1972 matches found
The vulnerability relates to the definition of the `f2fs_fault_info{}` structure in the `fs/f2fs/f2fs.h` module of the Linux file system support module for F2FS kernels. This vulnerability allows an attacker to access protected information or cause service failures.
The vulnerability related to the definition of the f2fsfaultinfo structure in the fs/f2fs/f2fs.h module of the Linux file system support module f2FS is associated with code errors. Exploiting this vulnerability could allow an attacker to access protected information or cause service failures...
Vulnerability of the function cx23885_initdev() in the driver/media/pci/cx23885/cx23885-core.c file – The driver for supporting multimedia devices on the PCI bus of the Linux operating system; this vulnerability allows an attacker to compromise the confidentiality, integrity, and accessibility of protected information.
Vulnerability of the function cx23885initdev in the driver/media/pci/cx23885/cx23885-core.c file – The driver for supporting multimedia devices on the PCI bus in the Linux operating system is vulnerable due to the repeated use of previously freed memory. Exploiting this vulnerability could allow ...
The vulnerability of the Mozilla Firefox browser, related to insufficient protection of service data, allows attackers to disclose protected information.
The vulnerability of the Mozilla Firefox browser is related to insufficient protection of service data. Exploiting this vulnerability can allow a malicious actor to disclose the protected information remotely...
The vulnerability of the command-line interface (CLI) of the PAN-OS operating system, which allows a perpetrator to gain unauthorized access to protected information
The command-line interface CLI of the PAN-OS operating system has vulnerabilities due to the lack of measures to neutralize specific elements. Exploiting these vulnerabilities can allow attackers to gain unauthorized access to protected information...
The vulnerability of the Ruby interpreter’s Rack module interface allows attackers to influence the integrity of the protected information.
The vulnerability of the Ruby interpreter’s Rack module interface is related to improper processing of output data for registration logs. Exploiting this vulnerability allows an attacker to influence the integrity of the protected information...
The vulnerability of the Adobe Framemaker desktop publishing system arises from the possibility of an operation going beyond the buffer boundaries in memory. This allows a hacker to bypass the ASLR protection mechanism and gain unauthorized access to protected information.
The vulnerability of the Adobe Framemaker desktop publishing system lies in the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to bypass the ASLR protection mechanism and gain unauthorized access to protected information...
The vulnerability of the Adobe XMP-Toolkit-SDK software, related to the execution of operations beyond the buffer boundaries in memory, allows attackers to circumvent the ASLR protection mechanism and gain unauthorized access to protected information.
The vulnerability of the Adobe XMP-Toolkit-SDK lies in the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to bypass the ASLR protection mechanism and gain unauthorized access to protected information...
CVE-2025-20938
Improper access control in SamsungContacts prior to SMR Apr-2025 Release 1 allows local attackers to access protected data in SamsungContacts...
The vulnerability of the DRM/AMD/display components of the Linux operating system allows a perpetrator to influence the accessibility of protected information.
The vulnerability of the DRM/AMD/display components in the Linux operating system is related to pointer arithmetic errors. Exploiting this vulnerability could allow an attacker to influence the accessibility of protected information...
The vulnerability of the ZimbraSyncService service in the corporate email management system, Zimbra Collaboration Suite, allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the ZimbraSyncService service in the Zimbra Collaboration Suite enterprise email management system exists due to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access t...
The vulnerability of embedded software developed by Qualcomm, related to the execution of operations outside the buffer in memory, allows attackers to disclose protected information.
The vulnerability of embedded software developed for Qualcomm chips lies in the fact that operations are performed outside of the buffer in memory. Exploiting this vulnerability can allow attackers to disclose protected information...
The vulnerability of C/C++ Libstb libraries, related to writing beyond buffer boundaries, allows attackers to gain access to protected information.
The vulnerability of the C/C++ Libstb library lies in the writing beyond buffer boundaries. Exploiting this vulnerability can allow an attacker to gain access to protected information...
The vulnerability of the ColdFusion software platform, related to insufficient validation of input data, allows attackers to gain unauthorized access to protected information.
The vulnerability of the ColdFusion software platform is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...
CVE-2025-20938
Improper access control in SamsungContacts prior to SMR Apr-2025 Release 1 allows local attackers to access protected data in SamsungContacts...
CVE-2025-20938
Improper access control in SamsungContacts prior to SMR Apr-2025 Release 1 allows local attackers to access protected data in SamsungContacts...
CVE-2025-20938
Improper access control in SamsungContacts prior to SMR Apr-2025 Release 1 allows local attackers to access protected data in SamsungContacts...
CVE-2025-20938
Summary: CVE-2025-20938 affects SamsungContacts. The issue is an improper access control that lets local attackers access protected data. Affected are SamsungContacts versions prior to SMR Apr-2025 Release 1. The vendor indicates remediation via a security update; users should apply SMR Apr-2025 ...
SAMSUNG Mobile devices 安全漏洞
SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from the South Korean company Samsung SAMSUNG. A security vulnerability exists in SAMSUNG Mobile devices versions prior to SMR Apr-2025 Release 1, which stems from improper access control and could...
The vulnerability of the web interface of the “Central Medical Imaging Archive” information system, due to deficiencies in access control, allows unauthorized access to protected information.
The vulnerability of the web interface of the “Central Archive of Medical Images” information system is related to deficiencies in encryption mechanisms. Exploiting this vulnerability could allow an attacker, operating remotely, to compromise the confidentiality and accessibility of the protected...
The vulnerability of the BFS file system of the Grub2 operating system, which allows a hacker to disclose protected information
The vulnerability of the BFS file system of the Grub2 operating system is related to reading data beyond the allowed range in memory. Exploiting this vulnerability can allow an attacker to disclose protected information...