The vulnerability of the Analytics Server component of the Oracle Business Intelligence Enterprise Edition software platform allows a perpetrator to cause a partial service outage.

The vulnerability of the Analytics Server component of the Oracle Business Intelligence Enterprise Edition software is related to errors in processing input data. Exploiting this vulnerability can allow an attacker to cause a partial service outage...

The vulnerability of the Blinding Functionality component of the Oracle Health Sciences Data Management Workbench allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Blinding Functionality component of the Oracle Health Sciences Data Management Workbench is related to errors in processing input data. Exploiting this vulnerability may allow an attacker operating remotely to gain unauthorized access to protected information...

The vulnerability of the GraalVM Compiler virtual machine components in Oracle GraalVM Enterprise Edition and Oracle GraalVM for JDK allows a perpetrator to gain access to confidential information.

The vulnerability of the GraalVM Compiler for Oracle GraalVM Enterprise Edition and Oracle GraalVM for JDK relates to errors in processing input data. Exploiting this vulnerability can allow a malicious actor to gain access to confidential information...

The vulnerability of the Analytics Server component of the Oracle Business Intelligence Enterprise Edition software platform allows a perpetrator to cause a partial service outage.

The vulnerability of the Analytics Server component of the Oracle Business Intelligence Enterprise Edition software is related to errors in processing input data. Exploiting this vulnerability can allow an attacker to cause a partial service outage...

Vulnerability of the Server: Optimizer component of the MySQL database management system, which allows a hacker to cause a service failure.

The vulnerability of the Server: Optimizer component of the MySQL database management system is related to errors in processing input data. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

The vulnerability of Windows Deployment Services for Windows operating systems stems from insufficient validation of input data, allowing a malicious actor to perform a service failure.

The vulnerability of Windows Deployment Services for Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to perform a service failure remotely...

Vulnerability of the Server: Optimizer component of the MySQL database management system, which allows a hacker to cause a service failure.

The vulnerability of the Server: Optimizer component of the MySQL database management system is related to errors in processing input data. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

The vulnerability of the setLanguageCfg function in the TOTOLINK A3300R router’s microprogramming software allows a hacker to execute arbitrary code.

The vulnerability of the setLanguageCfg function in the TOTOLINK A3300R router’s microprogramming system is related to errors in processing input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the InnoDB component of the MySQL database management system, which allows a hacker to cause a service failure

The vulnerability of the InnoDB component in the MySQL database management system is related to errors in processing input data. Exploiting this vulnerability can allow a malicious actor to cause service failures...

The vulnerability of the ABB eSOMS software for managing production processes, related to insufficient verification of input data, allows a perpetrator to execute arbitrary code.

The vulnerability of the ABB eSOMS software for managing production processes is related to insufficient verification of input data. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

The vulnerability of the Windows Authentication component of the Windows operating system allows a perpetrator to carry out a DoS attack.

The vulnerability of the Windows Authentication component of the Windows operating system is related to insufficient validation of input data. Exploiting this vulnerability allows a remote attacker to execute a DoS attack...

Vulnerability of the Microsoft Office Graphics Package components in Microsoft Office programs, allowing a hacker to execute arbitrary code

The vulnerability of the Microsoft Office Graphics Package components in Microsoft Office products is related to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

PT-2023-3985 · Oracle · Oracle Weblogic Server

Name of the Vulnerable Software and Affected Versions: Oracle WebLogic Server versions 12.2.1.4.0 and 14.1.1.0.0 Description: The issue is related to errors in processing input data in the Oracle WebLogic Server component of Oracle Fusion Middleware. Exploitation of this issue can allow a remote...

The vulnerability of the Remote Procedure Call (RPC) technology in Windows operating systems allows a perpetrator to trigger a service failure.

The vulnerability of the Remote Procedure Call RPC technology in Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service failures remotely...

USN-6229-1: LibTIFF vulnerabilities

It was discovered that LibTIFF was not properly handling variables used to perform memory management operations when processing an image through tiffcrop, which could lead to a heap buffer overflow. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code...

PT-2023-26300 · Kofax · Kofax Power Pdf

Name of the Vulnerable Software and Affected Versions: Kofax Power PDF affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a maliciou...

Tenda FH1203 page parameter stack buffer overflow vulnerability

Tenda FH1203 is a dual-band wireless router from China's Tenda, mainly used for home network coverage and enhancement. The Tenda FH1203 suffers from a stack buffer overflow vulnerability that originates from the page parameter of the fromAddressNat method failing to properly validate the length o...

The vulnerability of Windows operating systems and Microsoft Office software, related to errors in processing input data, allows a perpetrator to execute arbitrary code.

Vulnerabilities of Windows operating systems and Microsoft Office software are related to errors in processing input data. Exploiting these vulnerabilities allows a malicious actor to execute arbitrary code by having the user open a specially crafted Microsoft Office document...

The vulnerability of the GLPI system’s handling of requests and incidents lies in the improper cancellation of input during the generation of web pages, allowing a malicious user to execute arbitrary SQL queries in the database.

The vulnerability of the GLPI system for handling requests and incidents is related to insufficient cleaning of user data on search pages. A malicious actor can trick a victim into clicking on a specially created link, allowing arbitrary HTML code and scripts to be executed in the user’s browser...

CVE-2023-36632

The legacy email.utils.parseaddr function in Python through 3.11.4 allows attackers to trigger "RecursionError: maximum recursion depth exceeded while calling a Python object" via a crafted argument. This argument is plausibly an untrusted value from an application's input data that was supposed ...