The vulnerability of the Windows Media Foundation component in Windows operating systems allows attackers to execute arbitrary code.

The vulnerability of the Windows Media Foundation component in Windows operating systems exists due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of Microsoft Excel, Office, and Office 365 software lies in insufficient validation of input data, which allows attackers to execute arbitrary code.

The vulnerability of Microsoft Excel, Office, and Office 365 packages is related to insufficient validation of input data. Exploiting this vulnerability allows attackers to execute arbitrary code using a specially created file...

The vulnerability in the implementation of the Internet Key Exchange (IKE) protocol in Windows operating systems allows a hacker to induce a service failure.

The vulnerability of the Internet Key Exchange IKE protocol implementation in Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures...

The vulnerability of the DNS Server component for Windows operating systems allows a perpetrator to carry out a DoS attack.

The vulnerability of the DNS Server component for Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow a remote attacker to execute a DoS attack...

The vulnerability of the command-line interface of ArubaOS systems allows a hacker to execute arbitrary commands.

The vulnerability of the command-line interface of ArubaOS systems is related to the lack of measures for cleaning input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

Denial Of Service (DoS)

kernel is vulnerable to Denial of Service DoS attacks. An out-of-bounds memory access triggers in the I2CSMBUSBLOCKDATA with malicious input data. This flaw allows a local user to crash the system...

The vulnerability of the Adobe Photoshop graphic editor lies in insufficient validation of input data, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Photoshop graphic editor is related to insufficient verification of input data. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the BIOS microprogramming software in Dell laptops allows a hacker to execute arbitrary code.

The vulnerability of BIOS microprogramming software in Dell laptops is related to insufficient verification of input data. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the PowerScale OneFS operating system, related to the lack of measures for cleaning input data, allows a perpetrator to execute arbitrary commands, expose sensitive information, or cause service failures.

The vulnerability of the PowerScale OneFS operating system is related to the lack of measures for cleaning input data. Exploiting this vulnerability allows an attacker to execute arbitrary commands, expose protected information, or cause service failures...

The vulnerability of BIOS microprogramming software in Dell laptops, related to insufficient validation of input data, allows a hacker to execute arbitrary code.

The vulnerability of BIOS microprogramming software in Dell laptops is related to insufficient verification of input data. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the microprogramming software of the SolarView Compact device, which is used for measuring solar energy, data display, and storage, stems from the lack of measures to clean incoming data. This allows a malicious individual to execute arbitrary commands.

The vulnerability of the microprogramming software of the SolarView Compact device, which is used for measuring solar energy, data display, and storage, stems from the lack of measures to clean incoming data. Exploiting this vulnerability could allow a remote attacker to execute arbitrary command...

The vulnerability of Hirschmann EAGLE’s web server allows attackers to enhance their privileges.

The vulnerability of the Hirschmann EAGLE industrial Ethernet switches involves errors in the processing of input data. Exploiting this vulnerability can allow a remote attacker to gain increased privileges...

The vulnerability of the System Management Unit (SMU) component of AMD processors allows a hacker to trigger a service failure.

The vulnerability of the System Management Unit SMU component of AMD processors exists due to insufficient testing of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

K32171392: Apache Log4j2 vulnerability CVE-2021-45046

Security Advisory Description It was found that the fix to address CVE-2021-44228 in Apache Log4j 2.15.0 was incomplete in certain non-default configurations. This could allows attackers with control over Thread Context Map MDC input data when the logging configuration uses a non-default Pattern...

The vulnerability of BIOS microprogramming software in Dell laptops and workstations arises from insufficient validation of input data. This allows attackers to execute arbitrary code.

The vulnerability of the BIOS software on Dell laptops and workstations exists due to insufficient testing of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

Apache Sling JNDI Injection Vulnerability

Apache Sling is the United States Apache Apache Foundation of a Java platform for open source Web framework. Designed to meet the JSR-170 content repository such as Apache Jackrabbit to create content-centric applications. Apache Sling JCR Base versions prior to 3.1.12 JNDI injection vulnerabilit...

The vulnerability of the design and preparation of 3D-printing objects, related to insufficient verification of input data, allows a perpetrator to execute arbitrary code.

The vulnerability of the design and preparation tools for 3D printing is related to insufficient verification of input data. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file...

SUSE CVE-2014-6429

The SnifferDecompress function in wiretap/ngsniffer.c in the DOS Sniffer file parser in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 does not properly handle empty input data, which allows remote attackers to cause a denial of service application crash via a crafted file...

Slackware Linux 15.0 / current mozilla-firefox Multiple Vulnerabilities (SSA:2023-045-01)

The version of mozilla-firefox installed on the remote host is prior to 102.8.0esr / 110.0. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2023-045-01 advisory. - An attacker could construct a PKCS 12 cert bundle in such a way that could allow for arbitrary memory...

The vulnerability of Sonatype Nexus Repository Manager lies in the lack of measures to clean input data, allowing a perpetrator to execute arbitrary code.

The vulnerability of Sonatype Nexus Repository Manager is related to the lack of measures for cleaning input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...