ROS-20260524-73-0023

A vulnerability in the Security component of the Oracle Java SE software platform, Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines is related to insufficient protection of proprietary data. Exploitation of the vulnerability could allow an attacker to gain access to...

CVE-2011-4701

The CallConfirm jp.gr.javaconf.ofnhwx.callconfirm application 2.0.0 for Android does not properly protect data, which allows remote attackers to read or modify allow/block lists via a crafted application...

CVE-2011-4866

The Kaixin001 com.kaixin001.activity application 1.3.1 and 1.3.3 for Android does not properly protect data, which allows remote attackers to read or modify contact information and a cleartext password via a crafted application...

The vulnerability of the Telemetry component of TP-Link Tapo P125M and Kasa KP125M software devices allows a intruder to gain unauthorized access to protected information.

The vulnerability of the Telemetry component in the microprogramming software of TP-Link Tapo P125M and Kasa KP125M lies in the lack of protection for operational data. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to the protected...

Cisco Identity Services Engine 安全漏洞

Cisco Identity Services Engine Cisco ISE is an environment-aware platform ISE Identity Services Engine from Cisco USA. The platform regulates the network by collecting real-time information from the network, users, and devices, and formulating and enforcing policies accordingly. A security...

The vulnerability of the Web Intelligence component of the SAP BusinessObjects Business Intelligence platform allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Web Intelligence component of the SAP BusinessObjects Business Intelligence platform is related to the lack of protection for operational data. Exploiting this vulnerability could allow an attacker operating remotely to gain unauthorized access to protected information...

The vulnerability of the web interface for remote administration of TIONIX Virtual Security lies in the lack of protection for operational data, allowing attackers to obtain information about the software and current versions of the products.

The vulnerability of the web interface of the remote administration tool used for information protection in TIONIX Virtual Security is related to the lack of protection for operational data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to obtain information abo...

The vulnerability of the privacy modes of Mozilla Firefox, Firefox ESR, and the email client Thunderbird, related to the lack of protection for service data, allows attackers to gain access to confidential information.

The vulnerability of the privacy modes of Mozilla Firefox, Firefox ESR, and the email client Thunderbird lies in the lack of protection for sensitive data. Exploiting this vulnerability can allow a remote attacker to gain access to confidential information...

The vulnerability of Microsoft Visio graphic editors, Microsoft Office programs, and 365 Apps for Enterprise, related to insufficient protection of sensitive data, allows attackers to gain unauthorized access to protected information.

The vulnerability of Microsoft Visio graphic editors, Microsoft Office programs, and 365 Apps for Enterprise is related to insufficient protection of sensitive data. Exploiting this vulnerability can allow unauthorized actors to gain unauthorized access to protected information...

The vulnerability of Microsoft Office packages, Microsoft 365 Apps, Microsoft Excel, and Microsoft SharePoint lies in the lack of data protection measures, which allows attackers to gain unauthorized access to devices.

The vulnerabilities of Microsoft Office packages, Microsoft 365 Apps, Microsoft Excel, and Microsoft SharePoint are related to the lack of protection for sensitive data. Exploiting these vulnerabilities can allow attackers to gain unauthorized access to devices...

PT-2022-1686 · Microsoft · Windows Gdi +1

Name of the Vulnerable Software and Affected Versions: Windows GDI+ affected versions not specified Description: The issue is related to a lack of protection for internal data in the Windows GDI+ component, which can be exploited by a remote attacker to gain unauthorized access to a device. This...

The vulnerability of the Sylius e-commerce software platform, related to the lack of protection for operational data, allows attackers to disclose sensitive information that should be protected.

The vulnerability of the Sylius e-commerce software lies in the lack of protection for operational data. Exploiting this vulnerability could allow a malicious actor to disclose the protected information...

CVE-2021-30169

The sensitive information of webcam device is not properly protected. Remote attackers can unauthentically grant user’s credential...

The vulnerability in the net/bluetooth/a2mp.c component of Linux operating systems allows a hacker to gain unauthorized access to protected information.

The vulnerability of the net/bluetooth/a2mp.c component in Linux operating systems is related to the lack of protection for service data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information using specially crafted AMP packe...

The vulnerability of the SAP Business One resource management system, related to the lack of protection for operational data, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the SAP Business One resource management system is related to the lack of protection for operational data. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected information...

The vulnerability of the “INSERT ... ON CONFLICT DO UPDATE” command implementation in the PostgreSQL database management system allows a hacker to gain unauthorized access to protected information.

The vulnerability of the “INSERT ... ON CONFLICT DO UPDATE” command in the PostgreSQL database management system is related to the lack of protection for operational data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the Mac OS X operating system, which allows a perpetrator to obtain confidential information

The vulnerability of the iBooks component in the Mac OS X operating system is related to the lack of protection for service data. Exploiting this vulnerability allows a malicious actor to obtain confidential information through a URL in the iBooks file...

The vulnerability of the Android operating system, which allows a perpetrator to obtain confidential information or bypass security mechanisms

The vulnerability of the libstagefright library in the Android operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow a malicious actor, acting remotely, to obtain confidential information or bypass security mechanisms...