Lucene search
K
Bdu FstecMost viewed

90509 matches found

BDU FSTEC
BDU FSTEC
added 17 minutes ago14 views

The vulnerability of the Directum RX ECM system, related to deficiencies in access control, allows a perpetrator to compromise data integrity.

The vulnerability of the Directum RX ECM system is related to deficiencies in access control. Exploiting this vulnerability could allow a remote attacker to compromise data integrity...

5CVSS5.8AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/07/02 12:0 a.m.14 views

The vulnerability of the software interface of the Git-based software platform for collaborative code development on GitLab EE allows a perpetrator to gain unauthorized access to read, create, and delete data.

The vulnerability of the software interface of the Git-based software platform for collaborative code development on GitLab EE is related to deficiencies in the authentication process. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to read,...

5.5CVSS6AI score0.00201EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/07/02 12:0 a.m.14 views

The vulnerability of the Rapid Diffs mechanism in the Git-based software platform for collaborative code development in GitLab EE/CE allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Rapid Diffs mechanism in the Git-based software platform for collaborative code development in GitLab EE/CE relates to the absence of authentication. Exploiting this vulnerability can allow unauthorized individuals to gain unauthorized access to protected information...

5.3CVSS6AI score0.00275EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/07/02 12:0 a.m.14 views

The vulnerability of the software interface of the Git-based software platform for collaborative code development on GitLab EE allows a perpetrator to gain unauthorized access to read and modify protected information.

The vulnerability of the software interface of a Git-based software platform for collaborative code development on GitLab EE is related to the bypassing of authentication using a key controlled by the user. Exploiting this vulnerability can allow an intruder, operating remotely, to gain...

5.5CVSS6AI score0.00171EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/07/02 12:0 a.m.14 views

The vulnerability of the Git-based software platform for collaborative code development on GitLab EE/CE lies in its dependence on a reverse DNS solution. This dependency allows an intruder to gain unauthorized access to protected information.

The vulnerability of the software interface of the CI/CD subsystem of the Git-based software platform for collaborative code development on GitLab EE/CE is related to the dependence of critical operations on the reverse DNS solution. Exploiting this vulnerability can allow a malicious actor to ga...

3.1CVSS6AI score0.00161EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/05/18 12:0 a.m.14 views

The vulnerability of the Cookies component of the Google Chrome browser allows a violator to enhance their privileges.

The vulnerability of the Google Chrome browser’s Cookies component is related to the reliance on cookies without verifying their authenticity and integrity. Exploiting this vulnerability can allow a malicious actor to enhance their privileges through a specially created HTML page...

10CVSS5.8AI score0.00107EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/03/17 12:0 a.m.14 views

The vulnerability of software platforms for developing and managing online stores like Magento Open Source, Adobe Commerce, and Adobe Commerce B2B arises from incorrect pathname restrictions in the catalog system. This allows attackers to bypass security restrictions.

The vulnerability of software platforms for developing and managing online stores such as Magento Open Source, Adobe Commerce, and Adobe Commerce B2B is related to incorrect path name restrictions. Exploiting this vulnerability can allow attackers to bypass security restrictions remotely...

6.8CVSS5.7AI score0.00636EPSS
Exploits0References2Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/12/29 12:0 a.m.14 views

The vulnerability of PLC NLcon-CE-485-C, related to deficiencies in the authorization process of the Codesys v2 service, allows a perpetrator to gain full access to the Codesys v2 execution environment.

The vulnerability of PLC NLcon-CE-485-C is related to deficiencies in the authentication process of the Codesys v2 service. Exploiting this vulnerability can allow an attacker, operating remotely, to gain full access to the Codesys v2 execution environment...

10CVSS5.9AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/12/29 12:0 a.m.14 views

The vulnerability of PLC NLcon-CE-485-C, related to the lack of measures taken to encrypt confidential data, allows attackers to gain access to confidential information.

The vulnerability of PLC NLcon-CE-485-C is related to the lack of measures taken to encrypt confidential data. Exploiting this vulnerability can allow a remote attacker to gain access to confidential information...

7.5CVSS5.8AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/12/29 12:0 a.m.14 views

The vulnerability of the R7-Officer corporate server’s document editor, related to the lack of measures taken to protect the website structure, allows attackers to carry out XSS attacks.

The vulnerability of the R7-Officer corporate server document editor is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability could allow an attacker to carry out XSS attacks...

8.5CVSS5.8AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/12/18 12:0 a.m.14 views

The vulnerability of the “Health check-up” platform for remote monitoring of patient physiological indicators, related to the use of dangerous methods or functions, allows unauthorized access by attackers to protected information.

The vulnerability of the “Health check-up” patient physiological monitoring platform involves the use of dangerous methods or functions. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

7.8CVSS5.8AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/08/11 12:0 a.m.14 views

The vulnerability in the driver/net/ethernet/intel/ice/ice_main.c module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability in the drivers/net/ethernet/intel/ice/icemain.c module of the Linux operating system is related to state management errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.3CVSS6.2AI score0.00157EPSS
Exploits0References8Affected Software4
BDU FSTEC
BDU FSTEC
added 2025/08/11 12:0 a.m.14 views

The vulnerability of the IBM Engineering Lifecycle Optimization - Publishing software for creating reports is related to improper neutralization of encoded URI schemes on web pages, allowing attackers to perform cross-site scripting attacks.

The vulnerability of the IBM Engineering Lifecycle Optimization - Publishing software for creating reports is related to improper neutralization of encoded URI schemes on the web page. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

6.4CVSS5.2AI score0.00183EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/08/11 12:0 a.m.14 views

Vulnerabilities of the udma_probe() and devm_kasprintf() functions in the Linux operating system, allowing a hacker to cause a service failure

The vulnerability of the udmaprobe and devmkasprintf functions in the Linux operating system is related to the assignment of zero pointers. Exploiting this vulnerability can allow an attacker to cause a service failure...

7CVSS6.4AI score0.00167EPSS
Exploits0References16Affected Software5
BDU FSTEC
BDU FSTEC
added 2025/08/08 12:0 a.m.14 views

The vulnerability of the Apache Tomcat application server arises from bypassing the authentication process by using an alternative path or channel, allowing attackers to compromise the confidentiality of the protected information.

The vulnerability of the Apache Tomcat application server arises from bypassing authentication procedures by using an alternative path or channel. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality of the protected information...

7.8CVSS7.4AI score0.03163EPSS
Exploits0References12Affected Software13
BDU FSTEC
BDU FSTEC
added 2025/08/08 12:0 a.m.14 views

The vulnerability of the implementation of the Model Context Protocol (MCP) for the code editor based on artificial intelligence, Cursor, allows a hacker to execute arbitrary code.

The vulnerability of the Model Context Protocol MCP implementation of the artificial intelligence-based code editor involves the failure to take measures to neutralize special elements. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

8.5CVSS6.4AI score0.01708EPSS
Exploits0References7Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/08/07 12:0 a.m.14 views

The vulnerabilities of Mozilla Firefox, Firefox ESR, and the email client Thunderbird, related to the disclosure of information, allow attackers to compromise the confidentiality and integrity of protected information.

The vulnerabilities of Mozilla Firefox, Firefox ESR, and the email client Thunderbird are related to the exposure of information. Exploiting these vulnerabilities can allow a malicious actor to compromise the confidentiality and integrity of the protected information...

9.4CVSS7.5AI score0.00277EPSS
Exploits0References16Affected Software5
BDU FSTEC
BDU FSTEC
added 2025/08/04 12:0 a.m.14 views

The vulnerability of the Firewall software for creating containerized systems like Moby allows a intruder to gain unauthorized access to protected information.

The vulnerability of the Moby container isolation system’s Firewall software relates to improper initialization of resources. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

3.3CVSS6.5AI score0.00152EPSS
Exploits0References7Affected Software5
BDU FSTEC
BDU FSTEC
added 2025/07/28 12:0 a.m.14 views

The vulnerability of the amdgpu_unmap_static_csa() function in the drivers/gpu/drm/amd/amdgpu/amdgpu_csa.c file of the Linux kernel’s Direct Rendering Infrastructure (DRI) AMD GPU driver allows a malicious actor to cause a system crash.

The vulnerability of the amdgpuunmapstaticcsa function in the drivers/gpu/drm/amd/amdgpu/amdgpucsa.c file of the Linux kernel’s Direct Rendering Infrastructure DRI AMD GPU driver is related to improper memory release. Exploiting this vulnerability can allow an attacker to cause a system failure...

5.5CVSS6.5AI score0.00165EPSS
Exploits0References12Affected Software4
BDU FSTEC
BDU FSTEC
added 2025/07/24 12:0 a.m.14 views

The vulnerability of the eir_get_service_data() function in the Linux operating system allows a hacker to induce a service failure.

The vulnerability of the eirgetservicedata function in the Linux operating system is related to a pointer swapping error. Exploiting this vulnerability could allow an attacker to cause a service failure...

7CVSS6.2AI score0.00145EPSS
Exploits0References13Affected Software5
BDU FSTEC
BDU FSTEC
added 2025/07/22 12:0 a.m.14 views

Yandex Punto Switcher

...

5.4AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/07/08 12:0 a.m.14 views

The vulnerability of the PDF Preview module in the HarmonyOS operating system, which allows a hacker to trigger a service failure

The vulnerability of the PDF Preview module in the HarmonyOS operating system is related to pointer manipulation. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...

7.8CVSS5.4AI score0.00175EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/07 12:0 a.m.14 views

The vulnerability of the Page and Field Configuration components of the Business Process Management tool in PeopleSoft Enterprise CC Common Application Objects of the Oracle PeopleSoft Products allows a hacker to gain access to read, modify, or delete data.

The vulnerability of the Page and Field Configuration components in the PeopleSoft Enterprise CC Common Application Objects business process management tool from the Oracle PeopleSoft Products family is related to deficiencies in access control. Exploiting this vulnerability could allow an attack...

8.5CVSS7.2AI score0.00326EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/03 12:0 a.m.14 views

The vulnerability of the gf100.c component in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the gf100.c component in the Linux operating system is related to insufficient blocking mechanisms. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00201EPSS
Exploits0References11Affected Software4
BDU FSTEC
BDU FSTEC
added 2025/07/03 12:0 a.m.14 views

The vulnerability of the route.c component in the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the route.c component in the Linux operating system’s kernel is related to errors during resource release. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00203EPSS
Exploits0References12Affected Software4
BDU FSTEC
BDU FSTEC
added 2025/07/02 12:0 a.m.14 views

The vulnerability of the guix-daemon package manager in Nix, Lix, and Guix allows a hacker to increase their privileges.

The vulnerability of the guix-daemon package manager in Nix, Lix, and Guix is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to enhance their privileges...

2.9CVSS5.5AI score0.00157EPSS
Exploits0References6Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/07/01 12:0 a.m.14 views

The vulnerability in the driver/net/ethernet/renesas/rswitch.c component of the Linux operating system allows a hacker to cause a service failure.

The vulnerability in the drivers/net/ethernet/renesas/rswitch.c component of the Linux operating system is related to the use of memory after it has been freed. Exploiting this vulnerability could allow an attacker to cause a service failure...

7CVSS6.5AI score0.00199EPSS
Exploits0References10Affected Software4
BDU FSTEC
BDU FSTEC
added 2025/06/30 12:0 a.m.14 views

The vulnerability in the LLVM Toolchain development tools relates to reading data beyond the allowed buffer boundaries, allowing an attacker to trigger a service failure.

The vulnerability of the LLVM Toolchain development tools is related to reading data beyond the allowed buffer size. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.1AI score0.00221EPSS
Exploits0References6Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/06/30 12:0 a.m.14 views

The vulnerability of the s390/dasd component in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the s390/dasd component in the Linux operating system is related to insufficient locking mechanisms. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS5.7AI score0.0024EPSS
Exploits0References14Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/06/25 12:0 a.m.14 views

Vulnerability of the its_vpe_irq_domain_alloc() function in the drivers/irqchip/irq-gic-v3-its.c module – This driver for Linux’s IRQ chips allows a hacker to gain access to protected information.

Vulnerability of the itsvpeirqdomainalloc function in the drivers/irqchip/irq-gic-v3-its.c module – The Linux kernel’s IRQ chip support driver is vulnerable to a single-shift error. Exploiting this vulnerability could allow an attacker to access protected information...

5.5CVSS6.1AI score0.00251EPSS
Exploits0References16Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/20 12:0 a.m.14 views

Vulnerability of Microsoft Excel, Microsoft Office, Microsoft 365 Apps for Enterprise, and Microsoft Office Online Server programs, related to the use of memory after it is released, allowing an attacker to execute arbitrary code.

The vulnerability of Microsoft Excel, Microsoft Office, Microsoft 365 Apps for Enterprise, and Microsoft Office Online Server programs is related to the use of memory after it is released. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.8CVSS5.8AI score0.01768EPSS
Exploits2References2
BDU FSTEC
BDU FSTEC
added 2025/06/18 12:0 a.m.14 views

The vulnerability of the Task Scheduler in Windows operating systems allows a malicious individual to escalate their privileges.

The vulnerability of the Task Scheduler in Windows operating systems is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to increase their privileges...

8.4CVSS5.4AI score0.00429EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/06/18 12:0 a.m.14 views

The vulnerability of the opennextjs package from Cloudflare’s network traffic balancing service for web applications allows attackers to execute arbitrary code.

The vulnerability of the opennextjs package, a network traffic balancing service for Cloudflare’s web applications, relates to insufficient validation of incoming requests. Exploiting this vulnerability allows an attacker to execute arbitrary code by manipulating requests sent from the server’s...

9.3CVSS6AI score0.00832EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/06/06 12:0 a.m.14 views

The vulnerability of the Adreno GPU driver software’s microprogramming in Qualcomm embedded chips allows attackers to damage memory.

The vulnerability of the Adreno GPU driver in Qualcomm’s embedded chips relates to the use of memory after it is freed. Exploiting this vulnerability can allow a remote attacker to corrupt the memory...

7.6CVSS8.1AI score0.00802EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2025/06/05 12:0 a.m.14 views

The vulnerability of the doExecute method in the HPE StoreOnce VSA storage virtualized system allows a attacker to execute arbitrary code.

The vulnerability of the doExecute method in the HPE StoreOnce VSA virtual storage system is related to the lack of measures taken to clean data at the management level. Exploiting this vulnerability may allow a malicious actor to execute arbitrary code remotely...

9CVSS7.9AI score0.01235EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/26 12:0 a.m.14 views

Vulnerability of the VS6EditData!CDrawSLine::GetRectArea() function of the HMI configuration software for Monitouch V-SFT: This vulnerability allows an attacker to gain unauthorized access to protected information, execute arbitrary code, or cause a service failure.

The vulnerability of the VS6EditData!CDrawSLine::GetRectArea function of the HMI configuration software for Monitouch V-SFT is related to the occurrence of operations outside the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to gain unauthorized access to...

7.8CVSS7.7AI score0.00191EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/26 12:0 a.m.14 views

The vulnerability of the VS6File!CTxSubFile::get_ProgramFile_name() function in the HMI configuration software for Monitouch V-SFT allows a malicious individual to gain unauthorized access to protected information, execute arbitrary code, or cause service failure.

The vulnerability of the VS6File!CTxSubFile::getProgramFilename function in the HMI configuration software for Monitouch V-SFT relates to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected...

7.8CVSS7.8AI score0.00211EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/23 12:0 a.m.14 views

The vulnerability of the Remote Desktop Gateway (RD Gateway) on the Microsoft Windows operating system allows a perpetrator to trigger a service failure.

The vulnerability of the Remote Desktop Gateway RD Gateway server on the Microsoft Windows operating system relates to the use of unsafe mechanisms for processing authentication data in the operating system’s memory. Exploiting this vulnerability can allow an attacker to cause service interruptio...

5.9CVSS7.8AI score0.20634EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/05/23 12:0 a.m.14 views

The vulnerability of the ice_prepare_for_reset() function in the Intel Ethernet driver for Linux operating systems allows a hacker to trigger a service failure.

The vulnerability of the iceprepareforreset function in the Intel Ethernet network adapter driver for Linux operating systems is related to the swapping of pointers L. Exploiting this vulnerability can allow attackers to cause a service failure...

5.5CVSS6.6AI score0.0024EPSS
Exploits0References15Affected Software5
BDU FSTEC
BDU FSTEC
added 2025/05/05 12:0 a.m.14 views

The vulnerability of the bsdunzip.c file in the Libarchive library allows a hacker to trigger a service failure.

The vulnerability of the bsdunzip.c file in the Libarchive library is related to a NULL pointer dereferencing error. Exploiting this vulnerability could allow an attacker to cause a service failure...

3.3CVSS5.8AI score0.00321EPSS
Exploits1References12Affected Software10
BDU FSTEC
BDU FSTEC
added 2025/04/30 12:0 a.m.14 views

Vulnerability of the Server component: The MySQL Server database management system component, which allows a hacker to cause service interruptions.

Vulnerability of the MySQL Server component: The DDL system for database management of MySQL Server is vulnerable due to incorrect assignment of permissions for critical resources. Exploiting this vulnerability can allow an attacker to cause service interruptions remotely...

6.8CVSS6.4AI score0.0076EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/04/23 12:0 a.m.14 views

The vulnerability of the FortiIsolator browser isolation platform arises from the lack of measures taken to neutralize special elements used in the operating system’s command set. This vulnerability allows attackers to execute arbitrary code.

The vulnerability of the FortiIsolator browser isolation platform exists due to the lack of measures taken to neutralize special elements used in the operating system’s command set. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using specially created HTTP...

9CVSS6AI score0.01069EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/04/16 12:0 a.m.14 views

Vulnerability of the stm32_cryp_irq_thread() function – the driver of the Linux kernel cryptographic accelerator, allowing a hacker to cause a service failure

The vulnerability of the stm32crypirqthread function in the Linux kernel cryptographic acceleration driver is related to the multiple locking of critical resources. Exploiting this vulnerability could allow an attacker to cause a system failure...

5.5CVSS6.4AI score0.00212EPSS
Exploits0References11Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/04/16 12:0 a.m.14 views

The vulnerability of the lua-nginx-module in NGINX web servers, related to inconsistent interpretation of HTTP requests, allows attackers to send hidden HTTP requests (HTTP Request Smuggling attack).

The vulnerability of the lua-nginx-module in NGINX web servers is related to inconsistent interpretation of HTTP requests. Exploiting this vulnerability allows a malicious actor to send hidden HTTP requests a type of HTTP Request Smuggling attack...

7.5CVSS7.2AI score0.00668EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2025/04/16 12:0 a.m.14 views

The vulnerability of the Local Security Authority (LSA) service, which is responsible for authenticating users and managing local security policies in Windows operating systems, allows attackers to escalate their privileges.

The vulnerability of the Local Security Authority LSA service, which is responsible for verifying identities and managing user policies on Windows operating systems, is related to a buffer overflow in the dynamic memory. Exploiting this vulnerability could allow an attacker to gain increased...

7CVSS7.9AI score0.00398EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/04/16 12:0 a.m.14 views

The vulnerability of the E-Staff automation system for recruitment processes lies in errors during data filtering when fields of objects are modified. This allows a malicious individual to gain unauthorized access to protected information and execute arbitrary codes.

The vulnerability of the E-Staff recruitment process automation system is related to errors in data filtering when fields of objects are modified. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information and execute arbitrary...

9.9CVSS5.8AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/04/16 12:0 a.m.14 views

The vulnerability of the Data Manager component of Siemens SENTRON 7KT PAC1260, a multi-functional device for measuring parameters of electrical circuits, allows a hacker to gain unauthorized access to the device.

The vulnerability of the Data Manager component of Siemens SENTRON 7KT PAC1260 multi-functional measurement devices for electrical networks lies in the lack of authentication for a critical function. Exploiting this vulnerability can allow an unauthorized attacker to gain unauthorized access to t...

8.6CVSS5.9AI score0.00518EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/04/16 12:0 a.m.14 views

The vulnerability of the AdvSetMacMtuWan function in the microprogramming software for Tenda AC10 allows a hacker to execute arbitrary code.

The vulnerability of the AdvSetMacMtuWan function in the Tenda AC10 router microprogramming software is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by sending a specially crafted GE...

10CVSS6AI score0.00563EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/04/14 12:0 a.m.14 views

The vulnerability of the fs component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the fs component in the Linux operating system’s kernel is related to the use of an uninitialized resource in the ocfs2setattr function. Exploiting this vulnerability could allow a attacker to cause a service failure...

5.5CVSS6.7AI score0.00248EPSS
Exploits0References17Affected Software8
BDU FSTEC
BDU FSTEC
added 2025/04/14 12:0 a.m.14 views

The vulnerability of the nft_payload_set_eval() function in the net/netfilter/nft_payload.c module of the netfilter component of the Linux operating system allows a hacker to induce a service failure.

The vulnerability of the nftpayloadseteval function in the net/netfilter/nftpayload.c module of the netfilter component of the Linux operating system is related to code errors. Exploiting this vulnerability could allow an attacker to trigger a service failure...

6.2CVSS6.8AI score0.00529EPSS
Exploits1References26Affected Software6
Total number of security vulnerabilities5000