Lucene search
K

498 matches found

BDU FSTEC
BDU FSTEC
added 2023/05/17 12:0 a.m.7 views

The vulnerability of the ext4_xattr_set_entry() function in the fs/ext4/xattr.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of data.

The vulnerability of the ext4xattrsetentry function in the fs/ext4/xattr.c module of the Linux kernel is related to incorrect calculation of the available storage space for storing attributes. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

6.8CVSS6.5AI score0.00245EPSS
Exploits0References18Affected Software4
Krebs on Security
Krebs on Security
added 2023/05/16 12:20 p.m.16 views

Re-Victimization from Police-Auctioned Cell Phones

Countless smartphones seized in arrests and searches by police forces across the United States are being auctioned online without first having the data on them erased, a practice that can lead to crime victims being re-victimized, a new study found. In response, the largest online marketplace for...

6.7AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2023/04/10 12:0 a.m.4 views

The vulnerability of the Apache InLong data integration platform, related to the recovery of unreliable data in memory, allows attackers to compromise privacy, integrity, and accessibility of the data.

The vulnerability of the Apache InLong data integration platform lies in the recovery of unreliable data in memory. Exploiting this vulnerability allows a remote attacker to compromise privacy, integrity, and accessibility of the data...

10CVSS7.8AI score0.01409EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/04/07 12:0 a.m.6 views

The vulnerability of the imageinfo.hpp file in the imageinfo library allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the imageinfo.hpp file in the imageinfo library is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

7.8CVSS5.9AI score0.00375EPSS
Exploits1References5Affected Software1
Microsoft Secure
Microsoft Secure
added 2023/03/20 5:0 p.m.15 views

Microsoft achieves first native Cloud Data Management Capabilities certification

Today, Microsoft announced the successful completion of the Cloud Data Management Capabilities CDMC 14 Key Controls and Automations certification, conducted by Accenture and Avanade, accelerating the industry’s move to the cloud. The 14 Key Controls and Automations are a part of the EDM Council’s...

6.5AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2022/12/24 12:0 a.m.9 views

The vulnerability of the WapService service in the Android operating system of LG devices allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the WapService service on LG devices’ Android operating systems is related to errors in the code. Exploiting this vulnerability can allow a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected information...

10CVSS7.8AI score0.00443EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/12/24 12:0 a.m.7 views

The vulnerability of the sec_store component in the Android operating system of Samsung devices with Qualcomm chipsets allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the secstore component in the Android operating system on Samsung devices with Qualcomm chipsets SDM660, MSM8998, SDM845, SM8150 arises from the loss of precision for a large number of operations. Exploiting this vulnerability allows an attacker to compromise the...

10CVSS7.8AI score0.00443EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/11/07 12:0 a.m.6 views

The vulnerability of the Accessibility (Special Features) module of the Google Chrome browser, which allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information

The vulnerability of the Accessibility Special Features module of the Google Chrome browser is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

7.5CVSS7.7AI score0.00464EPSS
Exploits0References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2022/11/03 12:0 a.m.5 views

The vulnerability of the full-screen mode implementations of Google Chrome and Microsoft Edge allows a perpetrator to compromise the integrity, accessibility, and confidentiality of the protected information.

The vulnerability of the full-screen mode implementations of Google Chrome and Microsoft Edge is related to insufficient protection of service data. Exploiting this vulnerability allows a malicious actor to compromise the integrity, accessibility, and confidentiality of the protected information...

7.5CVSS6.4AI score0.00457EPSS
Exploits1References7Affected Software3
BDU FSTEC
BDU FSTEC
added 2022/10/31 12:0 a.m.7 views

The vulnerability of Google Chrome’s Internals component allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of Google Chrome’s Internals component is related to writing beyond the buffer. Exploiting this vulnerability can allow a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected information...

10CVSS7.6AI score0.00688EPSS
Exploits0References10Affected Software4
BDU FSTEC
BDU FSTEC
added 2022/10/04 12:0 a.m.7 views

The vulnerability of the strcpy() function in Netgear Nighthawk AC1900 R7000 wireless router software allows a hacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the strcpy function in Netgear Nighthawk AC1900 R7000 wireless router software lies in the fact that the write operation goes beyond the buffer boundaries into memory when processing the binary file wl. Exploiting this vulnerability could allow an attacker to compromise the...

7.8CVSS7.4AI score0.00513EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/09/05 12:0 a.m.8 views

The vulnerability of the utf_ptr2char() function in the Vim text editor allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the utfptr2char function in the Vim text editor is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

7.8CVSS7.2AI score0.01601EPSS
Exploits1References12Affected Software7
BDU FSTEC
BDU FSTEC
added 2022/09/05 12:0 a.m.11 views

The vulnerability of the Vim text editor lies in the fact that an operation can be performed outside the buffer, allowing an attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the Vim text editor is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

7.8CVSS7.6AI score0.01461EPSS
Exploits1References17Affected Software10
BDU FSTEC
BDU FSTEC
added 2022/08/29 12:0 a.m.5 views

The vulnerability of the get_next_valid_entry() function in the Vim text editor allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the getnextvalidentry function in the Vim text editor is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

7.8CVSS6.6AI score0.00497EPSS
Exploits1References9Affected Software3
BDU FSTEC
BDU FSTEC
added 2022/08/19 12:0 a.m.6 views

The vulnerability of the generate_loadvar() function in the Vim text editor allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the generateloadvar function in the Vim text editor is related to pointer arithmetic errors. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

9CVSS6.6AI score0.00454EPSS
Exploits1References7Affected Software2
BDU FSTEC
BDU FSTEC
added 2022/08/18 12:0 a.m.4 views

The vulnerability of the latin_ptr2len() function in the Vim text editor allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the latinptr2len function in the Vim text editor is related to buffer overflow in dynamic memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

7.8CVSS6.8AI score0.00452EPSS
Exploits1References9Affected Software3
BDU FSTEC
BDU FSTEC
added 2022/07/29 12:0 a.m.7 views

The vulnerability of the Illumina Local Run Manager software exists due to an incorrect limitation on the path to the restricted access directory. This allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the Illumina Local Run Manager software exists due to an incorrect limitation on the path to the restricted access directory. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected information...

10CVSS8AI score0.01496EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/07/29 12:0 a.m.6 views

The vulnerability of the go-getter library, related to the lack of measures to cleanse input data, allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the go-getter library is related to the lack of measures for cleaning incoming data. Exploiting this vulnerability can allow a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

10CVSS7AI score0.01525EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/07/08 12:0 a.m.4 views

The vulnerability of the cmdline_insert_reg() function in the Vim text editor allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the cmdlineinsertreg function exgetln.c in the Vim text editor is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

3.1CVSS7.4AI score0.013EPSS
Exploits1References11Affected Software6
BDU FSTEC
BDU FSTEC
added 2022/07/04 12:0 a.m.4 views

The vulnerability of the suggest_trie_walk() function in the Vim text editor allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the suggesttriewalk function in the Vim text editor is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

8CVSS7.4AI score0.0132EPSS
Exploits1References14Affected Software9
Rows per page
Query Builder