The vulnerability of the vcodec component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the vcodec component in the Linux operating system’s kernel is related to the pointer to NULL. Exploiting this vulnerability can allow an attacker to cause a service failure...

Nextcloud Information Disclosure Vulnerability (CNVD-2025-11221)

Nextcloud is a set of open source self-hosted file synchronization and sharing communication application platform from Nextcloud, Germany. Nextcloud suffers from an information disclosure vulnerability that stems from the fact that after storing "global credentials" on the server, the API returns...

The vulnerability of the mptcp component in Linux kernel, which allows a hacker to cause a service failure

The vulnerability of the mptcp component in the Linux operating system’s kernel is related to errors in resource management within the subflowfinishconnect function. Exploiting this vulnerability can allow a attacker to cause a service failure...

Google Android 安全漏洞

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. A remote code execution vulnerability exists in the Media framework component of Google Android. A remote attacker can exploit this vulnerability to execute code...

CVE-2024-22067

ZTE NH8091 product has an improper permission control vulnerability. Due to improper permission control of the Web module interface, an authenticated attacker may exploit the vulnerability to execute arbitrary commands...

Google Android elevation of privilege vulnerability (CNVD-2024-47699)

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability that can be exploited by an attacker to elevate privileges...

Adobe Illustrator Heap Buffer Overflow Vulnerability

Adobe Illustrator is a set of vector-based image creation software from the American company Audobee Adobe. A heap buffer overflow vulnerability exists in Adobe Illustrator, which can be exploited by an attacker to execute arbitrary code in the context of the current user...

Tenda AC10 Stack Buffer Overflow Vulnerability

The Tenda AC10 is an 11ac dual band router designed for homes with 200 megabit and above fiber. A stack buffer overflow vulnerability exists in the Tenda AC10. The vulnerability stems from a stack-based buffer overflow caused by the parameter timeZone in the FUN0044db3c function of the...

Google Chrome Security Bypass Vulnerability (CNVD-2025-00212)

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a security bypass vulnerability that stems from the Views module containing a mal-implementation issue. An attacker could exploit the vulnerability to bypass security restrictions...

IBM WebSphere Application Server Cross-Site Scripting Vulnerability (CNVD-2024-45435)

IBM WebSphere Application Server WAS is an application server product from International Business Machines IBM. The product is a platform for JavaEE and Web services applications and is the foundation of the IBM WebSphere software platform. A cross-site scripting vulnerability exists in IBM...

PT-2024-10125 · Rsync +10 · Rsync +10

The rsync daemon is affected by a flaw that can be triggered when comparing file checksums, allowing an attacker to manipulate the checksum length and cause a comparison between a checksum and uninitialized memory. This results in the leak of one byte of uninitialized stack data at a time. An...

The vulnerability of the KVM kernel component in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the KVM kernel component in the Linux operating system is related to improper locking of resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

Intel Processors 安全漏洞

Intel Processors are American Intel Corporation's provide interpretation of computer instructions and processing of data in computer software. A security vulnerability exists in Intel Processors. An attacker can exploit the vulnerability to elevate privileges...

AMI AptioV 安全漏洞

AMI AptioV is a firmware-related editor from AMI USA. A security vulnerability exists in AMI AptioV. An attacker exploiting this vulnerability could execute arbitrary code...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel has a security vulnerability. An attacker exploiting the vulnerability can cause a system crash...

The vulnerability of the btrfs component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the btrfs component in Linux operating systems is related to read misses beyond the buffer boundary. Exploiting this vulnerability can allow an attacker to cause a service failure...

MediaTek Chipsets 安全漏洞

MediaTek Chipsets are a variety of chips from China's MediaTek Corporation MediaTek. A security vulnerability exists in MediaTek Chipsets, which stems from a lack of boundary checking, where out-of-bounds writes may occur. An attacker can escalate privileges by exploiting the vulnerability...

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a series of chipsets from Qualcomm, an American company. A security vulnerability exists in Qualcomm Chipsets. An attacker exploiting the vulnerability can cause memory corruption...

The vulnerability of the Git-based software platform for collaborative code development on GitLab, related to insufficient validation of input data, allows a hacker to trigger a service failure.

The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service failures...

Microsoft Edge (Chromium) < 130.0.2849.68 Multiple Vulnerabilities

The version of Microsoft Edge installed on the remote Windows host is prior to 130.0.2849.68. It is, therefore, affected by multiple vulnerabilities as referenced in the October 31, 2024 advisory. - Out of bounds write in Dawn in Google Chrome prior to 130.0.6723.92 allowed a remote attacker to...