PT-2023-8962 · Unknown +10 · Xorg-Server +10

Name of the Vulnerable Software and Affected Versions: xorg-server affected versions not specified Description: A flaw was found in xorg-server, where a specially crafted request to RRChangeProviderProperty or RRChangeOutputProperty can trigger an integer overflow, potentially leading to the...

MonicaHQ Security Breach

MonicaHQ is a relationship management system from MonicaHQ, Inc. A security vulnerability exists in MonicaHQ version 4.0.0. An attacker can exploit this vulnerability to upload SVG documents that contain cross-site scripting vulnerabilities...

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

Microsoft Edge is a web browser from the American company Microsoft that comes with systems after Windows 10. Microsoft Edge Chromium-based suffers from an information disclosure vulnerability that can be exploited by attackers to obtain sensitive information...

Design/Logic Flaw

Dell PowerScale OneFS versions 8.2.2.x through 9.6.0.x contains an improper control of a resource through its lifetime vulnerability. A low privilege attacker could potentially exploit this vulnerability, leading to loss of information, and information disclosure...

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from Google. Google Android suffers from a denial of service vulnerability due to a flaw in PersistableBundle.java's saveToXml, which can be exploited by an attacker to cause a denial of service...

CVE-2023-28813

An attacker could exploit a vulnerability by sending crafted messages to computers installed with this plug-in to modify plug-in parameters, which could cause affected computers to download malicious files...

The vulnerability of the ASP.NET Core software platform, related to improper cleaning or release of resources, allows a perpetrator to cause a service failure.

The vulnerability of the ASP.NET Core software platform is related to improper cleaning or release of resources. Exploiting this vulnerability can allow a malicious actor to cause service failures...

CVE-2023-6253 Saved Uninstall Key in Digital Guardian Agent Uninstaller

A saved encryption key in the Uninstaller in Digital Guardian's Agent before version 7.9.4 allows a local attacker to retrieve the uninstall key and remove the software by extracting the uninstaller key from the memory of the uninstaller file...

Microsoft Dynamics 365 (on-premises) cross-site scripting vulnerability (CNVD-2024-00199)

Microsoft Dynamics 365 is a suite of ERP business solutions for multinational organizations from Microsoft USA. The product includes financial management, production management and business intelligence management. A cross-site scripting vulnerability exists in Microsoft Dynamics 365 on-premises,...

Intel Server Board Security Vulnerability

Intel Server Board is a server motherboard from Intel Corporation USA. A security vulnerability exists in the Intel Server Board and Server System BIOS firmware. An attacker could exploit this vulnerability to cause an elevation of privilege...

Microsoft Azure Security Vulnerabilities

Microsoft Azure is a suite of open, enterprise-grade cloud computing platforms from the U.S.-based Microsoft Corporation Microsoft. There is a security vulnerability in Microsoft Azure. An attacker exploiting the vulnerability could bypass certain features...

Intel oneAPI Toolkits Security Vulnerability

Intel oneAPI Toolkits is a set of core tools and libraries from the United States Intel Intel. It is used to develop high-performance, data-centric applications across different architectures. A security vulnerability exists in Intel oneAPI Toolkits. An attacker exploiting this vulnerability coul...

ICS Business Manager Security Vulnerability

ICS Business Manager is an application. A security vulnerability exists in ICS Business Manager version 7.06.0028.7066. An attacker could exploit the vulnerability by sending specially crafted strings via the obddact parameter to steal user sessions and perform actions in the application...

The vulnerability of the Oracle Solaris operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the Oracle Solaris operating system’s kernel is related to improper cleaning or release of resources. Exploiting this vulnerability can allow an attacker to cause service failures...

The vulnerability of the Glib library, related to the restoration of unreliable data in memory, allows a hacker to cause a service failure.

The vulnerability of the Glib library relates to the restoration of unreliable data in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the STST TA component in Samsung Teegris’ Android operating system allows a hacker to execute arbitrary code.

The vulnerability of the STST TA component in Samsung Teegris’ Android operating system security system is related to the use of uncontrolled format strings. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

PT-2023-6867 · Unknown +1 · V-Server Lite +1

Name of the Vulnerable Software and Affected Versions: V-Server versions 4.0.18.0 and earlier V-Server Lite versions 4.0.18.0 and earlier Description: The issue is related to an out-of-bounds read vulnerability. This can be exploited by a remote attacker using a specially crafted file, potentiall...

PT-2024-7218

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software affected versions not specified Description A vulnerability in the Remote Access VPN RAVPN service could allow an unauthenticated, remote attacker t...

Line Security Breach

Line is an instant messaging platform from Line Inc. A security vulnerability exists in Line, which stems from a vulnerability in Tokudaya.ekimaemc. An attacker could exploit the vulnerability to obtain a channel access token to send a crafted message...

Google Chrome Security Bypass Vulnerability (CNVD-2024-00157)

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a security bypass vulnerability that originates from improper implementation of the WebApp Provider module. An attacker could exploit this vulnerability to bypass security restrictions...