rv31 CVE-ID: CVE-2025-40909 BDU-ID: 2025-10307 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the Perl programming language interpreter is related to the use of an...
Vulnerabilities fixed in Adobe Illustrator
Adobe has fixed vulnerabilities in Adobe Illustrator Specifically for versions 29.8.3, 30.0 and earlier. The vulnerabilities are in the way Adobe Illustrator handles specially crafted files. The first vulnerability involves an Unreliable Search Path issue that can lead to arbitrary code execution...
ROS-20250822-01
A vulnerability in the Kea open source DHCP server is related to the use of an unreliable search path. Exploitation of the vulnerability could allow an attacker to escalate privileges on the system...
The vulnerability of Yandex.Disk’s cloud storage service for the iOS operating system, related to the use of an unreliable search path, allows a hacker to interrupt the search order in order to replace the executable file.
The vulnerability of Yandex.Disk’s cloud storage service for the iOS operating system is related to the use of an unreliable search path. Exploiting this vulnerability could allow a attacker to intercept the search order in order to replace the executable file with a malicious one...
The vulnerability of the "Yandex.Telemost" video conference software for macOS allows a hacker to elevate their privileges and gain access to the device’s hardware resources.
The vulnerability of the "Yandex.Telemost" video conference software lies in the use of an unreliable search path. Exploiting this vulnerability can allow attackers to enhance their privileges and gain access to the device’s hardware resources...
The vulnerability of the Web Intelligence component of the SAP BusinessObjects Business Intelligence platform allows a perpetrator to upload arbitrary files.
The vulnerability of the Web Intelligence component of the SAP BusinessObjects Business Intelligence platform is related to the use of an unreliable search path. Exploiting this vulnerability allows attackers to upload arbitrary files...
The vulnerability of the Autodesk On-Demand Install Services (AdODIS) software update service allows a hacker to elevate their privileges to the level of NT AUTHORITY/SYSTEM.
The vulnerability of the Autodesk On-Demand Install Services AdODIS software update service is related to the use of an unreliable search path. Exploiting this vulnerability can allow an attacker to elevate their privileges to the NT AUTHORITY/SYSTEM level by loading a specially crafted binary fi...
The vulnerability of the "Yandex.Telemost" video conference software lies in its use of an unreliable search path, allowing a hacker to execute arbitrary code.
The vulnerability of the "Yandex.Telemost" video conference software lies in the use of an unreliable search path. Exploiting this vulnerability could allow a hacker to execute arbitrary code...
The vulnerability of the software installer for Zoom video conferencing applications on macOS systems allows a hacker to escalate their privileges.
The vulnerability of the software installer for Zoom video conferencing on macOS systems is related to the use of an unreliable search path. Exploiting this vulnerability can allow attackers to gain increased privileges...
The vulnerability of the ArcGIS Pro geospatial information system and the ArcGIS AllSource software for analyzing operational data, related to the use of an unreliable search path, allows a perpetrator to execute arbitrary commands.
The vulnerability of the ArcGIS Pro geospatial information system and the ArcGIS AllSource software for analyzing operational data is related to the use of an unreliable search path. Exploiting this vulnerability could allow a attacker to execute arbitrary commands by loading a specially created...
The vulnerability of the ArcGIS Pro geospatial information system and the ArcGIS AllSource software for analyzing operational data, related to the use of an unreliable search path, allows a perpetrator to execute arbitrary commands.
The vulnerability of the ArcGIS Pro geospatial information system and the ArcGIS AllSource software for analyzing operational data is related to the use of an unreliable search path. Exploiting this vulnerability could allow a attacker to execute arbitrary commands by loading a specially created...
The vulnerability of the profapi.dll library in the Discord messaging system allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the profapi.dll library in the Discord instant messaging system is related to the use of an unreliable search path. Exploiting this vulnerability could allow attackers to compromise the confidentiality, integrity, and accessibility of the protected information...
The vulnerability of the Veeam Agent for Microsoft Windows data backup tool lies in the use of an unreliable search path, allowing a perpetrator to execute arbitrary code.
The vulnerability of the Veeam Agent for Microsoft Windows data backup tool is related to the use of an unreliable search path. Exploiting this vulnerability allows attackers to execute arbitrary code by introducing malicious DLL libraries...
The vulnerability of the Adobe Animate software for creating multimedia and computer animations lies in its use of an unreliable search path, allowing attackers to execute arbitrary code.
The vulnerability of the Adobe Animate program for creating multimedia and computer animations is related to the use of an unreliable search path. Exploiting this vulnerability allows a hacker to execute arbitrary code...
The vulnerability of the 3D model texturing program Adobe Substance 3D Painter, related to the use of an unreliable search path, allows a hacker to execute arbitrary code.
The vulnerability of the 3D model texturing software Adobe Substance 3D Painter lies in the use of an unreliable search path. Exploiting this vulnerability allows a hacker to execute arbitrary code in the context of the current user, using a specially created file...
The vulnerability of the Python programming language interpreter lies in the use of an insecure search path, which allows attackers to exploit their privileges.
The vulnerability of the Python programming language interpreter is related to the use of an unreliable search path. Exploiting this vulnerability can allow attackers to gain increased privileges...
The vulnerability of Ivanti Workspace Control’s software for controlling user access to applications and data lies in its use of an unreliable search path, which allows a malicious individual to escalate their privileges.
The vulnerability of the software for controlling user access to applications and data in Ivanti Workspace Control is related to the use of an unreliable search path. Exploiting this vulnerability can allow a intruder to increase their privileges...
The vulnerability of the performance and status collection utility in HP One Agent, a microprogramming software for HP laptops, allows attackers to enhance their privileges.
The vulnerability of the HP One Agent performance and status monitoring tool for laptop HP microcomputer software involves the use of an unreliable search path. Exploiting this vulnerability can allow attackers to enhance their privileges...