Lucene search
K
Bdu FstecMost viewed

90509 matches found

BDU FSTEC
BDU FSTEC
added 2024/10/24 12:0 a.m.11 views

The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to gain unauthorized access to protected information or cause service failures.

The vulnerability of the Core component of the Oracle VM VirtualBox software lies in insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information or cause service failures...

6.1CVSS6.1AI score0.00287EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/10/24 12:0 a.m.11 views

The vulnerability of the dcn302_fpu_update_bw_bounding_box() function in the amdgpu kernel of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the dcn302fpuupdatebwboundingbox function in the drivers/gpu/drm/amd/display/dc/dml/dcn302/dcn302fpu.c file of the amdgpu kernel in the Linux operating system is related to incorrect calculation of the index. Exploiting this vulnerability may allow an attacker to compromise t...

7.8CVSS7.1AI score0.00246EPSS
Exploits0References11Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/10/24 12:0 a.m.11 views

The vulnerability of embedded software developed by Qualcomm, related to the possibility of using memory after release, allows a hacker to execute arbitrary code.

The vulnerability of embedded software developed for Qualcomm chips lies in the possibility of exploiting memory after it is freed. Exploiting this vulnerability could allow a hacker to execute arbitrary code...

6.8CVSS5.8AI score0.0011EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2024/10/23 12:0 a.m.11 views

The vulnerability of the ltq_etop_free_channel() function in the Linux kernel Ethernet driver allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the ltqetopfreechannel function in the drivers/net/ethernet/lantiqetop.c file of the Linux kernel’s Ethernet driver is related to the repeated release of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...

7.8CVSS7.1AI score0.00299EPSS
Exploits0References39Affected Software5
BDU FSTEC
BDU FSTEC
added 2024/10/23 12:0 a.m.11 views

The vulnerability of the nfnetlink_rcv_batch() function in the netfilter component of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the nfnetlinkrcvbatch function in the net/netfilter/nfnetlink.c module of the Linux kernel’s netfilter component is related to the absence of buffer initialization. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

7.8CVSS7.2AI score0.00205EPSS
Exploits0References8Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/10/23 12:0 a.m.11 views

The vulnerability of the Pandoc format conversion library written in Haskell allows attackers to create or rewrite any files in the system.

The vulnerability of the Pandoc format conversion library written in Haskell is related to insufficient validation of input data. Exploiting this vulnerability allows attackers to create or overwrite arbitrary files in the system by using the --extract-media parameter or by exporting files in PDF...

6.3CVSS6AI score0.00247EPSS
Exploits0References11Affected Software6
BDU FSTEC
BDU FSTEC
added 2024/10/23 12:0 a.m.11 views

The vulnerability of the net/mlx5e component in the Linux operating system, which allows a hacker to cause a service failure.

The vulnerability of the net/mlx5e component in the Linux operating system is related to the swapping of the zero pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6AI score0.00272EPSS
Exploits0References21Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/10/23 12:0 a.m.11 views

The vulnerability of the PT MultiScanner malware protection system and the PT Sandbox network sandboxing mechanism is related to the disclosure of information through registration files, which allows attackers to enhance their privileges.

The vulnerability of the PT MultiScanner malware protection system and the PT Sandbox network sandboxing solution is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to elevate their privileges to the role of a “Securit...

6.4CVSS5.5AI score
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/10/18 12:0 a.m.11 views

The vulnerability of the dfe_qexp_list component in the Virtuoso-opensource web application development platform allows a attacker to trigger a service failure.

The vulnerability of the dfeqexplist component in the Virtuoso-opensource web application development platform is related to improper elimination of special elements used in SQL commands. Exploiting this vulnerability can allow an attacker to trigger a service failure using specially created SQL...

7.8CVSS7.3AI score0.00905EPSS
Exploits1References5Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/10/18 12:0 a.m.11 views

The vulnerability of software platforms for developing and managing online stores like Magento Open Source, Adobe Commerce, and Adobe Commerce B2B, arises from lack of access control mechanisms. This allows attackers to bypass security restrictions.

The vulnerabilities of the software platforms for developing and managing online stores such as Magento Open Source, Adobe Commerce, and Adobe Commerce B2B are related to lack of access control mechanisms. Exploiting these vulnerabilities can allow attackers to bypass security restrictions remote...

4.3CVSS5.5AI score0.00521EPSS
Exploits0References2Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/10/18 12:0 a.m.11 views

The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to gain full control over the application.

The vulnerability of the Core component of the Oracle VM VirtualBox software lies in authentication errors that occur when operations are performed outside the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain full control over the application...

7.5CVSS7.4AI score0.00267EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/10/16 12:0 a.m.11 views

The vulnerability of the Core server component of Oracle WebLogic Server, a software platform of Oracle Fusion Middleware, allows an attacker to gain full access to the vulnerable software.

The vulnerability of the Core server component of Oracle WebLogic Server, a software platform of Oracle Fusion Middleware, is related to errors in processing input data. Exploiting this vulnerability allows an attacker, operating remotely, to gain full access to the vulnerable software by sending...

10CVSS7.6AI score0.00709EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/10/16 12:0 a.m.11 views

The vulnerability of the SAP Business Objects Business Intelligence Platform lies in its ability to download files of a dangerous type without limitation, allowing an attacker to execute arbitrary code.

The vulnerability of the SAP Business Objects Business Intelligence Platform relates to the unlimited loading of dangerous files. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

4.3CVSS5.9AI score0.00357EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/10/16 12:0 a.m.11 views

The vulnerability of the seqpacket_allow() function in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the seqpacketallow function in the Linux operating system’s kernel is related to improper initialization. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

7.8CVSS6.5AI score0.00216EPSS
Exploits0References20Affected Software6
BDU FSTEC
BDU FSTEC
added 2024/10/16 12:0 a.m.11 views

The vulnerability of the Local Security Authority (LSA) service in Windows operating systems allows a perpetrator to increase their privileges.

The vulnerability of the Local Security Authority LSA service on Windows operating systems is related to operations that go beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to increase their privileges...

7CVSS5.7AI score0.00489EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/10/16 12:0 a.m.11 views

The vulnerability of the BUG_ON() function of the userfaultfd component in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the BUGON function of the userfaultfd component in the Linux operating system is related to improper locking mechanisms. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.4AI score0.00234EPSS
Exploits0References13Affected Software4
BDU FSTEC
BDU FSTEC
added 2024/10/15 12:0 a.m.11 views

The vulnerability of the microprogramming software of Moxa devices such as EDR-8010, EDR-G9004, EDR-G9010, EDR-G1002-BP, NAT-102 OnCell G4302-LTE4, and TN-4900 stems from the absence of authentication for a critical function. This allows attackers to gain full access to the device’s configuration.

The vulnerability of the microprogramming software in Moxa devices such as EDR-8010, EDR-G9004, EDR-G9010, EDR-G1002-BP, NAT-102 OnCell G4302-LTE4, and TN-4900 lies in the absence of authentication for a critical function. Exploiting this vulnerability can allow an attacker operating remotely to...

9.7CVSS8.1AI score0.00504EPSS
Exploits0References2Affected Software7
BDU FSTEC
BDU FSTEC
added 2024/10/14 12:0 a.m.11 views

The vulnerability of the Downloads component in Google Chrome and Microsoft Edge browsers allows a hacker to replace the user interface.

The vulnerability of the Downloads component in Google Chrome and Microsoft Edge is related to information representation errors in the user interface. Exploiting this vulnerability can allow an attacker to replace the user interface with a specially created HTML page...

5CVSS6.4AI score0.00423EPSS
Exploits0References11Affected Software5
BDU FSTEC
BDU FSTEC
added 2024/10/14 12:0 a.m.11 views

The vulnerability of the Passwork password manager, related to the lack of protective measures for the website structure, allows attackers to execute arbitrary JavaScript code.

The vulnerability of the Passwork password manager is related to the lack of protective measures for the website structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary JavaScript code remotely...

5.8CVSS5.9AI score
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/10/14 12:0 a.m.11 views

The vulnerability of the Network Address Translation (NAT) technology in Windows operating systems allows a perpetrator to cause a service failure.

The vulnerability of the Network Address Translation NAT technology in Windows operating systems is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

7.8CVSS5.9AI score0.02188EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/10/14 12:0 a.m.11 views

The vulnerability of the Passwork password manager, related to incorrect restrictions on the path to the restricted catalog, allows a intruder to gain unauthorized access to local files and directories on the server.

The vulnerability of the Passwork password manager is related to incorrect restrictions on the path to the restricted catalog. Exploiting this vulnerability allows a malicious actor, operating remotely, to gain unauthorized access to local files and directories on the server by manipulating URL...

8CVSS5.5AI score
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/10/14 12:0 a.m.11 views

The vulnerability of the Omnibox address bars in Google Chrome and Microsoft Edge browsers allows attackers to perform cross-site scripting attacks.

The vulnerability of the Omnibox address bars in Google Chrome and Microsoft Edge is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

6.4CVSS6.9AI score0.00257EPSS
Exploits0References6Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/10/07 12:0 a.m.11 views

The vulnerability of the pm80xx kernel component in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the pm80xx kernel component in the Linux operating system is related to the lack of memory release after the effective lifespan of the component. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.3AI score0.00229EPSS
Exploits0References18Affected Software4
BDU FSTEC
BDU FSTEC
added 2024/10/07 12:0 a.m.11 views

The vulnerability of the ksmbd component in the Linux operating system’s kernel allows attackers to increase their privileges.

The vulnerability of the ksmbd component in the Linux operating system’s kernel is related to the use of memory after it has been freed. Exploiting this vulnerability can allow an attacker to increase their privileges...

8.8CVSS6.5AI score0.0018EPSS
Exploits0References20Affected Software4
BDU FSTEC
BDU FSTEC
added 2024/10/07 12:0 a.m.11 views

The vulnerability of the ceph kernel component in the Linux operating system, which allows a hacker to trigger a service failure

The vulnerability of the ceph kernel component in the Linux operating system is related to incorrect resource locking. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.4AI score0.00182EPSS
Exploits0References47Affected Software5
BDU FSTEC
BDU FSTEC
added 2024/10/03 12:0 a.m.11 views

The vulnerability of the query_ptask_lean function in the MCUDBHelper component of the PowerPanel Enterprise monitoring and power source management system allows a perpetrator to disclose protected information.

The vulnerability of the queryptasklean function in the MCUDBHelper component of the PowerPanel Enterprise monitoring and power source management system is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability can allow an attacker to disclose...

7.8CVSS5.5AI score0.04515EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/09/30 12:0 a.m.11 views

The vulnerability of the cgi_get_fullscreen_photos() function (/cgi-bin/photocenter_mgr.cgi) in the microprogramming software of D-Link devices such as DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05, and DNS-1550-04 allows a hacker to execute arbitrary commands.

The vulnerability of the cgigetfullscreenphotos function /cgi-bin/photocentermgr.cgi in the microprogramming software of D-Link devices such as DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345,...

9CVSS8.1AI score0.0214EPSS
Exploits1References6
BDU FSTEC
BDU FSTEC
added 2024/09/30 12:0 a.m.11 views

The vulnerability of the iommu/arm-smmu component in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the iommu/arm-smmu component in the Linux operating system is related to the lack of registration cancellation when the process terminates. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS5.9AI score0.00209EPSS
Exploits0References10Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/09/30 12:0 a.m.11 views

The vulnerability of the OpenCV library, which is used for computer vision, image processing, and general numerical algorithms, relates to the issue of re-liberating memory. This allows attackers to gain access to confidential data, compromise its integrity, and cause service interruptions.

The vulnerability of the OpenCV library, which is used for computer vision, image processing, and general numerical algorithms, relates to repeated memory reclamation. Exploiting this vulnerability can allow remote attackers to gain access to confidential data, compromise its integrity, and cause...

8.8CVSS6.7AI score0.02337EPSS
Exploits1References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/09/30 12:0 a.m.11 views

The vulnerability of the PDFium PDF-content processor in Google Chrome browsers allows a hacker to execute arbitrary code, cause a service failure, or disclose protected information.

The vulnerability of the PDFium PDF-content processor in Google Chrome browser involves an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code, cause service failures, or disclose protected information by sending a...

7.8CVSS6AI score0.00164EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/09/30 12:0 a.m.11 views

The vulnerability of the Skia graphic library used by Microsoft Edge and Google Chrome browsers allows attackers to expose protected information or compromise data integrity.

The vulnerability of the Skia graphic library in Microsoft Edge and Google Chrome is related to a potential overflow condition. Exploiting this vulnerability could allow an attacker to disclose sensitive information or compromise data integrity through a specially crafted HTML page...

7.5CVSS7.2AI score0.00364EPSS
Exploits0References10Affected Software6
BDU FSTEC
BDU FSTEC
added 2024/09/30 12:0 a.m.11 views

The vulnerability of the libavfilter/af_stereowiden.c file in the FFmpeg multimedia library allows a hacker to execute arbitrary code.

The vulnerability of the libavfilter/afstereowiden.c file in the FFmpeg multimedia library is related to buffer overflow attacks. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.8CVSS7.1AI score0.00225EPSS
Exploits0References10Affected Software4
BDU FSTEC
BDU FSTEC
added 2024/09/30 12:0 a.m.11 views

The vulnerability of the qcom-geni-serial component in the Linux operating system allows for interference with the confidentiality and accessibility of protected information.

The vulnerability of the qcom-geni-serial component in the Linux operating system is related to it exceeding the buffer limits of the RX FIFO. Exploiting this vulnerability could allow an attacker to influence the confidentiality and accessibility of the protected information...

7.1CVSS6.4AI score0.00248EPSS
Exploits0References14Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/09/30 12:0 a.m.11 views

The vulnerability of the cgi_FMT_R12R5_1st_DiskMGR() function (/cgi-bin/hd_config.cgi) in the D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05, and DNS-1550-04 devices allows a attacker to execute arbitrary commands.

The vulnerability of the cgiFMTR12R51stDiskMGR function /cgi-bin/hdconfig.cgi in the D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05, and DNS-1550-04...

9CVSS7AI score0.07178EPSS
Exploits1References7
BDU FSTEC
BDU FSTEC
added 2024/09/24 12:0 a.m.11 views

The vulnerability of Nilfs2 components in the Linux operating system’s kernel, related to the assignment of NULL pointers, allows attackers to trigger a service failure.

The vulnerability of nilfs2 components in the Linux operating system’s kernel is related to the assignment of NULL pointers. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS5.9AI score0.00241EPSS
Exploits0References19Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/09/23 12:0 a.m.11 views

The vulnerability of the Web page rendering modules in WebKitGTK and WPE WebKit, related to the use of memory after it is released, allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of Web page rendering modules in WebKitGTK and WPE WebKit relates to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to access confidential data, compromise its integrity, and cause service failures...

10CVSS7.6AI score0.34574EPSS
Exploits2References17Affected Software4
BDU FSTEC
BDU FSTEC
added 2024/09/23 12:0 a.m.11 views

The vulnerability of the buffer.c component of the Vim text editor allows a hacker to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the buffer.c component of the Vim text editor is related to the use of memory after it is freed. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its integrity, and cause service interruptions...

7.8CVSS7.2AI score0.00373EPSS
Exploits0References6Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/09/18 12:0 a.m.11 views

The vulnerability of the PowerScale OneFS operating system, related to errors in processing symbolic links, allows a attacker to trigger a service failure and alter arbitrary information.

The vulnerability of the PowerScale OneFS operating system is related to errors in processing symbolic links. Exploiting this vulnerability can allow an attacker to cause service failures and alter arbitrary information...

6.4CVSS5.6AI score0.00193EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/09/17 12:0 a.m.11 views

The vulnerability of the ClamD service in the ClamAV antivirus software package allows a hacker to compromise system files or cause service failures.

The vulnerability of the ClamD service in the ClamAV antivirus software package is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability can allow an attacker to compromise system files or cause service failures...

6.1CVSS6.3AI score0.00318EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/09/13 12:0 a.m.11 views

The vulnerability of Linux operating system’s AOE kernel driver, related to the use of memory after it is freed, allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the Linux operating system’s AOE kernel driver is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to access confidential data, compromise its integrity, and cause service failures...

7.8CVSS6.4AI score0.00305EPSS
Exploits0References16Affected Software4
BDU FSTEC
BDU FSTEC
added 2024/09/13 12:0 a.m.11 views

The vulnerability of the “identify -help” command in the console-based image editing tool ImageMagick arises from improper memory release before deleting the last link. This allows a malicious actor to compromise data integrity and cause service failures.

The vulnerability of the “identify -help” command in the console-based image editing tool ImageMagick is related to improper memory release before deleting the last link. Exploiting this vulnerability can allow an attacker to compromise data integrity and cause service failures...

8.5CVSS7.1AI score0.01188EPSS
Exploits1References10Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/09/12 12:0 a.m.11 views

The vulnerability of the function ieee80211_tx_ba_session_handle_start() in the mac80211 component of Linux kernel allows a hacker to induce a service failure.

The vulnerability of the ieee80211txbasessionhandlestart function in the mac80211 component of the Linux operating system’s kernel is related to the reception of NULL for sdata when authentication is performed. Exploiting this vulnerability could allow a attacker to cause a service failure...

5.5CVSS6.1AI score0.00245EPSS
Exploits0References12Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/09/11 12:0 a.m.11 views

The vulnerability of the Apache OFBiz resource planning software lies in security mechanism failures, which allow attackers to gain unauthorized access to protected information or cause other adverse effects.

The vulnerability of Apache OFBiz’s enterprise resource planning software relates to security mechanism errors. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information or cause other adverse effects...

10CVSS8AI score0.99983EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/09/03 12:0 a.m.11 views

The vulnerability of the hwmon component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the hwmon component in the Linux operating system’s kernel is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.3AI score0.00214EPSS
Exploits0References12Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/08/27 12:0 a.m.11 views

The vulnerability of the hci_core() function in the Linux operating system’s Bluetooth kernel allows a hacker to cause a service failure.

The vulnerability of the hcicore function in the Linux operating system’s Bluetooth kernel relates to the lack of memory release before the hcidev is freed. Exploiting this vulnerability could allow a attacker to cause a service failure...

5.5CVSS6.2AI score0.00222EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/08/21 12:0 a.m.11 views

The vulnerability of the IP Routing Management Snapin for Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the IP Routing Management Snapin for Windows operating systems is related to an overflow in the buffer in the “bucket”. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

10CVSS6.2AI score0.01536EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/08/21 12:0 a.m.11 views

The vulnerability of the `promotion_discount` parameter in the Netcat Netshop CMS system allows a hacker to execute arbitrary JavaScript code.

The vulnerability of the promotiondiscount parameter in the Netcat NetShop CMS system relates to the manipulation of cross-site requests. Exploiting this vulnerability allows a malicious actor to execute arbitrary JavaScript code in the user’s browser remotely...

9CVSS5.7AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/08/21 12:0 a.m.11 views

The vulnerability of the “market” parameter in the Netcat netshop CMS system allows a hacker to execute arbitrary JavaScript code.

The vulnerability of the “market” parameter in the netshop CMS system, Netcat CMS, is related to the manipulation of cross-site requests. Exploiting this vulnerability allows a malicious actor to execute arbitrary JavaScript code in the user’s browser remotely...

9CVSS5.7AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/08/21 12:0 a.m.11 views

Vulnerability of the Layer-2 Bridge Network Driver for Windows operating systems, allowing a hacker to cause service failure.

The vulnerability of the Layer-2 Bridge Network Driver for Windows operating systems is related to pointer dereferencing errors. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

7.8CVSS5.5AI score0.02457EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/08/21 12:0 a.m.11 views

The vulnerability of the Secure Channel component in Windows operating systems, which allows a hacker to cause a service failure

The vulnerability of the Secure Channel component in Windows operating systems is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

7.8CVSS5.9AI score0.31809EPSS
Exploits0References2
Total number of security vulnerabilities5000