33 matches found
ROS-20260529-73-0021
The vulnerability in opensearch relates to the use of a name with an incorrect link. Exploiting this vulnerability could allow a perpetrator to cause a service failure...
ROS-20260529-73-0002
The vulnerability in opensearch relates to the use of a name with an incorrect link. Exploiting this vulnerability could allow a perpetrator to cause a service failure...
PT-2026-5972
Name of the Vulnerable Software and Affected Versions ZSPACE Q2C NAS affected versions not specified Description The ZSPACE Q2C NAS is affected by an issue involving incorrect symbolic link handling. An attacker can format a USB drive to ext4, create a symbolic link to its root directory, insert...
ROS-20251219-7301
Vulnerability in nomad related to incorrect link definition before accessing a file. Exploitation of the vulnerability could allow an attacker to escalate his privileges...
The vulnerability of the VsapiNT.sys module in anti-virus software from Trend Micro’s Apex One and Apex One as a Service allows a malicious actor to elevate their privileges and execute arbitrary code within the SYSTEM context.
The vulnerability of the VsapiNT.sys module in anti-virus software from Trend Micro’s Apex One and Apex One as a Service is related to an incorrect definition of the link before accessing the file. Exploiting this vulnerability can allow an attacker to enhance their privileges and execute arbitra...
The vulnerability in the set of VMware Tools relates to incorrect definition of the link before accessing the file, allowing an attacker to escalate their privileges.
The vulnerability of the VMware Tools utility is related to an incorrect definition of the link before accessing the file. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of Windows operating system installers, allowing a hacker to disclose protected information
The vulnerability of Windows operating system installers is related to incorrect definition of the link before accessing the file. Exploiting this vulnerability can allow an attacker to disclose protected information...
The vulnerability of the software client for network access provisioning in SonicWall Connect Tunnel allows a hacker to trigger a service failure.
The vulnerability of the software client for network access provisioning in SonicWall Connect Tunnel is related to an incorrect definition of the link before accessing the file. Exploiting this vulnerability can allow a hacker to cause a service failure...
The vulnerability of the Windows Update Stack component of the Windows operating system, which allows a hacker to increase their privileges
The vulnerability of the Windows Update Stack component of the Windows operating system is related to an incorrect definition of the link before accessing the file. Exploiting this vulnerability can allow an attacker to increase their privileges...
Dell Inventory Collector Incorrect Link Resolution Before File Access Vulnerability
Dell Inventory Collector is a tool provided by Dell for collecting device information, mainly used to collect system information such as hardware configuration, operating system version, service packs, and so on from client systems. Dell Inventory Collector suffers from an incorrect link resoluti...
Dell Client Platform Incorrect Link Resolution Vulnerability
Dell Client Platform is client platform software provided by Dell Dell that is primarily used to manage the configuration and functionality of enterprise client computers. Dell Client Platform has an incorrect link resolution vulnerability that can be exploited by an attacker to cause an elevatio...
Dell Client Platform 安全漏洞
Dell Client Platform is client platform software provided by Dell Dell that is primarily used to manage the configuration and functionality of enterprise client computers. Dell Client Platform has an incorrect link resolution vulnerability that can be exploited by an attacker to cause an elevatio...
The vulnerability of cloud software for creating and using Nextcloud Server’s data storage solution lies in the use of a name with an incorrect link, allowing attackers to access confidential information.
The vulnerability of cloud-based software for creating and using Nextcloud storage solutions is related to the use of a name with an incorrect link. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to confidential information...
The vulnerability of the Azure Network Watcher VM Extension for Windows operating systems allows a perpetrator to escalate their privileges.
The vulnerability of the Azure Network Watcher VM Extension for Windows operating systems stems from an incorrect definition of the link before accessing the file. Exploiting this vulnerability can allow attackers to increase their privileges...
The vulnerability of the Damage Cleanup Engine of the Trend Micro Common Client Real-time Scan antivirus software, including the Apex One and Apex One as a Service solutions, allows a malicious actor to trigger a service failure.
The vulnerability of the Damage Cleanup Engine of the Trend Micro Common Client Real-time Scan antivirus software, specifically Apex One and Apex One as a Service, is related to an incorrect definition of the link before accessing a file. Exploiting this vulnerability can allow an attacker to...
The vulnerability of the Windows Authentication component in Windows operating systems allows attackers to enhance their privileges.
The vulnerability of the Windows Authentication component in Windows operating systems is related to an incorrect definition of the link before accessing a file. Exploiting this vulnerability can allow attackers to enhance their privileges...
ROS-20240410-21
A vulnerability in the RPM Package Manager of Red Hat Enterprise Linux operating systems is related to the lack of RPM signature verification of subsection binding before importing them. Exploitation exploitation of the vulnerability could allow an attacker to escalate his privileges A...
The vulnerability of the DSA service in the Intel Driver & Support Assistant software allows a hacker to escalate their privileges and execute arbitrary code.
The vulnerability of the DSA service in the Intel Driver & Support Assistant software for updating drivers is related to an incorrect definition of the link before accessing the file. Exploiting this vulnerability can allow attackers to enhance their privileges and execute arbitrary code...
PT-2023-9184 · Trend Micro · Trend Micro Apex One As A Service +1
Name of the Vulnerable Software and Affected Versions: Trend Micro Apex One affected versions not specified Trend Micro Apex One as a Service affected versions not specified Description: A security issue in Trend Micro Apex One and Apex One as a Service could allow a local attacker to disclose...
McAfee Total Protection 后置链接漏洞
McAfee Total Protection MTP is a suite of antivirus software from McAfee, Inc. A security vulnerability exists in McAfee Total Protection prior to version 16.0.50, which stems from incorrect link resolution. The vulnerability can be exploited by an attacker to elevate user privileges via the...