Lucene search
K

500 matches found

BDU FSTEC
BDU FSTEC
added 2022/07/08 12:0 a.m.5 views

The vulnerability of the cmdline_insert_reg() function in the Vim text editor allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the cmdlineinsertreg function exgetln.c in the Vim text editor is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

3.1CVSS7.4AI score0.01309EPSS
Exploits1References11Affected Software6
BDU FSTEC
BDU FSTEC
added 2022/07/04 12:0 a.m.5 views

The vulnerability of the suggest_trie_walk() function in the Vim text editor allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the suggesttriewalk function in the Vim text editor is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

8CVSS7.4AI score0.0132EPSS
Exploits1References14Affected Software9
BDU FSTEC
BDU FSTEC
added 2022/07/04 12:0 a.m.6 views

The vulnerability of the ins_bytes() function in the Vim text editor allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the insbytes function in the Vim text editor is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

7.8CVSS7.4AI score0.013EPSS
Exploits1References13Affected Software8
BDU FSTEC
BDU FSTEC
added 2022/06/29 12:0 a.m.6 views

The vulnerability of the remote monitoring and control system Geo SCADA Mobile (previously known as ClearSCADA Mobile) stems from deficiencies in the system’s boundary definitions. This allows attackers to compromise the integrity, accessibility, and confidentiality of the protected information.

The vulnerability of the remote monitoring and control system Geo SCADA Mobile previously known as ClearSCADA Mobile is related to deficiencies in the system’s boundary settings. Exploiting this vulnerability allows an attacker to compromise the integrity, accessibility, and confidentiality of th...

4.8CVSS7.2AI score0.00408EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2022/06/08 12:0 a.m.6 views

The vulnerability of the Core sub-component of the Oracle WebLogic Server software, a software platform of Oracle Fusion Middleware. This vulnerability allows attackers to execute arbitrary code, and also affects the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the Core component of the Oracle WebLogic Server software platform within Oracle Fusion Middleware exists due to insufficient validation of input data. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely, as well as compromise the...

10CVSS8.4AI score0.01626EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/03/30 12:0 a.m.8 views

Vulnerability of the Server component: The compilation of the MySQL Server database management system allows attackers to compromise the integrity and accessibility of protected information.

Vulnerability of the Server component: Compiling the MySQL Server database management system is vulnerable due to insufficient validation of input data. Exploiting this vulnerability allows an attacker to compromise the integrity and accessibility of protected information...

7.5CVSS6.4AI score0.01257EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/03/11 12:0 a.m.6 views

The vulnerability of the Autofill function implementations in Google Chrome and Microsoft Edge browsers allows attackers to compromise the integrity, accessibility, and confidentiality of data.

The vulnerability of Autofill implementations in Google Chrome and Microsoft Edge browsers is related to improperly implemented security checks for standard elements. Exploiting this vulnerability can allow an attacker to influence the integrity, accessibility, and confidentiality of data...

6.8CVSS7.1AI score0.00868EPSS
Exploits0References8Affected Software5
BDU FSTEC
BDU FSTEC
added 2022/02/10 12:0 a.m.7 views

The vulnerability of the email verification function of the RPM package manager allows a perpetrator to compromise the confidentiality, integrity, and accessibility of data.

The vulnerability of the check function in software with RPM support is related to insufficient verification of data authenticity. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of data...

7.5CVSS7.2AI score0.00827EPSS
Exploits0References10Affected Software7
CNVD
CNVD
added 2022/01/24 12:0 a.m.33 views

Oracle Java SE Input Validation Error Vulnerability (CNVD-2022-15481)

Oracle Java SE, an Oracle company, is used to develop and deploy Java applications on desktops, servers, and embedded devices and in real-time environments. Edition accessible data for unauthorized update, insert, or delete access...

5.3CVSS4.9AI score0.02755EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2022/01/12 12:0 a.m.6 views

The vulnerability of the IBM Tivoli Workload Scheduler software arises from buffer overflows in the stack, allowing attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the IBM Tivoli Workload Scheduler software arises from buffer overflows in the stack. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

5.9CVSS6.2AI score0.00254EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/12/20 12:0 a.m.5 views

The vulnerability of the FilePath#listFiles component in the Jenkins automation server, related to the absence of authentication procedures, allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the FilePathlistFiles component in the Jenkins automation server is related to the absence of authentication procedures. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected information...

9.3CVSS7.6AI score0.02076EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/12/09 12:0 a.m.6 views

The vulnerability of the serviceattrreq and processrequest functions (sdpd-request.c) in the Bluetooth protocol stack for the Linux BlueZ operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the serviceattrreq and processrequest functions sdpd-request.c in the Bluetooth protocol stack for the Linux BlueZ operating system arises from writing beyond buffer boundaries. Exploiting this vulnerability can allow a malicious actor to compromise the confidentiality,...

8.8CVSS6.7AI score0.0143EPSS
Exploits1References7Affected Software4
BDU FSTEC
BDU FSTEC
added 2021/11/12 12:0 a.m.10 views

The vulnerability of Google Chrome’s browser permissions settings allows attackers to influence the confidentiality, integrity, and accessibility of protected information.

The vulnerability of Google Chrome’s browser permissions setting relates to the use of memory after deallocation. Exploiting this vulnerability can allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information...

10CVSS7.4AI score0.04125EPSS
Exploits0References10Affected Software7
BDU FSTEC
BDU FSTEC
added 2021/11/10 12:0 a.m.7 views

The vulnerability of the Java-Script script handler in Google Chrome browsers allows attackers to influence privacy, integrity, and accessibility.

The vulnerability of the Java-Script script handler in Google Chrome browsers relates to the use of memory after deallocation. Exploiting this vulnerability could allow an attacker to compromise privacy, integrity, and accessibility of data...

10CVSS7.3AI score0.04125EPSS
Exploits0References10Affected Software7
BDU FSTEC
BDU FSTEC
added 2021/10/05 12:0 a.m.5 views

The vulnerability in the kernel/bpf/hashtab.c component of the Linux operating system, related to writing beyond buffer boundaries in memory, allows an attacker to compromise the integrity, accessibility, and confidentiality of data.

The vulnerability in the kernel/bpf/hashtab.c component of the Linux operating system is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to compromise the integrity, accessibility, and confidentiality of data...

7.8CVSS6.8AI score0.0032EPSS
Exploits0References23Affected Software6
BDU FSTEC
BDU FSTEC
added 2021/09/23 12:0 a.m.7 views

The vulnerability of the table_population.php file, a tool for monitoring Nagios XI Docker Wizard, allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the tablepopulation.php file of the Nagios XI Docker Wizard tool is related to insufficient validation of incoming requests. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected information...

10CVSS8AI score0.02943EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/08/24 12:0 a.m.6 views

The vulnerability of Eclipse Jetty servlet containers, related to inconsistent interpretation of HTTP requests, allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of Eclipse Jetty servlet containers is related to inconsistent interpretation of HTTP requests. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

10CVSS6.9AI score0.16154EPSS
Exploits0References17Affected Software8
BDU FSTEC
BDU FSTEC
added 2021/08/10 12:0 a.m.6 views

The vulnerability of the CASAP Automated Enrollment System software lies in its lack of measures to protect the SQL query structure, allowing attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the CASAP Automated Enrollment System lies in the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows an attacker to compromise the confidentiality, integrity, and accessibility of the protected information through the parameter “id...

10CVSS7.9AI score0.01517EPSS
Exploits1References3Affected Software1
Malwarebytes
Malwarebytes
added 2021/06/11 3:26 p.m.60 views

Cloud vs on premises: 3 reasons the Cloud is winning

Thanks to the vast rollout of COVID-19 vaccines to millions of people in the US and Europe, some of us are finally seeing some semblance of a return to normalcy. And organizations, who have experienced first-hand the struggle to stay afloat during months of struggle, are expecting to transition...

7.1AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2021/06/04 12:0 a.m.7 views

The vulnerability of the oadd.org.apache.commons.dbcp.cpdsadapter.DriverAdapterCPDS component in the Jackson-databind library of the FasterXML project allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the oadd.org.apache.commons.dbcp.cpdsadapter.DriverAdapterCPDS component in the Jackson-databind library of the FasterXML project is related to the restoration of unreliable data in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentialit...

9.3CVSS7.1AI score0.20929EPSS
Exploits2References10Affected Software6
Rows per page
Query Builder