Lucene search
K
Bdu FstecMost viewed

90604 matches found

BDU FSTEC
BDU FSTEC
added 2017/06/30 12:0 a.m.15 views

The vulnerability of the FFmpeg multimedia library, which allows a hacker to perform recording beyond the memory limit

The vulnerability of the FFmpeg multimedia library arises from buffer overflows in the stack. Exploiting this vulnerability allows a malicious actor to perform out-of-memory writes, related to the decodezbuf function in libavcodec/pngdec.c...

7.5CVSS7.9AI score0.02508EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/05/04 12:0 a.m.15 views

The vulnerability of the Android operating system, which allows a hacker to execute arbitrary code (memory corruption).

The vulnerability of the libhevc component in the Android operating system’s Mediaserver is caused by an operation that occurs outside the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code memory corruption...

9.3CVSS8.1AI score0.02312EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/02/02 12:0 a.m.15 views

The vulnerability of the Android operating system, which allows a hacker to trigger a buffer overflow.

The vulnerability in the trusted execution environment of Android’s operating system’s access control API arises due to buffer overflow. Exploiting this vulnerability can allow a malicious actor, operating remotely, to trigger a buffer overflow due to lack of size checking for the buffer...

10CVSS8.6AI score0.01728EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/02/02 12:0 a.m.15 views

The vulnerability in the built-in software of NETGEAR routers such as NETGEAR R8500, NETGEAR R8300, NETGEAR R7000, NETGEAR R6400, NETGEAR R7300DST, NETGEAR R7100LG, NETGEAR R6300v2, NETGEAR WNDR3400v3, NETGEAR WNDR3500Lv2, NETGEAR R6250, NETGEAR R6700, NETGEAR R6900, NETGEAR R8000, NETGEAR R7900, NETGEAR WNDR4500v2, NETGEAR R6200v2, NETGEAR WNDR3400v2, NETGEAR D6220, NETGEAR D6400, NETGEAR C6300, NETGEAR R6200, NETGEAR R6300, NETGEAR VENG2610, NETGEAR AC1450, NETGEAR WNDR1000v3, NETGEAR WNDR3700v3, NETGEAR WNDR4000, NETGEAR WNDR4500, NETGEAR D6300, NETGEAR D6300B, NETGEAR DGN2200Bv4, and NETGEAR DGN2200v4, allows a hacker to obtain user password information.

The vulnerability of the embedded software of NETGEAR routers such as NETGEAR R8500, NETGEAR R8300, NETGEAR R7000, NETGEAR R6400, NETGEAR R7300DST, NETGEAR R7100LG, NETGEAR R6300v2, NETGEAR WNDR3400v3, NETGEAR WNDR3500Lv2, NETGEAR R6250, NETGEAR R6700, NETGEAR R6900, NETGEAR R8000, NETGEAR R7900,...

4.3CVSS7.8AI score0.89294EPSS
Exploits7References5Affected Software32
BDU FSTEC
BDU FSTEC
added 2016/09/07 12:0 a.m.15 views

The vulnerabilities of PDF viewer programs such as Adobe Reader and Document Cloud, as well as PDF editing programs like Adobe Acrobat and Adobe Acrobat Document Cloud, allow attackers to cause service interruptions or execute arbitrary codes.

The vulnerabilities of PDF viewer programs such as Adobe Reader and Document Cloud, as well as PDF editing programs like Adobe Acrobat and Adobe Acrobat Document Cloud, are due to buffer overflow vulnerabilities. Exploiting these vulnerabilities can allow an attacker to execute arbitrary code or...

10CVSS8.6AI score0.03958EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2016/02/12 12:0 a.m.15 views

The vulnerability of the FFmpeg multimedia library, which allows a intruder to trigger a service failure or cause other effects

The vulnerability of the h264sliceheaderinit function libavcodec/h264slice.c in the FFmpeg multimedia library is due to buffer overflow. Exploiting this vulnerability could allow a malicious actor to cause service failures or potentially have other adverse effects by using specially crafted H.264...

7.5CVSS8AI score0.01913EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2015/11/26 12:0 a.m.15 views

The vulnerability of the RoundCube Webmail email client on the operating system openSUSE allows a hacker to execute cross-site scripting attacks.

The vulnerability in the program/js/app.js component of the RoundCube Webmail client for the openSUSE operating system exists due to the lack of security measures taken to protect the web page structure. Exploiting this vulnerability allows a malicious actor to execute cross-site scripting attack...

3.5CVSS7AI score0.01459EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2015/09/15 12:0 a.m.15 views

The vulnerability of Google Chrome browser allows a violator to circumvent existing access restrictions.

The vulnerability of the WebRequest API implementation in the extensions/browser/api/webrequest/webrequestapi.cc component of the Google Chrome browser is related to security configuration errors. Exploiting this vulnerability allows a malicious actor to circumvent existing access restrictions...

7.5CVSS7.7AI score0.0224EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.15 views

Vulnerabilities in the OpenSUSE operating system that allow malicious actors to compromise the confidentiality, integrity, and accessibility of protected information

The cloop-kmp-desktop-debuginfo package in the openSUSE operating system has multiple vulnerabilities. Exploiting these vulnerabilities can lead to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...

9.3CVSS6.6AI score0.05926EPSS
Exploits15References15Affected Software1
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.15 views

Vulnerabilities in the OpenSUSE operating system that allow malicious actors to compromise the confidentiality, integrity, and accessibility of protected information

The cloop-kmp-xen package of the OpenSUSE operating system has multiple vulnerabilities. Exploiting these vulnerabilities can lead to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...

9.3CVSS6.6AI score0.05926EPSS
Exploits15References15Affected Software1
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.15 views

Vulnerabilities in the OpenSUSE operating system that allow malicious actors to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the cloop operating system package of OpenSUSE can be exploited, leading to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...

9.3CVSS6.6AI score0.05926EPSS
Exploits15References15Affected Software1
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.15 views

Vulnerabilities in the SUSE Linux Enterprise operating system that allow attackers to compromise the accessibility of protected information

The kernel-kdumppae-debuginfo package of the SUSE Linux Enterprise operating system has multiple vulnerabilities. Exploitation of these vulnerabilities may lead to a violation of the accessibility of protected information. These vulnerabilities can be exploited remotely...

7.8CVSS6.5AI score0.04308EPSS
Exploits26References26
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.15 views

Vulnerabilities of the Gentoo Linux operating system, which allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the x11vnc package up to version 0.8.1 of the Gentoo Linux operating system can lead to violations of privacy, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...

7.5CVSS7.7AI score0.04283EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.15 views

Vulnerabilities of the Debian GNU/Linux operating system that allow a remote attacker to compromise the accessibility of protected information

The multiple vulnerabilities in the hostap-modules-2.4.27-4-386 package of the Debian GNU/Linux operating system may lead to a violation of the accessibility of protected information. These vulnerabilities can be exploited remotely...

7.8CVSS7.1AI score0.05605EPSS
Exploits9References41Affected Software1
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.15 views

Vulnerabilities of the Debian GNU/Linux operating system that allow a remote attacker to compromise the accessibility of protected information

The multiple vulnerabilities of the hostap-modules-2.4.27-4-k7-smp package for the Debian GNU/Linux operating system may lead to a violation of the accessibility of protected information. Exploitation of these vulnerabilities can be carried out remotely...

7.8CVSS7.2AI score0.05605EPSS
Exploits9References41Affected Software1
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.15 views

The vulnerability of the OpenSUSE operating system allows attackers to compromise the confidentiality of protected information.

The vulnerability of the mono-data-sybase package in the OpenSUSE operating system can lead to a violation of the confidentiality of protected information. This vulnerability can be exploited remotely...

5CVSS5.4AI score0.04958EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 9 hours ago14 views

The vulnerability of the Directum RX ECM system, related to deficiencies in access control, allows a perpetrator to compromise data integrity.

The vulnerability of the Directum RX ECM system is related to deficiencies in access control. Exploiting this vulnerability could allow a remote attacker to compromise data integrity...

5CVSS5.8AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/07/02 12:0 a.m.14 views

The vulnerability of the software platform based on Git for collaborative code development in GitLab EE/CE is related to deficiencies in the authentication process, which allow unauthorized users to increase their privileges.

The vulnerability of the Git-based software platform for collaborative code development in GitLab EE/CE is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor to increase their privileges remotely...

4.3CVSS6AI score0.00193EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/07/02 12:0 a.m.14 views

The vulnerability of the software interface of the Git-based software platform for collaborative code development on GitLab EE allows a perpetrator to gain unauthorized access to read and modify protected information.

The vulnerability of the software interface of a Git-based software platform for collaborative code development on GitLab EE is related to the bypassing of authentication using a key controlled by the user. Exploiting this vulnerability can allow an intruder, operating remotely, to gain...

5.5CVSS6AI score0.00171EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/07/02 12:0 a.m.14 views

The vulnerability of Google Chrome’s Password Manager component allows a hacker to replace the user interface.

The vulnerability of Google Chrome’s Password Manager component is related to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to replace the user interface...

5CVSS6AI score0.00203EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/11 12:0 a.m.14 views

The vulnerability of the Media component of the Windows operating system, allowing a hacker to execute arbitrary code

The vulnerability of the Media component in the Windows operating system is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.8CVSS6.3AI score0.00445EPSS
Exploits0References2Affected Software20
BDU FSTEC
BDU FSTEC
added 2026/03/17 12:0 a.m.14 views

The vulnerability of software platforms for developing and managing online stores like Magento Open Source, Adobe Commerce, and Adobe Commerce B2B arises from incorrect pathname restrictions in the catalog system. This allows attackers to bypass security restrictions.

The vulnerability of software platforms for developing and managing online stores such as Magento Open Source, Adobe Commerce, and Adobe Commerce B2B is related to incorrect path name restrictions. Exploiting this vulnerability can allow attackers to bypass security restrictions remotely...

6.8CVSS5.7AI score0.00636EPSS
Exploits0References2Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/12/29 12:0 a.m.14 views

The vulnerability of the Paragon Hard Disk Manager software allows a perpetrator to modify any files they choose.

The vulnerability of the Paragon Hard Disk Manager software is related to insecure management of privileges. Exploiting this vulnerability could allow an attacker to modify arbitrary files...

7.9CVSS5.9AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/12/29 12:0 a.m.14 views

The vulnerability of PLC NLcon-CE-485-C arises from insufficient validation of input data when processing a packet of the type 0xbbbb in the Codesys v2 service. This vulnerability allows an attacker to trigger a failure in the operation of the Codesys v2 execution environment.

The vulnerability of PLC NLcon-CE-485-C is related to insufficient validation of input data during the processing of the 0xbbbb packet in Codesys v2. Exploiting this vulnerability can allow an attacker to cause a failure in the operation of the Codesys v2 execution environment...

7.8CVSS5.9AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/12/26 12:0 a.m.14 views

The vulnerability of the “Multi-Functional Export/Import in Excel” plugin, related to insufficient protection of operational data, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the “Multi-Functional Export/Import in Excel” plugin is related to insufficient protection of operational data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

6.8CVSS5.8AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/12/23 12:0 a.m.14 views

Vulnerability of 1C software: 1C:ERP Business Management, 1C:Comprehensive Automation, 1C:Commerce Management – due to the lack of authorization, allowing attackers to execute arbitrary requests.

Vulnerabilities of 1C software: 1C:ERP Business Management, 1C:Comprehensive Automation, 1C:Commerce Management involve a lack of authentication. Exploiting these vulnerabilities can allow remote attackers to execute arbitrary requests...

6.8CVSS6.1AI score
Exploits0References1Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/12/23 12:0 a.m.14 views

The vulnerability of the XML2PDF library, related to insufficient validation of requests on the server side, allows a attacker to perform an SSRF attack.

The vulnerability of the XML2PDF library is related to insufficient validation of requests on the server side. Exploiting this vulnerability allows a malicious actor to execute an SSRF attack by sending a specially crafted HTTP request...

5.3CVSS5.8AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.14 views

The vulnerability of the prepare_update() function in the vio.cpp module of the “Red Database” database management system allows a perpetrator to cause a service failure.

The vulnerability of the prepareupdate function in the vio.cpp module of the “Red Database” database management system is related to improper initialization of resources when processing queries with the WITH LOCK construct and the creation of a delta version of the record. Exploiting this...

4.8CVSS5.8AI score
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.14 views

The vulnerability of the `ParamsCalculator::makeFromValues()` function in the `ParamsCalculator.cpp` module of the “Red Database” database management system allows a perpetrator to cause a service failure.

The vulnerability of the ParamsCalculator::makeFromValues function in the ParamsCalculator.cpp module of the “Red Database” database management system is related to mutual locking of execution threads. Exploiting this vulnerability could allow an attacker to cause service interruptions...

5.5CVSS5.9AI score
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/08/13 12:0 a.m.14 views

The vulnerability in the built-in web server boa (/server/boa.conf) of the TRENDnet TV-IP110WN IP camera software allows a intruder to escalate their privileges and gain full control over the device.

The vulnerability of the built-in web server boa /server/boa.conf of the TRENDnet TV-IP110WN IP camera software is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to enhance their privileges and gain full control over the device...

7CVSS7.1AI score0.00151EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/08/13 12:0 a.m.14 views

The vulnerability of the wirelessBasic() function in the mod_form.so script of Linksys routers such as RE6250, RE6300, RE6350, RE6500, RE7000, and RE9000 allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the wirelessBasic function in the modform.so microprogramming system for Linksys routers such as RE6250, RE6300, RE6350, RE6500, RE7000, and RE9000 lies in the fact that the operation’s output escapes the buffer in memory when processing the submitSSID1 parameter. Exploiting...

9CVSS8.4AI score0.00871EPSS
Exploits1References4Affected Software6
BDU FSTEC
BDU FSTEC
added 2025/08/11 12:0 a.m.14 views

The vulnerability of the IBM Engineering Lifecycle Optimization - Publishing software for creating reports is related to improper neutralization of encoded URI schemes on web pages, allowing attackers to perform cross-site scripting attacks.

The vulnerability of the IBM Engineering Lifecycle Optimization - Publishing software for creating reports is related to improper neutralization of encoded URI schemes on the web page. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

6.4CVSS5.2AI score0.00183EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/08/11 12:0 a.m.14 views

Vulnerabilities of the udma_probe() and devm_kasprintf() functions in the Linux operating system, allowing a hacker to cause a service failure

The vulnerability of the udmaprobe and devmkasprintf functions in the Linux operating system is related to the assignment of zero pointers. Exploiting this vulnerability can allow an attacker to cause a service failure...

7CVSS6.4AI score0.00167EPSS
Exploits0References16Affected Software5
BDU FSTEC
BDU FSTEC
added 2025/08/08 12:0 a.m.14 views

The vulnerability of the corporate platform for creating, managing, and processing electronic forms, documents, and business processes within Adobe Experience Manager (AEM) Forms on JEE lies in the incorrect restrictions on XML links to external objects. This allows attackers to read arbitrary files.

The vulnerability of the corporate platform for creating, managing, and processing electronic forms, documents, and business processes within Adobe Experience Manager AEM Forms on JEE is related to incorrect restrictions on XML references to external objects. Exploiting this vulnerability could...

8.6CVSS7.8AI score0.77133EPSS
Exploits2References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/08/08 12:0 a.m.14 views

The vulnerability of the implementation of the Model Context Protocol (MCP) for the code editor based on artificial intelligence, Cursor, allows a hacker to execute arbitrary code.

The vulnerability of the Model Context Protocol MCP implementation of the artificial intelligence-based code editor involves the failure to take measures to neutralize special elements. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

8.5CVSS6.4AI score0.01708EPSS
Exploits0References7Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/08/07 12:0 a.m.14 views

The vulnerabilities of Mozilla Firefox, Firefox ESR, and the email client Thunderbird, related to the disclosure of information, allow attackers to compromise the confidentiality and integrity of protected information.

The vulnerabilities of Mozilla Firefox, Firefox ESR, and the email client Thunderbird are related to the exposure of information. Exploiting these vulnerabilities can allow a malicious actor to compromise the confidentiality and integrity of the protected information...

9.4CVSS7.5AI score0.00277EPSS
Exploits0References16Affected Software5
BDU FSTEC
BDU FSTEC
added 2025/08/07 12:0 a.m.14 views

The vulnerability of the sub_41A914() function in Netgear JWNR2000v2 software allows a hacker to cause a service failure.

The vulnerability of the sub41A914 function in Netgear JWNR2000v2 router microprogramming software is related to the copying of buffers without checking the size of the input data when processing the host parameter. Exploiting this vulnerability can allow an attacker to cause service interruption...

5.5CVSS5.8AI score0.00564EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/08/06 12:0 a.m.14 views

The vulnerability of iPadOS and macOS operating systems, related to incorrect handling of links before accessing files, allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of iPadOS and macOS operating systems is related to an incorrect definition of the link before accessing a file. Exploiting this vulnerability can allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information...

10CVSS5.5AI score0.00828EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/08/04 12:0 a.m.14 views

The vulnerability of the Firewall software for creating containerized systems like Moby allows a intruder to gain unauthorized access to protected information.

The vulnerability of the Moby container isolation system’s Firewall software relates to improper initialization of resources. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

3.3CVSS6.5AI score0.00152EPSS
Exploits0References7Affected Software5
BDU FSTEC
BDU FSTEC
added 2025/07/28 12:0 a.m.14 views

The vulnerability of the amdgpu_unmap_static_csa() function in the drivers/gpu/drm/amd/amdgpu/amdgpu_csa.c file of the Linux kernel’s Direct Rendering Infrastructure (DRI) AMD GPU driver allows a malicious actor to cause a system crash.

The vulnerability of the amdgpuunmapstaticcsa function in the drivers/gpu/drm/amd/amdgpu/amdgpucsa.c file of the Linux kernel’s Direct Rendering Infrastructure DRI AMD GPU driver is related to improper memory release. Exploiting this vulnerability can allow an attacker to cause a system failure...

5.5CVSS6.5AI score0.00165EPSS
Exploits0References12Affected Software4
BDU FSTEC
BDU FSTEC
added 2025/07/24 12:0 a.m.14 views

The vulnerability of the eir_get_service_data() function in the Linux operating system allows a hacker to induce a service failure.

The vulnerability of the eirgetservicedata function in the Linux operating system is related to a pointer swapping error. Exploiting this vulnerability could allow an attacker to cause a service failure...

7CVSS6.2AI score0.00145EPSS
Exploits0References13Affected Software5
BDU FSTEC
BDU FSTEC
added 2025/07/24 12:0 a.m.14 views

The vulnerability of the UMIP function in AMD’s microprogramming software allows attackers to disclose protected information.

The vulnerability of the UMIP function in AMD’s microprogramming software is related to insufficient protection of operational data. Exploiting this vulnerability can allow attackers to disclose protected information...

3.8CVSS6.8AI score0.00281EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/07/16 12:0 a.m.14 views

The vulnerability of the Linux operating system’s kernel, related to errors in resource release, allows a hacker to cause a service failure.

The vulnerability of the Linux operating system’s kernel is related to errors during resource release. Exploiting this vulnerability can allow an attacker to cause service failures...

5.5CVSS6.5AI score0.00258EPSS
Exploits0References17Affected Software4
BDU FSTEC
BDU FSTEC
added 2025/07/08 12:0 a.m.14 views

The vulnerability of PDF-XChange Editor, PDF-Tools, and PDF-XChange PRO programs relates to the use of memory after it is freed, allowing an attacker to execute arbitrary code.

The vulnerability of PDF viewing and editing programs such as PDF-XChange Editor, PDF-Tools, and PDF-XChange PRO lies in the use of memory after it is freed during file processing for U3D operations. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.8CVSS7.5AI score0.00247EPSS
Exploits0References3Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/07/08 12:0 a.m.14 views

The vulnerability of PDF-XChange Editor, PDF-Tools, and PDF-XChange PRO programs relates to the use of memory after it is freed, allowing an attacker to execute arbitrary code.

The vulnerability of PDF viewing and editing programs such as PDF-XChange Editor, PDF-Tools, and PDF-XChange PRO lies in the use of memory after it is freed during file processing for U3D operations. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.8CVSS7.5AI score0.00247EPSS
Exploits0References3Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/07/08 12:0 a.m.14 views

The vulnerability of PDF document viewing and editing programs such as PDF-XChange Editor, PDF-Tools, and PDF-XChange PRO lies in the use of memory after it is freed, allowing an attacker to disclose protected information.

The vulnerability of PDF viewing and editing programs such as PDF-XChange Editor, PDF-Tools, and PDF-XChange PRO lies in the use of memory after it is freed during file processing for U3D operations. Exploiting this vulnerability can allow attackers to disclose sensitive information that is...

3.3CVSS5.7AI score0.00224EPSS
Exploits0References3Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/07/08 12:0 a.m.14 views

The vulnerability of the PDF Preview module in the HarmonyOS operating system, which allows a hacker to trigger a service failure

The vulnerability of the PDF Preview module in the HarmonyOS operating system is related to pointer manipulation. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...

7.8CVSS5.4AI score0.00175EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/08 12:0 a.m.14 views

The vulnerability of the HarmonyOS operating system, related to buffer overflows in the stack, allows a attacker to trigger a service failure.

The vulnerability of the HarmonyOS operating system is related to buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to trigger a service failure...

4CVSS5.8AI score0.00086EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/07 12:0 a.m.14 views

The vulnerability of the Page and Field Configuration components of the Business Process Management tool in PeopleSoft Enterprise CC Common Application Objects of the Oracle PeopleSoft Products allows a hacker to gain access to read, modify, or delete data.

The vulnerability of the Page and Field Configuration components in the PeopleSoft Enterprise CC Common Application Objects business process management tool from the Oracle PeopleSoft Products family is related to deficiencies in access control. Exploiting this vulnerability could allow an attack...

8.5CVSS7.2AI score0.00326EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/03 12:0 a.m.14 views

The vulnerability of the gf100.c component in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the gf100.c component in the Linux operating system is related to insufficient blocking mechanisms. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00201EPSS
Exploits0References11Affected Software4
Total number of security vulnerabilities5000