Lucene search
K
Bdu FstecMost viewed

90509 matches found

BDU FSTEC
BDU FSTEC
added 2025/07/02 12:0 a.m.12 views

The vulnerability of mediatek’s Linux operating system drivers allows a hacker to cause a service failure.

The vulnerability of mediatek’s Linux operating system drivers is related to pointer arithmetic errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00228EPSS
Exploits0References10Affected Software4
BDU FSTEC
BDU FSTEC
added 2025/07/01 12:0 a.m.12 views

The vulnerability of Adobe InDesign’s computer layout automation tool, related to writing beyond the buffer limit, allows a hacker to execute arbitrary code.

The vulnerability of Adobe InDesign’s computer layout automation tool is related to writing outside the buffer. Exploiting this vulnerability allows a attacker to execute arbitrary code using a specially created malicious file...

7.8CVSS5.9AI score0.00228EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/30 12:0 a.m.12 views

The vulnerability in the LLVM Toolchain development tools, related to reading data beyond the buffer boundary, allows a attacker to trigger a service failure.

The vulnerability of the LLVM Toolchain development tools is related to reading data beyond the allowed buffer size. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.1AI score0.00218EPSS
Exploits0References6Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/06/25 12:0 a.m.12 views

Vulnerability of the macbremove() function in the drivers/net/ethernet/cadence/macbpci.c module – a driver for supporting Ethernet adapter support in Cadence’s Linux-based operating system, which allows a hacker to cause a service failure.

Vulnerability of the macbremove function in the drivers/net/ethernet/cadence/macbpci.c module – The Cadence Ethernet adapter driver for Linux operating systems is vulnerable due to the repeated use of previously freed memory. Exploiting this vulnerability could allow an attacker to cause a servic...

7.8CVSS6.3AI score0.00242EPSS
Exploits0References16Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/25 12:0 a.m.12 views

The vulnerability of the WinRAR file archiver, related to incorrect restrictions on the path name of the restricted directory, allows a hacker to execute arbitrary code.

The vulnerability of the WinRAR file archiver is related to incorrect restrictions on the path name of the restricted directory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code upon opening a specially crafted file...

7.8CVSS8AI score0.86192EPSS
Exploits8References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/25 12:0 a.m.12 views

The vulnerabilities of PDF viewing and editing programs such as Acrobat DC, Acrobat Reader DC, Acrobat 2024, Acrobat 2020, and Acrobat Reader 2020 are related to the use of memory after it is freed. This allows attackers to execute arbitrary code.

The vulnerability of PDF viewing and editing programs such as Acrobat DC, Acrobat Reader DC, Acrobat 2024, Acrobat 2020, and Acrobat Reader 2020 is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to execute arbitrary code in the context of the...

7.8CVSS7.6AI score0.00365EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/06/25 12:0 a.m.12 views

The vulnerability of the __poke_user() function in the arch/s390/kernel/ptrace.c module of the Linux operating system allows a hacker to gain access to protected information or cause a service failure.

The vulnerability of the pokeuser function in the arch/s390/kernel/ptrace.c module of the Linux operating system is related to reading beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to access protected information or cause service interruptions...

7.1CVSS6.7AI score0.00242EPSS
Exploits0References40Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.12 views

Vulnerability of the mt7615_coredump_work() function in the drivers/net/wireless/mediatek/mt76/mt7615/mac.c module – This driver is responsible for supporting wireless communication adapters in the Linux operating system. An attacker can exploit this vulnerability to gain access to protected information.

Vulnerability of the mt7615coredumpwork function in the drivers/net/wireless/mediatek/mt76/mt7615/mac.c module – The driver for supporting kernel-level wireless adapters in the Linux operating system is vulnerable due to improper memory release before deleting the last reference memory leak...

5.5CVSS5.5AI score0.00205EPSS
Exploits0References9Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/20 12:0 a.m.12 views

The vulnerability of the Cisco AnyConnect VPN server in the microprogramming software for Cisco Meraki MX and Cisco Meraki Z teleworkers allows a hacker to cause a service outage.

The vulnerability of the Cisco AnyConnect VPN server in the microprogramming software for Cisco Meraki MX and Cisco Meraki Z teleworkers relates to writing beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a malicious actor to cause service interruptions by sending...

8.6CVSS5.7AI score0.00508EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/09 12:0 a.m.12 views

The vulnerability of the `btrfs_truncate inode items()` function in the `fs/btrfs/ctree.h` module of the Linux file system support module allows a attacker to cause a service failure.

The vulnerability of the btrfstruncate inode items function in the fs/btrfs/ctree.h module of the Linux file system support library is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to cause service failures...

5.5CVSS5.9AI score0.00181EPSS
Exploits0References15Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/06/09 12:0 a.m.12 views

The vulnerability of the cleanup_bearer() function in the net/tipc/udp-media.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the cleanupbearer function in the net/tipc/udp-media.c module of the Linux operating system is related to the reutilization of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of...

7.8CVSS6.7AI score0.00238EPSS
Exploits0References26Affected Software8
BDU FSTEC
BDU FSTEC
added 2025/05/27 12:0 a.m.12 views

The vulnerability of the DataHandler module and the Setup Module of the TYPO3 content management system allows attackers to bypass security restrictions and gain unauthorized access to protected information.

The vulnerability of the DataHandler module and the Setup Module in the TYPO3 content management system is related to the lack of necessary checks during password changes. Exploiting this vulnerability allows an attacker to bypass security restrictions and gain unauthorized access to protected...

5.5CVSS5.4AI score0.0024EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/26 12:0 a.m.12 views

The vulnerability of the configuration @EnableMethodSecurity(mode=ASPECTJ) or spring-security-aspects in the Java framework for securing Spring-based industrial applications allows attackers to bypass the authentication process.

The vulnerability of the @EnableMethodSecurity'mode=ASPECTJ configuration or the spring-security-aspects Java framework for securing Spring-based industrial applications is related to a flaw in the data protection mechanism. Exploiting this vulnerability could allow an attacker to bypass...

9.4CVSS7.1AI score0.00535EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/26 12:0 a.m.12 views

The vulnerability of the VBI libzvbi library’s capture and decoding function is related to a numerical overflow in the _vbi_strndup_iconv() function. This allows an attacker to cause a service failure.

The vulnerability of the VBI libzvbi library’s capture and decoding functions is related to a numerical overflow in the vbistrndupiconv function. Exploiting this vulnerability could allow an attacker to cause a service failure remotely...

5CVSS6.4AI score0.00572EPSS
Exploits0References10Affected Software6
BDU FSTEC
BDU FSTEC
added 2025/05/26 12:0 a.m.12 views

The vulnerability of the VS6ComFile!MakeItemGlidZahyou() function in the HMI configuration software for Monitouch V-SFT allows a malicious individual to gain unauthorized access to protected information, execute arbitrary code, or cause a service failure.

The vulnerability of the VS6ComFile!MakeItemGlidZahyou function in the HMI configuration software for Monitouch V-SFT lies in the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information, execute...

7.8CVSS7.8AI score0.00191EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/26 12:0 a.m.12 views

The vulnerability of the VS6ComFile!CV7BaseMap::WriteV7DataToRom() function of the Monitouch V-SFT HMI configuration software allows a malicious individual to gain unauthorized access to protected information, execute arbitrary code, or cause service failure.

The vulnerability of the VS6ComFile!CV7BaseMap::WriteV7DataToRom function of the HMI configuration software for Monitouch V-SFT lies in the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected informatio...

7.8CVSS7.8AI score0.00211EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/26 12:0 a.m.12 views

The vulnerability of the webExcptypemanFilter function in the Tenda FH451 router software allows a hacker to execute arbitrary code.

The vulnerability of the webExcptypemanFilter function in the Tenda FH451 router software lies in the reading of data beyond the buffer boundaries in memory during the processing of the page parameter. Exploiting this vulnerability allows an attacker to execute arbitrary code by sending a special...

9CVSS8.3AI score0.00817EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/26 12:0 a.m.12 views

The vulnerability of the web_rmon_alarm_post_rmon_alarm() function in PLANET Technology’s microcontroller software allows a intruder to compromise the confidentiality and integrity of the protected information.

The vulnerability of the webrmonalarmpostrmonalarm function in PLANET Technology’s microcontroller software is related to buffer overflows in the stack when processing the ownekey parameter. Exploiting this vulnerability could allow an attacker to compromise the confidentiality and integrity of t...

6.5CVSS5.7AI score0.00248EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/26 12:0 a.m.12 views

The vulnerability of the web_acl_ipv4BasedAceAdd() function in PLANET Technology’s microprogrammed switching software allows a perpetrator to compromise the confidentiality and integrity of the protected information.

The vulnerability of the webaclipv4BasedAceAdd function in PLANET Technology’s microprogrammed switching software is related to buffer overflows in the stack when processing the ipv4Aclkey parameter. Exploiting this vulnerability can allow an attacker to compromise the confidentiality and integri...

6.5CVSS5.7AI score0.00248EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/26 12:0 a.m.12 views

Vulnerability of the VS6EditData!CDrawSLine::GetRectArea() function of the HMI configuration software for Monitouch V-SFT: This vulnerability allows an attacker to gain unauthorized access to protected information, execute arbitrary code, or cause a service failure.

The vulnerability of the VS6EditData!CDrawSLine::GetRectArea function of the HMI configuration software for Monitouch V-SFT is related to the occurrence of operations outside the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to gain unauthorized access to...

7.8CVSS7.7AI score0.00191EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/26 12:0 a.m.12 views

Vulnerability of the VS6EditData!CGamenDataRom::set_mr400_strc() function in the programming tool for configuring HMI interfaces of Monitouch V-SFT: This allows an attacker to gain unauthorized access to protected information, execute arbitrary code, or cause a service failure.

The vulnerability of the VS6EditData!CGamenDataRom::setmr400strc function in the HMI configuration software for Monitouch V-SFT is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected...

7.8CVSS7.8AI score0.00191EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/26 12:0 a.m.12 views

The vulnerability of the lpfc_get_sfp_info_wait() function in the Linux kernel’s SCSI device support driver allows a attacker to cause a service failure.

The vulnerability of the lpfcgetsfpinfowait function in the Linux kernel’s SCSI device support driver relates to the reutilization of previously freed memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.5AI score0.00205EPSS
Exploits0References7Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/05/26 12:0 a.m.12 views

Vulnerability of the VS6EditData!CDataRomErrorCheck::MacroCommandCheck() function in the HMI configuration software for Monitouch V-SFT: This vulnerability allows an attacker to gain unauthorized access to protected information, execute arbitrary code, or cause a service failure.

The vulnerability of the VS6EditData!CDataRomErrorCheck::MacroCommandCheck function in the HMI configuration software for Monitouch V-SFT lies in the possibility of the operation exceeding the buffer limits in memory. Exploiting this vulnerability could allow an attacker to gain unauthorized acce...

7.8CVSS7.7AI score0.00191EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/26 12:0 a.m.12 views

The vulnerability of the VS6MemInIF.dll!set_plc_type_default() function in the HMI configuration software for Monitouch V-SFT allows a malicious individual to gain unauthorized access to protected information, execute arbitrary code, or cause service failure.

The vulnerability of the VS6MemInIF.dll!setplctypedefault function in the HMI configuration software for Monitouch V-SFT is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

7.8CVSS7.8AI score0.00191EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/26 12:0 a.m.12 views

The vulnerability of the Quiz Maker plugin of the WordPress content management system, related to the failure to protect the SQL query structure, allows attackers to execute arbitrary SQL code.

The vulnerability of the Quiz Maker plugin of the WordPress content management system is related to the lack of protection for the SQL query structure when processing the id parameter. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL code remotely...

7.8CVSS8.2AI score0.00662EPSS
Exploits1References5
BDU FSTEC
BDU FSTEC
added 2025/05/25 12:0 a.m.12 views

The vulnerability of the web_sys_infoContact_post() function in PLANET Technology’s microcontroller software allows a intruder to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the websysinfoContactpost function in PLANET Technology’s microcontroller software stems from the operation of the function beyond the buffer boundaries in memory when processing the contact parameter. Exploiting this vulnerability could allow an attacker to compromise the...

10CVSS5.6AI score0.00453EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/25 12:0 a.m.12 views

The vulnerability of the web_snmp_v3host_add_post() function in PLANET Technology’s microcontroller software allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the websnmpv3hostaddpost function in PLANET Technology’s microcontroller software stems from the issue of the operation exceeding the buffer boundaries in memory when processing the hostip parameter. Exploiting this vulnerability allows an attacker to compromise the...

10CVSS5.7AI score0.00453EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/23 12:0 a.m.12 views

The vulnerability of the dcn315_populate_dml_pipes_from_context() function in the DRI driver for AMD Linux kernel-based graphics cards allows a attacker to cause a service failure.

The vulnerability of the dcn315populatedmlpipesfromcontext function in the DRI driver for AMD Linux kernel-based graphics cards is related to insufficient validation of input data during division by zero. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.5AI score0.00239EPSS
Exploits0References10Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/05/23 12:0 a.m.12 views

The vulnerability of the ufshcd_remove() function in the UFS kernel driver of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the ufshcdremove function in the UFS driver of the Linux operating system is related to an unvalidated return value, which leads to pointer dereferencing. Exploiting this vulnerability could allow a attacker to cause a service failure...

5.5CVSS6.2AI score0.00235EPSS
Exploits0References9Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/05/23 12:0 a.m.12 views

The vulnerability of the pvr_vm_gpuva_unmap() function in the DRI driver of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the pvrvmgpuvaunmap function in the DRI support driver for the Linux kernel relates to improper memory release before deleting the last pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS7AI score0.00188EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/23 12:0 a.m.12 views

The vulnerability of the dpcdcd_extend_address_range() function in the DRI driver for AMD graphics cards in Linux operating systems allows a malicious actor to cause a service failure.

The vulnerability of the dpcdcdextendaddressrange function in the DRI driver for AMD graphics cards in Linux operating systems is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.4AI score0.00202EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/23 12:0 a.m.12 views

The vulnerability of the panthor_ioctl_groupdestroy() function in the DRI driver of the Linux operating system allows a malicious actor to cause a service failure.

The vulnerability of the panthorioctlgroupdestroy function in the DRI driver of the Linux operating system’s kernel is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a attacker to cause a service failure...

5.5CVSS5.9AI score0.00202EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/14 12:0 a.m.12 views

The vulnerability of the Kibana data visualization service, related to the unlimited loading of malicious files, allows attackers to upload harmful files.

The vulnerability of the Kibana data visualization service is related to the unlimited loading of malicious files. Exploiting this vulnerability allows a remote attacker to upload malicious files...

4.3CVSS5.5AI score0.00274EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/02 12:0 a.m.12 views

Vulnerability of the mcp251x_stop() function in the drivers/net/can/spi/mcp251x.c module – This driver supports network devices of the Linux kernel, which can be exploited by attackers to cause service failures.

Vulnerability of the mcp251xstop function in the drivers/net/can/spi/mcp251x.c module – The Linux kernel’s CAN network device driver relies on the assignment of the NULL pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS5.5AI score0.00235EPSS
Exploits0References14Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/04/30 12:0 a.m.12 views

The vulnerability of the course_can_delete_section() function in the virtual learning environment Moodle, which allows a violator to increase their privileges

The vulnerability of the coursecandeletesection function in the virtual learning environment Moodle is related to deficiencies in the authentication mechanism. Exploiting this vulnerability could allow a malicious actor to gain increased privileges...

4.3CVSS5.5AI score0.00273EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/04/25 12:0 a.m.12 views

The vulnerability of the ImportConnectionVariables method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems, allowing a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the ImportConnectionVariables method in software for managing and monitoring remote objects in telemetry and telemechanics systems is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows an attacker to compromise the...

9CVSS5.7AI score0.00683EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/04/23 12:0 a.m.12 views

Vulnerability of the is_an_alpha2() function (net/wireless/reg.c) in the Linux operating system’s kernel, allowing a hacker to cause a service failure

The vulnerability of the isanalpha2 function net/wireless/reg.c in the Linux operating system is related to insufficient locking mechanisms. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.002EPSS
Exploits0References26Affected Software9
BDU FSTEC
BDU FSTEC
added 2025/04/23 12:0 a.m.12 views

The vulnerability of the SAP NetWeaver software integration platform, related to incorrect authorization, allows a perpetrator to execute arbitrary code.

The vulnerability of the SAP NetWeaver software integration platform is related to incorrect authorization. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

4.3CVSS5.9AI score0.00323EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2025/04/16 12:0 a.m.12 views

The vulnerability of the Data Manager component of Siemens SENTRON 7KT PAC1260, a multi-functional instrument for measuring parameters of electrical circuits, allows a hacker to gain access to read, modify, and delete data.

The vulnerability of the Data Manager component of Siemens SENTRON 7KT PAC1260 multi-functional measurement instruments for electrical networks lies in the lack of authentication for a critical function. Exploiting this vulnerability can allow an attacker to gain access to read, modify, and delet...

7.5CVSS5.9AI score0.00366EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/04/16 12:0 a.m.12 views

The vulnerability of the Data Manager component of Siemens SENTRON 7KT PAC1260, a multi-functional device for measuring parameters of electrical circuits, allows a hacker to gain unauthorized access to the device.

The vulnerability of the Data Manager component of Siemens SENTRON 7KT PAC1260 multi-functional measurement devices for electrical networks lies in the lack of authentication for a critical function. Exploiting this vulnerability can allow an unauthorized attacker to gain unauthorized access to t...

8.6CVSS5.9AI score0.00518EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/04/16 12:0 a.m.12 views

The vulnerability of the kfd_queue_acquire_buffers() function in the drivers/gpu/drm/amd/amdkfd/kfd_queue.c module of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the kfdqueueacquirebuffers function in the drivers/gpu/drm/amd/amdkfd/kfdqueue.c module of the Linux operating system is related to the pointer manipulation. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.5AI score0.00188EPSS
Exploits0References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/04/16 12:0 a.m.12 views

The vulnerability of the cow_file_range() function in the fs/btrfs/inode.c module of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the cowfilerange function in the fs/btrfs/inode.c module of the Linux operating system is related to improper resource locking. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS5.9AI score0.00186EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/04/16 12:0 a.m.12 views

The vulnerability of the xe_drm_client_add_bo() function in the DRI driver of the Linux operating system allows a attacker to cause a service failure.

The vulnerability of the xedrmclientaddbo function in the DRI driver of the Linux operating system’s kernel is related to insufficient resource locking. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.4AI score0.0014EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/04/16 12:0 a.m.12 views

The vulnerability of the hda_sdw_machine_select() function in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the hdasdwmachineselect function in the Linux operating system is related to unvalidated array indexing. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS5.4AI score0.00179EPSS
Exploits0References7Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/04/16 12:0 a.m.12 views

The vulnerability of the qcuefi_set_reference() function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the qcuefisetreference function in the Linux operating system’s kernel is related to insufficient locking of resources. Exploiting this vulnerability could allow an attacker to trigger a service failure...

5.5CVSS6.2AI score0.0014EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/04/16 12:0 a.m.12 views

The vulnerability of the pinctrl_register_one_pin() function in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the pinctrlregisteronepin function in the Linux operating system is related to insufficient locking of resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.5AI score0.00164EPSS
Exploits0References10Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/04/15 12:0 a.m.12 views

The vulnerability of Linksys Velop WHW01’s microprogramming software arises from incorrect pathname restrictions for access to restricted catalogs. This allows attackers to escalate their privileges.

The vulnerability of Linksys Velop WHW01 microprogrammed software lies in the incorrect limitation of the path name to the restricted access directory. Exploiting this vulnerability can allow an attacker to increase their privileges...

9CVSS5.5AI score0.02902EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/04/15 12:0 a.m.12 views

The vulnerability of the mgmt_set_powered_complete() function in the net/bluetooth/mgmt.c module of the Linux operating system allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the mgmtsetpoweredcomplete function in the net/bluetooth/mgmt.c module of the Linux kernel is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...

7.8CVSS6.9AI score0.00222EPSS
Exploits0References22Affected Software8
BDU FSTEC
BDU FSTEC
added 2025/04/14 12:0 a.m.12 views

The vulnerability of the `parse_server_interfaces()` function in the `fs/smb/client/smb2ops.c` module allows a hacker to compromise the integrity of protected information or cause service failures for the SMB kernel client of the Linux operating system.

The vulnerability of the parseserverinterfaces function in the fs/smb/client/smb2ops.c module, which is part of the SMB client support in Linux operating systems, involves a numerical port escape or cyclic shift vulnerability. Exploiting this vulnerability could allow an attacker to compromise th...

7.1CVSS6.5AI score0.00407EPSS
Exploits0References36Affected Software5
BDU FSTEC
BDU FSTEC
added 2025/04/14 12:0 a.m.12 views

The vulnerability in the `libarchiveplugin.cpp` script of the graphical tool for compressing and decompressing Ark files in the KDE desktop environment allows a attacker to gain unauthorized access to protected information or execute arbitrary code.

The vulnerability in the libarchiveplugin.cpp script of the graphical tool for compressing and decompressing Ark files in the KDE desktop environment relates to the handling of relative paths. Exploiting this vulnerability could allow an intruder to gain unauthorized access to protected informati...

5CVSS6.1AI score0.00271EPSS
Exploits0References9Affected Software4
Total number of security vulnerabilities5000