301 matches found
EUVD-2025-209868
An out of bounds read within the AMD Platform Management Framework PMF could allow an attacker to trigger a read of an arbitrary memory location potentially resulting in loss of availability or confidentiality...
CVE-2026-2273
CWE-94: Improper Control of Generation of Code 'Code Injection' vulnerability exist that could cause execution of untrusted commands on the engineering workstation which could result in a limited compromise of the workstation and a potential loss of Confidentiality, Integrity and Availability of...
The vulnerability of the ieee80211_probe_client() function in the net/mac80211/cfg.c module of the mac80211 stack in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the ieee80211probeclient function in the net/mac80211/cfg.c module of the mac80211 stack in the Linux operating system is related to incorrect validation of input data. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...
CVE-2026-0514 Cross-Site Scripting (XSS) vulnerability in SAP Business Connector
Due to a Cross-Site Scripting XSS vulnerability in SAP Business Connector, an unauthenticated attacker could craft a malicious link. When an unsuspecting user clicks this link, the user may be redirected to a site controlled by the attacker. Successful exploitation could allow the attacker to...
EUVD-2022-33209
Malicious code in bioql PyPI...
EUVD-2024-36486
Malicious code in bioql PyPI...
EUVD-2023-35105
Malicious code in bioql PyPI...
EUVD-2025-20348
Malicious code in bioql PyPI...
EUVD-2024-39172
Malicious code in bioql PyPI...
ROS-20250911-07
A vulnerability in the Apache Commons Compress archiver is related to the execution of a loop with an unreachable exit condition. Exploitation of the vulnerability could allow an attacker to affect the integrity, availability, and confidentiality of protected information. confidentiality of...
The vulnerability of the ELMED MIS platform, due to deficiencies in access control mechanisms, allows unauthorized access by attackers, thereby compromising the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the ELMED MIS platform is related to deficiencies in access control mechanisms. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information and compromise its confidentiality, integrity, and accessibility...
The vulnerability of the g_F_n_GenPassForQlync function in the microprogramming software of D-Link DCS-7517 cameras allows a intruder to compromise the confidentiality of the protected information.
The vulnerability of the gFnGenPassForQlync function in the microprogramming software of D-Link DCS-7517 cameras is related to the use of fixed password encoding. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality of the information being protected...
CVE-2025-42974
CVE-2025-42974 involves SAP NetWeaver/ABAP Platform (SDCCN) with a missing authorization check that allows an authenticated non-administrative user to call a remote-enabled function module. The resulting exposure is limited to confidentiality (low impact); there is no reported impact on integrity...
The vulnerability of the HPIMSGX__init() function in the sound/pci/asihpi/hpimsgx.c module of the asihpi component of the /sound/pci/asihpi/hpimsgx.c kernel of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the HPIMSGXinit function in the sound/pci/asihpi/hpimsgx.c module of the asihpi component of the /sound/pci/asihpi/hpimsgx.c kernel of the Linux operating system is related to unvalidated array indexing. Exploiting this vulnerability could allow an attacker to compromise the...
The vulnerability of the formSetSafeWanWebMan() function (/goform/SetRemoteWebCfg) in the Tenda AC15 router software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the formSetSafeWanWebMan function /goform/SetRemoteWebCfg in the Tenda AC15 router software exists because the operation is performed outside the buffer in memory when processing the remoteIp parameter. Exploiting this vulnerability could allow a malicious actor to compromise...
The vulnerability of the web_acl_mgmt_Rules_Edit_postcontains() function in PLANET Technology’s microcontroller software allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the webaclmgmtRulesEditpostcontains function of the PLANET Technology microprogramming device is related to the issue of the operation exceeding the buffer boundaries in memory when processing the byruleEditName parameter. Exploitation of this vulnerability could allow an...
The vulnerability of the web_radiusSrv_post() function in PLANET Technology’s microcontroller software allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the webradiusSrvpost function in PLANET Technology’s microcontroller software stems from the operation of the function beyond the buffer boundaries in memory when processing the radIpkey parameter. Exploiting this vulnerability could allow an attacker to compromise the...
CVE-2023-29050
The optional "LDAP contacts provider" could be abused by privileged users to inject LDAP filter strings that allow to access content outside of the intended hierarchy. Unauthorized users could break confidentiality of information in the directory and potentially cause high load on the directory...
The vulnerability of the SSH-server software solution for monitoring the status of B&R APROL industrial systems allows a intruder to influence the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the SSH-server software solution for monitoring the status of B&R APROL industrial systems is related to incomplete filtering of specific elements. Exploiting this vulnerability could allow an intruder to compromise the confidentiality, integrity, and accessibility of the...
The vulnerability of the PCMan FTP Server relates to the occurrence of operations beyond the buffer boundaries in memory. This allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the PCMan FTP Server relates to the execution of operations beyond the buffer boundaries in memory when processing the “lcd” parameter. Exploiting this vulnerability allows a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected...