Lucene search
K
Bdu FstecMost viewed

90604 matches found

BDU FSTEC
BDU FSTEC
added 2021/11/12 12:0 a.m.12 views

The vulnerability of the command-line interface (CLI) of Cisco IOS XE SD-WAN software allows a attacker to execute arbitrary commands.

The vulnerability of the Cisco IOS XE SD-WAN software’s command-line interface is related to insufficient checking of arguments passed in commands. Exploiting this vulnerability allows an attacker to execute arbitrary commands...

6.8CVSS6.9AI score0.00346EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/11/12 12:0 a.m.12 views

The vulnerability of the AnyConnect and WebVPN interfaces of Cisco Adaptive Security Appliance (ASA) and Cisco Firepower Threat Defense (FTD) allows a perpetrator to cause service interruptions.

The vulnerability of AnyConnect and WebVPN web services, which are part of Cisco Adaptive Security Appliance ASA and Cisco Firepower Threat Defense FTD, stems from insufficient validation of input data during syntax analysis of HTTPS requests. Exploiting this vulnerability can allow a malicious...

8.6CVSS7.2AI score0.01307EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/11/11 12:0 a.m.12 views

The vulnerability of Microsoft Exchange Server servers, related to deficiencies in access control, allows attackers to increase their privileges.

The vulnerability of Microsoft Exchange Server is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to increase their privileges...

8CVSS7.2AI score0.00572EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2021/11/10 12:0 a.m.12 views

The vulnerability of the UserGate UTM corporate network interface of UserGate D500 allows attackers to compromise the confidentiality and integrity of the protected information.

The vulnerability of the UserGate UTM corporate network interface of UserGate D500 exists due to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to influence the confidentiality and integrity of the protected information...

4.2CVSS5.5AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/11/10 12:0 a.m.12 views

The vulnerability of the Address Book component of the Microsoft Outlook client, which allows attackers to perform spoofing attacks

The vulnerability of the Address Book component in the Microsoft Outlook email client is related to insufficient validation of addresses in headers. Exploiting this vulnerability could allow attackers, operating remotely, to carry out spam attacks using externally similar IDN domains...

7.5CVSS5.5AI score
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/10/15 12:0 a.m.12 views

The vulnerability of the Hyper-V hardware virtualization system’s Windows operating system, related to improper code generation management, allows attackers to escalate their privileges.

The vulnerability of the Hyper-V hardware virtualization technology in the Windows operating system is related to incorrect code generation. Exploiting this vulnerability can allow a remote attacker to gain increased privileges...

8CVSS7.6AI score0.01064EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2021/10/13 12:0 a.m.12 views

The vulnerability in the VMI web interface of vCenter Server Appliance, a management tool for VMware vCenter Server virtual infrastructure, allows an attacker to gain unauthorized access to protected information.

The vulnerability in the VCenter Server Management Interface of the VMware vCenter Server web interface relates to deficiencies in system security restrictions. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information by sending a specially crafte...

7.5CVSS7.6AI score0.01339EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/10/13 12:0 a.m.12 views

The vulnerability of Visual Studio Code’s source editor lies in its insecure handling of privileges, allowing attackers to elevate their privileges.

The vulnerability of Visual Studio Code’s source editor is related to the insecure management of privileges. Exploiting this vulnerability could allow an attacker to enhance their privileges...

7.8CVSS7.2AI score0.00491EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2021/10/13 12:0 a.m.12 views

The vulnerability of the SONICWALL Ethernet switch control interface of the SMA 100 series allows a intruder to alter the device’s configuration to the factory settings and trigger a failure in the target system’s service.

The vulnerability of the SMA 100 series SONICWALL network interface controllers is related to access control errors. Exploiting this vulnerability allows a malicious actor to alter the device’s configuration to the factory settings and cause failures in the target system’s services...

9.4CVSS8AI score0.80701EPSS
Exploits4References5Affected Software5
BDU FSTEC
BDU FSTEC
added 2021/10/13 12:0 a.m.12 views

The vulnerability of the Siemens Solid Edge Viewer application, a tool set for design and simulation with Siemens Solid Edge, allows a malicious actor to execute arbitrary code.

The vulnerability of the Siemens Solid Edge Viewer application, a tool for design and simulation, is related to the use of memory after it is freed during OBJ file syntax analysis. Exploiting this vulnerability allows a malicious actor to execute arbitrary code through a specially created malicio...

8.8CVSS7.6AI score0.01122EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/10/13 12:0 a.m.12 views

The vulnerability of the Visual Composer browser-based modeling tool of the SAP NetWeaver software integration platform allows a perpetrator to escalate their privileges, execute arbitrary commands, or cause service interruptions.

The vulnerability of the Visual Composer browser-based modeling tool of the SAP NetWeaver software integration platform is related to the unlimited loading of dangerous files. Exploiting this vulnerability can allow a remote attacker to enhance their privileges, execute arbitrary commands, or cau...

9.9CVSS7.9AI score0.37149EPSS
Exploits1References7Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/10/13 12:0 a.m.12 views

The vulnerability of the Bluetooth Classic platform for software development, developed by Zhuhai Jieli AC6366C BT SDK, stems from insufficient validation of input data. This allows attackers to trigger service failures.

The vulnerability of the Bluetooth Classic platform used for software development by Zhuhai Jieli AC6366C BT SDK exists due to insufficient verification of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to cause a service failure through the created LMP packe...

6.5CVSS6.6AI score0.00688EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/10/13 12:0 a.m.12 views

The vulnerability of the Cypress WICED BT Bluetooth Classic stack implementation for the CYW20735B1 device arises due to insufficient validation of input data. This allows a malicious actor to trigger a service failure.

The vulnerability of the Cypress WICED BT Bluetooth Classic stack implementation for the CYW20735B1 device exists due to insufficient validation of input data. Exploiting this vulnerability could allow a remote attacker to cause service failure...

6.5CVSS6.6AI score0.00581EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/10/13 12:0 a.m.12 views

The vulnerability of the Moxa MXView network control software, related to the use of rigid password encoding, allows a intruder to gain unauthorized access to protected information.

The vulnerability of the Moxa MXView network control software lies in the use of fixed password encoding schemes. Exploiting this vulnerability could allow an unauthorized attacker to gain unauthorized access to protected information by using the default passwords...

10CVSS8AI score0.01113EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/10/08 12:0 a.m.12 views

The vulnerability of the Bluetooth Classic microprogramming device implementations of Zhuhai Jieli AC690X and AC692X arises due to insufficient verification of input data. This allows attackers to trigger malfunctions in the device’s service.

The vulnerability of the Bluetooth Classic microprogramming system implementation in Zhuhai Jieli AC690X and AC692X devices exists due to insufficient verification of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to cause service failures through the created...

5.7CVSS6.1AI score0.00366EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2021/08/20 12:0 a.m.12 views

The vulnerability of the Server Name Identification (SNI) component of the Cisco Web Security Appliance internet server, the micro-programming software for Cisco Firepower Threat Defense network firewalls, and the intrusion detection systems allows a malicious actor to gain full control over the compromised host and unauthorized access to protected information.

The vulnerability of the Server Name Identification SNI component of the Cisco Web Security Appliance internet server, as well as the micro-programming software for Cisco Firepower Threat Defense and the intrusion detection system Snort, is related to SSL handshake filtering errors. Exploiting th...

5.8CVSS6.5AI score0.01684EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/08/18 12:0 a.m.12 views

The vulnerability of the Adobe Framemaker desktop publishing system, related to writing beyond the buffer boundaries in memory, allows a hacker to execute arbitrary code.

The vulnerability of the Adobe Framemaker system lies in the writing of data beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the current user...

8.8CVSS7.9AI score0.04528EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/08/18 12:0 a.m.12 views

The vulnerabilities of PDF viewing and editing programs like Adobe Acrobat Document Cloud and Adobe Acrobat Reader Document Cloud, as well as Adobe Acrobat 2017 and Adobe Acrobat Reader 2017, are related to memory usage after it is released. These vulnerabilities allow attackers to gain unauthorized access to protected information.

The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2017, and Adobe Acrobat Reader 2017 are related to the use of memory after it is freed. Exploiting these vulnerabilities can allow an attacker to gain...

7.1CVSS6.8AI score0.09576EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2021/08/18 12:0 a.m.12 views

The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat, and Adobe Acrobat Reader, related to information disclosure, allow attackers to gain unauthorized access to protected information.

The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2019, and Adobe Acrobat Reader 2019 are related to information disclosure. Exploiting these vulnerabilities can allow unauthorized actors to gain...

7.8CVSS6.9AI score0.02175EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2021/08/10 12:0 a.m.12 views

The vulnerability of the wildfly-core Java application server software allows a attacker to compromise the confidentiality and integrity of the protected information.

The vulnerability of the wildfly-core Java application server from WildFly is related to deficiencies in the access control mechanism. Exploiting this vulnerability could allow an attacker to compromise the confidentiality and integrity of the protected information...

3.6CVSS5.7AI score0.00761EPSS
Exploits0References3Affected Software6
BDU FSTEC
BDU FSTEC
added 2021/08/06 12:0 a.m.12 views

The vulnerability in the J-Web web interface of the Junos operating system, which allows a hacker to elevate their privileges to the root level.

The vulnerability in the J-Web web interface of the Junos operating system exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to elevate their privileges to the root level...

10CVSS7.2AI score0.00924EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/07/20 12:0 a.m.12 views

The vulnerability of the MagickCore/visual-effects.c file, a set of programs for reading and editing ImageMagisk files, arises from the lack of zero-division checking. This allows an attacker to trigger a service failure.

The vulnerability of the MagickCore/visual-effects.c file, a set of programs for reading and editing ImageMagisk files, is related to the lack of checks for division by zero. Exploiting this vulnerability could allow an attacker to cause service interruptions...

7.1CVSS6.7AI score0.01199EPSS
Exploits0References13Affected Software5
BDU FSTEC
BDU FSTEC
added 2021/07/20 12:0 a.m.12 views

The vulnerability of the Mozilla Thunderbird email client, related to insufficient validation of input data, allows a hacker to execute arbitrary code.

The vulnerability of Mozilla Thunderbird’s email client is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in an MITM Man-In-The-Middle scenario by sending an arbitrary IMAP command...

6.5CVSS7.4AI score0.012EPSS
Exploits0References11Affected Software5
BDU FSTEC
BDU FSTEC
added 2021/07/20 12:0 a.m.12 views

The vulnerability of the cachekey plugin in the Apache Traffic Server web server allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the cachekey plugin in the Apache Traffic Server web server arises from an operation that occurs outside the buffer limits of the stack. Exploiting this vulnerability allows a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected...

10CVSS8AI score0.02711EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/07/20 12:0 a.m.12 views

The vulnerability of Google Chrome’s V8 engine, related to the execution of operations beyond the buffer in memory, allows attackers to access confidential information or cause service failures.

The vulnerability of Google Chrome’s V8 engine is related to insufficient input validation. Exploiting this vulnerability can allow an attacker to access confidential information or cause service failures...

8.8CVSS7.9AI score0.70435EPSS
Exploits6References9Affected Software3
BDU FSTEC
BDU FSTEC
added 2021/07/20 12:0 a.m.12 views

The vulnerability in the Webmail of the FortiMail email protection system, which allows a hacker to gain unauthorized access to protected information.

The vulnerability of FortiMail’s webmail system relates to deficiencies in the checking of path names to the restricted access catalog. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information through specially crafted web requests...

8.8CVSS6.5AI score0.01102EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/07/20 12:0 a.m.12 views

The vulnerability of the writeTileData function in the OpenEXR library, related to writing beyond the buffer boundary, allows a attacker to cause a service failure.

The vulnerability of the writeTileData function in the OpenEXR library lies in the issue of writing beyond the buffer boundaries. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

6.5CVSS6.9AI score0.01134EPSS
Exploits1References12Affected Software5
BDU FSTEC
BDU FSTEC
added 2021/07/20 12:0 a.m.12 views

The vulnerability of the Content-Length header in the Apache Traffic Server web server allows a hacker to compromise the integrity of the protected information.

The vulnerability of the Content-Length header in the Apache Traffic Server web server is related to deficiencies in HTTP request processing. Exploiting this vulnerability allows a malicious actor to compromise the integrity of the protected information...

7.8CVSS7.2AI score0.02137EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/07/15 12:0 a.m.12 views

The vulnerability of the Archive_Tar class in the PHP classes library of PEAR allows a attacker to overwrite protected files.

The vulnerability of the ArchiveTar class in the PHP classes library of PEAR is related to insufficient cleaning of special elements in the output data used by the incoming component. Exploiting this vulnerability could allow an attacker to overwrite protected files by using a specially crafted...

8.8CVSS7.5AI score0.84554EPSS
Exploits4References12Affected Software5
BDU FSTEC
BDU FSTEC
added 2021/07/15 12:0 a.m.12 views

The vulnerability of several functions in libscp_v0.c allows an attacker to access confidential information or cause service failures, due to buffer overflows in the stack of the RDP server xrdp.

The vulnerability of several functions in libscpv0.c affects the RDP server xrdp. It involves buffer overflow in the data stack buffer. Exploiting this vulnerability can allow an attacker to access confidential information or cause service failures...

7.8CVSS7.5AI score0.02404EPSS
Exploits0References8Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/07/13 12:0 a.m.12 views

The vulnerability of the WriteSGIImage function in the console-based image editing tool ImageMagick, related to writing beyond buffer boundaries, allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the WriteSGIImage function in the console-based image editing tool ImageMagick is related to the execution of operations that exceed the allowable buffer data size. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its...

9.8CVSS8.1AI score0.03678EPSS
Exploits0References9Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/07/07 12:0 a.m.12 views

The vulnerability of the ReadBMPImage function in the coders/bmp.c component of the console image editing tool ImageMagick, related to infinite loop execution, allows attackers to cause a service failure.

The vulnerability of the ReadBMPImage function in the coders/bmp.c component of the ImageMagick console graphics editor is related to the infinite execution of a loop. Exploiting this vulnerability allows an attacker to cause a service failure by using a specially created BMP file...

6.5CVSS6.9AI score0.03003EPSS
Exploits1References10Affected Software3
BDU FSTEC
BDU FSTEC
added 2021/07/06 12:0 a.m.12 views

The vulnerability of the MagickCore/resize.c component of the console-based image editing tool ImageMagick, related to division by zero, allows a hacker to cause a service failure.

The vulnerability of the MagickCore/resize.c component in the console-based image editing tool ImageMagick is related to division by zero. Exploiting this vulnerability allows a remote attacker to cause a service failure using a specially created file...

5.3CVSS6.6AI score0.00914EPSS
Exploits0References14Affected Software4
BDU FSTEC
BDU FSTEC
added 2021/06/30 12:0 a.m.12 views

Microsoft Edge’s browser vulnerability, related to security mechanism flaws, allows attackers to escalate their privileges.

The vulnerability of Microsoft Edge is related to security flaws in its mechanisms. Exploiting this vulnerability can allow a malicious actor to gain increased privileges...

6.4CVSS6.6AI score0.02068EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/06/09 12:0 a.m.12 views

The vulnerability of the K2dobj.dl library of the COMPAS-3D 3D modeling system, related to the execution of operations outside the buffer boundaries in memory, allows attackers to cause system failures.

The vulnerability of the K2dobj.dl library in the KOMPAS-3D 3D modeling system is related to the execution of operations outside the buffer boundaries in memory. Exploiting this vulnerability can allow attackers to cause a service failure using a specially crafted CDW format file...

4.9CVSS5.9AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/06/09 12:0 a.m.12 views

The vulnerability of the ksys2.dll library in the KOMPAS-3D 3D modeling system, which is related to the execution of operations outside the buffer in memory, allows a hacker to cause a service failure.

The vulnerability of the ksys2.dll library in the KOMPAS-3D three-dimensional modeling system is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow an attacker to cause a service failure using a specially crafted CDW format file...

4.9CVSS5.9AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/05/20 12:0 a.m.12 views

Vulnerability of the Windows Media Foundation Core component in Microsoft Windows operating systems, allowing attackers to execute arbitrary code

The vulnerability of the Windows Media Foundation Core component in Microsoft Windows operating systems is related to improper code generation. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.3CVSS7.6AI score0.02253EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2021/05/05 12:0 a.m.12 views

The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to gain unauthorized access to protected information.

The vulnerability of the Core component of the Oracle VM VirtualBox software lies in insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

7.1CVSS6.8AI score0.00373EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/05/05 12:0 a.m.12 views

The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers allows attackers to execute arbitrary code.

The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers is related to buffer overflow attacks. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

5.3CVSS7.8AI score0.01755EPSS
Exploits0References12Affected Software6
BDU FSTEC
BDU FSTEC
added 2021/05/05 12:0 a.m.12 views

The vulnerability of Qualcomm’s software, related to deficiencies in access control, allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of Qualcomm’s software is related to deficiencies in access control. Exploiting this vulnerability can allow a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

10CVSS7.4AI score0.00958EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2021/05/05 12:0 a.m.12 views

The vulnerability of Microprogramming Software for Cisco Adaptive Security Appliance Software (ASA) and Cisco Firepower Threat Defense (FTD) relates to writing beyond the buffer boundaries, allowing attackers to trigger a system reboot or cause service failure.

The vulnerability of Microprogrammed Network Interface Software of Cisco Adaptive Security Appliance Software ASA and Cisco Firepower Threat Defense FTD is related to writing beyond the buffer boundaries. Exploiting this vulnerability can allow a malicious actor to trigger a system reboot or caus...

8.6CVSS7.4AI score0.01656EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/05/05 12:0 a.m.12 views

The vulnerability of the Shopping Cart component in the Oracle iStore system, which is used for creating, managing, and personalizing online stores, allows a hacker to gain access to modify, add, or delete data, or to gain full control over the application.

The vulnerability of the Shopping Cart component in the Oracle iStore system, which is used for creating, managing, and personalizing online stores, is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to gain access to modify, add, or delete data, o...

8.5CVSS6.8AI score0.00933EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/05/05 12:0 a.m.12 views

The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers allows attackers to execute arbitrary code.

The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers relates to access to resources through incompatible types. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

7.3CVSS8.3AI score0.57736EPSS
Exploits1References14Affected Software6
BDU FSTEC
BDU FSTEC
added 2021/05/05 12:0 a.m.12 views

The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to gain unauthorized access to protected information.

The vulnerability of the Core component of the Oracle VM VirtualBox software lies in insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

7.1CVSS6.8AI score0.00373EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/04/06 12:0 a.m.12 views

The vulnerability of the dockerd daemon, a deployment and application management automation tool in Docker-enabled environments, relates to a resource consumption control mechanism error. This vulnerability allows attackers to trigger service failures.

The vulnerability of the dockerd daemon, a tool for automating the deployment and management of applications in Docker containerized environments, is related to improper handling of the image manifest file. Exploiting this vulnerability allows an attacker to cause service interruptions...

6.5CVSS6.8AI score0.03287EPSS
Exploits0References10Affected Software5
BDU FSTEC
BDU FSTEC
added 2021/03/30 12:0 a.m.12 views

The vulnerability of the Google Chrome browser’s presentation API involves the use of a memory area after it is freed. This allows an attacker to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the Google Chrome browser’s presentation API relates to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and cause service interruptions...

9.3CVSS7.7AI score0.02296EPSS
Exploits0References11Affected Software6
BDU FSTEC
BDU FSTEC
added 2021/03/02 12:0 a.m.12 views

The vulnerabilities of the 3D model rendering software programs Luxion KeyShot, Luxion KeyShot Viewer, Luxion KeyShot Network Rendering, and Luxion KeyVR allow attackers to execute arbitrary code.

The vulnerabilities of the 3D model rendering software programs Luxion KeyShot, Luxion KeyShot Viewer, Luxion KeyShot Network Rendering, and Luxion KeyVR are related to pointer assignment errors. Exploiting these vulnerabilities can allow attackers to execute arbitrary code...

7.8CVSS7.6AI score0.02164EPSS
Exploits0References3Affected Software4
BDU FSTEC
BDU FSTEC
added 2021/03/02 12:0 a.m.12 views

The vulnerability of the installation file FortiClientEMSOnlineInstaller.exe of the Fortinet FortiClient Enterprise Management Server (EMS) allows a perpetrator to execute arbitrary code.

The vulnerability of the installation file FortiClientEMSOnlineInstaller.exe of the Fortinet FortiClient Enterprise Management Server EMS server is related to errors in the path validation mechanism. Exploiting this vulnerability could allow an attacker to execute arbitrary code using specially...

7.8CVSS7.7AI score0.00599EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/03/02 12:0 a.m.12 views

The vulnerability of the IPv6 implementation of the Cisco NX-OS network operating system for Cisco routers allows a attacker to cause a service failure.

The vulnerability of the IPv6 implementation of the Cisco NX-OS network operating system’s Cisco routers is related to a memory release error. Exploiting this vulnerability could allow a malicious actor to cause service failure remotely...

8.6CVSS7.4AI score0.01369EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2021/02/08 12:0 a.m.12 views

The vulnerability in the web interface of the Cisco Unified Communications Manager IM & Presence Service allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Cisco Unified Communications Manager IM & Presence Service web interface is related to input validation errors. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

6.8CVSS6.5AI score0.01352EPSS
Exploits0References2
Total number of security vulnerabilities5000