366 matches found
Multiple Mozilla Products Code Issues Vulnerabilities
Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox the web browser.Mozilla Thunderbird is a suite of email client software separate from the Mozilla Application Suite. A code issue vulnerability exists in several Mozilla products that can b...
OpenClaw code issue vulnerability (CNVD-2026-14860)
OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from a code issue vulnerability that can be exploited by an attacker to bypass the allow list check and execute a trojan binary...
Mozilla多款产品 代码问题漏洞
Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox the web browser.Mozilla Thunderbird is a suite of email client software separate from the Mozilla Application Suite. A code issue vulnerability exists in several Mozilla products, which can...
Schneider Electric EcoStruxure Foxboro DCS 代码问题漏洞
The Schneider Electric EcoStruxure Foxboro DCS is an innovative fault-tolerant, highly available control component from Schneider Electric, France. A code issue vulnerability exists in the Schneider Electric EcoStruxure Foxboro DCS, which can be exploited by an attacker to cause compromise of...
OpenClaw code issue vulnerability (CNVD-2026-13388)
OpenClaw is openclaw open source an intelligent artificial assistant. OpenClaw suffers from a code issue vulnerability that stems from a Cron webhook delivery using fetch direct call, which can be exploited by an attacker to cause the webhook target to access private or internal endpoints...
Adobe Substance3D Designer Code Issue Vulnerability
Adobe Substance3D Designer is a texture and material creation software from the American company Audobee Adobe. A code issue vulnerability exists in Adobe Substance3D Designer, which can be exploited by attackers to cause a denial of service in the application...
ProtonVPN 代码问题漏洞
ProtonVPN is a VPN application from ProtonVPN Open Source. A code issue vulnerability exists in ProtonVPN version 1.26.0, which stems from an unquoted WireGuard service configuration path that could allow a local attacker to execute arbitrary code...
Wondershare Dr.Fone 代码问题漏洞
Wondershare Dr.Fone is a one-stop solution for cell phones from China Wanxing Wondershare. A code issue vulnerability exists in Wondershare Dr.Fone version 11.4.9, which stems from an unquoted path to the DFWSIDService service that could lead to the execution of arbitrary code by a local user...
Adobe Substance3D Modeler 代码问题漏洞
Adobe Substance3D Modeler is a 3D modeling software from the American company Audobee Adobe. Adobe Substance 3D Modeler suffers from a null pointer dereference vulnerability that can be exploited by an attacker to cause a denial of service...
Microsoft Azure 代码问题漏洞
Microsoft Azure is a suite of open, enterprise-grade cloud computing platforms from the U.S.-based Microsoft Corporation Microsoft. A code issue vulnerability exists in Microsoft Azure. An attacker exploiting this vulnerability could remotely execute code...
CoolerMaster MasterPlus 代码问题漏洞
CoolerMaster MasterPlus is a lighting control software from CoolerMaster USA. A code issue vulnerability exists in CoolerMaster MasterPlus version 1.8.5, which stems from an unquoted MPService service path that could allow a local attacker to execute code with elevated system privileges...
Esri ArcGIS Server 代码问题漏洞
Esri ArcGIS Server is a web-oriented enterprise software platform available for providing geolocation services from Esri. A code issue vulnerability exists in Esri ArcGIS Server 11.5 and prior versions that stems from not properly validating an uploaded file, which could result in the upload of a...
SOUND4 IMPACT 代码问题漏洞
SOUND4 IMPACT is a professional broadcast audio processor from the French company SOUND4. A code issue vulnerability exists in SOUND4 IMPACT 2.x and prior versions, which stems from an inadequate session expiration mechanism that could lead to session hijacking and unauthorized access...
Soda PDF Desktop 代码问题漏洞
Soda PDF Desktop is a full-featured PDF editing software from Soda Canada. A code issue vulnerability exists in Soda PDF Desktop that stems from an OpenSSL configuration that loads a configuration file from an insecure location, which could result in local elevation of privilege...
Microsoft Azure Cognitive Service for Language 代码问题漏洞
Microsoft Azure Cognitive Service for Language is a cloud-based natural language processing service from Microsoft USA. An elevation of privilege vulnerability exists in Microsoft Azure Cognitive Service for Language, which is caused by a flaw in a customized question and answer. An attacker coul...
UliCMS 代码问题漏洞
UliCMS is a content management system CMS open source by UliCMS. The system supports features such as access control and WYSIWYG editing. A code issue vulnerability exists in UliCMS version 2023.1-sniffing-vicuna, which originates from an authenticated attacker who can upload a PHP file with a...
Peppol-py 代码问题漏洞
Peppol-py is a Python library open-sourced by Iteras. A code issue vulnerability exists in Peppol-py versions prior to 1.1.1, which stems from a Saxon misconfiguration that could lead to an XXE attack...
Microsoft SharePoint 代码问题漏洞
Microsoft SharePoint is a suite of enterprise business collaboration platforms from Microsoft. The platform is used to consolidate business information and enable sharing work, collaborating with others, organizing projects and workgroups, and searching for people and information. A code issue...
Microsoft Azure Monitor 代码问题漏洞
Microsoft Azure Monitor is a newer observability tool from Microsoft USA that enables end-to-end monitoring capabilities for applications, infrastructure and networks. A code issue vulnerability exists in Microsoft Azure Monitor that stems from an elevation of privilege vulnerability...
Muse Group MuseHub 代码问题漏洞
Muse Group MuseHub is a music creation platform from Muse Group Cyprus. A code issue vulnerability exists in Muse Group MuseHub version 2.1.0.1567, which stems from an unreferenced search path and could lead to a local attack...