Lucene search
K
Bdu FstecMost viewed

90509 matches found

BDU FSTEC
BDU FSTEC
added 2025/04/09 12:0 a.m.14 views

The vulnerability of Philips IntelliSpace Cardiovascular’s image and data management system, related to the use of weak credentials, allows unauthorized access to the records.

The vulnerability of Philips IntelliSpace Cardiovascular’s image and data management system lies in the use of weak credentials. Exploiting this vulnerability could allow an attacker to gain unauthorized access to the user accounts...

7.7CVSS5.5AI score0.0012EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/04/09 12:0 a.m.14 views

The vulnerability of the RTSP PLAY Command Handler component in the Live555 multimedia streaming library allows a perpetrator to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the RTSP PLAY Command Handler component in the Live555 multimedia streaming library relates to writing beyond buffer boundaries. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and cause service failures...

9.8CVSS8AI score0.01612EPSS
Exploits1References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/04/09 12:0 a.m.14 views

The vulnerability of C/C++ Libstb libraries, related to writing beyond buffer boundaries, allows attackers to compromise data integrity and cause service failures.

The vulnerability of the C/C++ Libstb library lies in the writing beyond buffer boundaries. Exploiting this vulnerability can allow a malicious actor to compromise data integrity and also cause service failures through the use of a specially created file...

6.5CVSS7.1AI score0.0073EPSS
Exploits0References9Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/04/07 12:0 a.m.14 views

Vulnerability of the npcm_i2c_probe_bus() function (driver/i2c/buses/i2c-npcm7xx.c) in the Linux kernel, allowing a hacker to cause a service failure

The vulnerability of the npcmi2cprobebus function from the drivers/i2c/busses/i2c-npcm7xx.c file in the Linux kernel is related to insufficient locking mechanisms. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00148EPSS
Exploits0References18Affected Software5
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.14 views

The vulnerability of the stmmac_tso_xmit() function in the drivers/net/ethernet/stmicro/stmmac/stmmac_main.c module of the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the stmmactsoxmit function in the drivers/net/ethernet/stmicro/stmmac/stmmacmain.c file of the Linux kernel is related to incorrect error handling. Exploiting this vulnerability can allow an attacker to cause a system failure...

5.5CVSS6.7AI score0.00245EPSS
Exploits0References13Affected Software6
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.14 views

Vulnerability of components of the Linux operating system’s kernel, net/mlx5e, which allows a hacker to cause a service failure

The vulnerability of the net/mlx5e components in the Linux operating system’s kernel is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.5AI score0.00235EPSS
Exploits0References14Affected Software7
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.14 views

The vulnerability of the Linux operating system’s serial kernel component, which allows a hacker to trigger a service failure

The vulnerability of the Linux operating system’s serial kernel component is related to improper validation of input data in the function uartshutdown. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00245EPSS
Exploits0References12Affected Software10
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.14 views

The vulnerability of the nsim_dev_trap_report_work() function in the drivers/net/netdevsim/dev.c module of the Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the nsimdevtrapreportwork function in the drivers/net/netdevsim/dev.c module of the Linux kernel is related to code errors. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

7.8CVSS6.7AI score0.0023EPSS
Exploits0References19Affected Software4
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.14 views

The vulnerability of the Linux operating system’s FPGA kernel component, which allows a hacker to trigger a service failure

The vulnerability of the Linux operating system’s FPGA kernel component is related to the dereferencing of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6AI score0.00228EPSS
Exploits0References14Affected Software6
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.14 views

The vulnerabilities of the iommu/vt-d components of the Linux operating system’s kernel, which allow a hacker to cause a service failure

The vulnerability of the iommu/vt-d components of the Linux operating system’s kernel is related to improper validation of input data in the function domaincontextclearonecb within drivers/iommu/intel/iommu.c. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00235EPSS
Exploits0References17Affected Software9
BDU FSTEC
BDU FSTEC
added 2025/03/24 12:0 a.m.14 views

The vulnerability of the `commit_planes_for_stream()` function in the drivers/gpu/drm/amd/display/dc/core/dc.c kernel of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the commitplanesforstream function in the drivers/gpu/drm/amd/display/dc/core/dc.c file of the Linux kernel is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00248EPSS
Exploits0References16Affected Software6
BDU FSTEC
BDU FSTEC
added 2025/03/18 12:0 a.m.14 views

The vulnerability of the ila_add_mapping() function in the net/ipv6/ila/ila_xlat.c module of the Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the ilaaddmapping function in the net/ipv6/ila/ilaxlat.c module of the Linux kernel is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protect...

7.8CVSS7.1AI score0.00254EPSS
Exploits0References23Affected Software5
BDU FSTEC
BDU FSTEC
added 2025/03/17 12:0 a.m.14 views

The vulnerability of the Vnet/IP SCADA system of Yokogawa CENTUM VP allows a intruder to execute arbitrary code and trigger a maintenance failure.

The vulnerability of the Vnet/IP SCADA system of Yokogawa CENTUM VP is related to a countable loss of significance. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands and cause service failures by sending specially crafted packets...

7.5CVSS5.9AI score0.00191EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/03/13 12:0 a.m.14 views

The vulnerability of the USB-Audio component in the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the USB-Audio component in the Linux operating system’s kernel is related to errors in reading beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to cause a service failure...

3.5CVSS7.2AI score0.03558EPSS
Exploits0References22Affected Software9
BDU FSTEC
BDU FSTEC
added 2025/02/24 12:0 a.m.14 views

The vulnerability of the iio component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the iio component in the Linux operating system’s kernel is related to improper validation of input data in the afe4403readraw function. Exploiting this vulnerability can allow an attacker to cause service failures...

7.1CVSS6.5AI score0.00244EPSS
Exploits0References23Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/02/17 12:0 a.m.14 views

The vulnerability of the Adobe Experience Manager content and media data management system lies in the insufficient protection of the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

5.5CVSS5.9AI score0.00384EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/02/14 12:0 a.m.14 views

The vulnerability of the distributed database management system Apache Cassandra lies in its insecure handling of privileges, allowing attackers to elevate their own privileges.

The vulnerability of the distributed database management system Apache Cassandra lies in the insecure management of privileges. Exploiting this vulnerability can allow a malicious actor to increase their privileges remotely...

9CVSS7.5AI score0.00964EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/02/13 12:0 a.m.14 views

The vulnerability of the Microsoft Digest Authentication (wDigest) authentication mechanism in Windows operating systems allows a perpetrator to execute arbitrary code.

The vulnerability of the Microsoft Digest Authentication wDigest authentication mechanism in Windows operating systems is related to integer overflow. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

9CVSS8.2AI score0.02182EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/02/13 12:0 a.m.14 views

The vulnerability of the formSetFirewallCfg function in the microprogramming software for Tenda AC18 allows a hacker to trigger a service failure.

The vulnerability of the formSetFirewallCfg function in the Tenda AC18 router microprogramming system is related to buffer overflow during the processing of the firewallEn parameter. Exploiting this vulnerability can allow a remote attacker to cause a service failure...

10CVSS8.4AI score0.00725EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/02/13 12:0 a.m.14 views

The vulnerability of the Internet Connection Sharing (ICS) function in Windows operating systems allows a hacker to cause a service failure.

The vulnerability of the Internet Connection Sharing ICS function in Windows operating systems is related to reading data beyond the allowed range in memory. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

6.5CVSS7.8AI score0.00934EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/02/12 12:0 a.m.14 views

The vulnerability in the net_openvswitch/actions.c module of Linux kernel allows a hacker to cause a service failure.

The vulnerability in the netopenvswitch/actions.c module of Linux operating systems relates to the execution of a loop with an unreachable exit condition. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.9AI score0.002EPSS
Exploits0References18Affected Software6
BDU FSTEC
BDU FSTEC
added 2025/02/12 12:0 a.m.14 views

The vulnerability of the netfilter component in the Linux operating system’s kernel allows a hacker to induce a service failure.

The vulnerability of the netfilter component in the Linux operating system’s kernel is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.5AI score0.00226EPSS
Exploits0References33Affected Software5
BDU FSTEC
BDU FSTEC
added 2025/02/03 12:0 a.m.14 views

The vulnerability of the SCSI component in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the SCSI component in the Linux operating system is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause service failures...

4.4CVSS5.7AI score0.00268EPSS
Exploits0References15Affected Software9
BDU FSTEC
BDU FSTEC
added 2025/01/15 12:0 a.m.14 views

The vulnerability of the Swift Mailer module in the Drupal CMS system, related to the use of dangerous methods or functions, allows attackers to exploit it.

The vulnerability of the Swift Mailer module in the Drupal CMS system is related to the use of dangerous methods or functions. Exploiting this vulnerability could allow a malicious actor to execute a spear-phishing attack remotely...

9.4CVSS5.5AI score0.0036EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/01/15 12:0 a.m.14 views

The vulnerability of the Windows operating system’s Telephony Service allows a perpetrator to execute arbitrary code.

The vulnerability of the Windows operating system’s Telephony Service is related to overflowing buffers in the dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS8.1AI score0.01624EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2025/01/13 12:0 a.m.14 views

The vulnerability of the System component of the Android operating system, allowing a hacker to execute arbitrary code

The vulnerability of the System component of the Android operating system is related to incorrect code generation. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS8AI score0.00459EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/12/06 12:0 a.m.14 views

The vulnerability of cloud-based software for creating and using Nextcloud Server and Nextcloud Enterprise Server lies in the lack of security measures for website structures, allowing attackers to trigger service failures.

The vulnerability of cloud-based software for creating and using Nextcloud Server and Nextcloud Enterprise Server is related to the lack of protective measures for the website structure. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

6.8CVSS5.4AI score0.00779EPSS
Exploits0References5Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/11/26 12:0 a.m.14 views

The vulnerability of the SSL VPN remote access technology for FortiOS operating systems allows a hacker to execute arbitrary code or commands.

The vulnerability of the SSL VPN remote access technology for FortiOS operating systems relates to the interception of user sessions. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or commands remotely...

7.6CVSS6AI score0.00551EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/20 12:0 a.m.14 views

The vulnerability of the udc component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the udc component in the Linux operating system’s kernel is related to improper locking of resources in the usbepqueue function. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.4AI score0.0023EPSS
Exploits0References46Affected Software6
BDU FSTEC
BDU FSTEC
added 2024/11/13 12:0 a.m.14 views

Vulnerability of Linux operating system’s kernel components related to memory failures, allowing attackers to cause service interruptions

The vulnerability of Linux operating system’s kernel’s mm/memory-failure components is related to incorrect blocking in the pagehandlepoison function. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.5AI score0.00175EPSS
Exploits0References24Affected Software7
BDU FSTEC
BDU FSTEC
added 2024/11/01 12:0 a.m.14 views

The vulnerability of the .NET software platform and Microsoft Visual Studio, a development environment for software, stems from insufficient testing of input data. This allows attackers to exploit their privileges.

The vulnerability of the .NET software platform and the Microsoft Visual Studio development environment exists due to insufficient testing of input data. Exploiting this vulnerability can allow attackers to enhance their privileges...

6.5CVSS6.8AI score0.006EPSS
Exploits0References8Affected Software5
BDU FSTEC
BDU FSTEC
added 2024/11/01 12:0 a.m.14 views

The vulnerability of the YouGile project management service lies in its improper handling of logical operations, allowing attackers to escalate their privileges.

The vulnerability of the YouGile project management service is related to incorrect processing of logical operations. Exploiting this vulnerability allows a remote attacker to gain increased privileges...

7.6CVSS5.5AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/10/31 12:0 a.m.14 views

The vulnerability of the PKIAuthenticationPlugin plugin for the Apache Solr search server allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the PKIAuthenticationPlugin plugin for the Apache Solr search server is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected...

10CVSS5.8AI score0.90709EPSS
Exploits1References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/10/23 12:0 a.m.14 views

The vulnerability of the optee component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the optee component in the Linux operating system’s kernel is related to memory release after the effective lifespan has ended. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.4AI score0.00234EPSS
Exploits0References16Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/10/23 12:0 a.m.14 views

The vulnerability of the Auctions component of the Oracle Sourcing supply management platform, a part of the Oracle E-Business Suite, allows a malicious individual to gain unauthorized access to create, modify, and delete data.

The vulnerability of the Auctions component of the Oracle Sourcing supply management platform, part of the Oracle E-Business Suite, is related to deficiencies in the authentication mechanism. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to...

8.5CVSS7.6AI score0.00436EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/09/30 12:0 a.m.14 views

The vulnerability of the WebRTC component in Google Chrome browsers, related to recording beyond the buffer limit, allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the WebRTC component in the Google Chrome web browser is related to memory corruption beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to access sensitive data, compromise its integrity, and cause service interruptions...

9.3CVSS7.3AI score0.01806EPSS
Exploits0References7Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/09/30 12:0 a.m.14 views

The vulnerability of the iommu/arm-smmu-v3 component of the Linux operating system, which allows a hacker to trigger a service failure.

The vulnerability of the iommu/arm-smmu-v3 component in the Linux operating system is related to the lack of a mechanism to cancel registration when the device is disabled. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS5.9AI score0.00205EPSS
Exploits0References9Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/09/16 12:0 a.m.14 views

The vulnerability of the swpm component in the “Avora” operating system, related to the ability to read beyond the buffer limit of memory, allows a hacker to cause a failure in the execution of the program.

The vulnerability of the software power management component in the “Avora” operating system is related to the ability to read data beyond the buffer limit of memory. Exploiting this vulnerability can lead to service failure...

5CVSS5.7AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/08/28 12:0 a.m.14 views

The vulnerability of the SCADA system MasterSCADA, related to deficiencies in password protection mechanisms, allows unauthorized access to the project by intruders.

The vulnerability of the SCADA system MasterSCADA is related to deficiencies in the password protection mechanism of the project file. Exploiting this vulnerability can allow an intruder to gain unauthorized access to the project by reverting the password hash value...

7.3CVSS5.5AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/08/26 12:0 a.m.14 views

The vulnerability in the session_login.cgi script of the Webmin hosting panel and the web interface for Unix-like systems, Usermin, allows attackers to perform cross-site scripting attacks.

The vulnerability in the sessionlogin.cgi script of the Webmin hosting panel and the web interface for Unix-like systems Usermin exists due to the lack of security measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripti...

6.4CVSS7.3AI score0.004EPSS
Exploits0References6Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/06/18 12:0 a.m.14 views

The vulnerability of the HTTP File Server, related to deficiencies in access control, allows a perpetrator to execute arbitrary code.

The vulnerability of the HTTP File Server is related to deficiencies in access control. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS5.9AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/06/17 12:0 a.m.14 views

The vulnerability of the unflattendtnodes() function in the Linux kernel’s Device Tree driver allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the unflattendtnodes function in the drivers/of/fdt.c module of the Linux kernel’s Device Tree driver is related to a single-issue error. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...

7.8CVSS6.4AI score0.00248EPSS
Exploits0References19Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/05/15 12:0 a.m.14 views

The vulnerability of the qla2x00_mem_alloc() function in the drivers/scsi/qla2xxx/qla_os.c module of the QLogic QLA2XXX kernel driver for the Linux operating system allows a hacker to cause service failure or exert other adverse effects.

The vulnerability of the qla2x00memalloc function in the drivers/scsi/qla2xxx/qlaos.c file of the QLogic QLA2XXX kernel in the Linux operating system is related to the reallocation of previously released memory. Exploiting this vulnerability could allow an attacker to cause a service failure or...

7.8CVSS6.6AI score0.00239EPSS
Exploits0References13Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/04/30 12:0 a.m.14 views

The vulnerability of the Tutor LMS plugin for the WordPress content management system allows a hacker to execute arbitrary SQL queries and gain unauthorized access to protected information.

The vulnerability of the Tutor LMS plugin for the WordPress content management system is related to the lack of protection for the SQL query structure when processing the questionid parameter. Exploiting this vulnerability allows an attacker to execute arbitrary SQL queries and gain unauthorized...

9CVSS8.3AI score0.03135EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/04/09 12:0 a.m.14 views

The vulnerability of thejq programming language lies in its ability to write data beyond the buffer boundaries in memory, which allows attackers to trigger a service failure.

The vulnerability of the JQ programming language lies in buffer overflow attacks. Exploiting this vulnerability can allow attackers to cause system failures...

5.5CVSS6.7AI score0.00514EPSS
Exploits1References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/04/09 12:0 a.m.14 views

The vulnerability of the cross-platform BitTorrent client qBittorrent, which stems from the use of rigidly programmed credentials, allows a hacker to execute arbitrary commands.

The vulnerability of the cross-platform BitTorrent client qBittorrent relates to the use of default credentials when the user’s web interface is enabled. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

10CVSS8.1AI score0.00908EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/04/08 12:0 a.m.14 views

The vulnerability of the nghttp2 codec in the Envoy proxy server allows a attacker to cause a service failure.

The vulnerability of the nghttp2 codec in the Envoy proxy server relates to the implementation of the HTTP/2 protocol. It involves sending an unlimited number of CONTINUATION requests when the maximum header size limit is exceeded, due to the absence of the ENDHEADERS flag. Exploiting this...

5.3CVSS7AI score0.8781EPSS
Exploits1References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/03/22 12:0 a.m.14 views

The vulnerability of the caching mechanism of the declarative delivery tool for GitOps in Kubernetes Argo CD allows attackers to circumvent security restrictions and execute an brute-force attack.

The vulnerability of the caching mechanism for the declarative delivery tool in GitOps for Kubernetes Argo CD lies in the absence of restrictions on authentication attempts when processing the defaultMaxCacheSize parameter. Exploiting this vulnerability allows a malicious actor to bypass security...

7.8CVSS7.3AI score0.00838EPSS
Exploits1References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/03/15 12:0 a.m.14 views

The vulnerability in the web interface for managing microprogrammed software on Cisco Small Business 100, 300, 500 Series Wireless Access Points allows a hacker to execute arbitrary code with root user privileges.

The vulnerability of the web interface for managing microprogrammed software on Cisco Small Business 100, 300, 500 Series Wireless Access Points is related to buffer overflow in the stack. Exploiting this vulnerability allows a malicious actor to execute arbitrary code with root user privileges...

8.5CVSS7.4AI score0.00793EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2024/02/21 12:0 a.m.14 views

The vulnerability of the lookup_sequence function in the ZBar barcode reading library allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the lookupsequence function in the ZBar barcode reading library is related to writing beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and even cause service failures using a...

10CVSS7.9AI score0.01787EPSS
Exploits0References8Affected Software5
Total number of security vulnerabilities5000