Lucene search
K
Bdu FstecMost viewed

90509 matches found

BDU FSTEC
BDU FSTEC
added 2025/02/12 12:0 a.m.12 views

The vulnerability of the pfn_section_valid() function in the include/linux/mmzone.h module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the pfnsectionvalid function in the include/linux/mmzone.h module of the Linux operating system is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00255EPSS
Exploits0References43Affected Software7
BDU FSTEC
BDU FSTEC
added 2025/02/06 12:0 a.m.12 views

The vulnerability of the CMSimple content management system’s link validation function allows attackers to perform SSRF attacks.

The vulnerability of the CMSimple content management system’s link validation function is related to insufficient protection of operational data. Exploiting this vulnerability could allow a malicious actor to carry out an SSRF attack remotely...

7.8CVSS5.4AI score0.00559EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/02/05 12:0 a.m.12 views

The vulnerability of the CassandraNetworkAuthorizer and CassandraCIDRAuthorizer components of the distributed Apache Cassandra database management system allows attackers to enhance their privileges.

The vulnerability of the CassandraNetworkAuthorizer and CassandraCIDRAuthorizer components of the distributed Apache Cassandra database management system is related to deficiencies in the authentication mechanism. Exploiting this vulnerability could allow a malicious actor to enhance their...

9.9CVSS5.7AI score0.01056EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/02/03 12:0 a.m.12 views

The vulnerability of DRM/LIMA components in Linux operating systems allows a hacker to trigger a service failure.

The vulnerability of DRM/LIMA components in the Linux operating system is related to incorrect calculations. Exploiting this vulnerability can allow a perpetrator to cause service failures...

5.6CVSS6.3AI score0.00013EPSS
Exploits0References9Affected Software4
BDU FSTEC
BDU FSTEC
added 2025/01/30 12:0 a.m.12 views

The vulnerability of the CFileNameAttr::Parse() function in the NtfsHandler.cpp file of the 7-Zip archive tool allows a hacker to load arbitrary files and gain unauthorized access to protected information.

The vulnerability of the CFileNameAttr::Parse function in the NtfsHandler.cpp file of the 7-Zip archive processor is related to the occurrence of operations outside the buffer in memory, due to incorrect processing of two-byte elements in the NTFS file system. Exploiting this vulnerability allows...

8.5CVSS7.6AI score0.00989EPSS
Exploits1References8Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/01/28 12:0 a.m.12 views

Vulnerability of the driver/net/wireless/mediatek/mt76/mt7915/mcu.c component in Linux kernel, allowing a hacker to cause a service failure

The vulnerability in the drivers/net/wireless/mediatek/mt76/mt7915/mcu.c component of the Linux operating system is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service failures...

7.8CVSS5.4AI score0.00245EPSS
Exploits0References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/01/28 12:0 a.m.12 views

The vulnerability of the nft_ct_expect_obj_eval() function in the net/netfilter/nft_ct.c component of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the nftctexpectobjeval function in the net/netfilter/nftct.c component of the Linux operating system is related to improper checking of removed users. Exploiting this vulnerability could allow a attacker to cause service failures...

5.5CVSS6.4AI score0.00546EPSS
Exploits0References11Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/01/27 12:0 a.m.12 views

The vulnerability of the microprogramming software of the Rockwell Automation PowerMonitor 1000 device, caused by buffer overflows, allows a hacker to trigger a maintenance failure.

The vulnerability of the microprogramming software of the Rockwell Automation PowerMonitor 1000 monitoring and control device is caused by buffer overflow. Exploiting this vulnerability can allow a malicious actor to cause a service failure remotely...

10CVSS8.5AI score0.00507EPSS
Exploits0References2Affected Software14
BDU FSTEC
BDU FSTEC
added 2025/01/22 12:0 a.m.12 views

The vulnerability of the Tooltip module in the Drupal CMS system allows attackers to perform cross-site scripting attacks.

The vulnerability of the Tooltip module in the Drupal CMS system is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

5.5CVSS5.2AI score0.00228EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/01/22 12:0 a.m.12 views

The vulnerability of the Core server component of Oracle WebLogic Server, a software platform of Oracle Fusion Middleware, allows attackers to disclose protected information.

The vulnerability of the Core server component of Oracle WebLogic Server, a software platform of Oracle Fusion Middleware, is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to disclose sensitive information using the T3/IIOP protocol...

7.8CVSS7.6AI score0.49689EPSS
Exploits3References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/01/22 12:0 a.m.12 views

The vulnerability of the NWS_PF_setMacAddrExceptionIP handler of the NetworkingService service in the Mercedes-Benz User Experience (MBUX) system allows a hacker to execute arbitrary commands.

The vulnerability of the NWSPFsetMacAddrExceptionIP handler of the NetworkingService service in the Mercedes-Benz User Experience MBUX system is related to insufficient validation of input data during MAC address processing. Exploiting this vulnerability can allow an attacker to execute arbitrary...

5.5CVSS7.5AI score0.00463EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2025/01/19 12:0 a.m.12 views

The vulnerability of the SuiteCRM customer relationship management system is related to deficiencies in authentication procedures, which allow attackers to circumvent security restrictions and gain access to read, modify, or delete data.

The vulnerability of the SuiteCRM customer relationship management system is related to deficiencies in the authentication process. Exploiting this vulnerability allows an attacker to bypass security restrictions and gain access to read, modify, or delete data...

8.5CVSS5.5AI score0.00541EPSS
Exploits1References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/01/14 12:0 a.m.12 views

The vulnerability of the Intel QuickAssist (Intel QAT Engine for OpenSSL) driver package, related to improper flow management, allows an attacker to gain unauthorized access to protected information.

The vulnerability of the Intel QuickAssist Driver Package Intel QAT Engine for OpenSSL is related to improper handling of threads. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected information...

5.9CVSS5.5AI score0.00449EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/01/14 12:0 a.m.12 views

The vulnerability of software solutions that support the closing, consolidation, and reporting processes of IBM Cognos Controller and IBM Controller lies in the use of strictly encrypted accounting data. This allows a malicious individual to gain unauthorized access to protected information.

The vulnerability of software solutions that support the closing, consolidation, and reporting processes of IBM Cognos Controller and IBM Controller lies in the use of rigidly encrypted account data. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized acces...

6.8CVSS5.5AI score0.00494EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/01/13 12:0 a.m.12 views

The vulnerability of the System component of the Android operating system, allowing a hacker to execute arbitrary code

The vulnerability of the System component of the Android operating system is related to incorrect code generation. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS8AI score0.00183EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/01/13 12:0 a.m.12 views

The vulnerability of the Framework component of the Android operating system, which allows a hacker to increase their privileges

The vulnerability of the Framework component in the Android operating system relates to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.4CVSS7.4AI score0.0007EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/01/13 12:0 a.m.12 views

The vulnerability of the OpenVPN Connect software lies in the improper deletion of critical data at the boundary; this allows a hacker to increase their privileges.

The vulnerability of the OpenVPN Connect software is related to improper cross-border deletion of critical data. Exploiting this vulnerability can allow a remote attacker to increase their privileges...

7.8CVSS8.1AI score0.00535EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/01/11 12:0 a.m.12 views

The vulnerability of the scpi_dvfs_get_info() function in the System Control and Power Interface (SCPI) Message Protocol Driver (drivers/firmware/arm_scpi.c) in Linux kernel allows a hacker to trigger a service failure.

The vulnerability of the scpidvfsgetinfo function in the System Control and Power Interface SCPI Message Protocol Driver drivers/firmware/armscpi.c in Linux kernel systems is related to a pointer arithmetic error. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00225EPSS
Exploits0References30Affected Software6
BDU FSTEC
BDU FSTEC
added 2025/01/10 12:0 a.m.12 views

The vulnerability of the kunit_try_catch_run() function in the KUnit framework (lib/kunit/try-catch.c) in the Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the kunittrycatchrun function in the KUnit framework lib/kunit/try-catch.c in the Linux kernel is related to the reallocation of memory after its deallocation due to concurrent access to resources race condition. Exploiting this vulnerability could allow an attacker to...

7CVSS6.4AI score0.00227EPSS
Exploits0References22Affected Software5
BDU FSTEC
BDU FSTEC
added 2024/12/27 12:0 a.m.12 views

The vulnerability of the Advanced Payment Management component of the SAP S/4HANA Finance software allows a perpetrator to enhance their privileges.

The vulnerability of the Advanced Payment Management component of the SAP S/4HANA Finance financial management software is related to authentication breaches. Exploiting this vulnerability can allow attackers who operate remotely to enhance their privileges...

5.5CVSS5.5AI score0.00296EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/12/27 12:0 a.m.12 views

The vulnerability of the qdisc_tree_reduce_backlog() function in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the qdisctreereducebacklog function in the Linux operating system is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to cause a service failure...

7.8CVSS6.6AI score0.00292EPSS
Exploits0References58Affected Software8
BDU FSTEC
BDU FSTEC
added 2024/12/27 12:0 a.m.12 views

The vulnerability of the Substance 3D Painter software, used for creating textures and materials for 3D models, relates to reading beyond the buffer boundary. This allows attackers to execute arbitrary code.

The vulnerability of the Substance 3D Painter software for creating textures and materials for 3D models involves reading beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

5.5CVSS6.1AI score0.00407EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/12/27 12:0 a.m.12 views

The vulnerability of the Substance 3D Painter software for creating textures and materials for 3D models allows a hacker to execute arbitrary code by writing beyond the buffer boundaries of memory.

The vulnerability of the Substance 3D Painter software for creating textures and materials for 3D models is related to writing beyond the buffer boundaries of memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code using a specially created file...

7.8CVSS6.2AI score0.00403EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/12/27 12:0 a.m.12 views

The vulnerability of Adobe Connect web conference software lies in the insufficient protection of the website structure, which allows attackers to execute arbitrary code.

The vulnerability of Adobe Connect web conference software is related to insufficient protection of the website structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

6.4CVSS5.9AI score0.00507EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/12/27 12:0 a.m.12 views

The vulnerability of the Adobe Media Encoder application, related to a pointer swapping error, allows a perpetrator to trigger a service failure.

The vulnerability of the Adobe Media Encoder application relates to a pointer assignment error. Exploiting this vulnerability could allow an attacker to trigger a service failure using a specially created malicious file...

5.5CVSS5.4AI score0.00313EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/12/26 12:0 a.m.12 views

The vulnerability in the web interface of Cisco Unified Communications Manager and Cisco Unified Communications Manager Session Management Edition systems allows attackers to perform cross-site scripting attacks and gain unauthorized access to protected information.

The vulnerability of the Cisco Unified Communications Manager and Cisco Unified Communications Manager Session Management Edition SME web interfaces is related to the lack of measures for cleaning incoming data. Exploiting this vulnerability allows an attacker to perform cross-site scripting...

6.4CVSS5.2AI score0.00349EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/12/26 12:0 a.m.12 views

The vulnerability of the Teamcenter Visualization lifecycle management system and the Siemens Tecnomatix Plant Simulation software environment, related to the execution of operations beyond the buffer in memory, allows attackers to execute arbitrary code.

The vulnerability of the Teamcenter Visualization lifecycle management system and the Siemens Tecnomatix Plant Simulation software environment relates to the execution of operations beyond the buffer in memory when processing WRL files. Exploiting this vulnerability can allow an attacker to execu...

7.8CVSS6.3AI score0.00237EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/12/25 12:0 a.m.12 views

The vulnerability of the PDF document viewing program Foxit PDF Reader (formerly Foxit Reader) and the PDF file editing program Foxit PDF Editor (formerly Foxit PhantomPDF) lies in their ability to execute arbitrary code by reading beyond the memory limit.

The vulnerability of the PDF document viewing program Foxit PDF Reader formerly Foxit Reader and the PDF file editing program Foxit PDF Editor formerly Foxit PhantomPDF is related to memory overflow attacks. Exploiting this vulnerability allows an attacker to execute arbitrary code using a...

7.8CVSS7.7AI score0.00862EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/12/25 12:0 a.m.12 views

The vulnerability of the microprogramming software used in Lexmark’s Embedded Web Server printers allows a perpetrator to gain access to the device.

The vulnerability of Lexmark’s embedded web server printer software relates to insecure management of privileges. Exploiting this vulnerability could allow a malicious actor to gain access to the device by removing the existing privileged user and replacing them with a new password...

10CVSS5.5AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/12/25 12:0 a.m.12 views

Vulnerabilities of components such as drivers, virt, and acrn in the Linux operating system, which allow attackers to increase their privileges within the system

The vulnerability of components like drivers/virt/acrn in the Linux operating system is related to errors that occur after the release of functions acrnvmmemsegunmap and acrnvmRamMap. Exploiting this vulnerability can allow an attacker to gain elevated privileges within the system...

8.8CVSS6.4AI score0.00213EPSS
Exploits0References33Affected Software4
BDU FSTEC
BDU FSTEC
added 2024/12/25 12:0 a.m.12 views

The vulnerability of the scsidebug component in the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the scsidebug component in the Linux operating system’s kernel is related to the assignment of the NULL pointer in the functions respverify and respreportzones. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS5.7AI score0.00238EPSS
Exploits0References12Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/12/24 12:0 a.m.12 views

The vulnerability of the getWindowsIEEE8021x function in the npm systeminformation package of the Node.js software platform allows a perpetrator to escalate their privileges and execute arbitrary commands.

The vulnerability of the getWindowsIEEE8021x function in the npm systeminformation package of the Node.js software platform is related to improper code generation during the processing of SSID identifiers. Exploiting this vulnerability can allow an attacker to enhance their privileges and execute...

7.8CVSS7.8AI score0.00698EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/12/23 12:0 a.m.12 views

The vulnerability of the sub_1225C function in the mainfunction.cgi web interface of the DrayTek Vigor router software allows a hacker to execute arbitrary commands.

The vulnerability of function sub1225C in the mainfunction.cgi web interface of the DrayTek Vigor router software lies in the lack of measures taken to clean data at the control level. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

9CVSS7.6AI score0.26048EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/12/23 12:0 a.m.12 views

The software’s vulnerability regarding the detection of vulnerabilities and errors in PT Application Inspector arises from an incorrect limitation on the path to the restricted access directory. This allows attackers to increase their privileges.

The vulnerability of the application software’s interface for detecting vulnerabilities and errors in PT Application Inspector exists due to an incorrect limitation on the path name to the restricted access directory. Exploiting this vulnerability allows a malicious actor to enhance their...

8.2CVSS5.5AI score
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/12/20 12:0 a.m.12 views

The vulnerability of the Dell ECS storage platform lies in the redirection of the URL to an unreliable website, allowing a hacker to redirect users to any given URL address.

The vulnerability of the Dell ECS storage platform relates to the redirection of URLs to an unreliable website. Exploiting this vulnerability allows a hacker to redirect users to arbitrary URL addresses...

4.3CVSS5.6AI score0.00307EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/12/16 12:0 a.m.12 views

The vulnerability of Intel NUC Software Studio Service’s software for the Windows operating system, related to access control errors, allows attackers to escalate their privileges.

The vulnerability of Intel NUC Software Studio Service for the Windows operating system is related to access control errors. Exploiting this vulnerability can allow attackers to increase their privileges...

8.8CVSS5.5AI score
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/12/11 12:0 a.m.12 views

The vulnerability of the ops component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the ops component in the Linux operating system’s kernel is related to errors in reading beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.5AI score0.00234EPSS
Exploits0References14Affected Software4
BDU FSTEC
BDU FSTEC
added 2024/12/11 12:0 a.m.12 views

The vulnerability of the virtio component in the Linux operating system, which allows a hacker to trigger a service failure

The vulnerability of the virtio component in the Linux operating system is related to the operation of writing data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS5.7AI score0.00214EPSS
Exploits0References7Affected Software4
BDU FSTEC
BDU FSTEC
added 2024/12/09 12:0 a.m.12 views

The vulnerability of the channel_request_lookahead() function in the WSGI server for Python Waitress allows a attacker to send hidden HTTP requests (HTTP Request Smuggling attack).

The vulnerability of the channelrequestlookahead function in the WSGI server for Python Waitress is related to synchronization errors when using shared resources due to inconsistent interpretation of HTTP requests. Exploiting this vulnerability allows a remote attacker to send hidden HTTP request...

9.4CVSS6.5AI score0.00496EPSS
Exploits0References5Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/12/05 12:0 a.m.12 views

The vulnerability of the ar5523 component in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the ar5523 component in the Linux operating system is related to errors in resource management within the ar5523probe function. Exploiting this vulnerability can allow an attacker to cause a service failure...

6.5CVSS6.4AI score0.00741EPSS
Exploits0References45Affected Software5
BDU FSTEC
BDU FSTEC
added 2024/12/03 12:0 a.m.12 views

The vulnerability of the Linux operating system’s kernel component “oss”, which allows a hacker to trigger a service failure

The vulnerability of the Linux operating system’s kernel’s OSS component arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.1AI score0.0024EPSS
Exploits0References13Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/11/29 12:0 a.m.12 views

The vulnerability of the monitoring tool for VMware Aria Operations, related to the lack of protective measures for the website structure, allows attackers to execute cross-site scripting attacks (XSS).

The vulnerability of the monitoring tool for VMware Aria Operations is related to the lack of security measures taken to protect the website structure. Exploiting this vulnerability could allow a malicious actor to perform cross-site scripting attacks XSS remotely...

6.5CVSS5.2AI score0.0032EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/27 12:0 a.m.12 views

A vulnerability in the f2fs kernel component of the Linux operating system, which allows a hacker to trigger a service failure.

The vulnerability in the f2fs kernel of the Linux operating system is related to improper input validation in the f2fsPutSuper function. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS5.9AI score0.00236EPSS
Exploits0References10Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/11/26 12:0 a.m.12 views

The vulnerability of the network control tools Ivanti Connect Secure (previously Pulse Connect Secure) and Ivanti Policy Secure access, related to incorrect processing of input data, allows a perpetrator to execute arbitrary code.

The vulnerability of the Ivanti Connect Secure previously Pulse Connect Secure and Ivanti Policy Secure access controls lies in the improper processing of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending a specially crafted request...

9.1CVSS8.2AI score0.01652EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/11/26 12:0 a.m.12 views

The vulnerability of the access control and working time recording system within SIPORT is related to the improper assignment of permissions for critical resources, allowing intruders to increase their privileges.

The vulnerability of the access control and working time recording system within SIPORT is related to the improper assignment of permissions for critical resources. Exploiting this vulnerability can allow attackers to enhance their privileges...

7.8CVSS7.5AI score0.00141EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/26 12:0 a.m.12 views

The vulnerability of the software environment of Siemens Tecnomatix Plant Simulation in simulation models for systems and processes involves writing beyond buffer boundaries, allowing attackers to execute arbitrary code.

The vulnerability of the software environment for simulation modeling of systems and processes in Siemens Tecnomatix Plant Simulation lies in the issue of buffer overflow attacks. Exploiting this vulnerability can allow attackers to execute arbitrary code using specially created WRL files...

7.8CVSS7.9AI score0.00236EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/26 12:0 a.m.12 views

The vulnerability of Siemens Mendix Encryption, related to the use of pre-installed data, allows a intruder to gain unauthorized access to protected information.

The vulnerability of Siemens Mendix Encryption lies in the use of pre-installed data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

7.8CVSS7.2AI score0.00244EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/26 12:0 a.m.12 views

The vulnerability of the hda component in the Linux operating system’s kernel, which allows a hacker to cause a service failure

The vulnerability of the hda component in the Linux operating system’s kernel is related to the pointer to NULL. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS5.7AI score0.0024EPSS
Exploits0References15Affected Software4
BDU FSTEC
BDU FSTEC
added 2024/11/26 12:0 a.m.12 views

The vulnerability of the Intel Extension for Transformers tool set arises from incorrect name restrictions for paths to the restricted catalog. This allows attackers to escalate their privileges.

The vulnerability of the Intel Extension for Transformers tool set is related to an incorrect name restriction for the path to the restricted access catalog. Exploiting this vulnerability can allow attackers to enhance their privileges...

7.1CVSS5.5AI score0.00748EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/26 12:0 a.m.12 views

The vulnerability of the hypervisor in FreeBSD operating systems allows a hacker to execute arbitrary code.

The vulnerability of the hypervisor in FreeBSD operating systems relates to a single-shift error. Exploiting this vulnerability allows an attacker to execute arbitrary code...

8.2CVSS5.8AI score0.00213EPSS
Exploits0References3Affected Software1
Total number of security vulnerabilities5000