The vulnerability of the Windows Message Queuing system, which allows a hacker to escalate their privileges

The vulnerability of Windows’ Message Queuing system is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to gain increased privileges...

The vulnerability of the Archive Extraction Handler component of the IntelliJ IDEA software development environment installer allows a hacker to exploit it to disclose protected information.

The vulnerability of the Archive Extraction Handler component in the IntelliJ IDEA integrated development environment is related to errors in processing the relative path to the directory. Exploiting this vulnerability may allow a remote attacker to execute arbitrary code...

The vulnerability of the OpenSSL processor in real-time operating systems like Wind River VxWorks allows attackers to trigger a service failure.

The vulnerability of the OpenSSL processor in real-time operating systems from Wind River and VxWorks is related to memory release errors. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

The vulnerability of Zoom’s video conferencing software, related to errors in processing input data, allows attackers to exploit their privileges.

The vulnerability of Zoom video conferencing software is related to errors in processing input data. Exploiting this vulnerability can allow a remote attacker to gain increased privileges...

The vulnerability of the Windows Message Queuing system allows a perpetrator to execute arbitrary code.

The vulnerability of Windows’ Message Queuing system is related to errors in processing input data. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

CVE-2023-52361

The VerifiedBoot module has a vulnerability that may cause authentication errors.Successful exploitation of this vulnerability may affect integrity...

CVE-2023-52361

The VerifiedBoot module has a vulnerability that may cause authentication errors.Successful exploitation of this vulnerability may affect integrity...

Privilege escalation

The VerifiedBoot module has a vulnerability that may cause authentication errors.Successful exploitation of this vulnerability may affect integrity...

CVE-2023-52361

The VerifiedBoot module has a vulnerability that may cause authentication errors.Successful exploitation of this vulnerability may affect integrity...

CVE-2023-52361

The CVE-2023-52361 entry corresponds to Huawei HarmonyOS VerifiedBoot module authentication errors. Multiple sources (NVD, CNVD, CNNVD) describe a vulnerability in the VerifiedBoot component that can compromise system integrity (I = High) with no confidentiality or availability impact, and with n...

PT-2024-14551 · Unknown · Verifiedboot

Name of the Vulnerable Software and Affected Versions: VerifiedBoot affected versions not specified Description: The VerifiedBoot module has a vulnerability that may cause authentication errors. Successful exploitation of this vulnerability may affect integrity. Recommendations: At the moment,...

The vulnerability of the software used for creating, monitoring, and orchestrating data processing scripts in Airflow lies in authentication errors, which allow attackers to modify arbitrary data.

The vulnerability of the software used for creating, monitoring, and orchestrating data processing scripts in Airflow is related to authentication errors. Exploiting this vulnerability allows a malicious actor to modify arbitrary data remotely...

The vulnerability of the Hardy Barth eCharge web application, related to errors in privilege management, allows a perpetrator to escalate their privileges.

The vulnerability of the Hardy Barth eCharge charging station’s web application is related to errors in privilege management. Exploiting this vulnerability allows a remote attacker to increase their privileges...

The vulnerability of the XWiki Platform, a platform for creating collaborative web applications, related to authentication errors, allows a malicious user to edit any document at will.

The vulnerability of the XWiki Platform relates to authentication errors. Exploiting this vulnerability allows a malicious actor to remotely edit any document they wish...

PT-2024-1749

Name of the Vulnerable Software and Affected Versions ESET versions prior to the fixed version Description The issue is related to a local privilege escalation vulnerability that potentially allows an attacker to misuse ESET’s file operations to delete files without having proper permission. This...

PT-2024-7292 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the KASAN Kernel Address Sanitizer component in the Linux kernel, which can lead to a stack overflow on some 32-bit machines due to increased stack usage. The...

The vulnerability of the XWiki Platform, a platform for creating collaborative web applications, related to authentication errors, allows attackers to escalate their privileges.

The vulnerability of the XWiki Platform is related to authentication errors. Exploiting this vulnerability can allow a malicious actor to increase their privileges remotely...

PT-2024-1669 · Microsoft · Azure Stack Hub

Name of the Vulnerable Software and Affected Versions: Azure Stack Hub affected versions not specified Description: The issue is related to errors in the representation of information by the user interface in the integrated system of hybrid cloud computing. Exploitation of this issue may allow a...

PT-2024-1650 · Microsoft · Dynamics 365

Name of the Vulnerable Software and Affected Versions: Microsoft Dynamics 365 affected versions not specified Description: The issue is related to errors in the representation of information by the user interface, which can be exploited by a remote attacker to conduct spoofing attacks...

PT-2024-1607 · Unknown · Harmony Control Relay Rmnf22Tb30 +1

Name of the Vulnerable Software and Affected Versions: Harmony Control Relay RMNF22TB30 and Harmony Timer Relay RENF22R2MMW affected versions not specified Description: The issue is related to an Improper Authentication vulnerability that could cause unauthorized tampering of device configuration...