Design/Logic Flaw

The TIBCO Spotfire Server and TIBCO Enterprise Runtime for R components of TIBCO Software Inc.'s TIBCO Enterprise Runtime for R - Server Edition, TIBCO Enterprise Runtime for R - Server Edition, TIBCO Enterprise Runtime for R - Server Edition, TIBCO Spotfire Analytics Platform for AWS Marketplace...

The vulnerability of NFS servers in Microsoft Windows systems, which allows a hacker to gain unauthorized access to protected information

The vulnerability of NFS servers on Microsoft Windows operating systems is related to security flaws in the handling of service data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information remotely...

The vulnerability of NFS servers in Microsoft Windows systems, which allows a hacker to gain unauthorized access to protected information

The vulnerability of NFS servers on Microsoft Windows operating systems is related to security flaws in the handling of service data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information remotely...

Mozilla Thunderbird Permissions and Access Control Issues Vulnerability

Mozilla Thunderbird is an open source email client. Mozilla Thunderbird is vulnerable to permission permission and access control issues, which stem from the way Mozilla maintenance services are installed on the Windows operating system. No detailed vulnerability details are currently available...

The vulnerability of the ntoskrnl.exe file in Windows operating systems allows a hacker to gain unauthorized access to protected information.

The vulnerability of the ntoskrnl.exe file in operating systems is related to privilege management errors. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the ntfs.sys driver in Windows operating systems allows attackers to escalate their privileges.

The vulnerability of the ntfs.sys driver in Windows operating systems is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to increase their privileges...

The vulnerability of the Intune management extension for Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Intune management extension for Windows operating systems is related to privilege management errors. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of the Microsoft Enhanced Cryptographic Provider on Microsoft Windows operating systems allows attackers to enhance their privileges.

The vulnerability of Microsoft’s Enhanced Cryptographic Provider on Microsoft Windows operating systems is related to insecure management of privileges. Exploiting this vulnerability can allow attackers to enhance their privileges...

Microsoft Windows Codecs Library 代码注入漏洞

Microsoft Windows is a desktop operating system from the U.S. company Microsoft. A security vulnerability exists in the Microsoft Windows Codecs Library. The following products and versions are affected:VP9 Video Extensions,...

Schneider Electric IGSS

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Schneider Electric Equipment: IGSS Interactive Graphical SCADA System Vulnerabilities: Out-of-bounds Write, Out-of-bounds Read, Access of Uninitialized Pointer, Use After Free, Release of Invalid Pointer or Reference,...

The vulnerability of the Remote Desktop Protocol (RDP) implementation on Microsoft Windows operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Remote Desktop Protocol RDP implementation on Microsoft Windows operating systems is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the OLE Automation technology implementation in Microsoft Windows operating systems allows a perpetrator to execute arbitrary code.

The vulnerability of the OLE Automation technology implementation in Microsoft Windows operating systems is related to improper code generation management. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

PowerShell-Suite

This repository is an offensive tool for Windows UAC User Account Control bypass. It provides a framework to perform UAC bypasses based on auto-elevating IFileOperation COM object method calls. The tool is written in C and uses the .NET framework. The tool supports several methods for UAC bypass,...

CVE-2019-4588

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server 9.7, 10.1, 10.5, 11.1, and 11.5 could allow a local user to execute arbitrary code and conduct DLL hijacking attacks...

PT-2021-3055 · Microsoft · Windows Hyper-V +1

Name of the Vulnerable Software and Affected Versions: Windows Hyper-V affected versions not specified Description: The issue is related to incorrect code generation management in the Hyper-V component of the Windows operating system. It allows a remote attacker to execute arbitrary code. The...

PT-2021-3094 · Microsoft · Jet Database Engine +3

Name of the Vulnerable Software and Affected Versions: Microsoft Jet Red Database Engine and Access Connectivity Engine affected versions not specified Description: The issue is related to incorrect code generation management in the Microsoft Jet Red Database Engine and Access Connectivity Engine...

The vulnerability of the Media Photo Codec component in Windows operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Media Photo Codec component in Windows operating systems is related to security flaws in the handling of service data. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected information...

The vulnerability of the RPC Endpoint Mapper service on Windows operating systems allows attackers to escalate their privileges.

The vulnerability of the RPC Endpoint Mapper service on Windows operating systems is related to insecure management of privileges. Exploiting this vulnerability can allow an attacker to enhance their privileges...

The vulnerability of the TCP/IP protocol driver for Microsoft Windows operating systems allows a hacker to induce a service failure.

The vulnerability of the TCP/IP protocol driver for Microsoft Windows operating systems exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

The vulnerability affects the runtime of procedure calls in Microsoft Windows operating systems, allowing an attacker to execute arbitrary code.

The vulnerability of remote procedure call runtime in Microsoft Windows operating systems is related to improper code generation management. Exploitation of this vulnerability can allow a malicious actor to execute arbitrary code remotely...