Lucene search
K

14 matches found

CNNVD
CNNVD
added 2025/11/24 12:0 a.m.4 views

AMD Xilinx Run Time 安全漏洞

AMD Xilinx Run Time is a standardized runtime environment developed by AMD for Xilinx FPGAs that provides a unified software interface to optimize FPGA arithmetic. AMD Xilinx Run Time suffers from a locking protection deficiency vulnerability that can be exploited by an attacker to cause reuse...

7.3CVSS6.8AI score0.00079EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/06/09 12:0 a.m.4 views

The vulnerability of the Apache OFBiz resource planning software lies in the lack of adequate protection measures for web page structures, allowing attackers to carry out XSS attacks.

The vulnerability of Apache OFBiz’s resource planning software is related to deficiencies in the security measures used to protect web page structures. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

6.4CVSS5.4AI score0.65347EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/03/17 12:0 a.m.4 views

The vulnerability of the Tittle parameter in the Events/Agenda module of the Dolibarr system, which is used for resource planning and managing relationships with customers, allows attackers to carry out XSS attacks.

The vulnerability of the Tittle parameter in the Events/Agenda module of the Dolibarr system, which is used for resource planning and managing relationships with customers, relates to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious act...

4CVSS5.4AI score0.00585EPSS
Exploits1References9Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/07/25 12:0 a.m.6 views

The vulnerability of the testServiceExistence() function in the software for monitoring IT infrastructure of Centreon allows a hacker to execute arbitrary code.

The vulnerability of the testServiceExistence function in the Centreon IT infrastructure monitoring software is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

9CVSS8.1AI score0.01133EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/04/19 12:0 a.m.7 views

The vulnerability in the demon probe_serviced component of the testing and monitoring platform for physical, hybrid, and virtual networks, Paragon Active Assurance (previously known as Netrounds), allows a intruder to gain unauthorized access to protected information.

The vulnerability of the demon probeserviced testing and monitoring platform for physical, hybrid, and virtual networks of Paragon Active Assurance previously known as Netrounds is related to insufficient protection of service data. Exploiting this vulnerability can allow a malicious actor,...

8.4CVSS5.5AI score0.00457EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/03/05 12:0 a.m.7 views

The vulnerability of the Java library for analyzing, extracting, and managing data in HTML documents, jsoup, arises from the lack of protection for website structure. This allows attackers to execute cross-site scripting (XSS) attacks.

The vulnerability of the Java library for analyzing, extracting, and managing data in HTML documents, known as jsoup, is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability could allow a malicious actor to perform cross-site scripting attacks...

6.4CVSS6.5AI score0.02207EPSS
Exploits0References4Affected Software7
BDU FSTEC
BDU FSTEC
added 2023/12/21 12:0 a.m.5 views

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system, related to the lack of measures taken to protect the website structure, allows a perpetrator to execute arbitrary code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

5.5CVSS6.3AI score0.00562EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/12/08 12:0 a.m.5 views

The vulnerability of the mod_webdav.so module of the Wi-Fi router software by ASUS RT-AX92U allows a hacker to gain access to protected information.

The vulnerability of the modwebdav.so module in the ASUS RT-AX92U Wi-Fi router software lies in the lack of protection for sensitive data. Exploiting this vulnerability could allow an attacker to gain access to protected information...

9CVSS6.5AI score0.00553EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/10/13 12:0 a.m.7 views

The vulnerability in the implementation of the TCP/IP protocol stack for Windows operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the TCP/IP protocol stack implementation in Windows operating systems is related to insufficient protection of operational data. Exploiting this vulnerability can allow a remote attacker to gain unauthorized access to protected information...

7.8CVSS7.4AI score0.01783EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/08/08 12:0 a.m.4 views

PT-2023-4383 · Microsoft · Windows Hyper-V +1

Name of the Vulnerable Software and Affected Versions: Windows Hyper-V affected versions not specified Description: The issue is related to a lack of protection for sensitive data in the Windows Hyper-V system, which can allow an attacker to disclose protected information. There is no information...

6.5CVSS9.2AI score0.00965EPSS
Exploits0References8
OSV
OSV
added 2023/03/15 8:15 p.m.6 views

CVE-2023-25680

IBM Robotic Process Automation 21.0.1 through 21.0.5 is vulnerable to insufficiently protecting credentials. Queue Provider credentials are not obfuscated while editing queue provider details. IBM X-Force ID: 247032...

6.5CVSS6.6AI score0.00595EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2021/06/15 12:0 a.m.5 views

The vulnerability of Mac OS operating systems, related to deficiencies in data protection for system data, allows attackers to gain unauthorized access to protected information.

The vulnerability of Mac OS operating systems is related to deficiencies in data protection. Exploiting this vulnerability can allow a malicious actor, acting remotely, to gain unauthorized access to protected information...

6.5CVSS6.9AI score0.02083EPSS
Exploits0References10Affected Software7
BDU FSTEC
BDU FSTEC
added 2021/03/15 12:0 a.m.4 views

The vulnerability of the ZyXEL P-1302-T10 v3 router’s microprogramming software, related to deficiencies in data protection, allows attackers to exploit their privileges.

The vulnerability of the ZyXEL P-1302-T10 v3 router’s microprogramming software is related to deficiencies in data protection. Exploiting this vulnerability can allow an attacker, operating remotely, to increase their privileges...

7.5CVSS7.2AI score0.01003EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2016/02/24 12:0 a.m.9 views

The vulnerability of the application interface of IBM WebSphere Portal servers allows a hacker to inject any Web or HTML code.

The vulnerability of the application interface of the IBM WebSphere Portal server exists due to the lack of measures taken to protect the web page structure. Exploiting this vulnerability allows a malicious actor to inject arbitrary Web or HTML code remotely...

4.3CVSS6.4AI score0.01009EPSS
Exploits0References2
Rows per page
Query Builder