Lucene search
K
Bdu FstecMost viewed

90604 matches found

BDU FSTEC
BDU FSTEC
added 2025/04/09 12:0 a.m.20 views

The vulnerability of the software for multifunctional measuring instruments used to measure parameters of electrical networks from Siemens SENTRON 7KT PAC1260 lies in the lack of measures to neutralize special elements, allowing a violator to execute arbitrary codes.

The vulnerability of the software for multifunctional measuring instruments used to measure parameters of electrical networks from Siemens SENTRON 7KT PAC1260 is related to the lack of measures taken to neutralize special elements. Exploiting this vulnerability can allow a remote attacker to...

9.1CVSS6.4AI score0.00864EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2025/04/03 12:0 a.m.20 views

The vulnerability of the BmpInput::read_rle_image() function in the src/bmp.imageio/bmpinput.cpp module of the OpenImageIO library allows a attacker to compromise the integrity of the protected information or cause service failures.

The vulnerability of the BmpInput::readrleimage function in the src/bmp.imageio/bmpinput.cpp module of the OpenImageIO library is related to writing beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to compromise the integrity of the protected information or caus...

8.5CVSS5.7AI score
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.20 views

The vulnerability of the ima component in the Linux operating system’s kernel allows a hacker to increase their privileges.

The vulnerability of the ima component in the Linux operating system’s kernel is related to memory corruption. Exploiting this vulnerability can allow an attacker to increase their privileges...

5.5CVSS6.9AI score0.00242EPSS
Exploits0References12Affected Software6
BDU FSTEC
BDU FSTEC
added 2025/03/25 12:0 a.m.20 views

The vulnerability of the formWifiBasicSet() function in the microprogramming software for Tenda F1202 allows a hacker to manipulate the accessibility of protected information.

The vulnerability of the formWifiBasicSet function in the Tenda F1202 router’s microprogramming software is related to the operation that goes beyond the buffer in memory when processing the security parameter. Exploiting this vulnerability could allow an attacker to compromise the accessibility ...

6.5CVSS5.7AI score0.00528EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2025/03/24 12:0 a.m.20 views

The vulnerability of the Apache OpenMeetings video conferencing software, related to the restoration of unreliable data in memory, allows a intruder to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of Apache OpenMeetings video conferencing software lies in the recovery of unreliable data from memory. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected information...

10CVSS8AI score0.65176EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/03/05 12:0 a.m.20 views

The vulnerability of IBM Engineering Lifecycle Optimization - Publishing software, related to the use of cryptographic algorithms containing defects, allows attackers to gain unauthorized access to protected information.

The vulnerability of IBM Engineering Lifecycle Optimization - Publishing software relates to the use of cryptographic algorithms that contain vulnerabilities. Exploiting this vulnerability can allow an unauthorized attacker to gain unauthorized access to protected information...

5.9CVSS5.5AI score0.00198EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/02/24 12:0 a.m.20 views

The vulnerability of the VerifyHostKeyDNS component in the OpenSSH cryptographic security tool allows a attacker to perform XSS attacks.

The vulnerability of the VerifyHostKeyDNS component in the OpenSSH cryptographic security tool is related to deficiencies in error handling during host key verification. Exploiting this vulnerability allows a malicious actor to perform XSS attacks remotely...

7.1CVSS6.7AI score0.06997EPSS
Exploits4References30Affected Software17
BDU FSTEC
BDU FSTEC
added 2025/02/19 12:0 a.m.20 views

Vulnerability eliminated

...

5.4AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/02/13 12:0 a.m.20 views

The vulnerability of Microsoft Office, Excel, and 365 Apps for Enterprise packages relates to the use of an untrusted pointer, allowing a malicious actor to execute arbitrary code.

The vulnerability of Microsoft Office, Excel, and 365 Apps for Enterprise packages is related to the use of an untrusted pointer. Exploiting this vulnerability can allow attackers to execute arbitrary code...

7.8CVSS8.1AI score0.01113EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/02/06 12:0 a.m.20 views

Vulnerability of the Server component: The MySQL Server database management system, which allows a hacker to cause service interruptions.

Vulnerability of the MySQL Server component: The MySQL Server component of the database management system involves unlimited distribution of resources. Exploiting this vulnerability can allow a malicious actor to cause downtime or service failures using the MySQL network protocol...

6.8CVSS6.5AI score0.00921EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/01/22 12:0 a.m.20 views

The vulnerability of the Active Directory Federation Server component for the Windows operating system, which allows a attacker to perform a CSRF attack

The vulnerability of the Active Directory Federation Server operating system on Windows is related to the manipulation of cross-site requests. Exploiting this vulnerability can allow a malicious actor to execute a CSRF attack remotely...

7.8CVSS7.6AI score0.00724EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/01/16 12:0 a.m.20 views

The vulnerability of theOTP library set in the Erlang programming language allows attackers to carry out “man-in-the-middle” type attacks.

The vulnerability of theOTP library in the Erlang programming language is related to errors in the authentication process for certificates. Exploiting this vulnerability allows attackers who operate remotely to carry out “man-in-the-middle” type attacks...

5.5CVSS5.9AI score0.00251EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/12/25 12:0 a.m.20 views

The vulnerability of the scsidebug component in the Linux operating system’s kernel allows a hacker to gain elevated privileges within the system.

The vulnerability of the scsidebug component in the Linux operating system’s kernel is related to errors that occur during the respmodeselect function after it is freed. Exploiting this vulnerability can allow an attacker to gain elevated privileges within the system...

8.8CVSS6.4AI score0.00241EPSS
Exploits0References10Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/12/25 12:0 a.m.20 views

The vulnerability of the DIAScreen component within the integrated engineering software package DIAStudio Smart Machine Suite allows a perpetrator to execute arbitrary code.

The vulnerability of the DIAScreen component in the integrated engineering software package DIAStudio Smart Machine Suite of Delta Electronics is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.8CVSS7.9AI score0.00298EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/12/23 12:0 a.m.20 views

The vulnerability of the CyberPanel web hosting control panel, related to the lack of measures to neutralize specific elements, allows a hacker to execute arbitrary commands.

The vulnerability of the CyberPanel web hosting control panel exists due to the lack of measures taken to neutralize certain elements. Exploiting this vulnerability allows a malicious actor, operating remotely, to execute arbitrary commands using a specially created HTTP OPTIONS request...

9CVSS5.9AI score0.10966EPSS
Exploits2References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/12/18 12:0 a.m.20 views

The vulnerability of the Moodle management system arises from the lack of measures taken to protect the structure of the web page, allowing attackers to execute arbitrary code.

The vulnerability of the Moodle administration system exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

9CVSS5.9AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/12/12 12:0 a.m.20 views

The vulnerability of the Windows Mobile Broadband Driver for Microsoft Windows operating systems allows attackers to gain increased privileges.

The vulnerability of the Windows Mobile Broadband Driver for Microsoft Windows operating systems is related to insufficient input data validation. Exploiting this vulnerability can allow attackers to gain increased privileges...

7.2CVSS5.5AI score0.00867EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/12/12 12:0 a.m.20 views

The vulnerability of the Adobe Document Service component in the SAP NetWeaver AS for Java software for creating and deploying web applications allows a attacker to perform an SSRF attack.

The vulnerability of the Adobe Document Service component in the SAP NetWeaver AS for Java web application development and deployment framework is related to insufficient validation of incoming requests. Exploiting this vulnerability allows a malicious actor to execute an SSRF attack using a...

9.1CVSS8AI score0.00892EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/29 12:0 a.m.20 views

The vulnerability of the monitoring tool for VMware Aria Operations, related to errors in privilege management, allows a perpetrator to escalate their privileges.

The vulnerability of the monitoring tool for VMware Aria Operations is related to errors in privilege management. Exploiting this vulnerability can allow an attacker to enhance their privileges...

7.8CVSS5.5AI score0.00293EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/25 12:0 a.m.20 views

The vulnerability of the ufshcd_mcq_abort() function in the ufs component of Linux operating systems allows a hacker to trigger a service failure.

The vulnerability of the ufshcdmcqabort function in the ufs component of Linux operating systems is related to a pointer dereferencing error due to incorrect resource locking. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS5.4AI score0.00179EPSS
Exploits0References11Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/11/14 12:0 a.m.20 views

The vulnerability of the 3D model texturing software Adobe Substance 3D Painter, related to reading beyond the buffer boundary in memory, allows a hacker to execute arbitrary code.

The vulnerability of the 3D model texturing software Adobe Substance 3D Painter lies in the reading of data beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code within the context of the current user, using a specially created file...

7.8CVSS6.2AI score0.00265EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/13 12:0 a.m.20 views

The vulnerability of the Portal for ArcGIS web portal, related to improper external management of file names or paths, allows a perpetrator to disclose protected information.

The vulnerability of the Portal for ArcGIS is related to improper external management of the file name or path. Exploiting this vulnerability can allow a malicious actor to disclose protected information through a specially created web page...

7.8CVSS5.4AI score0.00476EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/10/28 12:0 a.m.20 views

The vulnerability of the 1C-Bitrix website content management system, related to insufficient protection of registration data, allows a hacker to gain access to authentication data from the SMTP server.

The vulnerability of the 1C-Bitrix website content management system is related to insufficient protection of registration data. Exploiting this vulnerability can allow a malicious actor to gain access to authentication data from the SMTP server...

6.8CVSS5.5AI score0.00339EPSS
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/09/06 12:0 a.m.20 views

The vulnerability of TeamViewer’s software for remote control of computers allows unauthorized access to protected information.

The vulnerability of TeamViewer’s remote control software relates to improper control over the synchronization function of the clipboard. Exploiting this vulnerability can allow an intruder operating remotely to gain unauthorized access to protected information...

5CVSS5.5AI score0.00395EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/08/14 12:0 a.m.20 views

The vulnerability of software for training employees in information security skills, such as Antiphish, arises from the lack of protection for website structures. This allows attackers to perform cross-site scripting attacks (XSS).

The vulnerability of software for training employees in information security skills is related to the lack of measures taken to protect website structures. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks XSS by injecting malicious JavaScript code...

7.5CVSS5.2AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/08/12 12:0 a.m.20 views

The vulnerability of the gf_m2ts_process_sdt() function on the GPAC multimedia platform allows a hacker to cause a service failure.

The vulnerability of the gfm2tsprocesssdt function on the GPAC multimedia platform is related to buffer overflow attacks. Exploiting this vulnerability can allow attackers to cause service failures...

7.8CVSS7.1AI score0.00404EPSS
Exploits1References6Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/07/19 12:0 a.m.20 views

The vulnerability of the Attribute Admin Setup component of the software application Attribute Admin Setup of the Oracle E-Business Suite allows a malicious individual to gain access to modify, add, or delete data.

The vulnerability of the Attribute Admin Setup component of the Attribute Admin Setup software and the Oracle E-Business Suite system exists due to insufficient verification of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to modify, add, or...

5CVSS7.1AI score0.00382EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/06/14 12:0 a.m.20 views

The vulnerability of FortiOS operating system’s command-line interpreter, related to the execution of operations beyond the buffer in memory, allows attackers to execute arbitrary code.

The vulnerability of FortiOS command-line interpreter is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code by introducing specially crafted command-line arguments...

7.8CVSS6.4AI score0.00281EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/04/16 12:0 a.m.20 views

The vulnerability of the CMS system Netcat, related to the manipulation of inter-site requests, allows attackers to enhance their privileges and execute arbitrary code.

The vulnerability of the CMS system Netcat is related to the manipulation of inter-site requests. Exploiting this vulnerability can allow a remote attacker to enhance their privileges and execute arbitrary code...

8.5CVSS5.8AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/10/03 12:0 a.m.20 views

The vulnerability of the gf_bifsFlushCommandList() function on the GPAC multimedia platform allows a hacker to trigger a service failure.

The vulnerability of the gfbifsFlushCommandList function on the GPAC multimedia platform is related to the improper use of dynamic memory during program execution. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS5.9AI score0.00278EPSS
Exploits1References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2023/08/21 12:0 a.m.20 views

The vulnerability in web browsers Firefox ESR, Firefox, and the email client Thunderbird involves the concealment of important security information. This allows attackers to gain access to confidential data, compromise its integrity, and cause service interruptions.

The vulnerabilities in web browsers Firefox ESR, Firefox, and the email client Thunderbird involve the concealment of important security-related information. Exploiting these vulnerabilities can allow a malicious actor to gain access to confidential data, compromise its integrity, and cause servi...

10CVSS7.7AI score0.00884EPSS
Exploits0References12Affected Software6
BDU FSTEC
BDU FSTEC
added 2023/08/15 12:0 a.m.20 views

The vulnerability of the SaveUserSetting component in the SolarWinds Orion Platform software monitoring solution allows a hacker to execute arbitrary commands.

The vulnerability of the SaveUserSetting component in the SolarWinds Orion Platform software lies in the improper execution of certain actions. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

8.3CVSS7.8AI score0.02793EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/05/30 12:0 a.m.20 views

The vulnerability of the built-in software of the ARIS controller lies in the ability to load files of a harmful type without limitation, allowing a perpetrator to execute arbitrary code or cause a service failure.

The vulnerability of the built-in software of the ARIS controller is related to the unlimited loading of dangerous files. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause service failures...

9CVSS6AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2023/02/14 12:0 a.m.20 views

The vulnerability of the Redis database management system, related to integer overflow when processing objects, allows a attacker to cause a service failure.

The vulnerability of the Redis database management system is related to integer overflow when processing objects. Exploiting this vulnerability can allow attackers to trigger a service failure using the SETRANGE and SORT/SORT-RO commands. source-iocs-preserved const=SORTRO...

5.5CVSS6.1AI score0.33269EPSS
Exploits0References12Affected Software9
BDU FSTEC
BDU FSTEC
added 2023/01/25 12:0 a.m.20 views

Vulnerabilities of the xtables-nft-multi and xtables-legacy-multi tools in the iptables package of the EMIAS OS operating system, which allow a hacker to trigger a memory leak.

The vulnerabilities of the xtables-nft-multi and xtables-legacy-multi tools in the iptables package of the EMIAS OS operating system are related to memory release errors. Exploiting these vulnerabilities can allow an attacker to cause service failures or other adverse effects...

5.5CVSS5.5AI score
Exploits0Affected Software2
BDU FSTEC
BDU FSTEC
added 2022/11/23 12:0 a.m.20 views

The vulnerability of Websoft HCM’s automation software for HR processes lies in its uncontrolled resource consumption, which allows attackers to trigger service interruptions.

The vulnerability of Websoft HCM’s automation software for HR processes is related to an uncontrolled consumption of resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

6.8CVSS5.4AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/10/20 12:0 a.m.20 views

The vulnerability of the Moxa MXView network control software lies in its lack of functionality for checking the path name of the restricted access directory. This allows a violator to execute arbitrary code.

The vulnerability of the Moxa MXView network control software is related to deficiencies in checking the path name to the restricted-access directory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

10CVSS5.9AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/06/29 12:0 a.m.20 views

The vulnerability of the microprogramming software of the HP LaserJet Professional M1210 series multifunctional devices allows a intruder to execute arbitrary code with application privileges.

The vulnerability of the microprogramming software of the HP LaserJet Professional M1210 series multifunctional device is related to errors in processing the relative path to the catalog. Exploiting this vulnerability can allow an attacker to execute arbitrary code with application privileges...

7.8CVSS6AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/06/15 12:0 a.m.20 views

The vulnerability of the Manage Proxies component of the Oracle E-Business Suite automation system allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Manage Proxies component of the Oracle E-Business Suite automation system exists due to insufficient verification of input data. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information using the HTTP...

7.8CVSS7.3AI score0.70589EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/02/04 12:0 a.m.20 views

The vulnerability of IDEMIA’s biometric identification systems’ microprogramming software lies in the lack of authentication mechanisms, which allows attackers to bypass the authentication process.

The vulnerability of IDEMIA’s biometric identification systems’ microprogramming software is related to the absence of authentication. Exploiting this vulnerability could allow a malicious actor to bypass authentication and cause service failures...

6.2CVSS5.5AI score
Exploits0References1Affected Software10
BDU FSTEC
BDU FSTEC
added 2021/12/01 12:0 a.m.20 views

The vulnerability of the ngx_memcpy function in the OpenResty web server, related to buffer overflows, allows attackers to cause a service failure.

The vulnerability of the memcpy-param-overlap function in the OpenResty web server is related to buffer overflow attacks. Exploiting this vulnerability can allow attackers to cause service interruptions...

3.9CVSS5.9AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/08/18 12:0 a.m.20 views

The vulnerability of the TrustAccess network firewall, related to deficiencies in information protection mechanisms, allows attackers to perform privileged operations.

The vulnerability of TrustAccess is related to deficiencies in information protection mechanisms. Exploiting this vulnerability allows a perpetrator with access to the directory where TrustAccess is installed to perform privileged operations through a DLL hijacking attack. This is achieved by...

6.3CVSS5.5AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/08/10 12:0 a.m.20 views

The vulnerability of the Elastic Cloud Enterprise analytics platform, related to security configuration errors, allows a perpetrator to gain access to protected information.

The vulnerability of the Elastic Cloud Enterprise analytics platform is related to security configuration errors. Exploiting this vulnerability can allow a malicious actor to gain access to protected information...

7.8CVSS7.2AI score0.27788EPSS
Exploits6References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/07/07 12:0 a.m.20 views

The vulnerability of the `gh_finish_to_bv` function in the library, which performs security transformations using GOST algorithms, is related to insufficient data processing within the security mechanisms. This vulnerability allows attackers to gain access to confidential data.

The vulnerability of the ghfinishtobv function in the library, which performs security transformations using GOST algorithms, is related to the leakage of user passwords during the creation of a copy cx2 of the ghcontext structure. Exploiting this vulnerability allows an attacker to gain access t...

4CVSS5.5AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/07/07 12:0 a.m.20 views

The vulnerability of the fly-fm file manager, related to insufficient validation of input data, allows a hacker to trigger a service failure.

The vulnerability of the fly-fm file manager is related to incorrect calculation of MD5 in the program window. Exploiting this vulnerability allows a remote attacker to cause service interruptions...

4CVSS5.5AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/06/23 12:0 a.m.20 views

The vulnerability of the zlib compression library in the “Avora” operating system, related to integer overflows, allows attackers to cause service failures or have unpredictable effects.

The vulnerability of the zlib compression library in the “Avora” operating system is related to integer overflows. Exploiting this vulnerability can allow attackers to cause service failures or have unpredictable effects using specially crafted .apk or .dex files...

6.2CVSS5.5AI score
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/06/09 12:0 a.m.20 views

The vulnerability of the ksys2.dll library in the KOMPAS-3D 3D modeling system, which is related to the execution of operations outside the buffer in memory, allows a hacker to cause a service failure.

The vulnerability of the ksys2.dll library in the KOMPAS-3D three-dimensional modeling system relates to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow an attacker to cause a service failure using the preview function for a specially crafted T3D...

4.9CVSS5.9AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/05/19 12:0 a.m.20 views

The vulnerability of Firefox’s requestPointerLock() and setTimeout() methods allows a intruder to gain unauthorized access to protected information.

The vulnerabilities of the requestPointerLock and setTimeout methods in Firefox browsers stem from synchronization errors when using shared resources. Exploiting these vulnerabilities can allow an attacker to gain unauthorized access to protected information...

5.4CVSS5.5AI score0.00605EPSS
Exploits0References7Affected Software4
BDU FSTEC
BDU FSTEC
added 2021/04/08 12:0 a.m.20 views

The vulnerability of the web application of the 1C:Enterprise system, related to the storage and transmission of data in an open manner, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the 1C:Enterprise web application relates to the storage and transmission of data in an open manner. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to protected information...

4.9CVSS5.5AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/01/26 12:0 a.m.20 views

The vulnerability of the document.title property in the Sailfish Browser application for the “Autora” operating system, related to buffer overflow in the stack, allows a attacker to trigger a service failure or execute arbitrary code.

The vulnerability of the document.title property in the Sailfish Browser application for the “Autora” operating system is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to cause a service failure or execute arbitrary code...

8.3CVSS6.2AI score
Exploits0References1Affected Software1
Total number of security vulnerabilities5000