ROS-20260609-73-0021

The vulnerability of the Canvas2D component in Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to insufficient testing for unusual or exceptional states. Exploiting this vulnerability can allow an attacker to cause service failures remotely...

ROS-20260608-73-0008

The vulnerability of the .NET software platform is related to insufficient testing of output data. Exploiting this vulnerability can allow attackers to enhance their privileges...

ROS-20260608-73-0007

The vulnerability of the .NET software platform is related to insufficient testing of output data. Exploiting this vulnerability can allow attackers to enhance their privileges...

ROS-20260605-73-0050

The vulnerability of the Canvas2D component in Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to insufficient testing for unusual or exceptional states. Exploiting this vulnerability can allow an attacker to cause service failures remotely...

The vulnerability of the CoreAudio component in operating systems such as macOS, iOS, iPadOS, watchOS, tvOS, and visionOS allows a hacker to trigger a service failure.

The vulnerability of the CoreAudio component in macOS, iOS, iPadOS, watchOS, tvOS, and visionOS stems from insufficient testing of unusual or exceptional states. Exploiting this vulnerability can allow an attacker to cause service failures...

The vulnerability of the SAP NetWeaver Administrator software-related to insufficient validation of requests on the server side allows a attacker to execute an SSRF attack.

The vulnerability of the SAP NetWeaver Administrator software relates to insufficient testing of server-side requests. Exploiting this vulnerability could allow a malicious actor to execute an SSRF attack remotely...

The vulnerability of the deployment and model management software for deep learning in the Intel Distribution of OpenVINO Model Server lies in insufficient validation of input data, allowing attackers to trigger service failures.

The vulnerability of the deployment and model management software for deep learning in the Intel Distribution of OpenVINO Model Server is related to insufficient testing of input data. Exploiting this vulnerability can allow attackers to cause service failures...

The vulnerability of the microprogrammed software of the PowerFlex 6000T inverter, related to insufficient testing of exceptional states, allows a intruder to trigger a maintenance failure.

The vulnerability of the microprogrammed software of the PowerFlex 6000T inverter is related to insufficient testing of exceptional states. Exploiting this vulnerability could allow an attacker to cause malfunctions in the device...

The vulnerability of the .NET software platform and Microsoft Visual Studio, a development environment for software, stems from insufficient testing of input data. This allows attackers to exploit their privileges.

The vulnerability of the .NET software platform and the Microsoft Visual Studio development environment exists due to insufficient testing of input data. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of the version_upgrade.asp function in D-Link router microprogramming devices such as DI-7003G, DI-7003GV2, DI-7100G+V2, DI-7100GV2, DI-7200GV2, DI-7300G+V2, and DI-7400G+V2 allows a hacker to execute arbitrary commands.

The vulnerability of the versionupgrade.asp function in D-Link router microprogramming devices such as DI-7003G, DI-7003GV2, DI-7100G+V2, DI-7100GV2, DI-7200GV2, DI-7300G+V2, and DI-7400G+V2 is related to insufficient testing of the arguments passed in the command. Exploitation of this...

The vulnerability of Flarum’s forum software, related to insufficient validation of incoming requests, allows a violator to carry out an SSRF attack.

The vulnerability of Flarum’s forum software is related to insufficient testing of incoming requests. Exploiting this vulnerability allows a remote attacker to execute an SSRF attack...

The vulnerability of Zoom’s video conferencing software lies in the insufficient testing of exception states, allowing attackers to trigger service failures.

The vulnerability of Zoom video conferencing software is related to insufficient testing of exception states. Exploiting this vulnerability could allow a malicious actor to cause service failures...

The vulnerability of the microprogramming software used in Schneider Electric Modicon programmable logic controllers lies in the insufficient checking of unusual or exceptional states. This allows a intruder to trigger a service failure.

The vulnerability of the microprogrammed software in Schneider Electric Modicon programmable logic controllers is related to insufficient testing of unusual or exceptional states. Exploiting this vulnerability could allow a malicious actor to trigger malfunctions during maintenance operations...

The vulnerability of the Native Image component in the Oracle GraalVM Enterprise Edition virtual machine allows a hacker to gain access to modify, add, or delete data.

The vulnerability of the Native Image component in the Oracle GraalVM Enterprise Edition virtual machine exists due to insufficient testing of input data. Exploiting this vulnerability can allow an attacker to modify, add, or delete data...

The vulnerability of the Microsoft Office software package, related to insufficient validation of input data, allows a hacker to execute arbitrary code.

The vulnerability of the Microsoft Office package is related to insufficient testing of input data. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of the microprogrammed software in programmable logic controllers ABB AC500, which allows a intruder to cause a service failure

The vulnerability of the microprogrammed logic controllers ABB AC500 is related to insufficient testing of exceptional states. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...

The vulnerability of the microprogramming software of Triconex Model 3009/3009X MP processors and the communication module Tricon Communications Module, related to insufficient testing of exceptional states, allows a intruder to trigger a service failure.

The vulnerability of the microprogramming software of the Triconex Model 3009/3009X MP processors and the Tricon Communications Module is related to insufficient testing of exceptional states. Exploiting this vulnerability can allow attackers to trigger service failures using specially crafted...

The vulnerability of the Core component of the Oracle VM VirtualBox software for Windows operating systems allows a hacker to trigger a service failure.

The vulnerability of the Core component of the Oracle VM VirtualBox virtualization software for Windows operating systems is related to insufficient testing of input data. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the Microsoft Visual Studio software lies in the lack of proper input data validation, which allows attackers to execute arbitrary code.

The vulnerability of the Microsoft Visual Studio software exists due to insufficient testing of input data. Exploiting this vulnerability could allow an attacker to execute arbitrary code using a specially created file...

The vulnerability of the Git-based software platform for collaborative code development on GitLab, related to insufficient validation of input data, allows a hacker to trigger a service failure.

The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to insufficient testing of input data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause service failures...