The vulnerability of the embedded software of NETGEAR routers such as NETGEAR GC108P, NETGEAR GC108PP, NETGEAR GS108Tv3, NETGEAR GS110TPP, NETGEAR GS110TPv3, NETGEAR GS110TUP, NETGEAR GS308T, NETGEAR GS310TP, NETGEAR GS710TUP, NETGEAR GS716TP, NETGEAR GS716TPP, NETGEAR GS724TPP, NETGEAR GS724TPv2, NETGEAR GS728TPPv2, NETGEAR GS728TPv2, NETGEAR GS750E, NETGEAR GS752TPP, NETGEAR GS752TPv2, NETGEAR MS510TXM, and NETGEAR MS510TXUP arises due to synchronization errors when using a shared resource. This vulnerability allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the embedded software of NETGEAR routers such as NETGEAR GC108P, NETGEAR GC108PP, NETGEAR GS108Tv3, NETGEAR GS110TPP, NETGEAR GS110TPv3, NETGEAR GS110TUP, NETGEAR GS308T, NETGEAR GS310TP, NETGEAR GS710TUP, NETGEAR GS716TP, NETGEAR GS716TPP, NETGEAR GS724TPP, NETGEAR GS724TPv2...

The vulnerability of the Squid caching proxy server, related to authentication errors, allows a hacker to carry out a type of “man-in-the-middle” attack.

The vulnerability of the Squid application is related to authentication errors. Exploiting this vulnerability allows a remote attacker to carry out a “man-in-the-middle” attack...

The vulnerability of JavaScript script handlers in Microsoft Edge and Google Chrome browsers allows attackers to execute arbitrary code.

The vulnerability of JavaScript script handlers in Microsoft Edge and Google Chrome browsers is related to type conversion errors. Exploiting this vulnerability can allow a remote attacker to execute arbitrary code...

The vulnerability of Microsoft Bing Search for Android, related to information representation errors in the user interface, allows attackers to perform spear-phishing attacks.

The vulnerability of Microsoft Bing Search for Android relates to information representation errors in the user interface. Exploiting this vulnerability can allow a remote attacker to perform spearishing attacks...

GHSA-7V7W-F7C6-F829 YetiForceCRM is vulnerable to Business Logic Errors because product amount can be a negative number

YetiForceCRM is vulnerable to Business Logic Errors because product amount can be a negative number...

GHSA-CXG7-84WP-8PCQ YetiForceCRM is vulnerable to Business Logic Errors in the weight of a product

YetiForceCRM is vulnerable to Business Logic Errors in the Weight of a Product since that value can be a negative number...

YetiForceCRM is vulnerable to Business Logic Errors in the weight of a product

YetiForceCRM is vulnerable to Business Logic Errors in the Weight of a Product since that value can be a negative number...

Discourse has an unspecified vulnerability (CNVD-2022-05508)

Discourse is an open source community discussion platform that includes community, email and chat room features. The platform includes community, email and chat room features. discourse-footnote has a security vulnerability that could be exploited to trigger null-reference javascript errors...

The vulnerability of the WS-Addressing plugin in the gSOAP software development environment allows a attacker to trigger a service failure.

The vulnerability of the WS-Addressing plugin in the gSOAP software development environment is related to errors in pointer manipulation during SOAP request processing. Exploiting this vulnerability allows an attacker to cause service failures by sending specially crafted HTTP requests...

The vulnerability of the Omnibox address bar in Google Chrome allows a hacker to manipulate the content of the address bar using a specially created URL.

The vulnerability of the Omnibox address bar in Google Chrome is related to privilege management errors. Exploiting this vulnerability allows a malicious actor to manipulate the content of the address bar using a specially created URL...

SUSE SLES15 Security Update : kernel (Live Patch 0 for SLE 15 SP3) (SUSE-SU-2021:4099-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:4099-1 advisory. - In bpfskbchangehead of filter.c, there is a possible out of bounds read due to a use after free. This could lead to local...

The vulnerability of Google Chrome’s browser QR scanner function, which allows a hacker to circumvent existing access restrictions

The vulnerability of the Google Chrome browser’s QR scanner is related to authentication errors. Exploiting this vulnerability could allow a malicious actor to circumvent existing access restrictions...

The vulnerability of the nginx.ingress.kubernetes.io/auth-type controller in the Kubernetes ingress-nginx cluster arises from improper external management of the file name. This allows attackers to access, create, modify, or delete data.

The vulnerability of the nginx.ingress.kubernetes.io/auth-type controller in the Kubernetes ingress-nginx cluster is related to errors in processing hypertext links. Exploiting this vulnerability may allow an attacker to gain access to the ability to create, modify, or delete data...

The vulnerability of the Downloads function in Google Chrome’s web browser allows a hacker to execute arbitrary code.

The vulnerability of the Windows operating system and the Google Chrome browser is related to privilege management errors. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of Microsoft Exchange Server servers, related to errors in information representation by the user interface, allows attackers to perform spear-phishing attacks.

The vulnerability of Microsoft Exchange Server servers is related to errors in information representation by the user interface. Exploiting this vulnerability can allow attackers to perform spear-phishing attacks remotely...

The vulnerability of Remote Desktop Services (RDS) on the Microsoft Windows operating system allows a perpetrator to execute arbitrary code.

The vulnerability of Remote Desktop Services RDS on the Microsoft Windows operating system arises due to errors in checking RDS service requests when connecting via the RDP protocol. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

OpenSSL: Invalid handling of X509_verify_cert() internal errors (20211214) - Linux

OpenSSL is prone to an invalid handling of X509verifycert internal errors vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later Thi...

The vulnerability of the WS-Security plugin in the gSOAP software development environment allows a attacker to cause a service failure.

The vulnerability of the WS-Security plugin in the gSOAP software development environment is related to errors in pointer assignment during SOAP request processing. Exploiting this vulnerability allows an attacker to cause service failures by sending specially crafted HTTP requests...

The vulnerability of the Microsoft Exchange Server mail server, related to errors in code generation, allows a hacker to execute arbitrary code.

The vulnerability of Microsoft Exchange Server is related to errors in code generation management. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

OpenSSL: Invalid handling of X509_verify_cert() internal errors (20211214) - Windows

OpenSSL is prone to an invalid handling of X509verifycert internal errors vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later Thi...