90509 matches found
The vulnerability of the AdvSetMacMtuWan function in the microprogramming software for Tenda AC10 allows a hacker to execute arbitrary code.
The vulnerability of the AdvSetMacMtuWan function in the Tenda AC10 router microprogramming software is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by sending a specially crafted GE...
The vulnerability of the hmm_range_fault() function in the drivers/gpu/drm/xe/xe_hmm.c kernel module of the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the hmmrangefault function in the drivers/gpu/drm/xe/xehmm.c kernel module of the Linux operating system is related to improper resource locking. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the btintel_pcie_setup_hdev() function in the Linux kernel’s Bluetooth device support driver allows a hacker to cause a service failure.
The vulnerability of the btintelpciesetuphdev function in the Linux kernel’s Bluetooth device support driver is related to improper control of resource identifiers “resource injection”. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the Data Manager component of Siemens SENTRON 7KT PAC1260, a multi-functional device for measuring parameters of electrical circuits, allows a hacker to gain unauthorized access to the device.
The vulnerability of the Data Manager component of Siemens SENTRON 7KT PAC1260 multi-functional measurement devices for electrical networks lies in the lack of authentication for a critical function. Exploiting this vulnerability can allow an unauthorized attacker to gain unauthorized access to t...
The vulnerability of the command-line interface (CLI) of the PAN-OS operating system, which allows a perpetrator to gain unauthorized access to protected information
The command-line interface CLI of the PAN-OS operating system has vulnerabilities due to the lack of measures to neutralize specific elements. Exploiting these vulnerabilities can allow attackers to gain unauthorized access to protected information...
The vulnerability of the ndisc_send_skb() function in the net/ipv6/ndisc.c module of the Linux operating system’s IPv6 kernel implementation allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the ndiscsendskb function in the net/ipv6/ndisc.c module of the Linux operating system’s IPv6 kernel implementation is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity,...
The vulnerability of the Linux operating system’s kernel Wi-Fi component, which allows a hacker to trigger a service failure
The vulnerability of the Linux operating system’s kernel Wi-Fi component relates to the operation of data out of the buffer in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the tagged_addr_ctrl_get() function in the arch/arm64/kernel/ptrace.c module, which is part of the ARM 64-bit kernel support for the Linux operating system, allows a hacker to gain access to protected information or cause a service failure.
The vulnerability of the taggedaddrctrlget function in the arch/arm64/kernel/ptrace.c module, which is part of the ARM 64-bit kernel support for the Linux operating system, relates to access to an uninitialized pointer. Exploiting this vulnerability could allow an attacker to gain access to...
The vulnerability of the hugetlb component of the try_get_folio() function in the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the hugetlb component in the trygetfolio function of the Linux operating system is related to errors during link counter updates. Exploiting this vulnerability can allow an attacker to cause service failures remotely...
Vulnerability of the dce110_disable_stream() function in the drivers/gpu/drm/amd/display/dc/dce110/dce110_hw_sequencer.c file – This is a driver for supporting Direct Rendering Infrastructure (DRI) in AMD graphics cards for Linux operating systems. It allows attackers to cause service failures.
Vulnerability of the dce110disablestream function in the drivers/gpu/drm/amd/display/dc/dce110/dce110hwsequencer.c module – The driver for AMD GPU Direct Rendering Infrastructure in Linux operating systems is vulnerable to uncontrolled resource consumption. Exploiting this vulnerability could all...
Vulnerability of the pps_gpio_probe() function in the drivers/pps/clients/pps-gpio.c module – This driver for Linux kernel’s PPS client support allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.
Vulnerability of the pps gpioprobe function in the drivers/pps/clients/pps-gpio.c module – The Linux kernel’s PPS client driver has a vulnerability related to the repeated use of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...
The vulnerability in the kernel/workqueue.c module of the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the kernel/workqueue.c module in the Linux operating system is related to insufficient resource locking. Exploiting this vulnerability can allow an attacker to cause a service failure...
Virtio/vsock components of the Linux operating system are vulnerable, allowing attackers to trigger a service failure.
The vulnerability of the virtio/vsock components in Linux operating systems is related to memory leaks. Exploiting this vulnerability can allow an attacker to cause a system failure...
The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine allows attackers to execute arbitrary code.
The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine is related to buffer overflow. Exploiting this vulnerability allows a malicious actor to execute arbitrary code through a specially created HTML page...
The vulnerability of the Golang programming language, related to improper validation of input data, allows attackers to circumvent established security restrictions.
The vulnerability of the Golang programming language is related to improper validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to circumvent established security measures...
The vulnerability of the Linux operating system’s serial kernel component, which allows a hacker to trigger a service failure
The vulnerability of the Linux operating system’s serial kernel component is related to improper validation of input data in the function uartshutdown. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the stmmac_tso_xmit() function in the drivers/net/ethernet/stmicro/stmmac/stmmac_main.c module of the Linux kernel allows a hacker to cause a service failure.
The vulnerability of the stmmactsoxmit function in the drivers/net/ethernet/stmicro/stmmac/stmmacmain.c file of the Linux kernel is related to incorrect error handling. Exploiting this vulnerability can allow an attacker to cause a system failure...
The vulnerability of the PHP Smarty templater, related to improper handling of code generation, allows attackers to execute arbitrary PHP code.
The vulnerability of the PHP Smarty templater is related to improper handling of code generation. Exploiting this vulnerability allows an attacker to execute arbitrary PHP code on the target system...
Vulnerability of the lm3554_probe() function in the drivers/staging/media/atomisp/i2c/atomisp-lm3554.c module – A driver for supporting Intel Atom-based devices in the Linux operating system, which allows an attacker to gain access to protected information.
Vulnerability of the lm3554probe function in the drivers/staging/media/atomisp/i2c/atomisp-lm3554.c module – The driver for Intel Atom-based devices in the Linux operating system is vulnerable to a memory leak before the last reference is freed. Exploiting this vulnerability could allow an attack...
The vulnerability of the ext4handle_error() function in the fs/ext4/super.c module of the Linux file system support module allows a hacker to trigger a service failure.
The vulnerability of the ext4handleerror function in the fs/ext4/super.c module of the Linux file system support module is related to incorrect validation of input data. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the Mozilla Firefox Focus browser, related to access control errors, allows attackers to bypass existing security restrictions.
The vulnerability of the Mozilla Firefox Focus browser is related to access control errors. Exploiting this vulnerability can allow a remote attacker to bypass existing security restrictions...
Vulnerability of the nouveau_gem_new() function in the drivers/gpu/drm/nouveau/nouveau_gem.c module – This driver provides support for Direct Rendering Infrastructure (DRI) in NVIDIA video cards within the Linux operating system. It allows a hacker to trigger a service failure.
Vulnerability of the nouveaugemnew function in the drivers/gpu/drm/nouveau/nouveaugem.c module – The driver that supports Direct Rendering Infrastructure DRI for NVIDIA video cards in the Linux operating system is vulnerable due to the reutilization of previously freed memory. Exploiting this...
The vulnerability of the adv7511_probe() function in the drivers/gpu/drm/bridge/adv7511/adv7511_drv.c kernel module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the adv7511probe function in the drivers/gpu/drm/bridge/adv7511/adv7511drv.c kernel module of the Linux operating system is related to the repeated use of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...
The vulnerability of the Teamcenter Visualization lifecycle management system and the Siemens Tecnomatix Plant Simulation software environment, related to reading beyond the buffer in memory, allows a perpetrator to execute arbitrary code.
The vulnerability of the Teamcenter Visualization lifecycle management system and the Siemens Tecnomatix Plant Simulation software environment related to buffer overflow attacks involves reading data beyond the buffer in memory. Exploiting this vulnerability could allow an attacker to execute...
The vulnerability of the nested_get_evmcs_page() function in the arch/x86/kvm/vmx/nested.c module of the virtualization subsystem on the Linux operating system’s x86 kernel platform allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the nestedgetevmcspage function in the arch/x86/kvm/vmx/nested.c module of the virtualization subsystem on the Linux operating system’s x86 kernel platform is related to incorrect input validation. Exploiting this vulnerability could allow an attacker to compromise the...
Vulnerability of the function bt1_rom_map_copy_from(), located in the driver/mtd/maps/physmap-bt1-rom.c module. This driver provides support for accessing memory devices in Linux kernels, which can be exploited by attackers to compromise confidentiality.
The vulnerability of the bt1rommapcopyfrom function in the drivers/mtd/maps/physmap-bt1-rom.c module – the driver for accessing memory devices in Linux kernels – involves reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to compromise confidentiality...
The vulnerability of the tpm_read_log_efi() function in the drivers/char/tpm/eventlog/efi.c kernel module of the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the tpmreadlogefi function in the drivers/char/tpm/eventlog/efi.c kernel module of the Linux operating system is related to a numerical overflow or cyclic shift. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the Teamcenter Visualization lifecycle management system and the Siemens Tecnomatix Plant Simulation software environment, related to reading beyond the buffer in memory, allows a perpetrator to execute arbitrary code.
The vulnerability of the Teamcenter Visualization lifecycle management system and the Siemens Tecnomatix Plant Simulation software environment related to buffer overflow attacks involves reading data beyond the buffer in memory. Exploiting this vulnerability could allow an attacker to execute...
The vulnerability of the fromAdvSetMacMtuWan() function in the Tenda AC9 router’s software allows a hacker to execute arbitrary code or cause service failures.
The vulnerability of the fromAdvSetMacMtuWan function in the Tenda AC9 router’s microprogramming software is related to the buffer overflow attack when processing the wanMTU parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause service failures...
The vulnerability of the corporate messaging system ROSSAT, related to insufficient protection of operational data, allows a perpetrator to gain unauthorized access to read, modify, or delete data.
The vulnerability of the corporate messaging system ROSSAT is related to insufficient protection of operational data. Exploiting this vulnerability allows a malicious actor, operating remotely, to gain unauthorized access to read, modify, or delete data by sending a specially crafted GET request...
Vulnerability of the siw_create_listen() function in the drivers/infiniband/sw/siw/siw_cm.c module – the Linux kernel’s InfiniBand support driver, which allows an attacker to compromise the confidentiality, integrity, and accessibility of protected information.
Vulnerability of the siwcreatelisten function in the drivers/infiniband/sw/siw/siwcm.c module – The Linux kernel’s InfiniBand support driver is vulnerable due to the repeated use of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality...
The vulnerability of the Vnet/IP SCADA system of Yokogawa CENTUM VP allows a intruder to execute arbitrary code and trigger a maintenance failure.
The vulnerability of the Vnet/IP SCADA system of Yokogawa CENTUM VP is related to a countable loss of significance. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands and cause service failures by sending specially crafted packets...
The vulnerabilities of the s390/sclp components of the Linux operating system’s kernel, which allow a hacker to cause a service failure
The vulnerability of the s390/sclp components of the Linux operating system’s kernel is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a system failure...
The vulnerability of the ethtool component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the ethtool component in the Linux operating system’s kernel is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the soc component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the soc component in the Linux operating system’s kernel is related to incorrect validation of input data. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers allows attackers to execute arbitrary code or cause service interruptions.
The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers relates to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause a denial-of-service attack through a specially crafted HTML page...
The vulnerability of the setUmountUSBPartition function in the microprogramming software for wireless Wi-Fi routers Tenda W30E allows a hacker to execute arbitrary commands.
The vulnerability of the setUmountUSBPartition function in the microprogramming software for Tenda W30E wireless Wi-Fi routers is related to reading data beyond the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...
The vulnerability of the verify_url_valid() function in the Activitypub-Federation framework, a platform for creating and managing communities in the Lemmy ecosystem, allows attackers to circumvent security restrictions and gain unauthorized access to protected information.
The vulnerability of the verifyurlvalid function in the Activitypub-Federation framework, a platform for creating and managing communities in the Lemmy community, is related to insufficient validation of requests on the server side. Exploiting this vulnerability could allow an attacker to bypass...
The vulnerability of the platform’s management interface for deploying and managing LoadMaster applications allows a perpetrator to execute arbitrary commands.
The vulnerability of the platform’s management interface for deploying and managing LoadMaster applications is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands using a specially created HTTP request...
The vulnerability of Mendix LDAP module in the deployment and application testing software platform of Mendix allows a hacker to bypass security restrictions.
The vulnerability of Mendix LDAP in the software deployment and application testing platform relates to the failure to eliminate special elements in LDAP requests. Exploiting this vulnerability allows a malicious actor to bypass security restrictions remotely...
The vulnerability of the eeh_pe_bus_get() function (arch/powerpc/kernel/eeh_pe.c) in the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the eehpebusget function arch/powerpc/kernel/eehpe.c in the Linux operating system is related to improper locking of resources. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability in the software web interface for controlling power supply units like PowerChute Serial Shutdown allows a intruder to trigger a service failure.
The vulnerability in the software web interface for controlling power supply units like PowerChute Serial Shutdown is related to improper authentication. Exploiting this vulnerability could allow an attacker, operating remotely, to cause a service failure...
The vulnerability of the Windows Win32 Kernel subsystem in operating systems allows attackers to increase their privileges.
The vulnerability of the Windows Win32 Kernel subsystem in operating systems involves the possibility of exploiting memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of Microsoft Office and Microsoft 365 Apps for Enterprise packages lies in their ability to exploit memory after it is freed, allowing an attacker to execute arbitrary code.
The vulnerability of Microsoft Office and Microsoft 365 Apps for Enterprise packages relates to the possibility of using memory after it is freed. Exploiting this vulnerability could allow an attacker to execute arbitrary code...
The vulnerability of the formSetClientState function in the Tenda AC18 router software allows a attacker to trigger a service failure or execute arbitrary code.
The vulnerability of the formSetClientState function in the Tenda AC18 router software is related to buffer overflows in the stack when processing the limitSpeedUp parameter. Exploiting this vulnerability can allow an attacker to cause service failures or execute arbitrary code using a specially...
The vulnerability of the installer for Microsoft Visual Studio allows a hacker to increase their privileges.
The vulnerability of the installer of the Microsoft Visual Studio software is related to an uncontrolled element in the search process. Exploiting this vulnerability can allow a perpetrator to enhance their privileges...
The vulnerability of the formSetFirewallCfg function in the microprogramming software for Tenda AC18 allows a hacker to trigger a service failure.
The vulnerability of the formSetFirewallCfg function in the Tenda AC18 router microprogramming system is related to buffer overflow during the processing of the firewallEn parameter. Exploiting this vulnerability can allow a remote attacker to cause a service failure...
The vulnerability of the netfilter component in the Linux operating system’s kernel allows a hacker to induce a service failure.
The vulnerability of the netfilter component in the Linux operating system’s kernel is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the Etcd configuration store, related to insufficient protection for service data, allows a perpetrator to gain unauthorized access to the protected information.
The vulnerability of the Etcd configuration store is related to insufficient protection for service data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...
The vulnerability of the ALSA kernel component in Linux operating systems, which allows a hacker to cause a service failure
The vulnerability of the ALSA kernel component in Linux operating systems is related to improper validation of input data. Exploiting this vulnerability can allow an attacker to cause service failures...