Unauthorized Access Vulnerability in TOTOLINK A3002RU

The TOTOLINK A3002RU is a Gigabit dual band router. An unauthorized access vulnerability exists in the TOTOLINK A3002RU, which can be exploited by attackers to obtain sensitive information...

Oracle VM VirtualBox 输入验证错误漏洞

Oracle VM VirtualBox is a virtual machine management software from Oracle. Oracle VM VirtualBox has an input validation error vulnerability that originates from an input validation error in the Core component. An attacker could exploit the vulnerability to access sensitive information...

CVE-2021-33046

Some Dahua products have access control vulnerability in the password reset process. Attackers can exploit this vulnerability through specific deployments to reset device passwords...

Tcman Gim 授权问题漏洞

TCMAN Gim is a facility management software designed for use on mobile devices.TCMAN GIM has an authorization question vulnerability that could be exploited by attackers to gain access to information...

POWER METER SICAM Q100 安全漏洞

The POWER METER SICAM Q100 is a multifunctional device used to detect, report and analyze measured values and events.The POWER METER SICAM Q100 remote code execution vulnerability can be exploited by remote attackers to execute remote code...

IBM DB2 授权问题漏洞

IBM DB2 is a relational database management system from the U.S. IBM Db2 information disclosure vulnerability can be exploited by attackers to obtain sensitive information...

Google Android 安全漏洞

Google Android is a Linux-based open-source operating system from the US company Google. Google Android has an information leakage vulnerability that can be exploited by attackers to obtain sensitive information...

Microsoft Edge 安全漏洞

Microsoft Edge is a web browser that comes with systems after Windows 10. Microsoft Edge for iOS has a spoofing vulnerability that can be exploited by attackers to conduct spoofing attacks...

AMD EPYC 信息泄露漏洞

AMD EPYC is an x86 server microprocessor product line from AMD, known as "Xiao Long" in Chinese, which utilizes the Zen microarchitecture. AMD EPYC has an information disclosure vulnerability that can be exploited by attackers to exploit multiple vulnerabilities in AMD processors...

Google TensorFlow 缓冲区错误漏洞

Google TensorFlow is a suite of end-to-end open source platforms for machine learning from Google USA. Google TensorFlow suffers from a buffer overflow vulnerability that can be exploited by an attacker to cause uninitialized variable access...

Huawei Smartphone 安全漏洞

Huawei Emui is a mobile operating system developed based on Android.Magic Ui is a mobile operating system developed based on Android. Huawei Emui and Magic UI have security vulnerabilities that can be exploited by attackers to compromise service integrity...

The vulnerability of the AppContainer isolated programming environment in Microsoft Windows operating systems allows attackers to bypass the security mechanisms.

The vulnerability of the isolated programming environment AppContainer in Microsoft Windows operating systems is related to security flaws in its mechanisms. Exploiting this vulnerability could allow an attacker to bypass the security measures...

Microsoft SharePoint 安全漏洞

Microsoft SharePoint is a set of enterprise business collaboration platform developed by the U.S. Microsoft SharePoint Server has a spoofing vulnerability, which can be exploited by attackers to conduct spoofing attacks...

DEDECMSV6 has command execution vulnerability

DEDECMSV6 is based on PHP7.x development, scalable and fully open source.DEDECMSV6 has a command execution vulnerability, which can be exploited by attackers to gain control of the server...

D-Link DIR-615 安全漏洞

The D-Link DIR-615 is a wireless router from D-Link, a Taiwan-based company. The security vulnerability in the D-Link DIR-615 stems from a network system or product that does not properly validate data boundaries when performing operations on memory, resulting in incorrect read and write operatio...

Arbitrary File Deletion Vulnerability in HongCMS (CNVD-2021-47696)

HongCMS is a lightweight website system. HongCMS suffers from an arbitrary file deletion vulnerability that can be exploited by an attacker to delete arbitrary files...

Unauthorized Access Vulnerability in WV-SW395 at Panasonic (China) Co.

Panasonic China Co., Ltd. is mainly responsible for carrying out sales and after-sales service activities for home appliances, systems, environments, components and other goods. An unauthorized access vulnerability exists in WV-SW395 of Panasonic China Co. Ltd. that can be exploited by attackers ...

Huawei USG9500 资源管理错误漏洞

Huawei USG9500 is a firewall appliance for large-scale environments from China's Huawei. The device provides up to T-class processing performance and 99.999\% reliability, and integrates multiple security features such as NAT, VPN, IPS, virtualization, and service awareness to help enterprises...

Dell EMC NetWorker 日志信息泄露漏洞

DELL EMC NetWorker is a suite of unified backup and recovery software from Dell DELL USA. The software provides backup and recovery, deduplication elimination, backup reporting, and other features. Dell EMC NetWorker has a security vulnerability that can be exploited by an attacker to exploit...

Microsoft SharePoint 安全漏洞

Microsoft SharePoint is an enterprise business collaboration platform from Microsoft. The platform is used to consolidate business information and enable sharing of work, collaborating with others, organizing projects and workgroups, and searching for people and information. A security...