Huawei HarmonyOS 安全漏洞

Huawei EMUI and Huawei HarmonyOS are both products of Huawei, a mobile operating system based on Android, and Huawei HarmonyOS, a distributed operating system developed by Huawei for the whole scenario, aiming at realizing intelligent interconnection and resource sharing among people, devices, an...

The vulnerability in the component /krb5/src/lib/gssapi/krb5/k5sealv3.c of the Kerberos network protocol allows a attacker to induce a service failure.

The vulnerability of the /krb5/src/lib/gssapi/krb5/k5sealv3.c component, which implements the Kerberos network protocol, is related to memory release errors. Exploiting this vulnerability could allow a malicious actor to cause service failures...

Google Chrome Security Bypass Vulnerability (CNVD-2024-16877)

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a security bypass vulnerability that stems from an incorrect security UI in iOS. An attacker can exploit this vulnerability to bypass security restrictions...

Adobe Animate Buffer Overflow Vulnerability (CNVD-2024-15722)

Adobe Animate is a set of Flash animation software from the American company Audobee Adobe. Adobe Animate suffers from a buffer overflow vulnerability that stems from an out-of-bounds read vulnerability that can be exploited by an attacker to cause a sensitive memory leak...

Apache James elevation of privilege vulnerability (CNVD-2024-26542)

Apache James is the United States Apache Apache Foundation of a completely written in Java open source Smtp and Pop3 mail transfer agent and Nntp news server . Apache James suffers from an elevation of privilege vulnerability caused by insecure deserialization in JMX endpoints. An attacker can...

Apache Doris 安全漏洞

Apache Doris is a modern MPP analytic database product of the U.S. Apache Apache Foundation. Can provide sub-second queries and efficient real-time data analysis. Apache Doris suffers from an information disclosure vulnerability that can be exploited by an attacker to obtain sensitive information...

Microsoft Hyper-V 安全漏洞

Microsoft Windows Hyper-V is a tool from Microsoft USA that provides hardware virtualization. A denial of service vulnerability exists in Microsoft Windows Hyper-V. An attacker could exploit this vulnerability to cause a denial of service...

zlog Security Vulnerabilities

zlog is a reliable, high-performance, thread-safe, flexible, model-clear, pure C logging library by Hardy Simpson, an individual developer in China. A security vulnerability exists in zlog version 1.2.16. An attacker can exploit this vulnerability to execute arbitrary code...

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel has a security vulnerability. An attacker exploits the vulnerability to cause fpc register corruption...

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel. An attacker exploits the vulnerability to cause kernel stack corruption...

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel. An attacker could exploit this vulnerability to cause a reference count overflow...

Google Chrome Security Bypass Vulnerability (CNVD-2024-38807)

Google Chrome is a web browser from Google, an American company. A security bypass vulnerability previously existed in Google Chrome version 122.0.6261.57, which stemmed from a mal-implementation issue in the Navigation module. An attacker could exploit this vulnerability to bypass security...

Apache James MIME4J Input Validation Error Vulnerability

Apache James MIME4J is a library of the American Apache Apache Foundation. It can be used to parse e-mail message streams in pure rfc822 and MIME formats and construct tree representations of e-mail messages. An input validation error vulnerability exists in Apache James MIME4J 0.8.9 and earlier...

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel has a security vulnerability. An attacker exploits the vulnerability to cause data corruption...

Unspecified Vulnerability in Oracle MySQL (CNVD-2024-11122)

Oracle MySQL is an open source relational database management system from Oracle Corporation, of which MySQL Server is a database server component. A security vulnerability exists in Oracle MySQL for MySQL Server version 8.0.35 and earlier, version 8.2.0 and earlier. An attacker can exploit this...

Unspecified Vulnerability in Oracle MySQL Server (CNVD-2024-27521)

Oracle MySQL Server is a relational database from Oracle Corporation. A security vulnerability exists in Oracle MySQL Server. An attacker could exploit this vulnerability to cause an application to hang or crash repeatedly and frequently...

Apple macOS Monterey 安全漏洞

macOS is a set of operating systems developed by Apple to run on the Macintosh family of computers. Apple macOS suffers from an access control vulnerability that stems from the fact that applications may be able to access sensitive user data. An attacker could exploit the vulnerability to obtain...

Liferay Portal and Liferay DXP's HtmlUtil.escapeRedirect Can Be Circumvented via Two Forward Slashes

HtmlUtil.escapeRedirect in Liferay Portal 7.2.0 through 7.4.3.12, and older unsupported versions, and Liferay DXP 7.4 before update 9, 7.3 service pack 3, 7.2 fix pack 15 through 18, and older unsupported versions can be circumvented by using two forward slashes, which allows remote attackers to...

Siemens Tecnomatix Plant Simulation 缓冲区错误漏洞

Tecnomatix Plant Simulation models, simulates, explores and optimizes logistics systems and their processes. These models allow material flow, resource utilization and logistics analysis of all manufacturing plans from global production facilities to local plants and specific production lines pri...

Vulnerability of the Server component: The Optimizer component of the Oracle MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the Oracle MySQL Server component of the database management system’s optimizer is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service interruptions...