The vulnerability of JavaScript script handlers in Microsoft Edge and Google Chrome browsers allows attackers to execute arbitrary code.

The vulnerability of JavaScript script handlers in Microsoft Edge and Google Chrome browsers is related to type conversion errors. Exploiting this vulnerability can allow a remote attacker to execute arbitrary code...

GHSA-7V7W-F7C6-F829 YetiForceCRM is vulnerable to Business Logic Errors because product amount can be a negative number

YetiForceCRM is vulnerable to Business Logic Errors because product amount can be a negative number...

GHSA-CXG7-84WP-8PCQ YetiForceCRM is vulnerable to Business Logic Errors in the weight of a product

YetiForceCRM is vulnerable to Business Logic Errors in the Weight of a Product since that value can be a negative number...

YetiForceCRM is vulnerable to Business Logic Errors in the weight of a product

YetiForceCRM is vulnerable to Business Logic Errors in the Weight of a Product since that value can be a negative number...

Discourse has an unspecified vulnerability (CNVD-2022-05508)

Discourse is an open source community discussion platform that includes community, email and chat room features. The platform includes community, email and chat room features. discourse-footnote has a security vulnerability that could be exploited to trigger null-reference javascript errors...

The vulnerability of the Omnibox address bar in Google Chrome allows a hacker to manipulate the content of the address bar using a specially created URL.

The vulnerability of the Omnibox address bar in Google Chrome is related to privilege management errors. Exploiting this vulnerability allows a malicious actor to manipulate the content of the address bar using a specially created URL...

The vulnerability of the WS-Addressing plugin in the gSOAP software development environment allows a attacker to trigger a service failure.

The vulnerability of the WS-Addressing plugin in the gSOAP software development environment is related to errors in pointer manipulation during SOAP request processing. Exploiting this vulnerability allows an attacker to cause service failures by sending specially crafted HTTP requests...

SUSE SLES15 Security Update : kernel (Live Patch 0 for SLE 15 SP3) (SUSE-SU-2021:4099-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:4099-1 advisory. - In bpfskbchangehead of filter.c, there is a possible out of bounds read due to a use after free. This could lead to local...

The vulnerability of Google Chrome’s browser QR scanner function, which allows a hacker to circumvent existing access restrictions

The vulnerability of the Google Chrome browser’s QR scanner is related to authentication errors. Exploiting this vulnerability could allow a malicious actor to circumvent existing access restrictions...

The vulnerability of the nginx.ingress.kubernetes.io/auth-type controller in the Kubernetes ingress-nginx cluster arises from improper external management of the file name. This allows attackers to access, create, modify, or delete data.

The vulnerability of the nginx.ingress.kubernetes.io/auth-type controller in the Kubernetes ingress-nginx cluster is related to errors in processing hypertext links. Exploiting this vulnerability may allow an attacker to gain access to the ability to create, modify, or delete data...

The vulnerability of the Downloads function in Google Chrome’s web browser allows a hacker to execute arbitrary code.

The vulnerability of the Windows operating system and the Google Chrome browser is related to privilege management errors. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of Microsoft Exchange Server servers, related to errors in information representation by the user interface, allows attackers to perform spear-phishing attacks.

The vulnerability of Microsoft Exchange Server servers is related to errors in information representation by the user interface. Exploiting this vulnerability can allow attackers to perform spear-phishing attacks remotely...

The vulnerability of Remote Desktop Services (RDS) on the Microsoft Windows operating system allows a perpetrator to execute arbitrary code.

The vulnerability of Remote Desktop Services RDS on the Microsoft Windows operating system arises due to errors in checking RDS service requests when connecting via the RDP protocol. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

OpenSSL: Invalid handling of X509_verify_cert() internal errors (20211214) - Linux

OpenSSL is prone to an invalid handling of X509verifycert internal errors vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later Thi...

The vulnerability of the WS-Security plugin in the gSOAP software development environment allows a attacker to cause a service failure.

The vulnerability of the WS-Security plugin in the gSOAP software development environment is related to errors in pointer assignment during SOAP request processing. Exploiting this vulnerability allows an attacker to cause service failures by sending specially crafted HTTP requests...

The vulnerability of the Microsoft Exchange Server mail server, related to errors in code generation, allows a hacker to execute arbitrary code.

The vulnerability of Microsoft Exchange Server is related to errors in code generation management. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

OpenSSL: Invalid handling of X509_verify_cert() internal errors (20211214) - Windows

OpenSSL is prone to an invalid handling of X509verifycert internal errors vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later Thi...

CVE-2021-4117

yetiforcecrm is vulnerable to Business Logic Errors...

CVE-2021-4117

yetiforcecrm is vulnerable to Business Logic Errors...

CVE-2021-4117

yetiforcecrm is vulnerable to Business Logic Errors...