11195 matches found
PT-2022-2906
Name of the Vulnerable Software and Affected Versions Windows Work Folder Service affected versions not specified Description The issue is related to errors in synchronization when using a shared resource in the Windows Work Folder Service, which can allow an attacker to elevate their privileges...
The vulnerability of the nvlddmkm.sys component of the NVIDIA GPU Display Driver allows a hacker to access confidential data and also cause system failures.
The vulnerability of the nvlddmkm.sys component of the NVIDIA GPU Display Driver is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability allows an attacker to access confidential data and cause system failures...
The vulnerability of the LDAP-auth HTTP-server implementation in Nginx allows a hacker to execute arbitrary code on the vulnerable system.
The vulnerability of the LDAP-auth HTTP-server implementation based on Nginx is related to errors in the code. Exploiting this vulnerability allows a remote attacker to execute any arbitrary code on the vulnerable system...
The vulnerability of TLS and SSL Mbed TLS implementations lies in errors in the certificate validation process, which allows attackers to compromise the integrity of data.
The vulnerability of TLS and SSL Mbed TLS implementations is related to the incorrect use of the revocationDate check. Exploiting this vulnerability allows a remote attacker to compromise the integrity of data...
Samsung SMR 缓冲区错误漏洞
Samsung SMR is a system patch package from South Korea's Samsung Samsung. A buffer overflow vulnerability exists in Samsung SMR, which stems from an incorrect boundary check in the Quram Agif library and can be exploited by attackers to cause arbitrary code execution...
The vulnerability of the Log component in the Oracle Enterprise Session Border Controller allows a perpetrator to cause a partial service disruption.
The vulnerability of the Log component in the Oracle Enterprise Session Border Controller is related to resource release errors. Exploiting this vulnerability could allow a malicious actor to cause a partial service outage using the HTTP protocol...
The vulnerability of the Libraries component of the Oracle Java SE software platform, the Oracle GraalVM Enterprise Edition virtual machine, and the Oracle Solaris operating system allows a perpetrator to cause partial service interruptions.
The vulnerability of the Libraries component of the Oracle Java SE software platform, the Oracle GraalVM Enterprise Edition virtual machine, and the Oracle Solaris operating system is related to resource release errors. Exploiting this vulnerability can allow an attacker to cause a partial servic...
The vulnerability in the implementation of the SSHv2 protocol by the Paramiko library arises from synchronization errors when using a shared resource, allowing an attacker to gain access to confidential information.
The vulnerability of the SSHv2 protocol implementation by the Paramiko library is related to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker to access confidential information...
The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers allows attackers to execute arbitrary code.
The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers is related to type conversion errors. Exploiting this vulnerability allows a malicious actor to execute arbitrary code through a specially created web page...
The vulnerability of the CosPrim::computeSigOutput() function in the cosprim.hh programming component for sound synthesis and processing in the Faust language allows a intruder to trigger a service failure.
The vulnerability of the CosPrim::computeSigOutput function in the cosprim.hh component of the Faust sound synthesis and processing programming language is related to pointer arithmetic errors. Exploiting this vulnerability allows an attacker to cause a service failure...
The vulnerability of the Intra-mode BTI implementation of Intel microprogramming software allows a hacker to gain unauthorized access to protected information.
The vulnerability of the Intel microprogrammable processor’s Intra-mode BTI IMBTI implementation is related to errors in parameter processing. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...
The vulnerability of the JIT component in the Firefox web browser and the Thunderbird email client allows a hacker to gain access to confidential data, compromise its integrity, and cause service failures.
The vulnerability of the JIT component in the Firefox web browser and the Thunderbird email client is related to errors during resource release. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its integrity, and cause service failures...
The vulnerability of the Generic-array module in Rust, related to type handling errors, allows attackers to cause service failures.
The vulnerability of the Generic-array module in Rust is related to the increased lifespan of the arr! macro. Exploiting this vulnerability allows a remote attacker to cause service failures...
Vulnerability of the Server component: DML of the MySQL database management system, which allows attackers to cause service interruptions.
The vulnerability of the Server component: The DML part of the MySQL database management system is related to errors during resource release. Exploiting this vulnerability allows a malicious actor to cause service interruptions remotely...
The vulnerability of the InnoDB component in the MariaDB and MySQL database management systems allows attackers to cause service failures.
The vulnerability of the InnoDB component in the MariaDB and MySQL database management systems is related to errors during resource release. Exploiting this vulnerability allows a malicious actor to cause service failures...
The vulnerability of the DumpTrackInfo function in the MP4Box command of the GPAC multimedia platform, related to pointer assignment errors, allows a violator to trigger a service failure.
The vulnerability of the DumpTrackInfo function in the MP4Box multimedia platform’s command is related to pointer assignment errors. Exploiting this vulnerability allows a remote attacker to trigger a service failure using a specially created file...
Vulnerability of the Server: Optimizer component of the MySQL database management system, which allows a hacker to cause a service failure.
The vulnerability of the Server: Optimizer component of the MySQL database management system is related to errors during resource release. Exploiting this vulnerability allows a malicious actor to cause service interruptions remotely...
Vulnerability of the Server component: DML of the MySQL database management system, which allows attackers to cause service interruptions.
The vulnerability of the Server component: The DML mechanism of the MySQL database management system is related to errors during resource release. Exploiting this vulnerability allows a malicious actor to cause service interruptions remotely...
The vulnerability of the Git-based software platform for collaborative code development on GitLab lies in the ability to create and track user-defined tasks for Sentry errors. This allows a violator to access confidential data and compromise its integrity.
The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to the ability for users to create and track issues for Sentry errors. Exploiting this vulnerability allows a malicious actor to gain access to confidential data and compromise its integri...
The vulnerability of the Node Set-value module, related to type conversion errors, allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.
The vulnerability of the Node Set-value module is related to type conversion errors. Exploiting this vulnerability allows an attacker who operates remotely to gain access to confidential data, compromise its integrity, and cause service failures...