Lucene search
K
Bdu FstecMost viewed

90509 matches found

BDU FSTEC
BDU FSTEC
added 2025/07/18 12:0 a.m.11 views

Vulnerability of the Server component: The MySQL Server database management system, which allows a hacker to cause service interruptions.

Vulnerability of the MySQL Server component: The DDL system for database management of MySQL Server is vulnerable to uncontrolled resource consumption. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

6.8CVSS7AI score0.00559EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/17 12:0 a.m.11 views

The vulnerability of the netdev_lock() function in the iavf component of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the netdevlock function in the iavf component of the Linux operating system is related to mutual locking of execution threads. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

7CVSS6.1AI score0.00094EPSS
Exploits0References7Affected Software5
BDU FSTEC
BDU FSTEC
added 2025/07/17 12:0 a.m.11 views

The vulnerability of the Consul and Consul Enterprise service configuration tool, related to unvalidated returned values, allows attackers to circumvent established security restrictions.

The vulnerability of the Consul and Consul Enterprise service configuration tool is related to an unvalidated returned value. Exploiting this vulnerability allows a malicious actor to bypass established security restrictions from a remote location...

6.8CVSS7AI score0.00849EPSS
Exploits0References8Affected Software7
BDU FSTEC
BDU FSTEC
added 2025/07/16 12:0 a.m.11 views

The vulnerability of the MPEG-2 Video Extension codec in Microsoft Windows operating systems allows a perpetrator to execute arbitrary code.

The vulnerability of the MPEG-2 Video Extension codec in Microsoft Windows operating systems relates to the possibility of exploiting memory after it is freed. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

7.8CVSS5.8AI score0.00352EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/07/13 12:0 a.m.11 views

The vulnerability of the CADImage plugin in the IrfanView software, which is used for viewing and playing graphic, video, and audio files, allows a hacker to execute arbitrary code.

The vulnerability of the CADImage plugin for viewing and playing back graphic, video, and audio files in IrfanView arises from the execution of an operation beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially...

7.8CVSS8AI score0.0022EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/11 12:0 a.m.11 views

The vulnerability of the Windows RRAS operating system’s routing and remote access service allows a hacker to execute arbitrary code.

The vulnerability of the Windows RRAS operating system’s routing and remote access service is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

10CVSS6.4AI score0.00805EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/07/10 12:0 a.m.11 views

The vulnerability of the Microsoft 365 Apps for Enterprise package, related to the use of cryptographic algorithms containing defects, allows a hacker to circumvent security restrictions.

The vulnerability of the Microsoft 365 Apps for Enterprise package is related to the use of cryptographic algorithms that contain vulnerabilities. Exploiting this vulnerability could allow an attacker to circumvent security restrictions...

3.3CVSS5.4AI score0.0018EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/07/10 12:0 a.m.11 views

The vulnerability of Websoft HCM’s automation software for HR processes stems from the lack of measures taken to neutralize special elements used in the operating system’s commands. This allows attackers to execute arbitrary commands.

The vulnerability of Websoft HCM’s automation software for HR processes is related to the lack of measures taken to neutralize special elements used in the operating system’s commands. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands by invoking methods from th...

8CVSS5.9AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/09 12:0 a.m.11 views

The vulnerability of the Session Cookie Handler component in the microprogramming-based Ethernet modules WISE-4010LAN, WISE-4050LAN, and WISE-4060LAN allows a hacker to obtain user passwords by force.

The vulnerability of the Session Cookie Handler component in the microprogramming-based Ethernet modules WISE-4010LAN, WISE-4050LAN, and WISE-4060LAN relates to the ability to retrieve user credentials. Exploiting this vulnerability could allow a malicious actor to obtain user passwords through...

5CVSS5.4AI score0.0043EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2025/07/09 12:0 a.m.11 views

The vulnerability of the Public Update Page component in microprogramming software for Ethernet modules WISE-4010LAN, WISE-4050LAN, and WISE-4060LAN allows attackers to enhance their privileges.

The vulnerability of the Public Update Page component in microprogramming software for Ethernet modules WISE-4010LAN, WISE-4050LAN, and WISE-4060LAN is related to the absence of authentication for a critical function. Exploiting this vulnerability can allow an attacker to increase their privilege...

9.6CVSS5.5AI score0.00421EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2025/07/09 12:0 a.m.11 views

The vulnerability of the JTAG microprogramming software components in Ethernet modules WISE-4010LAN, WISE-4050LAN, and WISE-4060LAN allows intruders to implant or modify the firmware.

The vulnerability of the JTAG microprogramming software components in Ethernet modules WISE-4010LAN, WISE-4050LAN, and WISE-4060LAN is related to access control deficiencies. Exploiting this vulnerability can allow attackers to implant or modify the firmware...

6.4CVSS5.5AI score0.00164EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2025/07/08 12:0 a.m.11 views

The vulnerability of the HarmonyOS operating system, related to deficiencies in authentication procedures, allows a perpetrator to gain access to the camera without notifying the user.

The vulnerability of the HarmonyOS operating system is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain access to the camera without notifying the user...

7.6CVSS5.5AI score0.00127EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/08 12:0 a.m.11 views

The vulnerability of PDF-XChange Editor’s PDF document viewing and editing software, related to the occurrence of operations outside the buffer in memory, allows attackers to disclose protected information.

The vulnerability of PDF-XChange Editor’s PDF document viewing and editing functionality is related to the occurrence of operations outside the buffer during the processing of PRC files. Exploiting this vulnerability can allow an attacker to disclose protected information...

3.3CVSS5.9AI score0.00211EPSS
Exploits0References5Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/07/08 12:0 a.m.11 views

The vulnerability of the HarmonyOS operating system, related to buffer overflows in the stack, allows attackers to compromise the accessibility of protected information.

The vulnerability of the HarmonyOS operating system is related to buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to compromise the accessibility of protected information...

4CVSS5.8AI score0.00086EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/08 12:0 a.m.11 views

The vulnerability of the PDF Preview module in the HarmonyOS operating system, which allows a hacker to trigger a service failure

The vulnerability of the PDF Preview module in the HarmonyOS operating system is related to pointer manipulation. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...

7.8CVSS5.4AI score0.00175EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/08 12:0 a.m.11 views

The vulnerability of the HarmonyOS operating system, related to buffer overflows in the stack, allows a attacker to trigger a service failure.

The vulnerability of the HarmonyOS operating system is related to buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to trigger a service failure...

4CVSS5.8AI score0.00086EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/07 12:0 a.m.11 views

The vulnerability of the Adobe Experience Manager content and media data management system, related to the lack of measures taken to protect the website structure, allows a perpetrator to execute arbitrary code.

The vulnerability of the Adobe Experience Manager content and media data management system is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

5.5CVSS5.9AI score0.003EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/07 12:0 a.m.11 views

The vulnerability of the omap_prm.c component in the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the omapprm.c component in the Linux operating system’s kernel is related to pointer dereferencing errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00223EPSS
Exploits0References11Affected Software4
BDU FSTEC
BDU FSTEC
added 2025/07/07 12:0 a.m.11 views

The vulnerability of the microprogrammed software of Ruijie NBR2000G, NBR1300G, and Ruijie NBR1000 lies in the insufficient protection of operational data, allowing attackers to gain access to the administrator account.

The vulnerability of the microprogrammed software of Ruijie NBR2000G, NBR1300G, and Ruijie NBR1000 lies in the insufficient protection of operational data during the processing of the /WEBVMS/LEVEL15/ endpoint. Exploiting this vulnerability can allow a malicious actor to gain access to the...

7.8CVSS5.5AI score0.06444EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2025/07/04 12:0 a.m.11 views

The vulnerability of the xe_pat.c component in the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the xepat.c component in the Linux operating system’s kernel is related to errors during initialization of variables. Exploiting this vulnerability can allow an attacker to cause a service failure...

4.4CVSS6.3AI score0.00183EPSS
Exploits0References8Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/07/04 12:0 a.m.11 views

The vulnerability of the web manager for managing files and directories in File Browser, related to the use of default user accounts, allows a perpetrator to execute a brute-force attack.

The vulnerability of the web manager responsible for managing files and directories in File Browser is related to the use of default user accounts. Exploiting this vulnerability could allow a malicious actor to execute a brute-force attack remotely...

5.9CVSS5.8AI score0.00472EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/03 12:0 a.m.11 views

The vulnerability of the netfilter component in the Linux operating system’s kernel allows a hacker to induce a service failure.

The vulnerability of the netfilter component in the Linux operating system’s kernel is related to the simultaneous execution using shared resources with incorrect synchronization. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.3CVSS6.7AI score0.00222EPSS
Exploits0References10Affected Software4
BDU FSTEC
BDU FSTEC
added 2025/07/03 12:0 a.m.11 views

The vulnerability of the http-foundation component of the Symfony software development and web application management platform allows attackers to access confidential data.

The vulnerability of the http-foundation component of the Symfony software development and web application management platform is related to the use of open redirection. Exploiting this vulnerability could allow an attacker to gain access to confidential data...

3.1CVSS5.7AI score0.00565EPSS
Exploits0References9Affected Software4
BDU FSTEC
BDU FSTEC
added 2025/07/03 12:0 a.m.11 views

Vulnerability of components such as drivers, GPU, DRM, AMD, and display cores in the Linux operating system, which allows a hacker to trigger a service failure.

The vulnerability of components such as drivers, GPU, DRM, AMD, and display cores in the Linux operating system is related to synchronization errors. Exploiting this vulnerability can allow an attacker to cause service failures...

5.5CVSS6.7AI score0.00233EPSS
Exploits0References7Affected Software4
BDU FSTEC
BDU FSTEC
added 2025/07/03 12:0 a.m.11 views

The vulnerability of the net/sched component in the Linux operating system’s kernel, which allows a hacker to trigger a service failure

The vulnerability of the net/sched component in the Linux operating system’s kernel is related to pointer arithmetic errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00245EPSS
Exploits0References16Affected Software4
BDU FSTEC
BDU FSTEC
added 2025/07/02 12:0 a.m.11 views

The vulnerability of the Nix, Lix, and Guix package managers lies in their lack of access control mechanisms, allowing attackers to gain read and write access to data.

The vulnerability of the Nix, Lix, and Guix package managers is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to gain read and write access to data...

3.2CVSS5.5AI score0.00144EPSS
Exploits0References6Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/06/30 12:0 a.m.11 views

The vulnerability of the software for the Hitachi Energy MicroSCADA X SYS600 system, related to insecure management of privileges, allows a perpetrator to disclose protected information.

The vulnerability of the software used in the Hitachi Energy MicroSCADA X SYS600 equipment management system is related to insecure management of privileges. Exploiting this vulnerability could allow an attacker to disclose protected information...

7.3CVSS5.5AI score0.00207EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/27 12:0 a.m.11 views

The vulnerability in the implementation of the TLS protocol by Mozilla Firefox allows a perpetrator to circumvent existing security restrictions and gain unauthorized access to protected information.

The vulnerability in the TLS protocol implementation of Mozilla Firefox is related to errors in the certificate validation process. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions and gain unauthorized access to protected information...

5CVSS7.7AI score0.00242EPSS
Exploits0References11Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/06/26 12:0 a.m.11 views

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

5.5CVSS6.3AI score0.00305EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/25 12:0 a.m.11 views

The vulnerability of the Apache Answer Q&A platform, related to the return of references to protected data from a public method, allows a violator to execute arbitrary code.

The vulnerability of the Apache Answer Q&A platform relates to the return of references to protected data from a public method. Exploiting this vulnerability could allow an attacker operating remotely to execute arbitrary code...

6.5CVSS7.5AI score0.00872EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/25 12:0 a.m.11 views

The vulnerability of the Zimbra Collaboration Suite’s email management system, related to the lack of measures taken to protect the website structure, allows attackers to perform cross-site scripting attacks.

The vulnerability of the Zimbra Collaboration Suite email management system is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks XSS remotely...

6.4CVSS6.9AI score0.19543EPSS
Exploits1References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.11 views

Vulnerability of the uss720_probe() function in the drivers/usb/misc/uss720.c module – The driver for supporting USB devices in Linux kernel allows a hacker to gain access to protected information.

Vulnerability of the uss720probe function in the drivers/usb/misc/uss720.c module – The Linux kernel’s USB device support driver is vulnerable to security-related errors. Exploiting this vulnerability could allow an attacker to gain access to protected information...

5.5CVSS6.4AI score0.00226EPSS
Exploits0References21Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.11 views

Vulnerability of the nj_probe() function in the drivers/isdn/hardware/mISDN/netjet.c module – This driver is part of the mISDN device support in the Linux operating system. It allows a hacker to cause a service failure.

Vulnerability of the njprobe function in the drivers/isdn/hardware/mISDN/netjet.c module – The Linux kernel’s mISDN device driver has a vulnerability that leads to uncontrolled resource consumption. Exploiting this vulnerability could allow an attacker to cause service failures...

4.7CVSS6.4AI score0.00226EPSS
Exploits0References20Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.11 views

Vulnerability of the amd_iommu_probe_finalize() function in the drivers/iommu/amd/iommu.c module – Linux kernel’s IOMMU support driver, which allows a hacker to cause a service failure

Vulnerability of the amdiommuprobefinalize function in the drivers/iommu/amd/iommu.c module – Linux’s IOMMU support driver relies on the assignment of the NULL pointer. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

5.3CVSS5.6AI score0.00603EPSS
Exploits0References7Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/20 12:0 a.m.11 views

The vulnerability of the Windows operating system’s Storage Management Provider component allows a hacker to gain unauthorized access to protected information.

The vulnerability of the Windows operating system’s Storage Management Provider component is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

5.5CVSS5.6AI score0.00477EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/06/18 12:0 a.m.11 views

XWiki () Has been postponed

...

5.4AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/06/17 12:0 a.m.11 views

The vulnerability of the Git-based software platform for collaborative code development on GitLab arises from the execution of a loop with an unreachable exit condition, allowing a hacker to trigger a service failure.

The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to the execution of a loop with an unreachable exit condition. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause service failures...

7.8CVSS6.1AI score0.00515EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/16 12:0 a.m.11 views

The vulnerability of the “Termide Virtual Desktops Connection Monitor” software agent arises from the lack of protective measures for the request structure, allowing a perpetrator to execute arbitrary code.

The vulnerability of the “Termide Virtual Desktops Connection Monitor” software agent is related to the lack of protective measures for the request structure. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

6.5CVSS5.9AI score
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/09 12:0 a.m.11 views

The vulnerability of the SIMATIC PCS neo technology process management web system, related to incorrect session duration, allows a intruder to intercept the user’s session.

The vulnerability of the SIMATIC PCS neo technology process management web system is related to incorrect session duration. Exploiting this vulnerability could allow an attacker to intercept the user’s session...

10CVSS5.4AI score0.00374EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/05 12:0 a.m.11 views

Vulnerabilities of the functions check_session_id(), smb2_check_user_session(), smb2_sess_setup(), smb2_session_logoff(), smb3_decrypt_req(), ksmbd_session_lookup(), ksmbd_session_lookup_slowpath(), and ksmbd_get_encryption_key() in the Linux operating system kernel, allowing a hacker to cause a service failure.

The vulnerabilities of the functions checksessionid, smb2checkusersession, smb2sesssetup, smb2sessionlogoff, smb3decryptreq, ksmbdsessionlookup, ksmbdsessionlookupslowpath, and ksmbdgetencryptionkey in the Linux operating system are related to improper locking mechanisms. Exploiting these...

5.5CVSS7.2AI score0.00449EPSS
Exploits0References14Affected Software5
BDU FSTEC
BDU FSTEC
added 2025/06/05 12:0 a.m.11 views

The vulnerability of the NTFS file system of the Windows operating system, which allows a hacker to execute arbitrary code

The vulnerability of the NTFS file system in Windows operating systems is related to buffer overflow in the stack. Exploiting this vulnerability allows an attacker to execute arbitrary code...

7.8CVSS6.2AI score0.02138EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2025/06/05 12:0 a.m.11 views

The vulnerability of the JetBrains YouTrack project and task management software, related to the lack of authentication for a critical function, allows attackers to gain unauthorized access to protected information.

The vulnerability of the JetBrains YouTrack project and task management software lies in the lack of authentication for a critical function. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

4.3CVSS5.5AI score0.00313EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/05 12:0 a.m.11 views

The vulnerability of the deletePackages method in the HPE StoreOnce VSA virtual storage system allows a attacker to gain access to read and delete any files they desire.

The vulnerability of the deletePackages method in the HPE StoreOnce VSA virtual storage system is related to an incorrect restriction on the path name to the restricted-access directory. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain access to read and...

7.5CVSS6.9AI score0.0076EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/30 12:0 a.m.11 views

The vulnerability of the Intel Hyperscan library, related to improper handling of streams, allows a perpetrator to cause a service failure.

The vulnerability of the Intel Hyperscan library is related to improper handling of streams. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS5.9AI score0.00161EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/05/29 12:0 a.m.11 views

The vulnerability of VideoGrace video conferencing software, related to insufficient validation of input data, allows a hacker to send messages to arbitrary users.

The vulnerability of VideoGrace video conferencing software is related to insufficient verification of input data. Exploiting this vulnerability allows a malicious actor to send messages to arbitrary users remotely...

6.8CVSS5.5AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/29 12:0 a.m.11 views

The vulnerability of the GetSettings method in the software for controlling and monitoring remote devices in telemetry and telemechanics systems allows a hacker to circumvent security restrictions, read and write arbitrary files, and execute arbitrary code.

The vulnerability of the GetSettings method in software for controlling and monitoring remote devices in telemetry and telemechanics systems related to the lack of security measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to bypass security restrictions...

9CVSS6.2AI score0.00594EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/28 12:0 a.m.11 views

The vulnerability of the Mojo library for Google Chrome and Microsoft Edge browsers allows a hacker to execute arbitrary code.

The vulnerability of the Mojo library for Google Chrome and Microsoft Edge browsers stems from the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

7.5CVSS8.5AI score0.00375EPSS
Exploits1References14Affected Software7
BDU FSTEC
BDU FSTEC
added 2025/05/26 12:0 a.m.11 views

Vulnerability of the VS6EditData.dll function!CWinFontInf::WinFontMsgCheck() of the HMI configuration software for Monitouch V-SFT interfaces. This vulnerability allows an attacker to gain unauthorized access to protected information, execute arbitrary code, or cause a service failure.

The vulnerability of the VS6EditData.dll function!CWinFontInf::WinFontMsgCheck in the HMI configuration software for Monitouch V-SFT is related to the release of an incorrect pointer. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information, execu...

7.8CVSS7.5AI score0.00191EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/26 12:0 a.m.11 views

The vulnerability of the MagicINFO 9 centralized multimedia content management system lies in the improper restriction on the path name to the restricted catalog. This allows a malicious actor to gain access and add arbitrary files.

The vulnerability of the MagicINFO 9 multi-media content centralized management system is related to an incorrect restriction on the path name to the restricted catalog. Exploiting this vulnerability could allow a malicious actor to gain access and add arbitrary files...

10CVSS8.2AI score0.23953EPSS
Exploits4References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/26 12:0 a.m.11 views

The vulnerability of the webACLBindEdit_post() function in PLANET Technology’s microcontroller software allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the webACLBindEditPost function in PLANET Technology’s microprogramming devices is related to buffer overflows in the stack during the processing of the bindEditMACName parameter. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...

10CVSS5.7AI score0.00453EPSS
Exploits1References2Affected Software1
Total number of security vulnerabilities5000