The vulnerability of the grub_udf_read_block function in the Grub2 operating system allows a attacker to influence the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the grubudfreadblock function in the Grub operating system is related to buffer overflow in dynamic memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of protected information...

The vulnerability of the web_tacplus_serverEdit_post() function in the microprogramming software for PLANET Technology allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the webtacplusserverEditpost function in the microprogramming software for PLANET Technology relates to the issue of the operation exceeding the buffer boundaries in memory when processing the tacIp parameter. Exploiting this vulnerability could allow an attacker to compromis...

The vulnerability of the f2fs_get_unusable_blocks() function in the fs/f2fs/f2fs.h module of the F2FS file system support in Linux kernel allows a attacker to compromise the integrity of protected information or cause service failures.

The vulnerability of the f2fsgetunusableblocks function in the fs/f2fs/f2fs.h module of the F2FS file system support in Linux’s operating system is related to incorrect input validation. Exploiting this vulnerability could allow an attacker to compromise the integrity of protected information or...

ROS-20250424-03

Vulnerability of the executefilterdelta function of the archivereadsupportformatrar.c component of the Libarchive archiving library is related to reading beyond the allowed data buffer boundaries. of Libarchive archiving library is related to reading outside the allowed data buffer boundaries...

The vulnerability of the cleanup_srcu_struct() function in the kernel/rcu/srcutree.c module of the synchronization subsystem in Linux multi-threaded kernel systems allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the cleanupsrcustruct function in the kernel/rcu/srcutree.c sub-system of the synchronization mechanism in Linux multi-threaded kernel systems is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the...

The vulnerability of the BmpInput::read_rle_image() function in the src/bmp.imageio/bmpinput.cpp module of the OpenImageIO library allows a attacker to compromise the integrity of the protected information or cause service failures.

The vulnerability of the BmpInput::readrleimage function in the src/bmp.imageio/bmpinput.cpp module of the OpenImageIO library is related to writing beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to compromise the integrity of the protected information or caus...

jquery: Untrusted code execution via <option> tag in HTML passed to DOM manipulation methods

A flaw was found in jQuery. HTML containing \ elements from untrusted sources are passed, even after sanitizing, to one of jQuery's DOM manipulation methods, which may execute untrusted code. The highest threat from this vulnerability is to data confidentiality and integrity...

The vulnerability of the `lt_prediction` function in the `lt_predict.c` component of the Freeware Advanced Audio Decoder 2 (FAAD2) allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service interruptions.

The vulnerability of the ltprediction function in the ltpredict.c component of the Freeware Advanced Audio Decoder 2 FAAD2 is related to buffer overflow attacks. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its integrity, and cause service...

openstack-neutron: arbitrary dnsmasq reconfiguration via extra_dhcp_opts

An input-validation flaw was found in openstack-neutron, where an authenticated attacker could change the dnsmasq configuration. By crafting extradhcpopts values, the attacker could crash the dnsmasq, change parameters for tenants sharing the same interface, or otherwise alter that daemon’s...

bouncycastle: password bypass in OpenBSDBCrypt.checkPassword utility possible

A flaw was found in bouncycastle. The OpenBSDBCrypt.checkPassword utility method compared incorrect data when checking the password allowing incorrect passwords to indicate they were matching with previously hashed ones that were different. The highest threat from this vulnerability is to data...

CVE-2021-20220

A flaw was found in Undertow. A regression in the fix for CVE-2020-10687 was found. HTTP request smuggling related to CVE-2017-2666 is possible against HTTP/1.x and HTTP/2 due to permitting invalid characters in an HTTP request. This flaw allows an attacker to poison a web-cache, perform an XSS...