ROS-20260605-73-0055

The vulnerability of the XPCOM component in Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to a numerical overflow vulnerability. Exploiting this vulnerability allows an attacker to compromise the confidentiality, integrity, and accessibility of the protected informatio...

The vulnerability of the pci_epcdestroy() function in the drivers/pci/endpoint/pci-epc-core.c file of the Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the pciepcdestroy function in the drivers/pci/endpoint/pci-epc-core.c file of the Linux kernel is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of...

The vulnerability of the jffs2_rtime_decompress() function in the fs/jffs2/compr_rtime.c module of the Linux kernel file system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the jffs2rtimedecompress function in the fs/jffs2/comprrtime.c module of the Linux kernel operating system is related to buffer overflow attacks. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...

The vulnerability of the HTTP POST Request Handler component in the microprogramming software for TOTOLINK A3002R and A3002RU allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the HTTP POST Request Handler component in the microprogramming software for TOTOLINK A3002R and A3002RU devices is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to compromise the...

The vulnerability of the UpdateBufferingSettings method in the software for managing and monitoring removed objects in telemetry and telemechanics systems, such as the TeleControl Server Basic, allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the UpdateBufferingSettings method in software for managing and monitoring removed objects in telemetry and telemechanics systems is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to compromise th...

The vulnerability of the oc_huff_tree_unpack function in Theora video codecs, which allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the ochufftreeunpack function in Theora video encoding involves an unacceptable left shift operation. Exploiting this vulnerability could allow a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of JavaScript script handlers in Google Chrome browsers allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of JavaScript script handlers in Google Chrome browsers is related to buffer overflow in the “cull” mechanism. Exploiting this vulnerability allows a malicious actor to partially compromise the confidentiality, integrity, and accessibility of the protected information through a...

The vulnerability of the fastrpcreq_mmap() function in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the fastrpcreqmmap function in the Linux operating system is related to the reallocation of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of protected information...

The vulnerability of the DIV_ROUND_CLOSEST() function in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the DIVROUNDCLOSEST function in the Linux operating system is related to integer overflow. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of the usbtmc component in the Linux operating system allows for interference with the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the usbtmc component in the Linux operating system’s kernel is related to errors in the control channel transmission direction. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of protected information...

The vulnerability of the sched/core component in the Linux operating system’s kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the sched/core component in the Linux operating system’s kernel is related to the repeated release of memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of the rose_connect() function in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the roseconnect function in the Linux operating system’s kernel is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of protected information...

The vulnerability of the htab_map_alloc() function in the kernel/bpf/hashtab.c module of the BPF subsystem in Linux kernel-based operating systems on 32-bit architectures allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the htabmapalloc function in the kernel/bpf/hashtab.c module of the Linux operating system’s BPF subsystem in 32-bit architectures is related to integer overflow. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

The vulnerability of the cdns3_gadget_giveback() function in the drivers/usb/cdns3/cdns3-gadget.c file of the USB Cadence driver for the Linux operating system allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the cdns3gadgetgiveback function in the drivers/usb/cdns3/cdns3-gadget.c file of the USB Cadence driver for the Linux operating system is related to the reallocation of allocated memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...

The vulnerability of embedded software in Qualcomm products is caused by a situation where hackers can influence the privacy, integrity, and accessibility of protected information.

The vulnerability of embedded Qualcomm software relates to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of protected information through calls to the IOCTL munmap command...

The vulnerability of the do_tag() function in the Vim text editor allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the dotag function in the Vim text editor is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

The vulnerability in the /net/nfc/core.c component of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability in the /net/nfc/core.c component of the Linux operating system relates to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information...

The vulnerability of NETGEAR’s Wi-Fi router software models D3600, D6000, D6200, and D6220 lies in the insufficient protection of operational data, allowing attackers to compromise the integrity and accessibility of protected information.

The vulnerability of Wi-Fi router microprogramming systems from NETGEAR models D3600, D6000, D6200, and D6220 lies in the insufficient protection of operational data. Exploiting this vulnerability could allow an attacker to compromise the integrity and accessibility of the protected information...

The vulnerability of Google Chrome browser, related to its use after release, allows a violator to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of Google Chrome relates to its use after release. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality, integrity, and accessibility of protected information...

The vulnerability of the org.apache.aries.transaction.jms.internal.XaPooledConnectionFactory component in the Jackson-databind library of the FasterXML project allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the org.apache.aries.transaction.jms.internal.XaPooledConnectionFactory component in the Jackson-databind library of the FasterXML project is related to the restoration of unreliable data in memory. Exploiting this vulnerability could allow an attacker to compromise the...