The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine allows attackers to execute arbitrary code.

The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine is related to type mixing errors. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

Medium: jetty

Issue Overview: There exists a security vulnerability in Jetty's DosFilter which can be exploited by unauthorized users to cause remote denial-of-service DoS attack on the server using DosFilter. By repeatedly sending crafted requests, attackers can trigger OutofMemory errors and exhaust the...

The software for data protection solutions from Dell RecoverPoint for virtual machines is vulnerable due to errors in filtering specific elements, allowing attackers to trigger a service failure.

The vulnerability of the Dell RecoverPoint data protection software for virtual machines is related to errors in filtering specific elements. Exploiting this vulnerability could allow a malicious actor to trigger a service failure...

IBM MQ Appliance 安全漏洞

IBM MQ Appliance is a pre-installed IBM MQ software on specialized, secure hardware from International Business Machines IBM. A security vulnerability exists in IBM MQ Appliance versions 9.3 LTS, 9.3 CD, and 9.4 LTS, which stems from a Web console that could allow a remote attacker to gain access...

The vulnerability of the data analysis tool from IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data arises due to synchronization errors when using a shared resource, allowing a malicious actor to trigger a service failure.

The vulnerability of the IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data data analysis service lies in synchronization errors when using a shared resource. Exploiting this vulnerability can allow a malicious actor to cause a service failure...

The vulnerability of the Cloud Files Mini Filter Driver for Microsoft Windows operating systems allows a hacker to increase their privileges.

The vulnerability of the Cloud Files Mini Filter Driver for Microsoft Windows operating systems is related to synchronization errors. Exploiting this vulnerability can allow attackers to gain increased privileges...

PT-2024-33695 · Ibm · Ibm Security Guardium Key Lifecycle Manager

Name of the Vulnerable Software and Affected Versions: IBM Security Guardium Key Lifecycle Manager versions 4.1, 4.1.1, 4.2.0, and 4.2.1 Description: The issue allows a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This...

The vulnerability in the implementation of the LDAP service protocol for Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the LDAP Lightweight Directory Access Protocol implementation in Windows operating systems is related to synchronization errors when using a shared resource. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

CentOS 9 : kernel-5.14.0-542.el9

The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the kernel-5.14.0-542.el9 build changelog. - In the Linux kernel, the following vulnerability has been resolved: nfsd: cancel nfsdshrinkerwork using sync mode in nfs4stateshutdownn...

The vulnerability of the BLE (Bluetooth Low Energy) component of the microprogramming software for monitoring and controlling energy systems in Sentron Powercenter 1000/1100 allows a intruder to trigger a service failure.

The vulnerability of the BLE Bluetooth Low Energy component of the microprogramming software for monitoring and controlling energy systems in Sentron Powercenter 1000/1100 is related to synchronization errors. Exploiting this vulnerability could allow a malicious actor to cause service failures...

The vulnerability in the implementation of the LDAP service protocol for Windows operating systems allows a perpetrator to cause a service failure.

The vulnerability of the LDAP Lightweight Directory Access Protocol implementation in Windows operating systems is related to pointer assignment errors. Exploiting this vulnerability can allow a malicious actor to cause service failures...

Lenovo Filez 安全漏洞

Lenovo Filez is an enterprise web drive from the Chinese company Lenovo Lenovo. A security vulnerability exists in Lenovo Filez, which stems from incorrect parsing and could allow a carefully constructed file to read arbitrary files on a device via URL preloading...

The vulnerability of the Microsoft Visual Studio software and the Microsoft.NET platform allows attackers to execute arbitrary code.

The vulnerability of the Microsoft Visual Studio software and the Microsoft.NET platform is related to type conversion errors. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the kernel of Microsoft Windows, which allows a hacker to increase their privileges

The vulnerability of the kernel of Microsoft Windows is related to synchronization errors when using a shared resource „Race Conditions“. Exploiting this vulnerability can allow an attacker to increase their privileges...

PT-2024-41186 · Ооо 'Датэкс Софтвер' · E-Staff

Уязвимость системы автоматизации рекрутинговых процессов E-Staff связана с ошибками фильтрации данных при получении информации об объекте. Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, получить несанкционированный доступ к защищаемой информации...

Low: Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.17.1 Bug Fix Update

Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.17.1 on Red Hat Enterprise Linux 9 from Red Hat Container Registry. Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation...

nilfs2: propagate directory read errors from nilfs_find_entry()

...

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: disallow timeout for anonymous sets CVE-2023-52620 In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix oob in ntfslistxattr CVE-2023-52640 In the Linux kernel, th...

The vulnerability of Remote Desktop Services (RDS) for Microsoft Windows operating systems allows a perpetrator to execute arbitrary code.

The vulnerability of Remote Desktop Services RDS for Microsoft Windows operating systems is related to data type mixing errors. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of DRM/VMWGFX components in Linux operating systems allows attackers to increase their privileges within the system.

The vulnerability of DRM/VMWGFX components in Linux operating systems is related to memory management errors after freeing memory. Exploiting this vulnerability can allow an attacker to increase their privileges within the system...