286 matches found
ROS-20240723-05
A vulnerability in the Core component of the Oracle VM VirtualBox virtualization software tool is related to an insecure privilege management vulnerability. insecure privilege management. Exploitation of the vulnerability could allow an attacker to escalate their privileges A vulnerability in the...
CVE-2023-46297
CVE-2023-46297 affects Mercusys MW325R EU V3 (firmware 1.11.0 221019). An unauthenticated HTTP request can render the admin interface unreachable/invisible; data verification is not performed, and affected UI files become unavailable. The web server remains up, but the admin UI is hidden, typical...
CVE-2023-47252
Summary (CVE-2023-47252): Insyde InsydeH2O’s PnpSmm in the kernel range 5.0–5.6 is affected by an out-of-bounds access in the SMM communication buffer. The PNP-related SMI sub-functions do not verify data size before reading from the buffer, potentially allowing corruption of data immediately fol...
CVE-2023-52551
Vulnerability of data verification errors in the kernel module. Impact: Successful exploitation of this vulnerability may affect service confidentiality...
CVE-2023-52550
Vulnerability of data verification errors in the kernel module. Impact: Successful exploitation of this vulnerability may affect service confidentiality...
CVE-2023-52551
Vulnerability of data verification errors in the kernel module. Impact: Successful exploitation of this vulnerability may affect service confidentiality...
CVE-2023-52550
Vulnerability of data verification errors in the kernel module. Impact: Successful exploitation of this vulnerability may affect service confidentiality...
CVE-2023-52549
Vulnerability of data verification errors in the kernel module. Impact: Successful exploitation of this vulnerability may affect service confidentiality...
CVE-2023-52549
Vulnerability of data verification errors in the kernel module. Impact: Successful exploitation of this vulnerability may affect service confidentiality...
CVE-2023-52551
Vulnerability of data verification errors in the kernel module. Impact: Successful exploitation of this vulnerability may affect service confidentiality...
CVE-2023-52551
CVE-2023-52551 is described across multiple sources as a data verification error in Huawei HarmonyOS/EMUI kernel module, leading to a confidentiality impact. The core issue is a data validation error in the kernel module, with the CVSS indicating local attack vector, low privileges required, no u...
CVE-2023-52551
Vulnerability of data verification errors in the kernel module. Impact: Successful exploitation of this vulnerability may affect service confidentiality...
CVE-2023-52550
Vulnerability of data verification errors in the kernel module. Impact: Successful exploitation of this vulnerability may affect service confidentiality...
CVE-2023-52550
Vulnerability of data verification errors in the kernel module. Impact: Successful exploitation of this vulnerability may affect service confidentiality...
CVE-2023-52550
CVE-2023-52550 describes a data verification error in the Huawei HarmonyOS kernel module. The impact is confidentiality loss with a CVSS 3.1 base score of 7.5 (Network attack vector, Low attack complexity, No user interaction, No privileges required, Scope unchanged; Confidentiality impact High)....
CVE-2023-52549
Vulnerability of data verification errors in the kernel module. Impact: Successful exploitation of this vulnerability may affect service confidentiality...
CVE-2023-52549
Vulnerability of data verification errors in the kernel module. Impact: Successful exploitation of this vulnerability may affect service confidentiality...
CVE-2023-52549
CVE-2023-52549 : Connected sources identify a data validation error in Huawei HarmonyOS/EMUI that originates from the kernel module. The vulnerability is described as impacting service confidentiality. Concrete details on affected versions, root cause specifics, exploit status, or available fixes...
CVE-2023-35764
CVE-2023-35764 relates to the Survey Maker WordPress plugin. The connected WPVulnDB entry identifies an IP address spoofing issue in Survey Maker versions up to 4.1.0 (and related Wordfence/WPScan detail describes IP spoofing as caused by insufficient data authenticity verification). The CVE desc...
The vulnerability of the microprogrammed software of the PowerFlex 527 variable frequency converter, related to insufficient verification of input data, allows a intruder to trigger a service failure.
The vulnerability of the microprogrammed software of the PowerFlex 527 variable frequency converter is related to insufficient verification of input data. Exploiting this vulnerability could allow an attacker operating remotely to cause malfunctions in the device’s operation...