Vulnerability of the Oracle Solaris operating system’s Libraries component, related to errors in processing input data

The vulnerability of the Oracle Solaris operating system’s Libraries component is related to errors in processing input data. Exploiting this vulnerability can allow a remote attacker to execute a DoS attack...

The vulnerability of the microprogrammed software of Arris routers such as TG2482A, TG2492, and SBG10 allows a hacker to execute arbitrary code.

The vulnerability of the microprogrammed software of Arris routers such as TG2482A, TG2492, and SBG10 is related to errors in processing input data. Exploiting this vulnerability can allow a remote attacker to execute arbitrary code by sending a specially crafted request...

The vulnerability of the software for server-based web applications, LiteSpeed and OpenLiteSpeed, allows a perpetrator to execute arbitrary code.

The vulnerability of the LiteSpeed and OpenLiteSpeed web application server software relates to errors in processing input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of the ImageMagick graphic editor lies in errors during the processing of input data, allowing attackers to gain access to protected information.

The vulnerability of the ImageMagick graphic editor is related to errors in processing input data. Exploiting this vulnerability can allow an attacker to gain access to protected information using the “profile” parameter...

The vulnerability of ManageEngine’s software products is related to errors in processing input data, which allow attackers to execute arbitrary code.

The vulnerability of ManageEngine’s software is related to errors in processing input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending a specially crafted SAML request remotely...

The vulnerability of the EndType parameter in the web interface of the POWER METER SICAM Q100 microprogramming system allows a hacker to disable the device (with subsequent automatic reboot) or execute arbitrary code.

The vulnerability of the EndType parameter in the web interface of the POWER METER SICAM Q100 measurement software is related to errors in processing input data. Exploiting this vulnerability can allow an attacker to disable the device remotely, causing it to shut down automatically, or execute...

The vulnerability of the command interpreter in Moxa EDR-810, EDR-G902, EDR-G903, TN-4900, and TN-5916 router microprogramming devices allows attackers to execute arbitrary code.

The vulnerability of the command interpreter in Moxa EDR-810, EDR-G902, EDR-G903, TN-4900, and TN-5916 microprogrammed service routers stems from errors in processing input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending specially crafted HTTP/HTT...

The vulnerability of the command interpreter in Moxa EDR-810, EDR-G902, EDR-G903, and TN-4900 router software allows a perpetrator to execute arbitrary code.

The vulnerability of the command interpreter in Moxa EDR-810, EDR-G902, EDR-G903, and TN-4900 router software-based web services is related to errors in processing input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

PT-2022-5263 · Juniper Networks · Junos

Name of the Vulnerable Software and Affected Versions: Junos OS versions prior to 19.1R3-S9 Junos OS versions 19.2 prior to 19.2R3-S6 Junos OS versions 19.3 prior to 19.3R3-S7 Junos OS versions 19.4 prior to 19.4R2-S7, 19.4R3-S8 Junos OS versions 20.1 prior to 20.1R3-S5 Junos OS versions 20.2 pri...

The vulnerability of the XMLRPC API interface of the Movable Type content management system allows attackers to execute arbitrary commands.

The vulnerability of the XMLRPC API interface of the Movable Type content management system is related to errors in processing input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely...

The vulnerability in the web interface for managing microprogrammed software routers of Cisco RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN allows a malicious actor to execute arbitrary code in the context of the root user or to cause service interruptions. This vulnerability is related to errors in the processing of input data.

The vulnerability of the web-based management interface for Cisco RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN software lies in errors during the processing of input data. Exploiting this vulnerability allows an attacker to execute arbitrary code in the context of the root user or cause...

The vulnerability in the JavaScript object indexing mechanism of Mozilla Firefox, Mozilla Firefox ESR, and the email client Thunderbird allows a malicious actor to execute arbitrary JavaScript code.

The vulnerability of the JavaScript object indexing mechanism in Mozilla Firefox, Mozilla Firefox ESR, and the email client Thunderbird is related to errors in processing input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary JavaScript code...

The vulnerability of the HtmlResponseMessage component in the microprogramming software of D-Link DIR-866L routers allows attackers to execute cross-site scripting attacks.

The vulnerability of the HtmlResponseMessage component in the microprogramming software of D-Link DIR-866L wireless routers is related to errors in processing input data. Exploiting this vulnerability can allow a remote attacker to execute cross-site scripting attacks...

PT-2021-2427 · Microsoft · Windows Dns Server +1

Name of the Vulnerable Software and Affected Versions: Windows DNS Server affected versions not specified Description: The issue is related to errors in processing input data in the Windows DNS server service, which can be exploited by a remote attacker to execute arbitrary code. This can affect...

PT-2021-2426 · Microsoft · Windows Dns Server +1

Name of the Vulnerable Software and Affected Versions: Windows DNS Server affected versions not specified Description: The issue is related to errors in processing input data in the Windows DNS server service, which can lead to a denial-of-service condition. This can be exploited by a remote...

The vulnerability of the command syntax analyzer in Cisco IOS and Cisco IOS XE operating systems allows a attacker to gain access to protected information.

The vulnerability of the command syntax analyzer in Cisco IOS and Cisco IOS XE operating systems is related to errors in processing input data. Exploiting this vulnerability can allow an attacker to gain access to protected information...

The vulnerability of the SQL Server Reporting Services reporting system’s server-side components, related to errors in processing input data, allows attackers to upload files with invalid types.

The vulnerability of the SQL Server Reporting Services reporting system is related to errors in processing input data. Exploiting this vulnerability allows a malicious actor to remotely upload files with invalid types...

PT-2020-4430 · Cisco · Cisco Ios Xe

Name of the Vulnerable Software and Affected Versions: Cisco IOS XE Software affected versions not specified Description: The issue is related to multiple vulnerabilities in the web management framework of Cisco IOS XE Software. These vulnerabilities could allow an authenticated, remote attacker...

PT-2020-5089 · Cisco · Cisco Ios Xe

Name of the Vulnerable Software and Affected Versions: Cisco IOS XE Software affected versions not specified Description: The issue is related to multiple vulnerabilities in the web management framework of Cisco IOS XE Software. These vulnerabilities could allow an authenticated, remote attacker...

The vulnerability of the Microsoft Dynamics 365 for Finance and Operations resource planning software, related to input data processing errors, allows a perpetrator to execute arbitrary code.

The vulnerability of the Microsoft Dynamics 365 for Finance and Operations resource planning software is related to processing errors with input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...