Lucene search
K
Bdu FstecMost viewed

90509 matches found

BDU FSTEC
BDU FSTEC
added 2020/08/06 12:0 a.m.18 views

The vulnerability of the Global Protect Agent for Linux’s endpoint protection software lies in its insecure handling of privileges. This allows attackers to elevate their privileges to the root level.

The vulnerability of the Global Protect Agent for Linux endpoint protection software lies in the insecure management of privileges. Exploiting this vulnerability can allow an attacker to elevate their privileges to the root level...

7CVSS7.2AI score0.00265EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/07/15 12:0 a.m.18 views

The vulnerability in the implementation of the WritePDFImage function in ImageMagick and GraphicsMagick graphic editors allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the WritePDFImage function in ImageMagick and GraphicsMagick graphic editors is related to resource management errors. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause a service failure by using a specially created image...

7.8CVSS7.3AI score0.03802EPSS
Exploits1References10Affected Software6
BDU FSTEC
BDU FSTEC
added 2020/04/21 12:0 a.m.18 views

The vulnerability of the Omnibox address bar in Google Chrome allows a hacker to compromise data integrity.

The vulnerability of the Omnibox address bar in Google Chrome relates to insufficient validation of entered data. Exploiting this vulnerability allows a malicious actor to compromise data integrity through a specially created HTML page...

4.3CVSS6.5AI score0.00688EPSS
Exploits0References8Affected Software4
BDU FSTEC
BDU FSTEC
added 2020/03/18 12:0 a.m.18 views

The vulnerability of the Microsoft Visual Studio software lies in the transmission of credentials in an unencrypted form, allowing a malicious individual to gain unauthorized access to protected information.

The vulnerability of the Microsoft Visual Studio software relates to the transmission of credentials in an unencrypted form. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information by monitoring network traffic between...

9CVSS5.5AI score0.01629EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2019/12/09 12:0 a.m.18 views

The vulnerability of Google Chrome’s browser, related to security configuration errors, allows a malicious actor to gain unauthorized access to local files.

The vulnerability of Google Chrome is related to security settings errors. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to local files through a specially created Chrome extension...

7.8CVSS7.1AI score0.01178EPSS
Exploits0References8Affected Software2
BDU FSTEC
BDU FSTEC
added 2019/10/02 12:0 a.m.18 views

The vulnerability of the websSecurityHandler function in the MOXA EDR-810 industrial router’s web server allows a hacker to execute arbitrary code.

The vulnerability of the websSecurityHandler function offset 0x1B4B0 in the web server jffs2-root\fs1\magicP\WebServer\webs of the MOXA EDR-810 industrial router is caused by the lack of checking the size of the data being copied into a buffer of 0x200 bytes. Exploiting this vulnerability allows ...

9.6CVSS6.3AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/08/20 12:0 a.m.18 views

The vulnerability of the NPAPI plugin in browsers such as Firefox ESR, Firefox, and the email client Thunderbird allows a hacker to perform cross-site forgery attacks.

The vulnerability of the NPAPI plugin for Firefox ESR, Firefox, and the Thunderbird email client relates to exploiting the Cross-origin Resource Sharing CORS mechanism. Exploiting this vulnerability allows a remote attacker to perform cross-origin requests...

9.3CVSS5.5AI score0.01047EPSS
Exploits0References15Affected Software7
BDU FSTEC
BDU FSTEC
added 2019/06/27 12:0 a.m.18 views

The vulnerability of the xudc_ep_enable handler implementation in Linux kernel allows a hacker to write data into the memory space of the operating system.

The vulnerability in the implementation of the xudcepenable handler of the loaded module in the drivers/usb/gadget/udc/udc-xilinx.ko kernel of the Linux operating system arises due to an out-of-bounds array access. Exploiting this vulnerability allows an attacker to write data into an unauthorize...

6.2CVSS5.5AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/03/12 12:0 a.m.18 views

The vulnerability of the window manager fly-wm component in the Astra Linux operating system allows a intruder to trigger a service failure.

The vulnerability of the window blocking component of the fly-wm operating system’s Astra Linux device lies in a flaw that causes the window blocking component to fail to execute, especially when the XGrabKeyboard call has already been made by another client. Exploiting this vulnerability could...

6.2CVSS5.5AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2019/03/12 12:0 a.m.18 views

The vulnerability of the component for implementing remote access to the desktop based on the VNC protocol in the Astra Linux operating system, related to the incorrect use of flags during compilation, allows a hacker to trigger a service failure.

The vulnerability of the component for implementing remote access to the desktop based on the VNC protocol in the Astra Linux operating system is related to the incorrect use of flags during compilation. Exploiting this vulnerability can allow an attacker to cause a service failure remotely...

5.3CVSS5.5AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2017/05/04 12:0 a.m.18 views

The vulnerability of the Android operating system, which allows a violator to compromise data privacy

The vulnerability of the libmpeg2 service in the Mediaserver application of the Android operating system is related to the lack of protection for service-related data. Exploiting this vulnerability allows a malicious actor to compromise data confidentiality through a local malware application...

4.3CVSS6.2AI score0.00524EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/07/06 12:0 a.m.18 views

Vulnerabilities of the Debian GNU/Linux operating system that allow a remote attacker to compromise the accessibility of protected information

The multiple vulnerabilities in the linux-headers-2.6.18-6-all-powerpc package of the Debian GNU/Linux operating system may lead to a violation of the accessibility of protected information. These vulnerabilities can be exploited remotely...

7.8CVSS5.8AI score0.0368EPSS
Exploits7References17Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/04/20 12:0 a.m.18 views

The vulnerability of the ProFTPd FTP server allows a hacker to compromise the integrity, accessibility, and confidentiality of information.

The vulnerability of the modtls module in the ProFTPd FTP server exists due to incorrect processing of the TLSDHParamFile directive. Exploiting this vulnerability allows a malicious actor to compromise the integrity, availability, and confidentiality of information...

10CVSS7.1AI score0.06979EPSS
Exploits0References8Affected Software2
BDU FSTEC
BDU FSTEC
added 2015/10/13 12:0 a.m.18 views

The vulnerability of the Cisco IOS operating system, which allows a perpetrator to gain unauthorized access to the device

The vulnerability of the SSHv2 component in Cisco IOS systems is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to gain unauthorized access to a device by manipulating information about known user names and their associated RSA keys...

9.3CVSS5.5AI score0.04388EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.18 views

The vulnerability of the Gentoo Linux operating system allows a malicious intruder to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the Cairo package up to version 1.4.12 of the Gentoo Linux operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. This vulnerability can be exploited remotely...

6.8CVSS6.6AI score0.05486EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.18 views

Vulnerabilities in the OpenSUSE operating system that allow malicious actors to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the drbd-kmp-xen package of the OpenSUSE operating system can lead to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...

9CVSS7.7AI score0.20561EPSS
Exploits23References17Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/12/15 12:0 a.m.17 views

The vulnerability of the astra-safepolicy security configuration software lies in the lack of data security mechanisms. This allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the astra-safepolicy security configuration software is related to the lack of a data security mechanism. Exploiting this vulnerability allows attackers to access confidential data, compromise its integrity, and cause service failures...

8.4CVSS5.8AI score
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/08/04 12:0 a.m.17 views

The vulnerability of the software for programming operator panels of the VT series, such as VT-Designer, arises from writing beyond buffer boundaries, allowing a hacker to execute arbitrary code.

The vulnerability of the software for programming operator panels of the VT series, such as VT-Designer, lies in the writing beyond buffer boundaries when processing PM3 files. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.8CVSS7.7AI score0.00205EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2025/07/09 12:0 a.m.17 views

The vulnerability of the “Export to Excel” plugin, which exists due to the lack of protective measures for website structures, allows attackers to carry out XSS attacks.

The vulnerability of the “Export to Excel” plugin exists due to the lack of security measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

5.3CVSS5.4AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.17 views

The vulnerability of the ext4_mb_init_backend() function in the fs/ext4/mballoc.c module of the Ext4 file system support module for Linux’s kernel allows a attacker to cause a service failure.

The vulnerability of the ext4mbinitbackend function in the fs/ext4/mballoc.c module of the Ext4 file system support module in the Linux operating system is related to improper memory release before deleting the last reference „memory leak“. Exploiting this vulnerability could allow an attacker to...

5.5CVSS6.6AI score0.00234EPSS
Exploits0References11Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/28 12:0 a.m.17 views

The vulnerability of the SimpleOne ITSM automation system allows a perpetrator to carry out an SSRF attack and gain unauthorized access to protected information.

The vulnerability of the SimpleOne ITSM automation system is related to insufficient verification of incoming requests. Exploiting this vulnerability could allow a malicious actor to carry out an SRF attack and gain unauthorized access to protected information...

9.1CVSS5.4AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/26 12:0 a.m.17 views

Vulnerability eliminated

...

5.4AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/05/23 12:0 a.m.17 views

The vulnerability of the resource_build_bit_depth_reduction_params() function in the DRI driver for AMD kernel-based Linux graphics cards allows a attacker to cause a service failure.

The vulnerability of the resourcebuildbitdepthreductionparams function in the Direct Rendering Infrastructure DRI driver for AMD graphics cards in Linux operating systems is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.6AI score0.00237EPSS
Exploits0References14Affected Software4
BDU FSTEC
BDU FSTEC
added 2025/05/02 12:0 a.m.17 views

The vulnerability of the CGI Gem software lies in its improper validation of input data, which allows a hacker to trigger a service failure.

The vulnerability of the CGI Gem software lies in improper validation of input data. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

7.8CVSS6.5AI score0.00784EPSS
Exploits0References8Affected Software6
BDU FSTEC
BDU FSTEC
added 2025/04/21 12:0 a.m.17 views

The vulnerability of Prisma Access Browser lies in the lack of authentication checks for a critical function, allowing attackers to escalate their privileges.

The vulnerability of Prisma Access Browser is related to the lack of authentication checks for a critical function. Exploiting this vulnerability can allow an attacker, operating remotely, to increase their privileges...

10CVSS5.5AI score0.00162EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/04/14 12:0 a.m.17 views

The vulnerability of Linux operating system’s DRM/amdgpu kernel components, which allows a hacker to trigger a service failure

The vulnerability of DRM/AMDGPU cores in the Linux operating system is related to incorrect resource blocking. Exploiting this vulnerability can allow a hacker to cause service failures...

5.5CVSS6.7AI score0.00222EPSS
Exploits0References17Affected Software7
BDU FSTEC
BDU FSTEC
added 2025/04/10 12:0 a.m.17 views

The vulnerability of the WPE WebKit and WebKitGTK page rendering modules, related to the occurrence of operations outside the buffer in memory, allows attackers to cause service failures.

The vulnerability of the WPE WebKit and WebKitGTK page rendering modules is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS7AI score0.00291EPSS
Exploits0References13Affected Software4
BDU FSTEC
BDU FSTEC
added 2025/04/09 12:0 a.m.17 views

The vulnerability of Websoft HCM’s automation software for HR processes stems from insufficient validation of input data, allowing attackers to execute arbitrary HTML code.

The vulnerability of Websoft HCM’s automation software for HR processes is related to insufficient verification of entered data. Exploiting this vulnerability allows a malicious actor to execute arbitrary HTML code remotely...

7.5CVSS5.8AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/03/30 12:0 a.m.17 views

The vulnerability of the JDBC driver configuration of the Kylin data processing platform allows a hacker to execute arbitrary code.

The vulnerability of the JDBC driver configuration of the Kylin data processing platform is related to improper code generation. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9CVSS6AI score0.00815EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/03/24 12:0 a.m.17 views

The vulnerability of Siemens Teamcenter Visualization’s lifecycle management system and Siemens Tecnomatix Plant Simulation’s software environment for modeling systems and processes lies in the reading of data beyond the buffer in memory. This allows attackers to execute arbitrary code.

The vulnerability of Siemens Teamcenter Visualization’s lifecycle management system and Siemens Tecnomatix Plant Simulation’s simulation software environment is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow attackers to execute arbitrary...

7.8CVSS6.2AI score0.00152EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/03/03 12:0 a.m.17 views

The vulnerability of the Delegated License Service (DLS) component of the NVIDIA licensing system allows a perpetrator to gain unauthorized access to protected information and cause service failures.

The vulnerability of the Delegated License Service DLS component of NVIDIA’s licensing system lies in the absence of authentication procedures. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information and cause service...

7.6CVSS5.5AI score0.00246EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/02/28 12:0 a.m.17 views

The vulnerability of the user.bin file in the Digma A172 mobile phone’s firmware, related to deficiencies in generating HTTP requests, allows for network activities without user involvement.

The vulnerability of the user.bin file in Digma A172 mobile phone software relates to deficiencies in the generation of HTTP requests. Exploiting this vulnerability allows a remote attacker to perform network activities without the user’s involvement...

5.3CVSS5.5AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/02/26 12:0 a.m.17 views

The vulnerability of the web management console of the IP-ATC Agat CU-7214, related to the lack of measures taken to protect the SQL query structure, allows a hacker to execute arbitrary SQL code.

The vulnerability of the IP-ATC Agat CU-7214 web management console relates to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a remote attacker to execute arbitrary SQL code...

9CVSS6.1AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/02/26 12:0 a.m.17 views

The vulnerability of the software products of the LLC “NPO ‘MIR’, related to incorrect authorization, allows a perpetrator to increase their privileges.

The vulnerability of the software products developed by OOO “NPO “MIR” is related to incorrect authorization. Exploiting this vulnerability can allow attackers to enhance their privileges...

8.2CVSS5.5AI score
Exploits0Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/02/13 12:0 a.m.17 views

The vulnerability of Windows operating system DHCP clients allows a perpetrator to execute arbitrary code.

The vulnerability of DHCP clients of Windows operating systems relates to the possibility of using memory after it is freed. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

7.1CVSS8.1AI score0.00849EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2025/02/12 12:0 a.m.17 views

The vulnerability of the NVIDIA Virtual GPU Manager driver, which allows a hacker to execute arbitrary code, trigger service failures, or disclose sensitive information.

The vulnerability of the NVIDIA Virtual GPU Manager driver relates to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker to execute arbitrary code, cause service failures, or disclose sensitive information...

7.8CVSS5.7AI score0.00193EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/01/23 12:0 a.m.17 views

Vulnerability of the Server component: The Oracle MySQL Server component of the database management system, which allows a hacker to cause a service failure.

The vulnerability of the Oracle MySQL Server component of the database management system involves unlimited distribution of resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

6.8CVSS6.6AI score0.01025EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/01/20 12:0 a.m.17 views

The vulnerability of the generateRow() function in the PHP Spreadsheet library allows attackers to perform cross-site scripting attacks.

The vulnerability of the generateRow function in the PHP Spreadsheet library is related to the lack of protective measures for web page structures. Exploiting this vulnerability allows an attacker to perform cross-site scripting attacks remotely...

5.5CVSS5.2AI score0.00373EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/12/27 12:0 a.m.17 views

The vulnerability of Palo Alto Networks’ network switches, managed by the PAN-OS operating system, stems from insufficient checks for unusual or exceptional states. This allows attackers to trigger service interruptions.

The vulnerability of Palo Alto Networks’ network switches, managed by the PAN-OS operating system, is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability can allow a malicious actor to trigger a service failure by sending a specially crafted network...

8.6CVSS7.5AI score0.26636EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/11/20 12:0 a.m.17 views

The vulnerability of GigaDevice’s GD32 microprogrammed software controllers, models GD32E23x and GD32E50x, is related to access control deficiencies. This vulnerability allows attackers to read data from SRAM or alter its state.

The vulnerability of GigaDevice’s GD32 microprogrammed device controllers, such as GD32E23x and GD32E50x, is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to read data from SRAM or alter its state...

7.6CVSS5.5AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/11/19 12:0 a.m.17 views

The vulnerability of the CurlAsyncHTTPClient component in the asynchronous networking library Tornado allows a hacker to execute arbitrary code.

The vulnerability of the CurlAsyncHTTPClient component in the Tornado asynchronous networking library is related to the lack of measures taken to neutralize CRLF sequences. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by sending specially crafted HTTP requests ...

6.5CVSS6AI score
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/11/01 12:0 a.m.17 views

The vulnerability of the RtsPer.sys and RtsUer.sys drivers of Realtek SD card readers is related to insufficient validation of input data. This allows attackers to gain access to read and write data in the PCI configuration space.

The vulnerability of the RtsPer.sys and RtsUer.sys drivers of Realtek SD card readers is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain access to read and write data in the PCI configuration space...

7.8CVSS5.5AI score0.00188EPSS
Exploits0References7Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/09/30 12:0 a.m.17 views

The vulnerability of the /cgi-bin/widget_api.cgi file of the Web Management Interface component of the D-Link DNS-320 router’s microprogramming system allows a hacker to disclose confidential information.

The vulnerability of the /cgi-bin/widgetapi.cgi file of the Web Management Interface component of the D-Link DNS-320 router software relates to the disclosure of information. Exploiting this vulnerability could allow an attacker to disclose confidential information by manipulating the...

5.9CVSS5.4AI score0.02104EPSS
Exploits1References7Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/08/21 12:0 a.m.17 views

The vulnerability of the “phase” parameter in the netshop CMS system’s Netcat module allows a hacker to execute arbitrary JavaScript code.

The vulnerability of the “phase” parameter in the netshop CMS system’s Netcat framework exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to execute any arbitrary JavaScript code in the user’s browser remotely...

9CVSS5.8AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/08/14 12:0 a.m.17 views

The vulnerability of D-Link router microprogramming software arises from the lack of measures taken to neutralize special elements used in the operating system command. This allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of D-Link DIR-1960-US, DIR-2640-US, DIR-2660-US, DIR-3040-US, DIR-3060-US, DIR-867-US, DIR-878, DIR-882-US, DIR-882/RE, DIR-882-CA, and DIR-882-US/RE routers exists due to the lack of measures to neutralize specific elements. Exploiting this vulnerability can allow a malicious...

8.4CVSS5.5AI score
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/07/08 12:0 a.m.17 views

The vulnerability of the Mozilla Firefox browser for Android, related to deficiencies in access control, allows attackers to bypass security restrictions and compromise the integrity of protected information.

The vulnerability of the Mozilla Firefox browser for Android is related to deficiencies in access control, resulting from incorrect processing of the Principal object when opening new tabs. Exploiting this vulnerability allows a malicious actor to bypass security restrictions and compromise the...

5CVSS7.7AI score0.00411EPSS
Exploits1References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/07/05 12:0 a.m.17 views

The vulnerability of the image_copy_plane component (libavutil/imgutils.c) in the FFmpeg multimedia library allows a attacker to execute arbitrary code.

The vulnerability of the imagecopyplane component libavutil/imgutils.c in the FFmpeg multimedia library lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

7.8CVSS6.7AI score0.00324EPSS
Exploits0References13Affected Software5
BDU FSTEC
BDU FSTEC
added 2024/06/04 12:0 a.m.17 views

The vulnerability of the Media Session application interface for Google Chrome and Microsoft Edge browsers allows a perpetrator to execute arbitrary code.

The vulnerability of the Media Session application interface in Google Chrome and Microsoft Edge browsers relates to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code by loading a specially created malicious HTML page...

10CVSS8.1AI score0.00819EPSS
Exploits1References12Affected Software6
BDU FSTEC
BDU FSTEC
added 2024/06/04 12:0 a.m.17 views

Vulnerability of the Server:Thread Pooling component of the Oracle MySQL Server database management system, which allows attackers to cause service interruptions.

The vulnerability of the Server:Thread Pooling component of the Oracle MySQL Server database management system is related to improper cleaning or release of resources. Exploiting this vulnerability can allow an attacker to cause service interruptions remotely...

6.1CVSS6.2AI score0.01107EPSS
Exploits0References7Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/06/04 12:0 a.m.17 views

The vulnerability of the BPMSoft web application is related to deficiencies in access control, which allows attackers to increase their privileges within the system.

The vulnerability of the BPMSoft web application is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to enhance their privileges within the system...

6.1CVSS5.5AI score
Exploits0Affected Software1
Total number of security vulnerabilities5000