90604 matches found
The vulnerability of the file conversion tools between different formats—PS/IGES Parasolid Translator and the simulation modeling application Simcenter Femap—allows a perpetrator to execute arbitrary code.
The vulnerability of the file conversion tools between different formats, such as PS/IGES Parasolid Translator and the simulation application Simcenter Femap, is related to reading data beyond the acceptable range in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary...
The vulnerability of Siemens SINEMA Remote Connect arises from the use of incorrect authentication tokens due to unlimited distribution of resources, which can lead to service failures.
The vulnerability of Siemens SINEMA Remote Connect relates to the use of incorrect authentication tokens due to unlimited distribution of resources. Exploiting this vulnerability can allow a perpetrator to cause service failures...
The vulnerability of the Intel Alias Checking Trusted Module (Intel ACTM), a microprogramming software component for Intel 4th Generation and 5th Generation processors, allows attackers to exploit it to increase their privileges.
The vulnerability of the Intel Alias Checking Trusted Module Intel ACTM, a microprogramming software component of Intel’s 4th and 5th generation processors, relates to the disclosure of information in the erroneous data area. Exploiting this vulnerability can allow attackers to enhance their...
The vulnerability of the software tools for accelerated video processing at the hardware level, the Intel Video Processing Library (VPL), is related to integer overflow. This vulnerability allows an attacker to exploit their privileges.
The vulnerability of the Intel Video Processing Library VPL, a software tool designed for accelerated video processing at the hardware level, is related to a numerical overflow vulnerability. Exploiting this vulnerability can allow an attacker to gain increased privileges...
The vulnerability of Siemens Solid Edge’s design and simulation tools relates to the execution of operations beyond the buffer boundaries in memory. This allows attackers to execute arbitrary code.
The vulnerability of Siemens Solid Edge’s design and simulation tools relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code using a specially created PAR file...
The vulnerability of the software environment of Siemens Tecnomatix Plant Simulation in simulation models for systems and processes involves writing beyond buffer boundaries, allowing attackers to execute arbitrary code.
The vulnerability of the software environment for simulation modeling of systems and processes in Siemens Tecnomatix Plant Simulation lies in the issue of buffer overflow attacks. Exploiting this vulnerability can allow attackers to execute arbitrary code using specially created WRL files...
The vulnerability of the Spectrum Power 7 software, related to incorrect privilege assignment, allows a perpetrator to elevate their privileges.
The vulnerability of the Spectrum Power 7 software is related to the improper assignment of privileges by running binary files with the SUID privilege. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the software environment of Siemens Tecnomatix Plant Simulation, related to buffer overflow in the stack, allows a hacker to execute arbitrary code.
The vulnerability of the software environment for simulation modeling of systems and processes in Siemens Tecnomatix Plant Simulation lies in buffer overflows in the stack. Exploiting this vulnerability can allow attackers to execute arbitrary code using specially created WRL files...
The vulnerability of the QuRouter operating system for QNAP network devices lies in the lack of measures taken to neutralize special elements used in the operating system’s commands. This allows attackers to execute arbitrary commands.
The vulnerability of the QuRouter operating system for QNAP network devices is related to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...
The vulnerability of the cifs component in the Linux operating system’s kernel allows a hacker to increase their privileges within the system.
The vulnerability of the cifs component is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges within the system...
The vulnerability in the virtual learning environment Moodle arises from the lack of measures taken to protect the structure of web pages. This allows attackers to carry out attacks using cross-site scripting (XSS).
The vulnerability in the virtual learning environment Moodle exists due to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to carry out attacks using cross-site scripting XSS...
The vulnerability of the hci_event component in the Linux operating system’s kernel allows a perpetrator to gain access to confidential information.
The vulnerability of the hcievent component in the Linux operating system’s kernel is related to the disclosure of information within the hciiocaparequestevt function. Exploiting this vulnerability can allow an attacker to gain access to confidential information...
The vulnerability of the mptcp component in Linux operating systems, which allows attackers to manipulate data
The vulnerability of the mptcp component in Linux operating systems is related to the state of the race condition when using shared resources. Exploiting this vulnerability allows an attacker to manipulate data...
Vulnerability of components of Linux operating system’s kernel/mlx5, allowing a hacker to cause a service failure
The vulnerability of the net/mlx5 components of the Linux operating system’s kernel is related to incorrect initialization of a resource in the addrulefg function. Exploiting this vulnerability can allow an attacker to cause service failures...
The vulnerability of DRM/VMWGFX components in Linux operating systems allows attackers to increase their privileges within the system.
The vulnerability of DRM/VMWGFX components in Linux operating systems is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to increase their privileges within the system...
The vulnerability of the opennurbs.dll and ODXSW_DLL.dll libraries, which are software components for modeling, design, and drafting in AutoCAD, allows a malicious individual to gain unauthorized access to protected information, execute arbitrary code, or cause a service failure.
The vulnerability of the opennurbs.dll and ODXSWDLL.dll libraries, which are software for modeling, design, and drafting in AutoCAD, is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information, execute...
The vulnerability of the emu10k1 component of the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the emu10k1 kernel component of the Linux operating system is related to errors in reading beyond the buffer boundary in the sndemu10k1pcmchannelalloc function. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the nbd component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the nbd component in the Linux operating system’s kernel is related to improper error handling in the nbdgenlstatus function. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the apcli_wps_gen_pincode function in the TOTOLINK A6000R router’s microprogramming system allows a hacker to execute arbitrary commands.
The vulnerability of the apcliwpsgenpincode function in the TOTOLINK A6000R router’s microprogramming system is related to the lack of measures taken to neutralize special elements used in the command when processing the ifname parameter. Exploiting this vulnerability allows a remote attacker to...
The vulnerability of PDF-XChange Editor’s document viewing and editing software, related to errors in the certificate validation process, allows a perpetrator to execute arbitrary code.
The vulnerability of PDF-XChange Editor’s PDF document viewing and editing software is related to errors in the certificate authenticity verification process. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
The vulnerability of the GRUB loader program, related to bypassing authentication methods through spoofing techniques, allows a perpetrator to circumvent the authentication process and enhance their privileges within the system.
The vulnerability of the GRUB bootloader is related to the ability to bypass authentication methods using spoofing techniques. Exploiting this vulnerability allows an attacker to circumvent the authentication process and enhance their privileges within the system...
The vulnerability of the CharxSystemConfigManager service in the microprogramming software for modular control devices for AC charging stations and wall-mounted charging devices from Phoenix Contact, CHARX SEC-3100, allows a hacker to execute arbitrary code.
The vulnerability of the CharxSystemConfigManager service in the microprogramming software for modular control devices for AC charging stations and wall-mounted charging devices from Phoenix Contact, the CHARX SEC-3100, is related to the absence of authentication procedures. Exploiting this...
The vulnerability of Adobe Experience Manager’s content and media data management system, which stems from the lack of measures taken to protect the structure of web pages, allows attackers to carry out XSS attacks.
The vulnerability of Adobe Experience Manager’s content and media data management system exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...
The vulnerability of the btrfs component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the btrfs component in the Linux operating system’s kernel is related to incorrect blocking in the closectree function. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerabilities of the s390/zcrypt components of the Linux operating system’s kernel allow attackers to gain elevated privileges within the system.
The vulnerability of the s390/zcrypt components in Linux operating systems is related to errors that occur after liberation. Exploiting this vulnerability can allow an attacker to gain elevated privileges within the system...
The vulnerability of the web page rendering modules in WebKitGTK and WPE WebKit, related to the disclosure of information, allows attackers to access confidential data, compromise its integrity, and cause service failures.
The vulnerability of the Web page rendering modules in WebKitGTK and WPE WebKit relates to the disclosure of information. Exploiting this vulnerability can allow a malicious actor to gain access to confidential data, compromise its integrity, and even cause service failures through the use of a...
The vulnerability of the Telerik Report Server software’s reporting control tool lies in its reliance on external controls for selecting classes. This allows an attacker to execute arbitrary code.
The vulnerability of the Telerik Report Server reporting management software lies in the use of external control for selecting classes when input data is provided. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
The vulnerability of the Symfony software platform for developing and managing web applications arises from the lack of measures taken to neutralize special elements, allowing attackers to execute arbitrary code.
The vulnerability of the Symfony software platform for developing and managing web applications exists due to the lack of measures taken to neutralize specific elements. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
The vulnerability of the Action Dispatch component in the Action Pack extension’s Ruby interpreter allows a attacker to trigger a service failure.
The vulnerability of the Action Dispatch component in the Action Pack extension’s Ruby interpreter involves unlimited distribution of resources. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...
The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in its ability to read data beyond the buffer in memory, allowing an attacker to execute arbitrary code.
The vulnerability of Adobe After Effects’ video and dynamic image editing software relates to reading beyond the buffer in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code in the context of the current user, using a specially created file...
The vulnerability of Microsoft Exchange Server servers, related to errors in information representation by the user interface, allows attackers to perform spear-phishing attacks.
The vulnerability of Microsoft Exchange Server servers is related to errors in information representation by the user interface. Exploiting this vulnerability can allow attackers to carry out spear-phishing attacks...
The vulnerability of the WireGuard component in the Linux operating system’s kernel allows a hacker to increase their privileges within the system.
The vulnerability of the WireGuard component in the Linux operating system’s kernel is related to errors that occur during the execution of the wggetdevicedump function after it is enabled. Exploiting this vulnerability can allow an attacker to gain increased privileges within the system...
The vulnerability of the Buildah container management tool arises due to an incorrect path name limitation for the restricted access catalog. This allows a malicious user to elevate their privileges within the system.
The vulnerability of the Buildah container management tool exists due to an incorrect restriction on the path name to the restricted catalog. Exploiting this vulnerability can allow a malicious user to gain increased privileges within the system...
The vulnerability of the vmk80xx component of the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the vmk80xx component of the Linux operating system’s kernel is related to resource management errors in the vmk80xxfindusbendpoints function. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the Windows DWM library in Windows operating systems, related to the swapping of a non-trusted pointer, allows attackers to escalate their privileges.
The vulnerability of the Windows DWM library in Windows operating systems is related to the swapping of a non-trusted pointer. Exploiting this vulnerability can allow an attacker to gain increased privileges...
The vulnerability of the upgrade_filter_asp function in the /upgrade_filter.asp file of the D-Link DI-8003 router’s microprogramming system, allowing a hacker to execute arbitrary commands.
The vulnerability of the upgradefilterasp function in the /upgradefilter.asp file of the D-Link DI-8003 router microprogramming system is related to the lack of measures taken at the control level for data cleaning. Exploiting this vulnerability allows a remote attacker to execute arbitrary...
The vulnerability of the Portal for ArcGIS web portal, related to the use of open redirection, allows a hacker to redirect a user to any given URL address.
The vulnerability of the Portal for ArcGIS web portal is related to the use of open redirection. Exploiting this vulnerability allows a malicious actor to redirect users to any given URL address...
The vulnerability of the qcom component in the Linux operating system’s kernel allows a hacker to manipulate the accessibility of protected information.
The vulnerability of the qcom component in the Linux operating system’s kernel is related to errors in reading beyond the boundary of the function F. Exploiting this vulnerability can allow an attacker to influence the accessibility of protected information...
The vulnerability of the Task Scheduler in Windows operating systems allows a malicious individual to escalate their privileges.
The vulnerability of the Task Scheduler in Windows operating systems is related to deficiencies in the authentication process. Exploiting this vulnerability can allow an attacker to increase their privileges, provided that a specially crafted application is executed. Additionally, updates from...
The vulnerability of the tmpfs component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the tmpfs component in the Linux operating system’s kernel is related to the state of the race condition. Exploiting this vulnerability can allow an attacker to increase their privileges within the system...
The vulnerabilities of the s390/cio components of Linux kernel, which allow a hacker to trigger a service failure
The vulnerability of the s390/cio component of the Linux operating system’s kernel is related to the state of the ccwdevicesetonline function. Exploiting this vulnerability can allow an attacker to gain increased privileges within the system...
The vulnerability of the Amiro.CMS content management system, related to the manipulation of cross-site requests, allows a hacker to create an administrator account.
The vulnerability of the Amiro.CMS content management system is related to the manipulation of cross-site requests. Exploiting this vulnerability allows a malicious actor to create an administrator account remotely...
The vulnerability of the qcom component in the Linux operating system’s kernel allows a hacker to influence the accessibility of protected information.
The vulnerability of the qcom component in the Linux operating system’s kernel is related to read misses outside of the memory boundary. Exploiting this vulnerability could allow an attacker to compromise the accessibility of protected information...
The vulnerability of the jscript9legacy.dll library in the Antimalware Scan Interface (AMSI) component of Microsoft Windows operating systems allows a malicious actor to circumvent security restrictions.
The vulnerability of the jscript9legacy.dll library in the Antimalware Scan Interface AMSI component of Microsoft Windows operating systems is related to a flaw in the data protection mechanism. Exploiting this vulnerability could allow an attacker to circumvent security restrictions...
The vulnerability of the Window.open() function in browsers such as Mozilla Firefox, Firefox ESR, and the email client Thunderbird allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the Window.open function in Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to the disclosure of information through improper handling. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...
The vulnerability of Linux operating system kernel components that implement vfio/pci allows a hacker to trigger a service failure.
The vulnerability of Linux operating system kernel components that use vfio/pci is related to resource management errors in the vfiointxsetsignal function. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the Android Framework component of the Android operating system allows attackers to elevate their privileges and gain unauthorized access to directories such as Android/data, Android/obb, and Android/sandbox.
The vulnerability of the Android Framework component of the Android operating system is related to insecure management of privileges. Exploiting this vulnerability allows a remote attacker to enhance their privileges and gain unauthorized access to directories such as Android/data, Android/obb, a...
The vulnerability of the kirin_pcie_parse_port() function in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the kirinpcieparseport function in the Linux kernel’s drivers/pci/controller/dwc/pcie-kirin.c file is related to incorrect calculation of the buffer boundary. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility...
The vulnerability of the AcTranslators.exe executable file of the AutoCAD simulation, design, and drafting software allows a perpetrator to gain unauthorized access to protected information, execute arbitrary code, or cause a service failure.
The vulnerability of the AcTranslators.exe executable file of the AutoCAD simulation, design, and drafting software is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected...
The vulnerability of the NuPoint Unified Messaging component of the Mitel MiCollab collaboration platform, related to insufficient validation of input data, allows a perpetrator to execute arbitrary commands.
The vulnerability of the NuPoint Unified Messaging component of the Mitel MiCollab collaboration platform relates to the failure to implement measures to neutralize specific elements. Exploiting this vulnerability allows attackers to execute arbitrary commands...