CVE-2025-20305

A vulnerability in the web-based management interface of Cisco ISE could allow an authenticated, remote attacker to obtain sensitive information from an affected device. This vulnerability exists because certain files lack proper data protection mechanisms. An attacker with read-only Administrato...

The vulnerability of video surveillance cameras for monitoring and surveillance systems, related to insufficient protection of operational data, allows intruders to gain unauthorized access to protected information.

The vulnerability of video surveillance cameras for monitoring and surveillance systems is related to insufficient protection of operational data. Exploiting this vulnerability can allow an unauthorized intruder to gain unauthorized access to protected information...

The vulnerability of the octeontx2-pf component in the Linux operating system allows a hacker to gain unauthorized access to protected information.

The vulnerability of the octeontx2-pf component in the Linux operating system is related to insufficient protection of sensitive data. Exploiting this vulnerability can allow unauthorized access to protected information...

The vulnerability of the kernel component of the Linux operating system allows a hacker to gain unauthorized access to protected information.

The vulnerability of the kernel component of the Linux operating system is related to insufficient protection of service data in the tbnetopen function. Exploiting this vulnerability can allow unauthorized access to protected information...

The vulnerability of the PostgreSQL software component used in Brocade SANnav network management systems allows a hacker to gain unauthorized access to protected information.

The vulnerability of the PostgreSQL software component used in Brocade SANnav network management systems is related to insufficient protection for registration data. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

The vulnerability of the Windows operating system’s kernel allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Windows operating system’s kernel is related to insufficient protection of sensitive data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the DNS server service in Windows operating systems allows a perpetrator to disclose protected information or cause service failures.

The vulnerability of the DNS server service in Windows operating systems is related to the lack of protection for service-related data. Exploiting this vulnerability can allow a attacker to disclose sensitive information or cause service failures...

The vulnerability of Microsoft Excel editors, related to insufficient protection of sensitive data, allows attackers to gain unauthorized access to protected information.

The vulnerability of Microsoft Excel spreadsheet editors is related to insufficient protection of operational data. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected information by opening a specially created file...

The vulnerability of the Microsoft Message Queuing (MSMQ) queue service on Windows operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Microsoft Message Queuing MSMQ service on Windows operating systems is related to insufficient protection of service data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information remotely...

The vulnerability of the Enhanced Security mode of the Teacher Console and Student Console on the Faronics Insight computer network management platform allows a perpetrator to bypass security restrictions, gain unauthorized access to protected information, or execute arbitrary codes.

The vulnerability of the Enhanced Security mode of the Teacher Console and Student Console on the Faronics Insight computer network management platform is related to insufficient protection of operational data. Exploiting this vulnerability can allow an attacker, operating remotely, to circumvent...

The vulnerability of the Factory Interface Network Service (FINS) protocol implementation in the microcomputer-based programmable logic controllers OMRON CP1L-EL20DR-D allows a intruder to gain access to read, modify, or delete files, execute arbitrary code, or cause a service failure.

The vulnerability of the Factory Interface Network Service FINS protocol implementation in the microcomputer-based programmable logic controllers OMRON CP1L-EL20DR-D is related to insufficient protection of service data during code debugging. Exploiting this vulnerability can allow an attacker to...

The vulnerability of the Point-to-Point Protocol (PPP) implementation in Windows operating systems allows a intruder to gain unauthorized access to protected information.

The vulnerability of the Point-to-Point Protocol PPP implementation in Windows operating systems is related to insufficient protection of sensitive data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of Microsoft Office packages, Microsoft 365 Apps for Enterprise, Microsoft SharePoint, Microsoft Excel, and Microsoft Office Web Apps Server, which stems from the lack of data protection measures, allows attackers to gain unauthorized access to devices.

The vulnerabilities of Microsoft Office packages, Microsoft 365 Apps for Enterprise, Microsoft SharePoint, Microsoft Excel, and Microsoft Office Web Apps Server are related to the lack of protection for sensitive data. Exploiting these vulnerabilities can allow attackers to gain unauthorized acce...

The vulnerability of the web interface of the microprogramming software for industrial LTE modems of the Moxa OnCell G3150A-LTE, OnCell G3470A-LTE, and WDR-3124A series, as well as the microprogramming software for wireless access points for industrial systems of the Moxa AWK-3131A, AWK-4131A, AWK-1131A, and AWK-1137C models, allows a perpetrator to execute arbitrary commands.

The vulnerability of the web interface of microprogramming software for industrial LTE modems of the Moxa OnCell G3150A-LTE, OnCell G3470A-LTE, and WDR-3124A series, as well as of microprogramming software for wireless access points for industrial systems of the Moxa AWK-3131A, AWK-4131A,...

Google Pixel 安全漏洞

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an information disclosure vulnerability. The vulnerability stems from inadequate protection of sensitive information and can be exploited by attackers to obtain sensitive information...

Adobe Illustrator 缓冲区错误漏洞

Adobe Illustrator is a vector-based image creation software from Adobe, Inc. A security vulnerability exists in Adobe Illustrator, which stems from the product's failure to add effective data protection measures. A remote attacker could use the vulnerability to access sensitive information...

The vulnerability of the Framework component in Android operating systems allows a hacker to trigger a service failure.

The vulnerability of the Framework component in Android operating systems is related to insufficient protection of service data. Exploiting this vulnerability can allow a malicious actor to cause service failures through a specially created file...

The vulnerability of the Cryptographic Primitives Library in Windows operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Cryptographic Primitives Library in Windows operating systems is related to insufficient protection of sensitive data. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected information...

The vulnerability of the DNS service in Microsoft Windows operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the DNS service in Microsoft Windows operating systems is related to insufficient protection of service data. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to protected information...

The vulnerability of the kernel of Microsoft Windows allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the kernel of Microsoft Windows is related to insufficient protection of sensitive data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...