90604 matches found
Vulnerabilities in the SUSE Linux Enterprise operating system that allow attackers to compromise the accessibility of protected information
The kernel-vmipae-debuginfo package of the SUSE Linux Enterprise operating system has multiple vulnerabilities that, if exploited, may lead to a violation of protected information. These vulnerabilities can be exploited remotely...
Vulnerabilities in the OpenSUSE operating system that allow malicious actors to compromise the confidentiality, integrity, and accessibility of protected information
The multiple vulnerabilities in the cloop-kmp-pae package of the OpenSUSE operating system can be exploited, which may lead to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...
Vulnerabilities in the OpenSUSE operating system that allow malicious actors to compromise the confidentiality, integrity, and accessibility of protected information
The cloop-kmp-default-debuginfo package in the operating system openSUSE has multiple vulnerabilities. Exploiting these vulnerabilities can lead to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...
The vulnerability of the Red Hat Enterprise Linux operating system allows malicious actors to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the dbus-devel-1.2.24 package for the Red Hat Enterprise Linux operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. This vulnerability can be exploited locally...
The vulnerability of the OpenSUSE operating system allows malicious actors to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the qt3-devel-doc package in the OpenSUSE operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. This vulnerability can be exploited remotely...
The vulnerability of the OpenSUSE operating system allows attackers to compromise the accessibility of protected information.
The vulnerability of the openSUSE operating system’s openldap2-client-x86 package can lead to a violation of the accessibility of protected information. This vulnerability can be exploited remotely...
Vulnerabilities in the OpenSUSE operating system that allow malicious actors to compromise the confidentiality, integrity, and accessibility of protected information
The multiple vulnerabilities in the xorg-x11-Mesa-devel package of the OpenSUSE operating system may lead to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...
Vulnerabilities of the Debian GNU/Linux operating system that allow a remote attacker to compromise the accessibility of protected information
The multiple vulnerabilities in the hostap-modules-2.4.27-4-686 package of the Debian GNU/Linux operating system may lead to a violation of the accessibility of protected information. These vulnerabilities can be exploited remotely...
Vulnerabilities of the Debian GNU/Linux operating system that allow a remote attacker to compromise the accessibility of protected information
The multiple vulnerabilities in the hostap-modules-2.4.27-4-k6 package of the Debian GNU/Linux operating system may lead to a violation of the accessibility of protected information. These vulnerabilities can be exploited remotely...
Vulnerabilities in the Debian GNU/Linux operating system that allow a local malicious individual to compromise the confidentiality, integrity, and accessibility of protected information
The multiple vulnerabilities in the xboing package of the Debian GNU/Linux operating system may lead to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited by local malicious individuals...
The vulnerability of the Red Hat Enterprise Linux operating system allows malicious actors to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the gcc-4.1.2 package of the Red Hat Enterprise Linux operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. This vulnerability can be exploited locally...
Vulnerabilities of the Debian GNU/Linux operating system that allow a remote attacker to compromise the accessibility of protected information
Multiple vulnerabilities exist in the i2c-2.4.27-4-586tsc package of the Debian GNU/Linux operating system. Exploitation of these vulnerabilities may lead to a violation of the accessibility of protected information. These vulnerabilities can be exploited remotely...
The vulnerability of the Red Hat Enterprise Linux operating system allows malicious actors to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the dbus-glib-0.86 package in the Red Hat Enterprise Linux operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. This vulnerability can be exploited locally...
Vulnerabilities in the Debian GNU/Linux operating system that allow a local malicious individual to compromise the confidentiality, integrity, and accessibility of protected information
The multiple vulnerabilities in the kernel-image-powerpc operating system package of the Debian GNU/Linux distribution may lead to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited by local malicious individuals...
Vulnerabilities in the Debian GNU/Linux operating system that allow a local malicious individual to compromise the confidentiality, integrity, and accessibility of protected information
The multiple vulnerabilities in the kernel-headers-2.2.22 package of the Debian GNU/Linux operating system may lead to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited by local malicious individuals...
Vulnerabilities in the OpenSUSE operating system that allow malicious actors to compromise the confidentiality, integrity, and accessibility of protected information
The multiple vulnerabilities in the plib-devel package of the OpenSUSE operating system can lead to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...
The vulnerabilities in the net/bluetooth/eir.c and net/bluetooth/mgmt.c modules of Linux kernel allow a hacker to cause a service failure.
The vulnerability in the net/bluetooth/eir.c and net/bluetooth/mgmt.c modules of Linux kernel systems relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a system failure...
Blitz Identity Provider (Authentication server)
...
The vulnerability of the security plugin of the OpenSearch software package, which allows a hacker to increase their privileges
The vulnerability of the OpenSearch software security plugin is related to deficiencies in authentication procedures. Exploiting this vulnerability can allow a malicious actor to enhance their privileges remotely...
The vulnerability of the DevTools set of tools for web development in Google Chrome allows a hacker to bypass existing security restrictions.
The vulnerability of the DevTools suite for web development in the Google Chrome browser is related to insufficient testing of input data. Exploiting this vulnerability can allow a malicious actor to bypass existing security restrictions through a specially created HTML page...
The vulnerability of the UniFi OS Server network management center arises from incorrect restrictions on the path to the directory, allowing unauthorized access by intruders to protected information.
The vulnerability of the UniFi OS Server network management center is related to an incorrect limitation on the path name to the catalog. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information...
The vulnerability of the ath11k_wmi_send_peer_assoc_cmd() function in the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the ath11kwmisendpeerassoccmd function in the Linux operating system is related to a lack of data type conversion mechanisms. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability in the web interface for managing Tenda AC7 router micro-program software allows a attacker to perform a CSRF attack.
The vulnerability in the web interface for managing Tenda AC7 router microprogramming software is related to the manipulation of cross-site requests. Exploiting this vulnerability allows a remote attacker to execute a CSRF attack...
The vulnerability of the sub_3C434() function (/goform/AdvSetWan) in the Tenda FH451 router’s microprogramming software allows a hacker to execute arbitrary code.
The vulnerability of the sub3C434 function /goform/AdvSetWan of the Tenda FH451 router’s microprogramming software is related to buffer overflow in the stack. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...
The vulnerability of the HTTPS protocol implementation in macOS operating systems allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the HTTPS protocol’s implementation in macOS systems is related to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to protected information...
The vulnerability of the software for deploying and executing NVIDIA Triton Inference Server (previously known as TensorRT Inference Server) relates to integer overflow. This vulnerability allows a malicious actor to trigger a service failure.
The vulnerability of the software for deploying and executing NVIDIA Triton Inference Server previously known as TensorRT Inference Server is related to a numerical overflow issue. Exploiting this vulnerability could allow an attacker to cause service failures...
The vulnerability of the software for deploying and executing AI models with NVIDIA Triton Inference Server (previously known as TensorRT Inference Server) arises from the execution of operations beyond the buffer boundaries in memory. This allows attackers to gain unauthorized access to protected information, execute arbitrary code, or cause service failures.
The vulnerability of the software for deploying and executing NVIDIA Triton Inference Server previously known as TensorRT Inference Server relates to the execution of operations outside of the buffer in memory. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access ...
The vulnerability of the monitoring and control device for solar energy systems, Tigo Cloud Connect Advanced (CCA), arises from the use of strictly encrypted account data. This allows attackers to circumvent security restrictions, gain increased privileges, and obtain full control over the device.
The vulnerability of the monitoring and control device for solar energy systems, Tigo Cloud Connect Advanced CCA, lies in the use of strictly encrypted account data. Exploiting this vulnerability allows a malicious actor to bypass security restrictions, gain increased privileges, and obtain full...
The vulnerability of the v3d_job_update_stats() function in the File Descriptor Handler component of the Linux kernel allows a attacker to cause a service failure.
The vulnerability of the v3djobupdatestats function in the File Descriptor Handler component of the Linux operating system is related to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the netfs_retry_write_stream() function in the fs/netfs/write_retry.c module of the Linux operating system allows a attacker to cause a service failure.
The vulnerability of the netfsretrywritestream function in the fs/netfs/writeretry.c module of the Linux operating system is related to the violation of the buffer’s initial limit. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the REST API implementation of the monitoring and network equipment management system called Cisco Prime Infrastructure, as well as the Cisco Evolved Programmable Network Manager (EPNM) software for managing network services, allows a attacker to execute arbitrary code.
The vulnerability of the REST API interface of the Cisco Prime Infrastructure monitoring and network equipment management system, as well as the Cisco Evolved Programmable Network Manager EPNM, relates to the lack of security measures for SQL query structures. Exploiting this vulnerability allows...
The vulnerability of the phy_detach() function in the drivers/net/phy/phy_device.c module of Linux kernel allows a hacker to cause a service failure.
The vulnerability of the phydetach function in the drivers/net/phy/phydevice.c module of Linux kernels is related to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the `txopt_get()` function in the Linux operating system’s kernel allows a hacker to cause a service failure.
The vulnerability of the txoptget function in the Linux operating system’s kernel is related to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of Microsoft Exchange Server’s mail server, related to deficiencies in authentication procedures, allows attackers to escalate their privileges.
The vulnerability of Microsoft Exchange Server is related to deficiencies in authentication procedures. Exploiting this vulnerability can allow attackers to increase their privileges remotely...
The vulnerability of the sub_435E04() function in Netgear JWNR2000v2 software allows a hacker to execute arbitrary commands.
The vulnerability of the sub435E04 function in Netgear JWNR2000v2 microprogrammed software lies in the lack of measures taken to clean data at the control level when processing the host parameter. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary commands...
The vulnerability of the get_cur_lang_ver() function in Netgear’s JWNR2000v2 router software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the getcurlangver function in Netgear JWNR2000v2 router microprogramming software is related to the copying of buffers without checking the size of the input data when processing the host parameter. Exploiting this vulnerability can allow an attacker to compromise the...
The vulnerability of the chrome.fileSystem interface in the Google Chrome browser allows a perpetrator to replace the user interface.
The vulnerability of the chrome.fileSystem interface in the Google Chrome browser is related to errors in the implementation of security checks for standard elements. Exploiting this vulnerability allows a remote attacker to replace the user’s interface...
The vulnerability of the Permissions control element in the Google Chrome browser allows a hacker to replace the user interface.
The vulnerability of the Permissions control element in Google Chrome is related to errors in the implementation of security checks for standard elements. Exploiting this vulnerability allows a remote attacker to replace the user interface...
The vulnerability of Android operating systems, related to deficiencies in access control, allows attackers to execute arbitrary code.
The vulnerability of Android operating systems is related to deficiencies in access control. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the MediaStream interface in Google Chrome and Microsoft Edge browsers allows a hacker to execute arbitrary code or cause a service failure.
The vulnerability of the MediaStream interface in Google Chrome and Microsoft Edge relates to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause a service failure by using a specially crafted HTML page...
The vulnerability of the web page rendering module in WebKit operating systems such as macOS, iPadOS, VisionOS, iOS, WatchOS, and tvOS allows attackers to trigger a service failure.
The vulnerability of the web page rendering module in WebKit operating systems such as macOS, iPadOS, VisionOS, iOS, WatchOS, and tvOS is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability can allow a malicious actor to cause service interruption...
The vulnerability of the Adobe Experience Manager content and media data management system, related to configuration errors, allows a hacker to bypass existing security restrictions and execute arbitrary code.
The vulnerability of the Adobe Experience Manager content and media data management system is related to configuration errors. Exploiting this vulnerability can allow a malicious actor to bypass existing security restrictions and execute arbitrary code...
The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers allows attackers to trigger a service failure.
The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers is related to type conversion errors. Exploiting this vulnerability can allow a malicious actor to cause service interruptions through a specially crafted HTML page...
The vulnerability of the Site Survey web interface of the Intelbras RX 1500 and RX 3000 software allows attackers to perform cross-site scripting attacks.
The vulnerability of the Site Survey web interface of the Intelbras RX 1500 and RX 3000 software lies in the lack of measures taken to neutralize special elements during the processing of ESSID identifiers. Exploiting this vulnerability allows a remote attacker to perform domain-external attacks ...
The vulnerability of the CoreMedia Playback component in operating systems such as macOS, iOS, iPadOS, watchOS, tvOS, and visionOS allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the CoreMedia Playback component in operating systems such as macOS, iOS, iPadOS, watchOS, tvOS, and visionOS is related to improper authentication. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...
The vulnerability of the web page rendering module in WebKit-based operating systems such as iOS, iPadOS, macOS, tvOS, visionOS, watchOS, and the Safari browser allows a perpetrator to trigger a service failure.
The vulnerability of the web page rendering module in WebKit operating systems for iOS, iPadOS, macOS, tvOS, visionOS, watchOS, and the Safari browser arises from operations that go beyond the buffer limits in memory. Exploiting this vulnerability can allow a malicious actor to cause service...
The vulnerability in the tmUnblock.cgi script of the wireless router software from Linksys WRT120N allows a intruder to gain unauthorized access to the control web interface.
The vulnerability of the tmUnblock.cgi microprogramming software for wireless routers like Linksys WRT120N is related to buffer overflows in the stack when processing the TMBlockURL parameter. Exploiting this vulnerability allows an attacker to gain unauthorized access to the web-based control...
The vulnerability of the generate_pass_from_mac function in D-Link DCS-6517 and DCS-7517 microprogrammed camera software allows a intruder to compromise the confidentiality of the protected information.
The vulnerability of the generatepassfrommac function in D-Link DCS-6517 and DCS-7517 microprogrammed camera software is related to insufficient entropy. Exploiting this vulnerability allows a remote attacker to compromise the confidentiality of the protected information...
The vulnerability of the icl_update_topdown_event() function in the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the iclupdatetopdownevent function in the Linux operating system is related to improper cleaning or release of resources. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the Docker-based deployment and email server management tool, mailcow:dockerized, lies in the redirection of URLs to an unreliable website, allowing attackers to carry out phishing attacks.
The vulnerability of the Docker-based deployment and email server management tool, mailcow:dockerized, relates to the redirection of URLs to an unreliable website. Exploiting this vulnerability allows a remote attacker to carry out phishing attacks using a specially created malicious link...