90509 matches found
The vulnerability of the MySQL database management system allows attackers to manipulate the accessibility of information.
The vulnerability of the MySQL database management system is related to errors in the code. Exploiting this vulnerability can allow a malicious actor, operating remotely, to compromise accessibility by affecting the Optimizer server...
The vulnerability of Oracle WebLogic Server application servers allows attackers to compromise the integrity, availability, and confidentiality of information.
The vulnerability of the Oracle WebLogic Server application server is related to errors in the code. Exploiting this vulnerability can allow a malicious actor to compromise the integrity, availability, and confidentiality of information by manipulating the Java Messaging Service...
The vulnerability of the Android operating system, which allows a hacker to trigger a service failure
The vulnerability of the getCoverageFormat12 function in the CmapCoverage.cpp library of the Minikin operating system in Android is caused by a numerical overflow. Exploiting this vulnerability could allow an attacker acting locally to trigger a service failure long-term reboot through an...
The vulnerability of the Android operating system allows a hacker to trigger a service failure or execute arbitrary code.
The vulnerability of the libstagefright component in the Android operating system’s media server arises due to buffer overflow. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or cause a service failure memory corruption by using a specially crafted media file tha...
The vulnerability of Google Chrome browser allows a perpetrator to trigger a service failure or cause other effects.
The vulnerability of the ProcessCommandsInternal function in the Brotli data compression algorithm used by Google Chrome can be exploited due to a loss of precision in integer calculations. Exploiting this vulnerability may allow an attacker to cause a service failure buffer overflow, or possibly...
The vulnerability of Google Chrome browser allows a violator to circumvent existing access restrictions.
The vulnerability of the WebRequest API implementation in the extensions/browser/api/webrequest/webrequestapi.cc component of the Google Chrome browser is related to security configuration errors. Exploiting this vulnerability allows a malicious actor to circumvent existing access restrictions...
Vulnerabilities of iOS and Mac OS X operating systems, allowing attackers to execute arbitrary code or cause system failures
The vulnerability of the ImageIO component in iOS and Mac OS X operating systems arises due to buffer overflow. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or cause a service failure by using a specially crafted TIFF image...
The vulnerability of the WPS protocol, which allows a hacker to obtain the WPA PSK key
Vulnerability exists in the WPS protocol, which is designed for simplified setup of secure Wi-Fi connections. During authentication, when checking the PIN code, the Wi-Fi device returns various EAP-NACK messages, depending on which half of the entered PIN code is incorrect. This allows a remote...
The vulnerability of Adobe Acrobat DC, a PDF editing software, allows a hacker to circumvent existing access restrictions.
The vulnerability of the Adobe Acrobat DC PDF editing program is related to lack of access control mechanisms. Exploiting this vulnerability could allow a malicious actor to circumvent existing access restrictions remotely...
The vulnerability of the Red Hat Enterprise Linux operating system allows a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the glibc-debuginfo-common-2.17 package in the Red Hat Enterprise Linux operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. This vulnerability can be exploited remotely...
The vulnerability of the MySQL database management system allows a remote attacker to cause a service failure.
The vulnerability of the MySQL database management system allows a malicious actor, who operates remotely and has completed the authentication process, to compromise data accessibility by using the InnoDB subcomponent...
Vulnerabilities of the Debian GNU/Linux operating system that allow a remote attacker to compromise the accessibility of protected information
Multiple vulnerabilities exist in the i2c-2.4.27-4-686 operating system package for Debian GNU/Linux. Exploitation of these vulnerabilities may lead to a violation of the accessibility of protected information. These vulnerabilities can be exploited remotely...
Vulnerabilities in the SUSE Linux Enterprise operating system that allow attackers to compromise the accessibility of protected information
Multiple vulnerabilities exist in the kernel-kdumppae package of the SUSE Linux Enterprise operating system. Exploitation of these vulnerabilities can lead to a violation of the accessibility of protected information. These vulnerabilities can be exploited remotely...
The vulnerability of the Red Hat Enterprise Linux operating system allows malicious actors to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the gcc-4.1.2 package of the Red Hat Enterprise Linux operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. This vulnerability can be exploited locally...
Vulnerabilities of the Debian GNU/Linux operating system that allow a remote attacker to compromise the accessibility of protected information
The multiple vulnerabilities in the hostap-modules-2.4.27-4-686-smp package of the Debian GNU/Linux operating system may lead to a violation of the accessibility of protected information. Exploitation of these vulnerabilities can be carried out remotely...
The vulnerability in the implementation of the select() and FD_SET() functions of the nss-pam-ldapd package allows a attacker to execute arbitrary code or cause a service failure.
The vulnerability of the select and FDSET functions in the nss-pam-ldapd package lies in the overflow of the file descriptor. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code or cause a denial-of-service attack...
Vulnerabilities in the operating system openSUSE, which allow a malicious individual to compromise the accessibility of protected information
The adm8211-kmp-debug package of the OpenSUSE operating system has multiple vulnerabilities. Exploitation of these vulnerabilities may lead to a violation of the accessibility of protected information. These vulnerabilities can be exploited remotely...
The vulnerability of the OpenSUSE operating system allows malicious actors to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the qt3-devel-doc package in the OpenSUSE operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. This vulnerability can be exploited remotely...
Vulnerabilities in the SUSE Linux Enterprise operating system that allow attackers to compromise the confidentiality, integrity, and accessibility of protected information
The multiple vulnerabilities in the ppc64-diag package of the SUSE Linux Enterprise operating system can lead to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited locally...
Vulnerabilities in the Debian GNU/Linux operating system that allow a local malicious individual to compromise the confidentiality, integrity, and accessibility of protected information
The kernel-image-2.2.22-generic package of the Debian GNU/Linux operating system has multiple vulnerabilities. Exploitation of these vulnerabilities may lead to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited by local...
The vulnerability of the Red Hat Enterprise Linux operating system allows malicious actors to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the dbus-glib-0.86 package in the Red Hat Enterprise Linux operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. This vulnerability can be exploited locally...
The vulnerability of the Red Hat Enterprise Linux operating system allows malicious actors to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the dbus-devel-1.2.24 package for the Red Hat Enterprise Linux operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. This vulnerability can be exploited locally...
Vulnerabilities in the OpenSUSE operating system that allow malicious actors to compromise the confidentiality, integrity, and accessibility of protected information
The multiple vulnerabilities in the plib-devel package of the OpenSUSE operating system can lead to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...
Vulnerabilities in the Debian GNU/Linux operating system that allow a local malicious individual to compromise the confidentiality, integrity, and accessibility of protected information
The multiple vulnerabilities in the kernel-headers-2.2.22 package of the Debian GNU/Linux operating system may lead to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited by local malicious individuals...
The vulnerability of the Red Hat Enterprise Linux operating system allows a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the cups-lpd-1.3.7 package for the Red Hat Enterprise Linux operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. This vulnerability can be exploited remotely...
Vulnerabilities in the OpenSUSE operating system that allow malicious actors to compromise the confidentiality, integrity, and accessibility of protected information
The multiple vulnerabilities in the cloop-kmp-pae-debuginfo package of the OpenSUSE operating system can be exploited, leading to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...
Vulnerabilities in the OpenSUSE operating system that allow malicious actors to compromise the confidentiality, integrity, and accessibility of protected information
The multiple vulnerabilities in the cloop-debugsource package of the OpenSUSE operating system can lead to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...
The vulnerability of the Directum Web Agent component of the Directum RX system, which arises due to insufficient validation of input data, allows a perpetrator to execute arbitrary code.
The vulnerability of the Directum Web Agent component of the Directum RX system exists due to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code using a specially crafted file...
The vulnerability of Google Chrome’s Password Manager component allows a hacker to replace the user interface.
The vulnerability of Google Chrome’s Password Manager component is related to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to replace the user interface...
The vulnerability of the Cookies component of the Google Chrome browser allows a violator to enhance their privileges.
The vulnerability of the Google Chrome browser’s Cookies component is related to the reliance on cookies without verifying their authenticity and integrity. Exploiting this vulnerability can allow a malicious actor to enhance their privileges through a specially created HTML page...
The vulnerability of the setRIP() function in the mod_form.so script of Linksys routers such as RE6250, RE6300, RE6350, RE6500, RE7000, and RE9000 allows a hacker to execute arbitrary code or cause service failures.
The vulnerability of the setRIP function in the modform.so script of Linksys routers such as RE6250, RE6300, RE6350, RE6500, RE7000, and RE9000 lies in the fact that the output of the operation goes beyond the buffer in memory when processing parameters like RIPmode and RIPpasswd. Exploiting this...
The vulnerability of the fimc_is_hw_change_mode() function in the Linux kernel’s media component, which allows a hacker to trigger a service failure
The vulnerability of the fimcisHWchangeMode function in the Linux kernel’s media component is related to state management errors. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability in the built-in web server boa (/server/boa.conf) of the TRENDnet TV-IP110WN IP camera software allows a intruder to escalate their privileges and gain full control over the device.
The vulnerability of the built-in web server boa /server/boa.conf of the TRENDnet TV-IP110WN IP camera software is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to enhance their privileges and gain full control over the device...
The vulnerability of the GENESIS64 SCADA system’s software packages for monitoring and data collection, specifically the MC Works64 package, arises from errors in processing .LNK files. This vulnerability allows a intruder to write arbitrary files and trigger service failures.
The vulnerability of the GENESIS64 SCADA system’s software packages for monitoring and data collection via the MC Works64 interface is related to errors in processing files with the .LNK extension. Exploiting this vulnerability allows an intruder to write arbitrary files and cause service failure...
The vulnerability of the software for deploying and executing NVIDIA Triton Inference Server (previously known as TensorRT Inference Server) relates to integer overflow. This vulnerability allows a malicious actor to trigger a service failure.
The vulnerability of the software for deploying and executing NVIDIA Triton Inference Server previously known as TensorRT Inference Server is related to a numerical overflow issue. Exploiting this vulnerability could allow an attacker to cause service failures...
The vulnerability of the software for deploying and executing AI models with NVIDIA Triton Inference Server (previously known as TensorRT Inference Server) relates to buffer overflows in the stack. This allows an attacker to gain unauthorized access to protected information, execute arbitrary code, or cause a service failure.
The vulnerability of the software for deploying and executing NVIDIA Triton Inference Server previously known as TensorRT Inference Server is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information, execute...
The vulnerability of the strongSwan microprogramming software firewall solution developed by Ruijie RG-EG306MG-P allows a intruder to disclose protected information.
The vulnerability of the strongSwan microprogramming software firewall solution from Ruijie RG-EG306MG-P lies in the lack of encryption for confidential data during the processing of the parameter “idontcareaboutsecurityanduseaggressivemodepsk”. Exploiting this vulnerability can allow a remote...
The vulnerability of the ad4851_parseChannels_common() function in the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the ad4851parseChannelscommon function in the Linux operating system is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the phy_detach() function in the drivers/net/phy/phy_device.c module of Linux kernel allows a hacker to cause a service failure.
The vulnerability of the phydetach function in the drivers/net/phy/phydevice.c module of Linux kernels is related to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the netfs_retry_write_stream() function in the fs/netfs/write_retry.c module of the Linux operating system allows a attacker to cause a service failure.
The vulnerability of the netfsretrywritestream function in the fs/netfs/writeretry.c module of the Linux operating system is related to the violation of the buffer’s initial limit. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the DEVICE_PING command in the monitoring and control software for solar energy systems, Tigo Cloud Connect Advanced (CCA), allows a hacker to gain unauthorized access to protected information, execute arbitrary commands, or cause service interruptions.
The vulnerability of the DEVICEPING command in the monitoring and management tool for solar energy systems, Tigo Cloud Connect Advanced CCA, is related to the lack of data cleaning at the control level during the processing of the final endpoint /cgi-bin/mobileapi. Exploiting this vulnerability c...
The vulnerability in the Apache HTTP Server’s web server lies in improper checking of the return value of a function, allowing attackers to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the Apache HTTP Server is related to improper checking of the return value of a function. Exploiting this vulnerability allows an attacker, operating remotely, to compromise the confidentiality, integrity, and accessibility of the protected information...
The vulnerability of the FortiOS operating systems, related to operations beyond the buffer in memory, allows attackers to execute arbitrary code or commands.
The vulnerability of the FortiOS operating systems is related to operations that occur outside of the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or commands by sending specially crafted HTTP requests...
The vulnerability of Microsoft Exchange Server’s mail server, related to deficiencies in authentication procedures, allows attackers to escalate their privileges.
The vulnerability of Microsoft Exchange Server is related to deficiencies in authentication procedures. Exploiting this vulnerability can allow attackers to increase their privileges remotely...
The vulnerability of the UPDM_wstpCBCUpdStart() function of the Alpine iLX-507 audio system allows a hacker to execute arbitrary code in the context of the root user.
The vulnerability of the UPDMwstpCBCUpdStart function of the Alpine iLX-507 audio system exists due to the failure to take measures to neutralize certain special elements. Exploiting this vulnerability can allow a hacker to execute arbitrary code under the root user’s context...
The vulnerability of NVIDIA GeForce, Quadro, NVS, and Tesla graphics processors’ microprogramming software relates to the disclosure of system data by unauthorized individuals, allowing attackers to gain unauthorized access to protected information.
The vulnerability of NVIDIA GeForce, Quadro, NVS, and Tesla graphics processors’ microprogramming software relates to the disclosure of system data by unauthorized individuals. Exploiting this vulnerability can allow a hacker to gain unauthorized access to protected information...
The vulnerabilities of Mozilla Firefox, Firefox ESR, and the email client Thunderbird, related to the disclosure of information, allow attackers to compromise the confidentiality and integrity of protected information.
The vulnerabilities of Mozilla Firefox, Firefox ESR, and the email client Thunderbird are related to the exposure of information. Exploiting these vulnerabilities can allow a malicious actor to compromise the confidentiality and integrity of the protected information...
The vulnerability of Autodesk 3dsMax software for 3D modeling, animation, and visualization lies in the possibility of an operation going beyond the buffer boundaries in memory. This allows a malicious actor to execute arbitrary code or cause system failures.
The vulnerability of the software for 3D modeling, animation, and visualization in Autodesk 3dsMax relates to the execution of operations beyond the buffer boundaries in memory when processing RGB files. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or cause...
The vulnerability of the chrome.fileSystem interface in the Google Chrome browser allows a perpetrator to replace the user interface.
The vulnerability of the chrome.fileSystem interface in the Google Chrome browser is related to errors in the implementation of security checks for standard elements. Exploiting this vulnerability allows a remote attacker to replace the user’s interface...
The vulnerability of the sub_435E04() function in Netgear JWNR2000v2 software allows a hacker to execute arbitrary commands.
The vulnerability of the sub435E04 function in Netgear JWNR2000v2 microprogrammed software lies in the lack of measures taken to clean data at the control level when processing the host parameter. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary commands...