9 matches found
ROS-20251202-03
Vulnerability in DecodeConfig component of Golang programming language is related to uncontrolled consumption of resources. resources. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial-of-service condition. denial of service A vulnerability in the Downloa...
CVE-2025-3823
creationtimestamp| type| source ---|---|--- 2025-04-20 10:58:14+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lnaik65zrye2 2025-04-20 11:01:46+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/12611 2025-04-20...
PT-2025-2283 · Oracle · Jd Edwards Enterpriseone Tools
Name of the Vulnerable Software and Affected Versions: JD Edwards EnterpriseOne Tools versions prior to 9.2.9.0 Description: The issue is related to a component of the JD Edwards EnterpriseOne Tools system, specifically the Business Logic Infra SEC, which has a flaw in its data source confirmatio...
The vulnerability of the CORS mechanism in Mozilla Firefox, Firefox ESR, and the Thunderbird email client allows attackers to circumvent security restrictions and gain unauthorized access to protected information.
The vulnerability of the CORS mechanism in Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to a data source confirmation error during the processing of the resource://pdf.js path. Exploiting this vulnerability can allow an attacker to bypass security restrictions and gai...
PT-2024-4315 · Palo Alto Networks · Palo Alto Networks Cortex Xdr Agent
Name of the Vulnerable Software and Affected Versions: Palo Alto Networks Cortex XDR Agent affected versions not specified Description: The issue is related to a flaw in the source confirmation mechanism of the Palo Alto Networks Cortex XDR Agent, which can be exploited to impact the system's...
CVE-2021-20038
creationtimestamp| type| source ---|---|--- 2021-12-08 12:23:42+00:00| seen| https://t.me/cibsecurity/33566 2021-12-09 11:10:00+00:00| seen| https://t.me/truesecator/2424 2022-01-11 02:27:37+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/1299 2022-01-11 18:24:46+00:00|...
The vulnerability of software such as Google Chrome, Firefox, Firefox ESR, and Thunderbird lies in a data source confirmation error, which allows attackers to gain access to confidential data.
The vulnerability of the Google Chrome, Firefox, Firefox ESR, and Thunderbird software lies in a data source confirmation error. Exploiting this vulnerability allows an attacker to gain access to confidential data remotely...
The vulnerability in the `createImageBitmap` function of Firefox browsers, Firefox ESR, and the Thunderbird email client, related to a data source confirmation error, allows attackers to disclose protected information.
The vulnerability of the createImageBitmap function in Firefox, Firefox ESR, and the Thunderbird email client involves reading images from various sources, which violates the company’s policies. Exploiting this vulnerability can allow an attacker to disclose protected information remotely...
Microsoft Edge Scripting Engine Information Disclosure Vulnerability(CVE-2017-8659)
There is an issue in Chakra JIT server that can be potentially exploited to compromise the JIT process from a compromised browser content process. Bugs like this could potentially be used to bypass ACG Arbitrary Code Guard in Microsoft Edge. The issue has been confirmed on a ChakraCore build from...