Lucene search
K
Bdu FstecMost viewed

90509 matches found

BDU FSTEC
BDU FSTEC
added 2025/08/11 12:0 a.m.11 views

The vulnerabilities of the `bnxt_ulp_stop()` and `bnxt_ulp_start()` functions in the Linux operating system’s RoCE kernel driver allow a hacker to trigger a service failure.

The vulnerability of the bnxtulpstop and bnxtulpstart functions in the RoCE kernel driver of the Linux operating system is related to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

7CVSS6.2AI score0.00145EPSS
Exploits0References8Affected Software6
BDU FSTEC
BDU FSTEC
added 2025/08/08 12:0 a.m.11 views

The vulnerability of the FortiIsolator browser isolation platform and the FortiSandbox threat detection and mitigation system lies in the incorrect session duration, allowing attackers to compromise the confidentiality and integrity of protected information.

The vulnerability of the FortiIsolator browser isolation platform and the FortiSandbox threat detection and mitigation system is related to an incorrect session duration. Exploiting this vulnerability allows a remote attacker to compromise the confidentiality and integrity of the protected...

8.7CVSS5.5AI score0.00474EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/08/08 12:0 a.m.11 views

The vulnerability of the IBM Aspera Faspex file-sharing application, related to the implementation of security functions at the client side, allows attackers to compromise the integrity of the protected information.

The vulnerability of the IBM Aspera Faspex file-sharing application is related to the implementation of security functions at the client side. Exploiting this vulnerability allows a malicious actor to compromise the integrity of the protected information from a remote location...

6.8CVSS5.5AI score0.00257EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/08/08 12:0 a.m.11 views

The vulnerability of D-Link DIR-890L router’s microprogramming software, which stems from the use of rigidly encoded login credentials, allows a hacker to execute arbitrary code.

The vulnerability of D-Link DIR-890L router’s microprogramming software is related to the use of rigidly encoded login credentials. Exploiting this vulnerability could allow a hacker to execute arbitrary code...

7.2CVSS7AI score0.00656EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2025/08/08 12:0 a.m.11 views

The vulnerability of the FUN_00425fd8() function (/biurl_grou) of the D-Link DIR-632 router’s microprogramming software allows a hacker to induce a service failure.

The vulnerability of the FUN00425fd8 function /biurlgrou of the D-Link DIR-632 router’s microprogramming system is related to the output of operations that go beyond the buffer in memory. Exploiting this vulnerability could allow a malicious actor to cause a service failure by sending a specially...

9CVSS7.9AI score0.00921EPSS
Exploits1References7
BDU FSTEC
BDU FSTEC
added 2025/08/08 12:0 a.m.11 views

The vulnerability of Apache CXF web services, related to uncontrolled resource consumption, allows attackers to cause service failures.

The vulnerability of Apache CXF web services is related to an uncontrolled consumption of resources. Exploiting this vulnerability can allow a malicious actor to cause service failures...

5.6CVSS6.5AI score0.00624EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/08/08 12:0 a.m.11 views

The vulnerability in the Web Console management console for OSGi frameworks like Apache Felix allows a attacker to execute cross-site scripting attacks.

The vulnerability of the Web Console Management for OSGi frameworks like Apache Felix is related to the lack of protective measures for the structure of web pages. Exploiting this vulnerability allows a malicious actor to carry out a cross-site scripting attack remotely...

6.4CVSS5.1AI score0.00622EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/08/08 12:0 a.m.11 views

The vulnerability of the ASUS DriverHub tool for installing and updating drivers is related to deficiencies in the data source verification mechanism. This allows a hacker to execute arbitrary code.

The vulnerability of the ASUS DriverHub tool for installing and updating drivers is related to deficiencies in the data source verification mechanism. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code with administrator privileges remotely...

7.5CVSS8.4AI score0.00486EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2025/08/08 12:0 a.m.11 views

The vulnerability of the software platform for managing execution environments of virtual machines in Apache CloudStack lies in the insecure management of privileges, allowing attackers to escalate their privileges.

The vulnerability of the software platform that manages virtual machine environments in Apache CloudStack relates to insecure management of privileges. Exploiting this vulnerability could allow a malicious actor to increase their privileges remotely...

9CVSS5.4AI score0.00499EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/08/08 12:0 a.m.11 views

The vulnerability of the web interface of the microprogrammed software routers DIR-615 allows a hacker to execute arbitrary commands.

The vulnerability of the web interface of the microprogrammed software router DIR-615 arises from the lack of checks on input data in the pingipaddr parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

9CVSS5.9AI score0.1911EPSS
Exploits1References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/08/08 12:0 a.m.11 views

The vulnerability of the data collection and aggregation application from Cisco Spaces Connectors lies in the lack of measures taken to neutralize special elements used in operating system teams. This allows attackers to enhance their privileges and execute arbitrary code with root privileges.

The vulnerability of the data collection and aggregation application from Cisco Spaces Connector relates to the lack of measures taken to neutralize special elements used in operating system teams. Exploiting this vulnerability can allow attackers to enhance their privileges and execute arbitrary...

6.2CVSS5.9AI score0.00174EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/08/07 12:0 a.m.11 views

The vulnerability of Mozilla Firefox, Firefox ESR, and the email client Thunderbird relates to the execution of operations outside the buffer in memory, allowing an attacker to cause a service failure.

The vulnerability in Mozilla Firefox, Firefox ESR, and the email client Thunderbird relates to the execution of operations outside of the buffer in memory. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

10CVSS7.9AI score0.00326EPSS
Exploits0References21Affected Software6
BDU FSTEC
BDU FSTEC
added 2025/08/07 12:0 a.m.11 views

The vulnerability of IBM DB2 database management systems and IBM DB2 Connect Servers lies in insufficient validation of input data, which allows attackers to trigger service failures.

The vulnerability of IBM DB2 database management systems, including IBM DB2 Connect Server, is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service interruptions by sending specially crafted requests...

5.3CVSS5.4AI score0.00283EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/08/07 12:0 a.m.11 views

The vulnerability of the Cast component of the Google Chrome browser, which allows a perpetrator to gain unauthorized access to protected information

The vulnerability of the Cast component of the Google Chrome browser relates to the use of memory after it is freed. Exploiting this vulnerability allows an attacker who operates remotely to gain unauthorized access to protected information...

7.8CVSS7.5AI score0.00326EPSS
Exploits0References9Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/08/07 12:0 a.m.11 views

The vulnerability of the default_version_is_new() function in Netgear’s JWNR2000v2 router software allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the defaultversionisnew function in Netgear’s JWNR2000v2 router software lies in the copying of buffers without checking the size of the input data when processing the host parameter. Exploiting this vulnerability allows an attacker to compromise the confidentiality, integrit...

9CVSS7.6AI score0.00808EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/08/07 12:0 a.m.11 views

The vulnerability of the AI-based code editor Cursor lies in its lack of measures to neutralize special elements used in the operating system command. This allows a perpetrator to execute arbitrary code.

The vulnerability of the AI-based code editor Cursor relates to the failure to take measures to neutralize special elements used in the operating system’s command set. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9CVSS6.5AI score0.07598EPSS
Exploits2References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/08/06 12:0 a.m.11 views

The vulnerability of the DDSH CLI interface for Dell EMC Data Domain Operating Systems allows a perpetrator to execute arbitrary commands.

The vulnerability of the DDSH CLI interface for Dell EMC Data Domain Operating Systems is related to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability can allow attackers to execute arbitrary commands...

6.8CVSS5.8AI score0.00439EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/08/06 12:0 a.m.11 views

The vulnerability in the web interface for managing Microprogramming Software on Intelbras RX 1500 and RX 3000 allows attackers to carry out cross-site scripting attacks.

The vulnerability of the web interface for managing Microprogramming Software on Intelbras RX 1500 and RX 3000 is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks by sendi...

7.5CVSS5.2AI score0.00963EPSS
Exploits2References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/08/06 12:0 a.m.11 views

The vulnerability of the getAuthCode() function in D-Link DIR-605L router microprogramming software allows a hacker to execute any code with root privileges.

The vulnerability of the getAuthCode function in D-Link DIR-605L router microprogramming software is related to buffer overflows in the CAPTCHA processing stack. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands with root privileges...

10CVSS6.2AI score0.03086EPSS
Exploits1References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/08/06 12:0 a.m.11 views

The vulnerability of PackageKit in macOS operating systems allows attackers to circumvent security restrictions and compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of PackageKit for macOS operating systems is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to bypass security restrictions and compromise the confidentiality, integrity, and accessibility of protected information...

10CVSS5.4AI score0.00727EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/08/06 12:0 a.m.11 views

The vulnerability of the Framework component in Android operating systems, which allows a hacker to increase their privileges

The vulnerability of the Framework component in Android operating systems is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to enhance their privileges...

8.4CVSS5.8AI score0.00083EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/08/06 12:0 a.m.11 views

The vulnerability of the Accessibility component in operating systems such as iOS and iPadOS allows attackers to disclose protected information.

The vulnerability of the “Accessibility” component in iOS and iPadOS operating systems is related to deficiencies in restricting access to personal information. Exploiting this vulnerability can allow attackers to disclose protected information...

4CVSS5.4AI score0.00198EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/08/05 12:0 a.m.11 views

The vulnerability of NVIDIA GeForce, Quadro, NVS, and Tesla graphics processors’ microprogramming software relates to the disclosure of system data by unauthorized individuals, allowing attackers to gain unauthorized access to protected information.

The vulnerability of NVIDIA GeForce, Quadro, NVS, and Tesla graphics processors’ microprogramming software relates to the disclosure of system data by unauthorized individuals. Exploiting this vulnerability can allow a hacker to gain unauthorized access to protected information...

3.3CVSS5.4AI score0.00153EPSS
Exploits0References2Affected Software10
BDU FSTEC
BDU FSTEC
added 2025/08/04 12:0 a.m.11 views

The vulnerability of the Wlan AP Driver software driver from MediaTek’s microprogramming chips allows attackers to enhance their privileges.

The vulnerability of the Wlan AP Driver software driver from MediaTek is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability can allow a remote attacker to gain increased privileges...

10CVSS6AI score0.00522EPSS
Exploits0References2Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/08/04 12:0 a.m.11 views

The vulnerability of the formSetEmail function (/goform/formSetEmail) in the D-Link DIR-619L router software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the formSetEmail function /goform/formSetEmail of the D-Link DIR-619L router’s microprogramming software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...

9CVSS7.6AI score0.00849EPSS
Exploits1References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/08/04 12:0 a.m.11 views

The vulnerability in the proxy_client.asp script of the D-Link DI-7300G+ router’s software allows a hacker to execute arbitrary commands.

The vulnerability of the proxyclient.asp script in the D-Link DI-7300G+ router microprogramming system is related to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary command...

6.5CVSS6.9AI score0.08981EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/30 12:0 a.m.11 views

The vulnerability of the qfq_aggregate() function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the qfqaggregate function in the Linux operating system’s kernel is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to cause a service failure...

7CVSS6.3AI score0.00115EPSS
Exploits0References14Affected Software6
BDU FSTEC
BDU FSTEC
added 2025/07/28 12:0 a.m.11 views

The vulnerability of the ep_poll() function in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the eppoll function in the Linux operating system’s kernel is related to improper resource locking. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS5.9AI score0.0014EPSS
Exploits0References7Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/07/24 12:0 a.m.11 views

The vulnerability of the k3_udma_glue_reset_rx_chn() function in Linux operating systems allows a hacker to trigger a service failure.

The vulnerability of the k3udmaglueresetrxchn function in Linux operating systems is related to improper cleaning or release of resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

7CVSS5.5AI score0.00141EPSS
Exploits0References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/07/24 12:0 a.m.11 views

The vulnerability of the eir_create_adv_data() function in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the eircreateadvdata function in the Linux operating system is related to incorrect initialization of resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

4.6CVSS6.2AI score0.00146EPSS
Exploits0References6Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/07/24 12:0 a.m.11 views

The vulnerability of the formWebTypeLibrary() function in the Tenda FH451 router’s microprogramming software allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the formWebTypeLibrary function in the Tenda FH451 router’s microprogramming software is related to the operation of writing data outside the buffer in memory when processing the webSiteId parameter. Exploiting this vulnerability allows an attacker to execute arbitrary code o...

9CVSS8.3AI score0.00997EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/23 12:0 a.m.11 views

The vulnerability of the LeAudioService service in Android operating systems allows a hacker to gain access to read and modify data.

The vulnerability of the LeAudioService service on Android operating systems is related to access control errors. Exploiting this vulnerability can allow an attacker to gain access to read and modify data...

6.2CVSS5.5AI score0.00108EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/22 12:0 a.m.11 views

The vulnerability of the driver module edac/igen6_edac.c in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the drivers/edac/igen6edac.c module in the Linux operating system is related to pointer manipulation. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS5.5AI score
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2025/07/22 12:0 a.m.11 views

The vulnerability of the software for organizing and managing knowledge bases and documentation, KBPublisher, arises from the lack of protective measures for website structures. This allows attackers to carry out XSS attacks.

The vulnerability of the software for organizing and managing knowledge bases and documentation, KBPublisher, is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability could allow a malicious actor to carry out XSS attacks...

9.7CVSS5.5AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/22 12:0 a.m.11 views

The vulnerability of the 3D model texturing program Adobe Substance 3D Designer, related to writing beyond buffer boundaries in memory, allows a hacker to gain unauthorized access to protected information.

The vulnerability of the 3D model texturing program Adobe Substance 3D Designer lies in the reading of data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...

5.5CVSS5.7AI score0.00206EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/21 12:0 a.m.11 views

The vulnerability of Adobe Illustrator’s graphic editor lies in the possibility of an operation going beyond the buffer boundaries in memory, allowing a hacker to execute arbitrary code.

The vulnerability of Adobe Illustrator’s graphic editor is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code by sending a specially created malicious file...

7.8CVSS6.4AI score0.002EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/07/21 12:0 a.m.11 views

The vulnerability of the LSILogic software module in Oracle VM VirtualBox allows a hacker to gain unauthorized access to protected information.

The vulnerability of the LSILogic software module in Oracle VM VirtualBox relates to the insecure management of privileges due to improper memory release. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...

6CVSS6.7AI score0.00291EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/21 12:0 a.m.11 views

The vulnerability of the Internal Operations component of the Oracle Lease and Finance Management system, a business automation solution, allows a perpetrator to gain access to read, modify, and delete information.

The vulnerability of the Internal Operations component of the Oracle Lease and Finance Management system, a part of the Oracle E-Business Suite, relates to deficiencies in the authorization process. Exploiting this vulnerability could allow an attacker to gain access to read, modify, and delete...

8.5CVSS7.2AI score0.00322EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/07/18 12:0 a.m.11 views

Vulnerability of the Server component: The MySQL Server database management system, which allows a hacker to cause service interruptions.

Vulnerability of the MySQL Server component: The DDL system for database management of MySQL Server is vulnerable to uncontrolled resource consumption. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

6.8CVSS7AI score0.00559EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/17 12:0 a.m.11 views

The vulnerability of the Consul and Consul Enterprise service configuration tool, related to unvalidated returned values, allows attackers to circumvent established security restrictions.

The vulnerability of the Consul and Consul Enterprise service configuration tool is related to an unvalidated returned value. Exploiting this vulnerability allows a malicious actor to bypass established security restrictions from a remote location...

6.8CVSS7AI score0.00849EPSS
Exploits0References8Affected Software7
BDU FSTEC
BDU FSTEC
added 2025/07/17 12:0 a.m.11 views

The vulnerability of the netdev_lock() function in the iavf component of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the netdevlock function in the iavf component of the Linux operating system is related to mutual locking of execution threads. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

7CVSS6.1AI score0.00094EPSS
Exploits0References7Affected Software5
BDU FSTEC
BDU FSTEC
added 2025/07/13 12:0 a.m.11 views

The vulnerability of the CADImage plugin in the IrfanView software, which is used for viewing and playing graphic, video, and audio files, allows a hacker to execute arbitrary code.

The vulnerability of the CADImage plugin for viewing and playing back graphic, video, and audio files in IrfanView arises from the execution of an operation beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially...

7.8CVSS8AI score0.0022EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/11 12:0 a.m.11 views

The vulnerability of the Windows RRAS operating system’s routing and remote access service allows a hacker to execute arbitrary code.

The vulnerability of the Windows RRAS operating system’s routing and remote access service is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

10CVSS6.4AI score0.00805EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/07/10 12:0 a.m.11 views

The vulnerability of Websoft HCM’s automation software for HR processes stems from the lack of measures taken to neutralize special elements used in the operating system’s commands. This allows attackers to execute arbitrary commands.

The vulnerability of Websoft HCM’s automation software for HR processes is related to the lack of measures taken to neutralize special elements used in the operating system’s commands. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands by invoking methods from th...

8CVSS5.9AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/09 12:0 a.m.11 views

The vulnerability of the JTAG microprogramming software components in Ethernet modules WISE-4010LAN, WISE-4050LAN, and WISE-4060LAN allows intruders to implant or modify the firmware.

The vulnerability of the JTAG microprogramming software components in Ethernet modules WISE-4010LAN, WISE-4050LAN, and WISE-4060LAN is related to access control deficiencies. Exploiting this vulnerability can allow attackers to implant or modify the firmware...

6.4CVSS5.5AI score0.00164EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2025/07/09 12:0 a.m.11 views

The vulnerability of the OpenSearch software package lies in its lack of measures to protect the structure of web pages, allowing attackers to execute arbitrary code.

The vulnerability of the OpenSearch software package is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability could allow a perpetrator to execute arbitrary code...

6.4CVSS7.5AI score0.00557EPSS
Exploits2References7Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/07/09 12:0 a.m.11 views

The vulnerability of the Session Cookie Handler component in the microprogramming-based Ethernet modules WISE-4010LAN, WISE-4050LAN, and WISE-4060LAN allows a hacker to obtain user passwords by force.

The vulnerability of the Session Cookie Handler component in the microprogramming-based Ethernet modules WISE-4010LAN, WISE-4050LAN, and WISE-4060LAN relates to the ability to retrieve user credentials. Exploiting this vulnerability could allow a malicious actor to obtain user passwords through...

5CVSS5.4AI score0.0043EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2025/07/08 12:0 a.m.11 views

The vulnerability of the formConnectionSetting() function (/goform/formConnectionSetting) in the Wi-Fi range extension software by Belkin, allows a intruder to cause a service failure.

The vulnerability of the formConnectionSetting function /goform/formConnectionSetting of the Belkin F9K1122 Wi-Fi range extender software is due to a buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to cause a service failure remotely...

9CVSS7.9AI score0.04092EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/08 12:0 a.m.11 views

The vulnerability of PDF-XChange Editor’s PDF document viewing and editing software, related to the occurrence of operations outside the buffer in memory, allows attackers to disclose protected information.

The vulnerability of PDF-XChange Editor’s PDF document viewing and editing functionality is related to the occurrence of operations outside the buffer during the processing of PRC files. Exploiting this vulnerability can allow an attacker to disclose protected information...

3.3CVSS5.9AI score0.00211EPSS
Exploits0References5Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/07/08 12:0 a.m.11 views

The vulnerability of PDF-XChange Editor, PDF-Tools, and PDF-XChange PRO programs relates to the use of memory after it is freed, allowing an attacker to execute arbitrary code.

The vulnerability of PDF viewing and editing programs such as PDF-XChange Editor, PDF-Tools, and PDF-XChange PRO lies in the use of memory after it is freed during file processing for U3D operations. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.8CVSS7.5AI score0.00247EPSS
Exploits0References3Affected Software3
Total number of security vulnerabilities5000