90509 matches found
The vulnerability of the Android operating system, allowing a hacker to execute arbitrary code
The vulnerability of the Qualcomm Android operating system’s network driver is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to execute arbitrary code within the kernel context of the local malware. This issue is considered “high” because it...
Vulnerability of the Microsoft Office package, the Microsoft SharePoint Server corporate application package, the Word Viewer software for reading doc files, the Microsoft Office Web Apps package, the Microsoft Word text editor, the Microsoft Excel spreadsheet editor, and the Microsoft Office Compatibility Pack, which allows a perpetrator to cause service interruptions or obtain confidential information from process memory.
The vulnerabilities of the Microsoft Office suite, the Microsoft SharePoint Server enterprise application suite, the Word Viewer document viewer software, the Microsoft Office Web Apps suite, the Microsoft Word text editor, the Microsoft Excel spreadsheet editor, and the Microsoft Office...
The vulnerability of the Android operating system, which allows a hacker to increase their privileges
The vulnerability of the MediaTek driver for the Android operating system is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to enhance their privileges through a specially created application...
Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information
The multiple vulnerabilities in the kernel-image-2.6.8-12-em64t-p4-smp operating system from Debian GNU/Linux may lead to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...
Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information
Multiple vulnerabilities exist in the kernel-image-2.6.8-3-64 operating system of the Debian GNU/Linux distribution. Exploitation of these vulnerabilities may lead to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotel...
Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information
The multiple vulnerabilities in the kernel-image-2.6.8-3-mckinley-smp operating system of Debian GNU/Linux may lead to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...
Vulnerabilities in the Debian GNU/Linux operating system that allow a local malicious individual to compromise the confidentiality, integrity, and accessibility of protected information
The kernel-image-2.6-amd64-k8 package of the Debian GNU/Linux operating system has multiple vulnerabilities. Exploitation of these vulnerabilities may lead to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited by local...
Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information
The multiple vulnerabilities in the kernel-image-2.6.8-power3-smp operating system of the Debian GNU/Linux distribution may lead to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...
Vulnerabilities in the Debian GNU/Linux operating system that allow a local malicious individual to compromise the confidentiality, integrity, and accessibility of protected information
The multiple vulnerabilities in the kernel-image-2.6-686 operating system of the Debian GNU/Linux distribution may lead to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited by local malicious actors...
Vulnerabilities in the Debian GNU/Linux operating system that allow a local malicious individual to compromise the confidentiality, integrity, and accessibility of protected information
The multiple vulnerabilities in the kernel-image-2.6-k7 package of the Debian GNU/Linux operating system may lead to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited by local malicious actors...
Vulnerabilities of the Debian GNU/Linux operating system that allow a local malicious individual to compromise the integrity of protected information
The proftpd-dfsg package in the Debian GNU/Linux operating system has multiple vulnerabilities. Exploitation of these vulnerabilities may lead to a breach of the integrity of protected information. These vulnerabilities can be exploited by local malicious individuals...
The vulnerability of the Firefox browser allows a hacker to obtain confidential information about the device and PIN code.
The vulnerability of the Firefox browser improperly restricts access to JavaScript for data related to movement. Exploiting this vulnerability can allow a remote attacker to obtain confidential device information and the PIN code through a specially crafted web page...
The vulnerability of VMware Fusion’s hypervisor allows a attacker to trigger a failure in the hosting or host operating system.
The vulnerability of VMware Fusion exists due to insufficient verification of input data. Exploiting this vulnerability can allow an attacker to cause a failure in the maintenance of 32-bit or 64-bit host operating systems using a specially crafted RPC request...
Vulnerabilities of the Debian GNU/Linux operating system that allow a remote attacker to compromise the accessibility of protected information
The multiple vulnerabilities in the linux-headers-2.6.26-2-sb1a-bcm91480b package of the Debian GNU/Linux operating system may lead to a violation of the accessibility of protected information. These vulnerabilities can be exploited remotely...
Vulnerabilities of the Debian GNU/Linux operating system that allow a remote attacker to compromise the accessibility of protected information
The multiple vulnerabilities in the libldap-2.3-0 package of the Debian GNU/Linux operating system may lead to a violation of the accessibility of protected information. These vulnerabilities can be exploited remotely...
Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information
The multiple vulnerabilities in the libcupsys1 package of the Debian GNU/Linux operating system may lead to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...
Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information
The multiple vulnerabilities in the xlibosmesa3 package of the Debian GNU/Linux operating system may lead to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...
Vulnerabilities of the Debian GNU/Linux operating system that allow a remote attacker to compromise the accessibility of protected information
The multiple vulnerabilities in the krb5-kdc-ldap package of the Debian GNU/Linux operating system may lead to a violation of the accessibility of protected information. These vulnerabilities can be exploited remotely...
Vulnerabilities of the Debian GNU/Linux operating system that allow a remote attacker to compromise the accessibility of protected information
The multiple vulnerabilities in the linux-headers-2.6.26-2-openvz-amd64 package of the Debian GNU/Linux operating system may lead to a violation of the accessibility of protected information. These vulnerabilities can be exploited remotely...
The vulnerability of the Serv-U File Server allows a remote attacker to obtain the source code of arbitrary scripts.
The vulnerability of the Serv-U File Server software lies in the lack of consideration for accessing files using extended syntax in the NTFS file system. Exploiting this vulnerability by comparing the requested resource’s URL with locations specified in the web server configuration allows a...
The vulnerability of the Linux operating system, which allows a malicious individual to increase their privileges
The compatsysrecvmmsg function in the net/compat.c file, with the configuration CONFIGX86X32, allows a malicious individual to increase their privileges through the system call recvmmsg...
The vulnerability of the Cisco IOS operating system, which allows a malicious individual to execute arbitrary code or cause a service failure.
A vulnerability exists in the Line Printer Daemon LPD of the Cisco IOS operating system, which allows a remote attacker to trigger a service failure on the device by sending a long name of a node, or execute arbitrary code on it...
The vulnerability of the Android operating system allows a hacker to circumvent restrictions
The vulnerability of the server/pm/UserManagerService.java function in the Android Wi-Fi operating system is related to deficiencies in access control. Exploiting this vulnerability allows a local attacker to circumvent restrictions on Wi-Fi configuration changes by using guest access...
The vulnerabilities of PDF viewer programs such as Adobe Reader, Adobe Reader Document Cloud, and PDF editing programs like Adobe Acrobat Document Cloud and Adobe Acrobat allow attackers to cause service interruptions or execute arbitrary codes.
The vulnerabilities of PDF viewer programs such as Adobe Reader and Adobe Reader Document Cloud, as well as PDF editing programs like Adobe Acrobat Document Cloud and Adobe Acrobat, are due to buffer overflow vulnerabilities. Exploiting these vulnerabilities can allow a malicious actor to execute...
The vulnerability of the Android operating system, which allows a hacker to increase their privileges
The vulnerability of the MediaTek Wi-Fi driver for the Android operating system is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor, operating remotely, to enhance their privileges through a specially created application...
The vulnerability of the MySQL database management system allows attackers to manipulate the accessibility of information.
The vulnerability of the MySQL database management system is related to errors in the code. Exploiting this vulnerability can allow a malicious actor, operating remotely, to compromise accessibility by affecting the Optimizer server...
The vulnerability of the MySQL database management system allows attackers to compromise the confidentiality of information.
The vulnerability of the MySQL database management system is related to errors in the code. Exploiting this vulnerability allows a malicious actor to influence the confidentiality of information by manipulating the JSON server...
The vulnerability of the Apache Struts software platform, which allows attackers to carry out XSS attacks
The vulnerability of the Apache Struts software platform exists due to the lack of text validation in the Locale object, which is constructed using I18NInterceptor. Exploiting this vulnerability allows a malicious actor to perform XSS attacks remotely...
The vulnerability of the glibc implementation library, which allows attackers to increase their privileges
The vulnerability of the ptchown function in the glibc execution library arises from the lack of namespace checking related to the file descriptor passed as an argument. Exploiting this vulnerability allows a local attacker to record keyboard input, replace data, or potentially increase their...
The vulnerability of Safari browser and iOS operating system allows attackers to circumvent existing access restrictions policies and obtain geolocation data.
The vulnerability of the WebKit component in the Safari browser and the iOS operating system is related to the lack of protection for service data. Exploiting this vulnerability allows a malicious actor to bypass existing access restrictions and obtain geolocation data through a specially crafted...
The vulnerabilities of browsers Internet Explorer and Microsoft Edge allow attackers to trigger service failures or execute arbitrary code.
The vulnerabilities of Internet Explorer and Microsoft Edge are caused by buffer overflows. Exploiting these vulnerabilities allows a malicious actor to execute arbitrary code or trigger a service failure memory corruption through a specially crafted web page...
The vulnerability of the Cisco Firepower Extensible Operating System allows a perpetrator to gain access to the authentication data of arbitrary users.
The vulnerability of the Cisco Firepower Extensible Operating System is related to the manipulation of inter-site requests. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain access to the authentication credentials of arbitrary users...
The vulnerability of the microprogramming software for Honeywell Excel Web XL1000C50 52 I/O, XL1000C100 104 I/O, XL1000C500 300 I/O, XL1000C1000 600 I/O, XL1000C50U 52 I/O UUKL, XL1000C100U 104 I/O UUKL, XL1000C500U 300 I/O UUKL, and XL1000C1000U 600 I/O UUKL allows a hacker to read files during web access and gain administrator privileges.
The vulnerability of the FTP server for microprogrammed software-controlled Honeywell Excel Web XL1000C50 52 I/O, XL1000C100 104 I/O, XL1000C500 300 I/O, XL1000C1000 600 I/O, XL1000C50U 52 I/O UUKL, XL1000C100U 104 I/O UUKL, XL1000C500U 300 I/O UUKL, and XL1000C1000U 600 I/O UUKL arises due to...
The vulnerability of the Microsoft Edge browser, which allows a hacker to bypass the protection against cross-site scripting attacks
The vulnerability of Microsoft Edge is caused by errors in the processing of HTTP response headers. Exploiting this vulnerability allows a malicious actor to bypass the protection mechanisms against cross-site scripting attacks...
The vulnerability of the Android operating system, which allows a hacker to trigger a service failure
The vulnerability of the Android operating system’s media server arises due to buffer overflow. Exploiting this vulnerability can allow a remote attacker to cause a service failure memory corruption...
The vulnerability of the FFmpeg multimedia library, which allows a hacker to trigger a service failure
The vulnerability in the decodeuncompressed function in the libavcodec/faxcompr.c multimedia library of FFmpeg exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures by using specially crafted CCITT FAX data...
The vulnerability of the Microsoft .NET Framework software platform, which allows a hacker to bypass the ASLR protection mechanism
The vulnerability of the Microsoft .NET Framework software lies in the lack of protection for service data. Exploiting this vulnerability allows a malicious actor to bypass ASLR protection by using a specially created website...
The vulnerability of the Oracle Fusion Middleware software allows a perpetrator to modify data.
The vulnerability of the Oracle Jdeveloper component of the Oracle Fusion Middleware software is related to errors in the code. Exploiting this vulnerability allows a malicious actor to remotely modify data...
The vulnerabilities of PDF editing programs like Adobe Acrobat and Adobe Acrobat Document Cloud, as well as PDF viewing programs like Adobe Reader and Adobe Reader Document Cloud, allow attackers to circumvent JavaScript restrictions.
The vulnerabilities of PDF editing programs like Adobe Acrobat and Adobe Acrobat Document Cloud, as well as PDF viewing programs like Adobe Reader and Adobe Reader Document Cloud, are related to deficiencies in access control for certain functions. Exploiting these vulnerabilities can allow a...
The vulnerability of the microprogramming software of the Cisco TelePresence Server allows a perpetrator to circumvent the authentication process for arbitrary users.
The vulnerability of the microprogramming software of the Cisco TelePresence Server device is related to the manipulation of inter-site requests. Exploiting this vulnerability can allow a malicious actor to bypass the authentication procedures for arbitrary users...
The vulnerability of the microprogramming software of the Cisco TelePresence Video Communication Server allows a intruder to inject arbitrary web or HTML code.
The vulnerability of the microprogramming software of the Cisco TelePresence Video Communication Server exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to inject arbitrary web or HTML code using a specially crafted...
The vulnerability of the Mac OS X operating system, which allows a hacker to execute arbitrary code
The vulnerability of the SceneKit component in the Mac OS X operating system arises due to buffer overflow. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted Collada file...
Vulnerability of Firefox and Firefox ESR browsers, which allow hackers to write arbitrary files and increase their privileges
The vulnerability of the Mozilla Maintenance Service component in Firefox and Firefox ESR browsers arises due to synchronization errors when using a shared resource. Exploiting this vulnerability allows an attacker to write arbitrary files locally and increase their privileges by manipulating...
The vulnerability of Adobe Acrobat DC, a PDF editing software, allows a hacker to circumvent existing access restrictions.
The vulnerability of the Adobe Acrobat DC PDF editing program is related to lack of access control mechanisms. Exploiting this vulnerability could allow a malicious actor to circumvent existing access restrictions remotely...
The vulnerability of the Adobe Reader PDF viewer program allows a hacker to execute arbitrary code.
The vulnerability of the Adobe Reader PDF viewer program relates to the use of memory after it is freed. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
The vulnerability of the Oracle Database database management system allows a remote attacker to compromise the confidentiality, integrity, and accessibility of data.
The vulnerability of the Oracle Database database management system’s Java VM component allows a malicious actor, who operates remotely and has completed the authentication process, to compromise the confidentiality, integrity, and accessibility of data...
Vulnerabilities in the Debian GNU/Linux operating system that allow a local malicious individual to compromise the confidentiality, integrity, and accessibility of protected information
The multiple vulnerabilities in the kernel-image-powerpc operating system package of the Debian GNU/Linux distribution may lead to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited by local malicious individuals...
The vulnerability of the Gentoo Linux operating system allows a malicious intruder to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the xorg-server package up to version 1.11.4-r1 in the Gentoo Linux operating system can lead to violations of privacy, integrity, and accessibility of protected information. This vulnerability can be exploited remotely...
Vulnerabilities of the Debian GNU/Linux operating system that allow a remote attacker to compromise the accessibility of protected information
Multiple vulnerabilities exist in the i2c-2.4.27-4-386 operating system package for Debian GNU/Linux. Exploitation of these vulnerabilities may lead to a violation of the accessibility of protected information. These vulnerabilities can be exploited remotely...
Vulnerabilities in the SUSE Linux Enterprise operating system that allow attackers to compromise the accessibility of protected information
The kernel-kdumppae-debuginfo package of the SUSE Linux Enterprise operating system has multiple vulnerabilities. Exploitation of these vulnerabilities may lead to a violation of the accessibility of protected information. These vulnerabilities can be exploited remotely...