Lucene search
+L

513 matches found

BDU FSTEC
BDU FSTEC
added 2025/07/21 12:0 a.m.13 views

The vulnerability of the Internal Operations component of the Oracle Lease and Finance Management system, a business automation solution, allows a perpetrator to gain access to read, modify, and delete information.

The vulnerability of the Internal Operations component of the Oracle Lease and Finance Management system, a part of the Oracle E-Business Suite, relates to deficiencies in the authorization process. Exploiting this vulnerability could allow an attacker to gain access to read, modify, and delete...

8.5CVSS7.2AI score0.00322EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/07/21 12:0 a.m.8 views

Vulnerability of the Server component: The MySQL Server database management system’s Optimizer component allows a hacker to gain unauthorized access for creating, deleting, and modifying data.

The vulnerability of the MySQL Server component, which is part of the database management system, is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to gain unauthorized access to create, delete, and modify data...

6.8CVSS7.1AI score0.00424EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/07/17 12:0 a.m.10 views

The vulnerability of the Unified Audit component of the Oracle Database Server system allows a perpetrator to gain access to read, modify, and delete information.

The vulnerability of the Unified Audit component of the Oracle Database Server management system is related to deficiencies in the authentication process. Exploiting this vulnerability could allow an attacker to gain access to read, modify, and delete data...

4CVSS7.2AI score0.00232EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/16 12:0 a.m.6 views

The vulnerability in the virtual graphics adapter VMSVGA of the Oracle VM VirtualBox software allows a hacker to escalate their privileges and execute arbitrary code.

The vulnerability of the Virtual Graphics Adapter VMSVGA in the Oracle VM VirtualBox virtualization software is related to deficiencies in access control. This vulnerability allows a malicious actor to enhance their privileges and execute arbitrary code...

8.2CVSS7.5AI score0.00233EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/07/13 12:0 a.m.6 views

The vulnerability of the ColdFusion software platform, related to deficiencies in the authentication process, allows attackers to circumvent security restrictions.

The vulnerability of the ColdFusion software platform is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to bypass security restrictions remotely...

8.5CVSS5.4AI score0.00304EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/07/11 12:0 a.m.22 views

The vulnerability of the system administration program Sudo, related to deficiencies in authentication mechanisms, allows attackers to escalate their privileges.

The vulnerability of the system administration program Sudo is related to deficiencies in the authentication mechanism. Exploiting this vulnerability can allow attackers to increase their privileges...

2.8CVSS6.8AI score0.03239EPSS
Exploits76References20Affected Software11
BDU FSTEC
BDU FSTEC
added 2025/07/09 12:0 a.m.7 views

The vulnerability of the EMUI audio framework of the HarmonyOS operating system allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the EMUI audio framework of the HarmonyOS operating system is related to deficiencies in access control. Exploiting this vulnerability could allow attackers to compromise the confidentiality, integrity, and accessibility of protected information...

5.9CVSS5.5AI score0.00093EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/07/07 12:0 a.m.13 views

The vulnerability of the RAS Security component of the Oracle Database Server system allows a perpetrator to gain access to read, modify, add, or delete data.

The vulnerability of the RAS Security component of the Oracle Database Server system is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker, operating remotely, to gain read, modify, add, or delete access to data...

8.5CVSS7.2AI score0.00472EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/02 12:0 a.m.9 views

The vulnerability of the Blitz Identity Provider software, related to deficiencies in the authentication process, allows a perpetrator to change the email address of a user’s account.

The vulnerability of the Blitz Identity Provider software is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor to change the email address of a user’s account remotely...

7.6CVSS5.5AI score
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/25 12:0 a.m.10 views

The vulnerability of the Git-based software platform for collaborative code development on GitLab stems from deficiencies in the authentication process, which allows unauthorized users to gain unauthorized access to protected information.

The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information by...

3.1CVSS5.6AI score0.00229EPSS
Exploits1References3Affected Software1
Packet Storm News
Packet Storm News
added 2025/06/20 12:0 a.m.10 views

Navigating the Deep: Signature Extraction on Deep Neural Networks

Neural network model extraction has emerged in recent years as an important security concern, as adversaries attempt to recover a network's parameters via black-box queries. A key step in this process is signature extraction, which aims to recover the absolute values of the network's weights laye...

6.9AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/06/09 12:0 a.m.9 views

The vulnerability of the Apache OFBiz resource planning software lies in the lack of adequate protection measures for web page structures, allowing attackers to carry out XSS attacks.

The vulnerability of Apache OFBiz’s resource planning software is related to deficiencies in the security measures used to protect web page structures. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

6.4CVSS5.4AI score0.65347EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/29 12:0 a.m.10 views

The vulnerability of the formSafeEmailFilter() function in the Tenda FH451 router software allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the formSafeEmailFilter function in the Tenda FH451 router software lies in the lack of data cleaning measures at the management level when processing the page parameter. Exploiting this vulnerability allows an attacker to execute arbitrary code or cause service failures...

6.5CVSS6AI score0.07369EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/26 12:0 a.m.16 views

The vulnerability of the DataHandler class in the TYPO3 content management system allows attackers to enhance their privileges and gain unauthorized access to protected information.

The vulnerability of the DataHandler class in the TYPO3 content management system is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to enhance their privileges and gain unauthorized access to protected information...

9CVSS5.4AI score0.00384EPSS
Exploits0References4Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 6:1 a.m.6 views

CVE-2023-28829

A vulnerability has been identified in SIMATIC NET PC Software V14 All versions, SIMATIC NET PC Software V15 All versions, SIMATIC PCS 7 V8.2 All versions, SIMATIC PCS 7 V9.0 All versions, SIMATIC PCS 7 V9.1 All versions, SIMATIC WinCC All versions V8.0, SINAUT Software ST7sc All versions. Before...

8.8CVSS7.1AI score0.00291EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:27 a.m.9 views

CVE-2023-3441

An issue has been discovered in GitLab EE/CE affecting all versions starting from 8.0 before 16.4. The product did not sufficiently warn about security implications of granting merge rights to protected branches...

9.1CVSS6.5AI score0.00554EPSS
Exploits1
BDU FSTEC
BDU FSTEC
added 2025/05/23 12:0 a.m.7 views

The vulnerability of the setWiFiEasyCfg/setWiFiEasyGuestCfg function in the /cgi-bin/cstecgi.cgi file of the TOTOLINK A3700R wireless router software allows a attacker to escalate their privileges.

The vulnerability of the setWiFiEasyCfg/setWiFiEasyGuestCfg function in the /cgi-bin/cstecgi.cgi file of the TOTOLINK A3700R wireless router software is related to access control deficiencies. Exploiting this vulnerability could allow an attacker to increase their privileges remotely...

5.3CVSS5.8AI score0.10277EPSS
Exploits1References6Affected Software1
CNVD
CNVD
added 2025/05/22 12:0 a.m.2 views

Zoo Management System /admin/profile.php File SQL Injection Vulnerability

Zoo Management System is a zoo management system. Zoo Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter contactnumber in the file /admin/profile.php. An attacker can exploit this...

9.8CVSS7.9AI score0.00438EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2025/05/16 12:0 a.m.9 views

The vulnerability of the Share Livestream module in the UniFi Protect video surveillance system allows a intruder to gain unauthorized access to protected information.

The vulnerability of the Share Livestream module in the UniFi Protect video surveillance system is related to deficiencies in access control. Exploiting this vulnerability could allow an intruder, operating remotely, to gain unauthorized access to protected information...

4.9CVSS5.4AI score0.00308EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/14 12:0 a.m.7 views

The vulnerability of the ColdFusion software platform, related to deficiencies in the authentication mechanism, allows attackers to circumvent existing security restrictions and execute arbitrary code.

The vulnerability of the ColdFusion software platform is related to deficiencies in the authentication mechanism. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions and execute arbitrary code...

9CVSS5.8AI score0.1025EPSS
Exploits0References3
Rows per page
Query Builder