240 matches found
ROS-20251201-01
A vulnerability in the Core component of the Oracle VM VirtualBox virtualization software tool is related to insufficient protection of service data. Exploitation of the vulnerability could allow an attacker to gain unauthorized access to protected information Vulnerability of Core component of...
EUVD-2005-0686
Malware in sbrugna...
EUVD-2023-43648
Malicious code in bioql PyPI...
EUVD-2022-27214
Malicious code in bioql PyPI...
The vulnerability of the Tidal component of the Alpine iLX-507 audio system allows a hacker to execute arbitrary code.
The vulnerability of the Tidal component of the Alpine iLX-507 audio system is related to errors in the certificate validation process. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the authentication method used by the Vault Enterprise and Vault Community Edition archiving platforms for corporate information allows a perpetrator to create malicious certificates.
The vulnerability of the authentication method used by the Vault Enterprise and Vault Community Edition archiving platforms for corporate information is related to errors in the certificate validation process. Exploiting this vulnerability could allow an attacker to create malicious certificates...
ROS-20250619-14
The vulnerability of Pgpool-II connection balancing and management software tools is related to errors of input validation errors when processing directory traversal sequences in filenames. Exploitation exploitation of the vulnerability could allow a remote attacker to perform directory traversal...
ROS-20250619-13
The vulnerability of Pgpool-II connection balancing and management software tools is related to errors of input validation errors when processing directory traversal sequences in filenames. Exploitation exploitation of the vulnerability could allow a remote attacker to perform directory traversal...
ROS-20250619-12
The vulnerability of Pgpool-II connection balancing and management software tools is related to errors of input validation errors when processing directory traversal sequences in filenames. Exploitation exploitation of the vulnerability could allow a remote attacker to perform directory traversal...
ROS-20250619-10
The vulnerability of Pgpool-II connection balancing and management software tools is related to errors of input validation errors when processing directory traversal sequences in filenames. Exploitation exploitation of the vulnerability could allow a remote attacker to perform directory traversal...
CVE-2025-49848
CVE-2025-49848 corresponds to LS Electric GMWin 4, involving an Out-of-bounds Write during PRJ file parsing caused by insufficient input validation. Documented effects include memory corruption (reading/writing past end of allocated data structures). Several connected sources tie this to GMWin 4 ...
CVE-2024-8008
A reflected cross-site scripting XSS vulnerability exists in multiple WSO2 products due to insufficient output encoding in error messages generated by the JDBC user store connection validation request. A malicious actor can inject a specially crafted payload into the request, causing the browser ...
Qualcomm Chipsets 输入验证错误漏洞
Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. An input validation error vulnerability exists in Qualcomm Chipsets that stems from a memory corruption when fetching and updating IOCTL during IFE output resource ID validation...
USN-7422-1: FIS-GT.M vulnerabilities
It was discovered that FIS-GT.M could incorrectly dereference memory in certain instances. An attacker could possibly use this issue to cause FIS-GT.M to crash, resulting in a denial of service. CVE-2021-44492, CVE-2021-44498, CVE-2021-44508 It was discovered that FIS-GT.M could perform a divisio...
Security Bulletin: IBM InfoSphere Information Server is affected by multiple vulnerabilities in Apache Axis
Summary Multiple vulnerabilities in Apache Axis that is used by InfoSphere Information Server were addressed. Vulnerability Details CVEID:CVE-2010-1632 DESCRIPTION: Apache Axis2/Java is vulnerable to a denial of service, caused by an error when handling XML DTD Document Type Declaration data. A...
ROS-20250212-10
A vulnerability in the Python Babel library that helps internationalize and localize Python applications is associated with Input validation errors when processing directory traversal sequences in .dat locale files in Babel.Locale. Exploitation of the vulnerability could allow an attacker to...
CVE-2021-35126
Memory corruption in DSP service due to improper validation of input parameters in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile...
Qualcomm Chipsets 输入验证错误漏洞
Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. The Qualcomm Chipsets suffer from an input validation error vulnerability that originates from a memory corruption that occurs during power-up or power-down of the camera sensor...
The vulnerability of the Root Certificate Handler component of the software solution for secure remote access to data in Palo Alto Networks’ GlobalProtect App allows a malicious actor to escalate their privileges.
The vulnerability of the Root Certificate Handler component in the software for secure remote access to data in the Palo Alto Networks GlobalProtect App is related to errors in the certificate validation process. Exploiting this vulnerability can allow attackers to increase their privileges...
The vulnerability of the software for managing Lenovo Accessories and Display Manager (LADM) and the software for managing and configuring Lenovo Display Control Center (LDCC) lies in errors in the authentication process, allowing a perpetrator to execute arbitrary code.
The vulnerabilities of the Lenovo Accessories and Display Manager LADM software for managing accessories and displays, as well as the Lenovo Display Control Center LDCC software for controlling and configuring displays, are related to errors in the certificate validation process. Exploiting these...