353 matches found
Starbucks App Has Information Leakage Vulnerability
Starbucks APP is the official client software of Starbucks. Starbucks APP has an information disclosure vulnerability that can be exploited by attackers to obtain sensitive information...
SmartFTP Client Denial of Service Vulnerability
SmartFTP is an FTP client tool. A denial of service vulnerability exists in SmartFTP client version 9.0.2615.0, which can be exploited by attackers to conduct denial of service attacks...
Arbitrary File Deletion Vulnerability in MLECMS Backend
MLECMS is a professional website building system based on PHP+MYSQL as the core development. There is an arbitrary file deletion vulnerability in the MLECMS backend. An attacker can exploit the vulnerability to delete arbitrary files...
Intel Saffron MemoryBase Elevation of Privilege Vulnerability
Intel Saffron MemoryBase is a memory base kit for Saffron from Intel Corporation USA. A security vulnerability exists in Intel Saffron MemoryBase versions prior to 11.4. An attacker could exploit the vulnerability to elevate privileges and access sensitive information...
Google Android System Information Disclosure Vulnerability (CNVD-2018-12649)
Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An information disclosure vulnerability exists in the System component of Google Android. An attacker can exploit this vulnerability to obtain information...
Denial of Service Vulnerability in Extreme Office 2017 Version 1.0.3.3
Extreme Office is an independently controlled office learning software developed by Beijing Haiteng Times Technology Co. Extreme Office 2017 suffers from a denial of service vulnerability when dealing with special doc files, which can be exploited by attackers to cause a denial of service attack...
Google Android Qualcomm component elevation of privilege vulnerability (CNVD-2017-36518)
Android is a free and open source Linux-based operating system led and developed by Google Inc. and the Open Handset Alliance. An elevation of privilege vulnerability exists in the Qualcomm component of the Google Android GUD mobicore driver. An attacker can exploit this vulnerability to achieve...
Huawei UMA Product Cross-Site Scripting Vulnerability
Huawei Unified Maintenance Audit UMA is a unified IT core resource operation and maintenance management and security audit platform designed for carriers, government, finance, electric power and large enterprises. A cross-site scripting vulnerability exists in the Huawei UMA product. Due to...
Flexera Software FlexNet Manager Suite Local Elevation of Privilege Vulnerability
FlexNet Manager Suite is a comprehensive and proven next-generation hardware asset management, software asset management, certificate compliance and software certificate optimization solution from Flexera Software, USA. A local elevation of privilege vulnerability exists in Flexera Software FlexN...
Synchronet BBS Denial of Service Vulnerability
Synchronet BBS is a BBS software system. Synchronet BBS is vulnerable to a denial of service vulnerability. It allows attackers to exploit the vulnerability to launch denial of service attacks...
IVPN Client for Windows Elevation of Privilege Vulnerability
IVPN Client for Windows is a virtual private network service from IVPN that runs on the windows platform and is designed for personal use. An elevation of privilege vulnerability exists in IVPN Client for Windows. An attacker can exploit this vulnerability to gain elevated privileges...
Google Chrome Omnibox Address Forgery Vulnerability (CNVD-2017-02098)
Google Chrome is a popular web browser. An address forgery vulnerability exists in Google Chrome Omnibox, which allows remote attackers to exploit the vulnerability to build malicious WEB pages that can be tricked into parsing and can deceive users...
IBM WebSphere Application Server Denial of Service Vulnerability (CNVD-2017-01036)
IBM WebSphere Application Server WAS is an application server product developed and distributed by IBM in the U.S. It is a platform for Java EE and Web services applications, and is the foundation of the IBM WebSphere software platform. A denial of service vulnerability exists in IBM WebSphere...
ImageMagick Denial of Service Vulnerability (CNVD-2017-00188)
ImageMagick is a free software for creating, editing, and compositing images.The use of most of ImageMagick's features comes from the command line tools. A denial of service vulnerability exists in ImageMagick. An attacker can exploit this vulnerability to cause a denial of service...
Fast Breakfast App Upgrade Checked for Design Logic Flaws
Fast Breakfast App is a mobile service that can help you buy breakfast. A design logic vulnerability exists in the upgrade check of Fast Breakfast APP. Due to lax upgrade request checking in Fast Breakfast APP, attackers are allowed to exploit the vulnerability to install malicious programs...
Moodle Information Disclosure Vulnerability (CNVD-2016-11544)
Moodle is a free, open-source e-learning software platform, also known as a course management system, learning management system, or virtual learning environment, developed by Dr. Martin Dougiamas of Australia. Moodle has an information disclosure vulnerability that can be exploited by attackers ...
Microsoft Edge Scripting Engine Information Disclosure Vulnerability
Microsoft Edge is the web browser built into the Windows 10 version. An information leakage vulnerability exists when Microsoft Edge fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise a user's system...
QEMU 'Transmit(tx) Queue' Handling Information Disclosure Vulnerability
QEMU is a simulation processor software developed by French programmer Fabrice Bellard. The software is fast and cross-platform. An information disclosure vulnerability exists in the QEMU 'Transmittx Queue' processing, which allows attackers to exploit the vulnerability to obtain sensitive...
Google Android Elevation of Privilege Vulnerability
Google Android is a mobile operating system based on the Linux open kernel led and developed by Google and the Open Handset Alliance. Google Android is vulnerable to an elevation of privilege vulnerability, which can be exploited by attackers to elevate privileges within the scope of using the...
libarchive TAR Parser Memory Disclosure Vulnerability
libarchive is a multi-format archive and compression library. A security vulnerability exists in libarchive's TAR parser that can be exploited by attackers to cause a memory leak...