500 matches found
The vulnerability of the cmdline_insert_reg() function in the Vim text editor allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the cmdlineinsertreg function exgetln.c in the Vim text editor is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...
The vulnerability of the suggest_trie_walk() function in the Vim text editor allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the suggesttriewalk function in the Vim text editor is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...
The vulnerability of the ins_bytes() function in the Vim text editor allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the insbytes function in the Vim text editor is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...
The vulnerability of the remote monitoring and control system Geo SCADA Mobile (previously known as ClearSCADA Mobile) stems from deficiencies in the system’s boundary definitions. This allows attackers to compromise the integrity, accessibility, and confidentiality of the protected information.
The vulnerability of the remote monitoring and control system Geo SCADA Mobile previously known as ClearSCADA Mobile is related to deficiencies in the system’s boundary settings. Exploiting this vulnerability allows an attacker to compromise the integrity, accessibility, and confidentiality of th...
The vulnerability of the Core sub-component of the Oracle WebLogic Server software, a software platform of Oracle Fusion Middleware. This vulnerability allows attackers to execute arbitrary code, and also affects the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the Core component of the Oracle WebLogic Server software platform within Oracle Fusion Middleware exists due to insufficient validation of input data. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely, as well as compromise the...
Vulnerability of the Server component: The compilation of the MySQL Server database management system allows attackers to compromise the integrity and accessibility of protected information.
Vulnerability of the Server component: Compiling the MySQL Server database management system is vulnerable due to insufficient validation of input data. Exploiting this vulnerability allows an attacker to compromise the integrity and accessibility of protected information...
The vulnerability of the Autofill function implementations in Google Chrome and Microsoft Edge browsers allows attackers to compromise the integrity, accessibility, and confidentiality of data.
The vulnerability of Autofill implementations in Google Chrome and Microsoft Edge browsers is related to improperly implemented security checks for standard elements. Exploiting this vulnerability can allow an attacker to influence the integrity, accessibility, and confidentiality of data...
The vulnerability of the email verification function of the RPM package manager allows a perpetrator to compromise the confidentiality, integrity, and accessibility of data.
The vulnerability of the check function in software with RPM support is related to insufficient verification of data authenticity. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of data...
Oracle Java SE Input Validation Error Vulnerability (CNVD-2022-15481)
Oracle Java SE, an Oracle company, is used to develop and deploy Java applications on desktops, servers, and embedded devices and in real-time environments. Edition accessible data for unauthorized update, insert, or delete access...
The vulnerability of the IBM Tivoli Workload Scheduler software arises from buffer overflows in the stack, allowing attackers to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the IBM Tivoli Workload Scheduler software arises from buffer overflows in the stack. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...
The vulnerability of the FilePath#listFiles component in the Jenkins automation server, related to the absence of authentication procedures, allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the FilePathlistFiles component in the Jenkins automation server is related to the absence of authentication procedures. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected information...
The vulnerability of the serviceattrreq and processrequest functions (sdpd-request.c) in the Bluetooth protocol stack for the Linux BlueZ operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the serviceattrreq and processrequest functions sdpd-request.c in the Bluetooth protocol stack for the Linux BlueZ operating system arises from writing beyond buffer boundaries. Exploiting this vulnerability can allow a malicious actor to compromise the confidentiality,...
The vulnerability of Google Chrome’s browser permissions settings allows attackers to influence the confidentiality, integrity, and accessibility of protected information.
The vulnerability of Google Chrome’s browser permissions setting relates to the use of memory after deallocation. Exploiting this vulnerability can allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information...
The vulnerability of the Java-Script script handler in Google Chrome browsers allows attackers to influence privacy, integrity, and accessibility.
The vulnerability of the Java-Script script handler in Google Chrome browsers relates to the use of memory after deallocation. Exploiting this vulnerability could allow an attacker to compromise privacy, integrity, and accessibility of data...
The vulnerability in the kernel/bpf/hashtab.c component of the Linux operating system, related to writing beyond buffer boundaries in memory, allows an attacker to compromise the integrity, accessibility, and confidentiality of data.
The vulnerability in the kernel/bpf/hashtab.c component of the Linux operating system is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to compromise the integrity, accessibility, and confidentiality of data...
The vulnerability of the table_population.php file, a tool for monitoring Nagios XI Docker Wizard, allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the tablepopulation.php file of the Nagios XI Docker Wizard tool is related to insufficient validation of incoming requests. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected information...
The vulnerability of Eclipse Jetty servlet containers, related to inconsistent interpretation of HTTP requests, allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of Eclipse Jetty servlet containers is related to inconsistent interpretation of HTTP requests. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...
The vulnerability of the CASAP Automated Enrollment System software lies in its lack of measures to protect the SQL query structure, allowing attackers to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the CASAP Automated Enrollment System lies in the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows an attacker to compromise the confidentiality, integrity, and accessibility of the protected information through the parameter “id...
Cloud vs on premises: 3 reasons the Cloud is winning
Thanks to the vast rollout of COVID-19 vaccines to millions of people in the US and Europe, some of us are finally seeing some semblance of a return to normalcy. And organizations, who have experienced first-hand the struggle to stay afloat during months of struggle, are expecting to transition...
The vulnerability of the oadd.org.apache.commons.dbcp.cpdsadapter.DriverAdapterCPDS component in the Jackson-databind library of the FasterXML project allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the oadd.org.apache.commons.dbcp.cpdsadapter.DriverAdapterCPDS component in the Jackson-databind library of the FasterXML project is related to the restoration of unreliable data in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentialit...