Lucene search
K
Bdu FstecMost viewed

90336 matches found

BDU FSTEC
BDU FSTEC
added 2021/09/15 12:0 a.m.29 views

The vulnerability of the import function implementation (/wp-admin/tools.php?page=rsvpmaker_export_screen) of the RSVPMaker plugin for WordPress content management system allows a hacker to perform an SSRF attack.

The vulnerability of the import function implementation /wp-admin/tools.php?page=rsvpmakerexportscreen of the RSVPMaker plugin for WordPress’s content management system is related to insufficient validation of incoming requests. Exploiting this vulnerability could allow a malicious actor to perfo...

9.3CVSS5.3AI score0.01012EPSS
Exploits2References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2018/07/27 12:0 a.m.29 views

The vulnerability of the NVIDIA Tegra X1 TZ operating system allows a hacker to increase their privileges.

The vulnerability of the NVIDIA Tegra X1 TZ operating system’s Android platform arises from data writing beyond the buffer in memory. Exploiting this vulnerability can allow attackers to increase their privileges...

7.8CVSS7.5AI score0.00167EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/07/19 12:0 a.m.29 views

The vulnerability of the LibreOffice office software package allows a hacker to execute arbitrary code.

The vulnerability of the LibreOffice office software package relates to the use of memory after it is freed. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely, using a specially created RTF file...

9.3CVSS7.6AI score0.02819EPSS
Exploits1References10Affected Software3
BDU FSTEC
BDU FSTEC
added 2016/07/05 12:0 a.m.29 views

The vulnerability of the Pidgin instant messaging system allows a remote attacker to trigger a service denial.

The Pidgin software contains a vulnerability in the sub-component libpurple. Exploiting this vulnerability allows a remote attacker to trigger a denial-of-service attack by manipulating HTTP headers...

5CVSS5.5AI score0.02227EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/29 12:0 a.m.28 views

The vulnerability of the fromPptpUserAdd function (/goform/PPTPDClient) in the Tenda FH1201 router software allows a attacker to cause a service failure or execute arbitrary code.

The vulnerability of the fromPptpUserAdd /goform/PPTPDClient function in the Tenda FH1201 router microprogramming system is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow an attacker to cause service failures or execute arbitrary code ...

9CVSS8.4AI score0.00981EPSS
Exploits1References7
BDU FSTEC
BDU FSTEC
added 2025/07/17 12:0 a.m.28 views

The vulnerability of the setuptools project’s packaging simplification library arises from an incorrect limitation on the path to the restricted-access directory. This allows a malicious actor to compromise the vulnerable system.

The vulnerability of the setuptools project’s packaging simplification library is related to an incorrect restriction on the path name for the restricted access directory. Exploiting this vulnerability could allow a malicious actor to compromise the vulnerable system remotely...

9CVSS6.7AI score0.01479EPSS
Exploits4References15Affected Software21
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.28 views

Vulnerability of the mt7921pci_probe() function in the drivers/net/wireless/mediatek/mt76/mt7921/pci.c module – This driver provides support for wireless communication adapters in the Linux operating system. It can be exploited by attackers to cause system failures.

Vulnerability of the mt7921pciprobe function in the drivers/net/wireless/mediatek/mt76/mt7921/pci.c module – The Linux kernel’s wireless adapter support driver has a vulnerability related to incorrect input validation. Exploiting this vulnerability could allow an attacker to cause system failures...

5.5CVSS5.4AI score0.00246EPSS
Exploits0References9Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/04/23 12:0 a.m.28 views

The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in the ability to write code beyond the buffer boundaries in memory, allowing attackers to execute arbitrary code.

The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in the ability to write beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.8CVSS8.5AI score0.0027EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/04/16 12:0 a.m.28 views

The vulnerability of the E-Staff automated recruitment process system, related to errors in data filtering during object updates, allows a perpetrator to execute arbitrary JavaScript code.

The vulnerability of the E-Staff recruitment process automation system is related to errors in data filtering during object updates. Exploiting this vulnerability could allow a malicious actor to execute arbitrary JavaScript code remotely...

9.9CVSS5.9AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/03/15 12:0 a.m.28 views

The vulnerability of the Trusted Execution Environment (TEE) for the deployment of Intel Trust Domain Extensions (Intel TDX) allows a perpetrator to exploit their privileges by exploiting incomplete filtering of special elements.

The vulnerability of the Trusted Execution Environment TEE for the deployment of Intel Trust Domain Extensions virtual machines is related to incomplete filtering of special elements. Exploiting this vulnerability can allow an attacker to enhance their privileges...

6.2CVSS5.5AI score0.00182EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/05/21 12:0 a.m.28 views

The vulnerability of the implementation of the elliptic curve-based cryptography method in the Microsoft Research JavaScript Cryptography Library allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the implementation of the elliptic curve-based cryptography method in Microsoft Research’s JavaScript Cryptography Library is related to incorrect calculations. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected...

10CVSS7.7AI score0.02541EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/12/22 12:0 a.m.27 views

The vulnerability in the implementation of the OBEX protocol for Bluetooth on the Linux BlueZ operating system allows a hacker to cause a service failure.

The vulnerability of the OBEX protocol implementation in the Bluetooth protocol stack for the Linux BlueZ operating system is related to reading data outside of the allowed range. Exploiting this vulnerability could allow a malicious actor to gain access to protected information remotely...

2.6CVSS6.5AI score0.00949EPSS
Exploits0References6Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/07/03 12:0 a.m.27 views

The vulnerability of the library for working with the DICOM format in DCMT, related to the occurrence of operations outside the buffer in memory, allows a malicious actor to trigger a service failure.

The vulnerability of the library for working with the DICOM format in DCMT is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow an attacker to cause a service failure using a specially created DICOM file...

8.4CVSS7.3AI score0.0061EPSS
Exploits1References10Affected Software5
BDU FSTEC
BDU FSTEC
added 2025/06/26 12:0 a.m.27 views

The vulnerability of the multimedia platform GPAC, related to writing outside of memory boundaries, allows a hacker to cause a service failure.

The vulnerability of the multimedia platform GPAC is related to writing beyond the memory boundaries. Exploiting this vulnerability can allow a hacker to cause a service failure...

7.8CVSS5.3AI score0.00275EPSS
Exploits1References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2022/09/28 12:0 a.m.27 views

The vulnerability of the Mozilla Firefox browser, related to resource management errors, allows a hacker to cause a service failure.

The vulnerability of the Mozilla Firefox browser is related to resource management errors. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

7.8CVSS7.4AI score0.01078EPSS
Exploits0References11Affected Software4
BDU FSTEC
BDU FSTEC
added 2022/07/08 12:0 a.m.27 views

The vulnerability of the Radare2 reverse-engineering framework, related to access to an uninitialized pointer, allows a hacker to execute arbitrary code.

The vulnerability of the reverse-engineering framework Radare2 relates to access to an uninitialized pointer. Exploiting this vulnerability could allow a perpetrator to execute arbitrary code...

7.4CVSS7.6AI score0.00855EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/06/09 12:0 a.m.27 views

The vulnerability of the module configuration tools “LOCMAN WorkFlow” and “LOCMAN WorkFlow Configurator” of the engineering data and product lifecycle management system LOCMAN lies in the ability to load files of a dangerous type without limitation, allowing attackers to execute arbitrary code.

The vulnerability of the “LOZMAN WorkFlow” and “LOZMAN WorkFlow Configurator” module settings in the engineering data management system and the product lifecycle management system LOZMAN is related to the ability to load files of a dangerous type without limitation. Exploiting this vulnerability...

6.8CVSS6AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/07/07 12:0 a.m.27 views

Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the sndfile-programs package of the Debian GNU/Linux operating system may lead to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...

9.3CVSS5.4AI score0.03642EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/08/05 12:0 a.m.26 views

The vulnerability of the Django web application software, related to deficiencies in the error reporting mechanism, allows attackers to compromise the confidentiality of protected information.

The vulnerability of the Django web application framework is related to shortcomings in the error reporting mechanism. Exploiting this vulnerability allows an attacker to compromise the confidentiality of the information being protected...

5.3CVSS6.4AI score0.00805EPSS
Exploits0References8Affected Software7
BDU FSTEC
BDU FSTEC
added 2025/06/04 12:0 a.m.26 views

The vulnerability of the graphics processor in microprogrammed software embedded in Qualcomm chips allows a hacker to cause memory corruption.

The vulnerability of the graphics processor in microprogrammed software embedded in Qualcomm’s integrated circuits is related to deficiencies in the authentication mechanism. Exploiting this vulnerability can allow an attacker to cause memory corruption by sending a sequence of specially crafted...

8.6CVSS8.1AI score0.00665EPSS
Exploits3References4
BDU FSTEC
BDU FSTEC
added 2025/05/23 12:0 a.m.26 views

The vulnerability of the submit-url function in the file /boafrm/formReflashClientTbl of the HTTP POST Request Handler component of the microprogramming software for TOTOLINK routers A702R, A3002R, and A3002RU allows a perpetrator to execute arbitrary code.

The vulnerability of the submit-url function in the /boafrm/formReflashClientTbl file of the HTTP POST Request Handler component of the microprogramming software for TOTOLINK A702R, A3002R, and A3002RU routers is related to the copying of buffers without checking the size of the input data...

9CVSS8AI score0.00661EPSS
Exploits0References6Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/02/14 12:0 a.m.26 views

The vulnerability of the Ivanti Connect Secure and Ivanti Policy Secure access control tools lies in the lack of measures taken to protect the website structure. This allows attackers to enhance their privileges and perform cross-site scripting attacks.

The vulnerability of the Ivanti Connect Secure and Ivanti Policy Secure access control tools is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to enhance their privileges and perform cross-site scripting attacks...

6.4CVSS7.5AI score0.00872EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2023/01/25 12:0 a.m.26 views

The vulnerability of the debugfs and e2fsck utilities in the E2fsprogs set of utility programs in the EMIAS OS operating system allows a perpetrator to invoke functions, procedures, or subprograms with incorrectly specified arguments. This always leads to incorrect behavior, and consequently, to defects.

The vulnerability of the debugfs and e2fsck utilities in the E2fsprogs set of utility programs in the EMIAS OS is related to calling functions with incorrectly defined arguments. Exploiting this vulnerability allows an attacker to call functions, procedures, or subprograms with incorrectly...

7.8CVSS5.5AI score
Exploits0Affected Software2
BDU FSTEC
BDU FSTEC
added 2022/11/25 12:0 a.m.26 views

The vulnerability of the disk redirecting channel in the implementation of the FreeRDP remote desktop protocol allows a intruder to gain unauthorized access to protected information.

The vulnerability of the disk redirecting channel in the implementation of the FreeRDP remote desktop protocol is related to incorrect path name restrictions for access-controlled directories when processing parameters like /drive, +drives, or +home-drive. Exploiting this vulnerability can allow ...

7.8CVSS5.8AI score0.00889EPSS
Exploits0References12Affected Software5
BDU FSTEC
BDU FSTEC
added 2020/08/12 12:0 a.m.26 views

The vulnerability of the RDP client FreeRDP, related to the execution of operations beyond the buffer boundaries in memory, allows a hacker to trigger a service failure.

The vulnerability of the RDP client FreeRDP relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

8.5CVSS7.5AI score0.01845EPSS
Exploits1References8Affected Software3
BDU FSTEC
BDU FSTEC
added 2020/02/27 12:0 a.m.26 views

The vulnerability of the `format()` function in the Django web development framework allows a attacker to trigger a denial-of-service attack. [source-iocs-preserved method=django.utils.numberformat.format()]

The vulnerability of the django.utils.numberformat.format function in the Django web development framework is related to uncontrolled memory consumption, which can lead to a complete exhaustion of resources. Exploiting this vulnerability may allow an attacker to cause a service failure...

7.8CVSS6.4AI score0.05399EPSS
Exploits0References9Affected Software5
BDU FSTEC
BDU FSTEC
added 2019/12/09 12:0 a.m.26 views

The vulnerability of the PDFium PDF-content processor in Google Chrome browser allows a hacker to execute arbitrary code.

The vulnerability of the PDFium PDF-content processor in Google Chrome browsers relates to the writing beyond the buffer memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code using a specially created PDF file...

10CVSS8.4AI score0.01546EPSS
Exploits0References8Affected Software2
BDU FSTEC
BDU FSTEC
added 2019/11/19 12:0 a.m.26 views

The vulnerability of the “INSERT ... ON CONFLICT DO UPDATE” command implementation in the PostgreSQL database management system allows a hacker to gain unauthorized access to protected information.

The vulnerability of the “INSERT ... ON CONFLICT DO UPDATE” command in the PostgreSQL database management system is related to the lack of protection for operational data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

6.8CVSS6.9AI score0.06324EPSS
Exploits0References9Affected Software2
BDU FSTEC
BDU FSTEC
added 2017/06/30 12:0 a.m.26 views

The vulnerability in the `libavformat/rtmppkt.c` component of the FFmpeg multimedia library allows a attacker to execute arbitrary code.

The vulnerability of the libavformat/rtmppkt.c component in the FFmpeg multimedia library arises due to buffer overflow in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code, without any checks for packet size compliance with RTMP...

7.5CVSS8.4AI score0.07457EPSS
Exploits1References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/18 12:0 a.m.25 views

The vulnerability in the web interface of the Cisco Unified Contact Center Express software’s operator management tool allows a attacker to carry out an XSS attack.

The vulnerability in the web interface for controlling the software used to automate operations in Cisco Unified Contact Center Express Unified CCX is related to the lack of protective measures taken for the web page structure. Exploiting this vulnerability allows a malicious actor to carry out X...

5.5CVSS5.4AI score0.00213EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/10 12:0 a.m.25 views

The vulnerability of Websoft HCM’s automation software for HR processes lies in the lack of measures taken to protect the website structure, allowing attackers to carry out XSS attacks.

The vulnerability of Websoft HCM’s automation software for HR processes is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks by injecting specially crafted JavaScript code into HTML pages...

3.1CVSS5.5AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/07 12:0 a.m.25 views

The vulnerability of the DS-Lite technology (Dual-Stack Lite) and NAT (Network Address Translation) in the Junos OS router series of MX devices, which allows a hacker to cause a service failure.

The vulnerability of the DS-Lite Dual-Stack Lite technology and NAT Network Address Translation in Junos OS routers of the MX series is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability could allow a malicious actor to cause service interruptions by...

7.8CVSS5.5AI score0.00372EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/03 12:0 a.m.25 views

The vulnerability of the thermal_zone_device_unregister() function in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the thermalzonedeviceunregister function in the Linux operating system is related to the use of memory after it has been freed. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.5AI score0.00234EPSS
Exploits0References9Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/06/19 12:0 a.m.25 views

The vulnerability of Adobe Experience Manager’s content and media data management system lies in the insufficient protection of website structures, which allows attackers to carry out XSS attacks.

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to carry out XSS attacks...

5.5CVSS5.4AI score0.00285EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/04/23 12:0 a.m.25 views

The vulnerability of the PSDInput::decompress_zip_prediction() function in the src/psd.imageio/psdinput.cpp module of the OpenImageIO library allows a attacker to compromise the integrity of the protected information or cause service failures.

The vulnerability of the PSDInput::decompresszipprediction function in the src/psd.imageio/psdinput.cpp module of the OpenImageIO library is related to integer overflow. Exploiting this vulnerability could allow an attacker to compromise the integrity of protected information or cause service...

8.5CVSS5.6AI score
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/04/14 12:0 a.m.25 views

The vulnerability of the Linux operating system’s Bluetooth kernel component, which allows a hacker to trigger a service failure

The vulnerability of the Linux operating system’s Bluetooth kernel component is related to improper locking of resources. Exploiting this vulnerability can allow a hacker to cause a service failure...

5.5CVSS6.8AI score0.00164EPSS
Exploits0References13Affected Software7
BDU FSTEC
BDU FSTEC
added 2025/02/03 12:0 a.m.25 views

The vulnerability of the software for creating and managing graphical user interfaces for Rockwell Automation FactoryTalk View Machine Edition industrial devices lies in the lack of measures taken to neutralize special elements used in the operating system’s commands. This allows a perpetrator to execute arbitrary code.

The vulnerability of the software for creating and managing graphical user interfaces on Rockwell Automation’s FactoryTalk View Machine Edition devices is related to the failure to take measures to neutralize special elements used in the operating system commands. Exploiting this vulnerability ca...

10CVSS5.9AI score0.00715EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/12/03 12:0 a.m.25 views

The vulnerability of the microprogramming software of industrial routers such as Billion M100, Billion M150, Billion M120N, and Billion M500 lies in the ability to bypass authentication procedures by using an alternative path or channel. This allows attackers to circumvent security restrictions and gain unauthorized access to protected information.

The vulnerability of the microprogrammed software in industrial routers such as Billion M100, Billion M150, Billion M120N, and Billion M500 relates to the ability to bypass authentication procedures by using an alternative path or channel. Exploiting this vulnerability allows a malicious actor to...

7.8CVSS7.2AI score0.00534EPSS
Exploits0References4Affected Software4
BDU FSTEC
BDU FSTEC
added 2024/11/01 12:0 a.m.25 views

The vulnerability of the Squid proxy server, related to errors in processing input data, allows a hacker to cause a service failure.

The vulnerability of the Squid proxy server is related to errors in processing input data. Exploiting this vulnerability allows a malicious actor to cause service interruptions by sending specially crafted ESI packets...

7.8CVSS7.1AI score0.45289EPSS
Exploits0References12Affected Software8
BDU FSTEC
BDU FSTEC
added 2024/02/19 12:0 a.m.25 views

The vulnerabilities of the operating systems of network storage devices My Cloud OS, cloud storage services My Cloud Home, and My Cloud Home Duo, as well as SanDisk iBI, are related to uncontrolled resource consumption. This allows attackers to cause service interruptions.

The vulnerabilities of the My Cloud OS, My Cloud Home, and My Cloud Home Duo network storage systems, as well as the SanDisk iBI device, are related to uncontrolled resource consumption. Exploiting these vulnerabilities can allow an attacker to cause service interruptions...

6.1CVSS5.8AI score0.00822EPSS
Exploits0References3Affected Software13
BDU FSTEC
BDU FSTEC
added 2023/07/21 12:0 a.m.25 views

The vulnerability of the PKCS#11 function of the ssh-agent component in the OpenSSH cryptographic security tool allows a hacker to execute arbitrary code.

The vulnerability of the PKCS11 function in the ssh-agent component of the OpenSSH cryptographic security tool is related to the use of an insecure search path. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS7.5AI score0.76768EPSS
Exploits10References27Affected Software10
BDU FSTEC
BDU FSTEC
added 2023/05/04 12:0 a.m.25 views

The vulnerability of the bcrypt hashing algorithm implementation in the system file exporter tool for Prometheus Exporter Toolkit allows a hacker to circumvent security restrictions and gain unauthorized access to protected information.

The vulnerability of the bcrypt hashing algorithm implementation in the Prometheus Exporter Toolkit’s file export function is related to the ability to bypass authentication when processing the web.yml file. Exploiting this vulnerability can allow attackers to circumvent security restrictions and...

6.2CVSS7.5AI score0.01166EPSS
Exploits1References8Affected Software10
BDU FSTEC
BDU FSTEC
added 2022/08/15 12:0 a.m.25 views

The vulnerability of the Modbus TCP protocol implementation in microprogrammed software for programmable logic controllers from Schneider Electric, such as Modicon M340, M580, MC80, Modicon Momentum MDI, Legacy Modicon Quantum/Premium, allows a intruder to trigger a service failure.

The vulnerability of the Modbus TCP protocol implementation in microprogrammed logic controllers from Schneider Electric, such as Modicon M340, M580, MC80, Modicon Momentum MDI, and Legacy Modicon Quantum/Premium, is related to a potential integer overflow. Exploiting this vulnerability could all...

7.8CVSS7.3AI score0.00702EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2022/04/13 12:0 a.m.25 views

The vulnerability of the decoder in the MPEG-4 multimedia platform GPAC’s functional decoding process allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the MPEG-4 multimedia platform GPAC decoder’s functionality is related to incorrect checking of the result of an arithmetic operation. Exploiting this vulnerability allows a remote attacker to gain access to confidential data, compromise its integrity, and cause service...

9.3CVSS7.6AI score0.01695EPSS
Exploits1References7Affected Software3
BDU FSTEC
BDU FSTEC
added 2022/03/04 12:0 a.m.25 views

The vulnerability of software for the development and mass production of printed circuit boards, related to errors in processing uploaded files, allows a perpetrator to gain access to protected information or cause service failures.

The vulnerability of software for the development and mass production of printed circuit boards is related to errors in processing uploaded files. Exploiting this vulnerability can allow a malicious actor to gain access to protected information or cause service failures by sending a specially...

9.3CVSS5.5AI score0.01357EPSS
Exploits1References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/08/09 12:0 a.m.25 views

The vulnerability of the operating environment of the information protection software “Blockhost-Net” and “Blockhost-Net K” allows attackers to obtain information about user accounts.

The vulnerability of the operating environments of the information protection software “Blockhost-Net” and “Blockhost-Net K” is related to the use of insecure mechanisms for processing authentication data in the memory of the operating system. Exploiting this vulnerability can allow an attacker...

5.5CVSS5.5AI score
Exploits0Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/01/14 12:0 a.m.25 views

The vulnerability of Google Chrome’s Skia graphic library allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of Google Chrome’s Skia graphics library is related to the storage of data beyond the buffer in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

6.8CVSS7.9AI score0.01474EPSS
Exploits0References11Affected Software4
BDU FSTEC
BDU FSTEC
added 2020/05/26 12:0 a.m.25 views

The vulnerability of the “Estimate and Actual Charges” component of the Oracle Depot Repair automation software allows a intruder to gain unauthorized access to protected information.

The vulnerability of the “Estimate and Actual Charges” component of the Oracle Depot Repair automation software is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information through the...

8.2CVSS7.4AI score0.01282EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/02/24 12:0 a.m.25 views

The vulnerability of the PDFium browser’s PDF-content processor in Google Chrome allows a hacker to gain unauthorized access to information.

The vulnerability of the PDFium browser for processing PDF content in Google Chrome is caused by a numerical overflow condition. Exploiting this vulnerability can allow an attacker to gain unauthorized access to information through a specially created PDF file...

8.8CVSS7AI score0.01223EPSS
Exploits0References6Affected Software4
BDU FSTEC
BDU FSTEC
added 2019/06/27 12:0 a.m.25 views

The vulnerability of the wfst_run application, which is part of the speech-tools speech recognition system, allows a violator to cause a service failure.

The vulnerability of the wfstrun application, which is part of the speech-tools speech recognition system, is related to overflow errors in the command line processing. Exploiting this vulnerability can allow an attacker to cause a service failure by submitting commands with specially crafted...

5.1CVSS5.6AI score
Exploits0
Total number of security vulnerabilities5000