Lucene search
K

85 matches found

BDU FSTEC
BDU FSTEC
added 2024/09/12 12:0 a.m.7 views

The vulnerability of the main function (mint.cpp) in the database management system “Red Database”, which allows a perpetrator to cause errors in the operation of the mint utility.

The vulnerability of the main function mint.cpp in the “Red Database” database management system is related to the incorrect processing of parameter I in the mint utility. Exploiting this vulnerability allows a remote attacker to send an excessively long string to the utility, causing the mint...

5.3CVSS5.5AI score
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/08/28 12:0 a.m.3 views

PT-2024-41478 · Ооо 'Ред Софт' · Ред База Данных

Уязвимость конструктора класса PhysHdr в модуле CryptoManager.cpp системы управления базами данных «Ред База Данных» связана с тем, что в некоторых случаях при переключении базы данных в режим инкрементального резервного копирования подключение к этой базе завершалось ошибкой. Эксплуатация...

7CVSS7.3AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/08/12 12:0 a.m.8 views

PT-2024-41479 · Ооо 'Ред Софт' · Ред База Данных

Уязвимость метода TracePluginImpl::writePacket модуля TracePluginImpl.cpp системы управления базами данных «Ред База Данных» связана с использованием бинарного аудита при включенном параметре cancel on error . Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, даже при...

3.5CVSS7.2AI score
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2022/07/20 12:0 a.m.10 views

The vulnerability of the Red Database database management system lies in the improper neutralization of equivalent special elements, allowing attackers to provide unreliable data during a search query.

The vulnerability of the RedBase database management system is related to the improper neutralization of equivalent special elements. Exploiting this vulnerability allows an attacker to provide unreliable data during a search using Distinguished Names, by employing special symbols...

4CVSS5.5AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/07/20 12:0 a.m.4 views

The vulnerability of the Red Database database management system lies in the improper checking of the return value of a function, which allows an attacker to trigger a service failure.

The vulnerability of the Red Database database management system is related to incorrect checking of the return value of a function. Exploiting this vulnerability can allow an attacker, operating remotely, to cause service failures...

4.9CVSS5.5AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/07/20 12:0 a.m.5 views

The vulnerability of the Red Database database management system lies in improper handling of values, which allows an attacker to trigger a service failure.

The vulnerability of the Red Database database management system is related to incorrect processing of values. Exploiting this vulnerability can allow an attacker, operating remotely, to cause a service failure by invoking a vulnerable function...

6.5CVSS5.5AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/07/20 12:0 a.m.6 views

The vulnerability of the Red Database database management system lies in the improper handling of unexpected data types, which allows attackers to trigger service failures.

The vulnerability of the Red Database database management system is related to the improper handling of unexpected data types. Exploiting this vulnerability can allow an attacker, operating remotely, to cause a service failure by sending an incorrect page number to the server during replication...

4.9CVSS5.5AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/07/20 12:0 a.m.8 views

The vulnerability of the Red Database database management system lies in the possibility of returning incorrect status codes, allowing attackers to deceive users.

The vulnerability of the RedBase database management system is related to the return of incorrect status codes. Exploiting this vulnerability can allow a malicious actor to deceive users by replacing the notification window...

4CVSS5.5AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/07/20 12:0 a.m.5 views

The vulnerability of the Red Database database management system lies in the insufficient maintenance of audit logs, which allows attackers to bypass the event recording mechanism.

The vulnerability of the Red Database database management system is related to insufficient logging of audit events. Exploiting this vulnerability allows an attacker to bypass the security event logging mechanism...

3.6CVSS5.5AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/07/20 12:0 a.m.18 views

The vulnerability of the Red Database database management system lies in the return of an incorrect status code, allowing an attacker to trigger a service failure.

The vulnerability of the Red Database database management system is related to the return of incorrect code states. Exploiting this vulnerability can allow a malicious actor to cause service interruptions by exhausting free space on the disk during backup operations...

4.9CVSS5.6AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/07/20 12:0 a.m.5 views

The vulnerability of the Red Database database management system lies in improper locking of resources, which allows attackers to trigger a service failure.

The vulnerability of the Red Database database management system is related to improper locking of resources. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause service failures by opening a specially crafted file through various processes...

6.3CVSS5.5AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/05/23 12:0 a.m.6 views

The vulnerability of the “Red Database” database management system stems from deficiencies in audit logs, allowing attackers to conceal the source or nature of their attacks.

The vulnerability of the “Red Database” database management system is related to deficiencies in audit log management. Exploiting this vulnerability could allow a malicious actor to conceal the source or nature of an attack...

6.5CVSS5.5AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/05/23 12:0 a.m.7 views

The vulnerability of the “Red Database” database management system lies in the improper recording of security events, allowing attackers to conceal the source or nature of an attack.

The vulnerability of the “Red Database” database management system is related to incorrect recording of security events when attempting to create or open logs for recording registered events in the journal. Exploiting this vulnerability can allow an attacker to complicate the analysis of audit...

5.3CVSS5.4AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/05/23 12:0 a.m.7 views

The vulnerability of the gfix utility in the “Red Database” database management system allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the gfix utility in the “Red Database” database management system is related to deficiencies in password masking during user login when the -f command is used as an argument passed to the utility. Exploiting this vulnerability can allow an attacker, operating remotely, to gai...

5.3CVSS5.5AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/05/23 12:0 a.m.6 views

The vulnerability of the “Red Database” database management system lies in the improper implementation of authentication algorithms, which allows attackers to trigger a service failure.

The vulnerability of the “Red Database” database management system is related to the incorrect implementation of the authentication algorithm. Exploiting this vulnerability can allow an attacker, operating remotely, to cause service interruptions...

7.5CVSS5.5AI score
Exploits0References1Affected Software1
OSV
OSV
added 2021/12/15 3:15 p.m.4 views

CVE-2021-42293

Microsoft Jet Red Database Engine and Access Connectivity Engine Elevation of Privilege Vulnerability...

6.5CVSS6.9AI score0.02804EPSS
Exploits0References1
NVD
NVD
added 2021/12/15 3:15 p.m.63 views

CVE-2021-42293

Microsoft Jet Red Database Engine and Access Connectivity Engine Elevation of Privilege Vulnerability...

6.5CVSS0.02804EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2021/12/15 12:0 a.m.20 views

Microsoft Office 2016 Privilege Escalation Vulnerability (KB5002099)

This host is missing an important security update according to Microsoft KB5002099 Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This...

6.5CVSS6.6AI score0.02804EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2021/12/15 12:0 a.m.21 views

Microsoft Office 2013 Elevation of Privilege Vulnerability (KB5002104)

This host is missing an important security update according to Microsoft KB5002104 Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This...

6.5CVSS6.6AI score0.02804EPSS
Exploits0References1
Microsoft KB
Microsoft KB
added 2021/12/14 8:0 a.m.90 views

Description of the security update for Office 2016: December 14, 2021 (KB5002099)

Description of the security update for Office 2016: December 14, 2021 KB5002099 Summary This security update resolves a Microsoft Jet Red database engine and access connectivity engine elevation of privilege vulnerability. To learn more about the vulnerability, see Microsoft Common Vulnerabilitie...

6.5CVSS7.5AI score0.02804EPSS
Exploits0
Rows per page
Query Builder