Lucene search
K
Bdu FstecMost viewed

90509 matches found

BDU FSTEC
BDU FSTEC
added 2020/07/24 12:0 a.m.11 views

The vulnerability of AppX Deployment Extensions in Windows operating systems allows attackers to enhance their privileges.

The vulnerability of AppX Deployment Extensions in Windows operating systems is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to enhance their privileges through a specially created application...

7.8CVSS7.2AI score0.00739EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2020/07/21 12:0 a.m.11 views

The vulnerability of the Cisco Webex Meetings Server and Cisco Webex Meetings software lies in the lack of proper validation of input data, allowing attackers to alter the content of web pages.

The vulnerability of Cisco Webex Meetings Server and Cisco Webex Meetings software exists due to insufficient verification of input data. Exploiting this vulnerability can allow a malicious actor to alter the content of web pages from a remote location...

5CVSS5.5AI score0.01212EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2020/07/17 12:0 a.m.11 views

The vulnerability in the Microsoft Edge browser extension allows a hacker to enhance their privileges.

The vulnerability of the Microsoft Edge browser’s “Feedback” extension is related to insecure handling of privileges. Exploiting this vulnerability can allow a malicious actor to enhance their privileges remotely...

7.1CVSS5.8AI score0.02545EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/07/17 12:0 a.m.11 views

The vulnerability of the Agent Activation Runtime service in the Windows operating system allows a perpetrator to disclose protected information.

The vulnerability of the Agent Activation Runtime service in the Windows operating system exists due to object handling errors in memory. Exploiting this vulnerability can allow an attacker to disclose sensitive information through a specially created application...

5.5CVSS6.2AI score0.01224EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2020/07/09 12:0 a.m.11 views

The vulnerability of the gf_text_get_utf8_line function in the multimedia platform GPAC, related to writing beyond buffer boundaries, allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the gftextgetutf8line function on the multimedia platform GPAC is related to writing beyond the buffer boundaries. Exploiting this vulnerability could allow attackers to compromise the confidentiality, integrity, and accessibility of the protected information...

7.8CVSS7.5AI score0.01411EPSS
Exploits1References7Affected Software4
BDU FSTEC
BDU FSTEC
added 2020/07/03 12:0 a.m.11 views

The vulnerability of the software update service for Cisco Webex Meetings Desktop App allows a perpetrator to execute arbitrary code.

The vulnerability of the software update service for the Cisco Webex Meetings Desktop App is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

7.6CVSS7.6AI score0.04117EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/06/26 12:0 a.m.11 views

The vulnerability of the PDF Reader component of the Microsoft Edge browser, which allows a hacker to execute arbitrary code.

The vulnerability of the Windows operating system’s PDF library, specifically Microsoft Edge browsers, arises due to an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially created Microsoft...

7.6CVSS7.2AI score0.07082EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2020/06/19 12:0 a.m.11 views

The vulnerability of the ntp_sync.cgi component of the D-Link DIR-825 router’s microprogramming system allows a hacker to execute arbitrary commands.

The vulnerability of the ntpsync.cgi component of the D-Link DIR-825 router’s microprogramming system is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary commands...

9CVSS8.3AI score0.18327EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/06/02 12:0 a.m.11 views

The vulnerability of the Local Download Sharing Service, a traffic analyzer for computer networks by Wireshark, allows a hacker to cause a service failure.

The vulnerability of the Local Download Sharing Service, a traffic analyzer for computer networks in Wireshark, is related to the manipulation of the zero pointer. Exploiting this vulnerability can allow an attacker, operating remotely, to cause service failures...

7.8CVSS6.5AI score0.05592EPSS
Exploits1References16Affected Software7
BDU FSTEC
BDU FSTEC
added 2020/05/21 12:0 a.m.11 views

The vulnerability of the Windows Push Notification Service allows a perpetrator to escalate their privileges on Windows operating systems.

The vulnerability of the Windows Push Notification Service is related to errors in memory object handling on Windows operating systems. Exploiting this vulnerability can allow an attacker to gain increased privileges...

7.8CVSS7.2AI score0.00856EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2020/05/21 12:0 a.m.11 views

The vulnerability of the systemd_run function on the vdsm control server of the virtual infrastructure management tool Ovirt allows a attacker to execute arbitrary code.

The vulnerability of the systemdrun function in the VDS management tool of the Ovirt virtual infrastructure involves a lack of measures taken to clean data at the management level. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...

9CVSS7.1AI score0.01029EPSS
Exploits0References3Affected Software3
BDU FSTEC
BDU FSTEC
added 2020/05/21 12:0 a.m.11 views

The vulnerabilities of PDF viewing and editing programs like Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2017, Adobe Acrobat Reader 2017, Adobe Acrobat 2015, and Adobe Acrobat Reader 2015 are related to memory usage after it is freed. This allows attackers to execute arbitrary code.

The vulnerability of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2017, Adobe Acrobat Reader 2017, and Adobe Acrobat 2015 is related to the use of memory after it is freed. Exploiting this vulnerability can allow an...

9.3CVSS7.8AI score0.03637EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2020/04/27 12:0 a.m.11 views

The vulnerability of Google Chrome’s browser, related to bypassing authentication through spoofing, allows attackers to compromise data integrity.

The vulnerability of Google Chrome relates to bypassing authentication through spamming. Exploiting this vulnerability allows a malicious actor, operating remotely, to compromise data integrity by using a specially created HTML page...

4.3CVSS6.5AI score0.00926EPSS
Exploits0References9Affected Software4
BDU FSTEC
BDU FSTEC
added 2020/04/23 12:0 a.m.11 views

The vulnerability of Google Chrome web browser’s download manager allows a hacker to compromise data integrity, cause service failures, or gain unauthorized access to confidential information.

The vulnerability of Google Chrome web browser’s download manager is related to the use of freed memory segments. Exploiting this vulnerability can allow an attacker to compromise data integrity, cause service failures, or gain unauthorized access to confidential information through a specially...

9.3CVSS7.6AI score0.01315EPSS
Exploits0References12Affected Software5
BDU FSTEC
BDU FSTEC
added 2020/04/23 12:0 a.m.11 views

The vulnerability of Google Chrome’s high-performance rendering system, SwiftShader, relates to reading data beyond the buffer in memory, allowing attackers to access confidential data.

The vulnerability of Google Chrome’s high-performance rendering system, SwiftShader, is related to object lifecycle errors. Exploiting this vulnerability can allow an attacker to gain access to confidential data...

7.1CVSS7AI score0.01652EPSS
Exploits0References10Affected Software5
BDU FSTEC
BDU FSTEC
added 2020/04/10 12:0 a.m.11 views

The vulnerability of the security interface of Google Chrome’s pop-up blockers allows attackers to compromise data integrity.

The vulnerability of the security interface of Google Chrome’s pop-up blockers is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to compromise data integrity through a specially created HTML page...

4.3CVSS7AI score0.01061EPSS
Exploits0References9Affected Software5
BDU FSTEC
BDU FSTEC
added 2020/02/27 12:0 a.m.11 views

The vulnerability of the TIFFOpen function in the LibTIFF library, which allows a hacker to cause a service failure

The vulnerability of the TIFFOpen function in the LibTIFF library is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

7.1CVSS6.5AI score0.02748EPSS
Exploits0References6Affected Software4
BDU FSTEC
BDU FSTEC
added 2020/02/17 12:0 a.m.11 views

The vulnerability of the Firefox browser’s WebRTC extension, which allows a perpetrator to compromise data integrity

The vulnerability of the Firefox browser’s WebRTC extension is related to a display-related error in the origin domain. Exploiting this vulnerability could allow an attacker to compromise the integrity of data...

5.3CVSS6.8AI score0.00397EPSS
Exploits0References5Affected Software3
BDU FSTEC
BDU FSTEC
added 2020/02/11 12:0 a.m.11 views

The vulnerability of the libzypp library in software developed for the SUSE CaaS Platform and SUSE Linux Enterprise Server allows a perpetrator to gain unauthorized access to information.

The vulnerability of the libzypp library in SUSE CaaS Platform and SUSE Linux Enterprise Server software is related to errors in the use of standard permissions. Exploiting this vulnerability can allow an attacker to gain unauthorized access to information...

4CVSS6.3AI score0.00301EPSS
Exploits0References4Affected Software5
BDU FSTEC
BDU FSTEC
added 2020/02/11 12:0 a.m.11 views

The vulnerability of the Junos Dynamic Host Configuration Protocol Daemon (JDHCPD) in the operating system allows a attacker to execute arbitrary commands with root privileges.

The vulnerability of the Junos Dynamic Host Configuration Protocol Daemon JDHCPD operating system exists due to the lack of measures taken to eliminate special elements used in the operating system’s commands. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands wi...

8.8CVSS7.9AI score0.00937EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2020/02/06 12:0 a.m.11 views

The vulnerability of the Extensibility Framework component of the Enterprise Manager Base Platform allows a perpetrator to gain access to modify, add, or delete data, to gain unauthorized access to protected information, or to cause service failures.

The vulnerability of the Extensibility Framework component of the Enterprise Manager Base Platform is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to modify, add, or delete data, gain unauthorized access to protected...

8CVSS6.6AI score0.01205EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/02/06 12:0 a.m.11 views

The vulnerability of the C API component of the MySQL Database Management System client, which allows a hacker to trigger a service failure.

The vulnerability of the C API component of the MySQL Database Management System client is related to resource release errors. Exploiting this vulnerability can allow an attacker to cause service interruptions using the MySQL Protocol network protocol...

5.9CVSS6.6AI score0.03485EPSS
Exploits0References18Affected Software5
BDU FSTEC
BDU FSTEC
added 2020/02/03 12:0 a.m.11 views

The vulnerability in HMI/SCADA Equinox Control Expert, related to the failure to protect the SQL query structure, allows a intruder to gain unauthorized access to protected information.

The vulnerability in HMI/SCADA Equinox Control Expert relates to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to protected information by sending specially crafted SQL queries to the database...

10CVSS7.9AI score0.01889EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2020/02/03 12:0 a.m.11 views

The vulnerability in the vManage web interface of the software-defined Cisco SD-WAN network allows a attacker to execute arbitrary SQL queries.

The vulnerability in the vManage web interface of the Cisco SD-WAN software-defined networking system is related to input validation errors. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL queries remotely...

4.3CVSS5.9AI score
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/12/13 12:0 a.m.11 views

The vulnerability of the i40e controller drivers for Intel Ethernet Series 700 models allows a hacker to cause a service failure.

The vulnerability of the i40e controller drivers for Intel Ethernet Series 700 models is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a perpetrator to cause service failures...

5.5CVSS6.1AI score0.00294EPSS
Exploits0References13Affected Software8
BDU FSTEC
BDU FSTEC
added 2019/12/13 12:0 a.m.11 views

The vulnerability of the RouterOS operating system’s automatic update function in MikroTik routers allows a intruder to gain unauthorized access to protected information.

The vulnerability of the RouterOS operating system’s automatic update function for MikroTik routers involves loading code without checking its integrity. Exploiting this vulnerability allows a malicious actor, operating remotely, to gain unauthorized access to protected information by resetting t...

8.5CVSS7.5AI score0.01059EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2019/11/11 12:0 a.m.11 views

The vulnerability of the MP4 demultiplexer in the VideoLAN VLC media player software allows a hacker to execute arbitrary code or trigger a service denial.

The vulnerability of the MP4 demultiplexer in the VideoLAN VLC media player software is related to errors in checking the length of string containers. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or trigger a service denial-of-service attack using a specially...

10CVSS7.1AI score0.02162EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2019/11/06 12:0 a.m.11 views

The vulnerability of the BARS.Web-Swods platform arises from insufficient validation of input data, allowing attackers to execute unauthorized SQL queries against the database of the information system.

The vulnerability of the BARS.Web-Swods platform arises from insufficient validation of input data when accessing the form located at the address /Forms/Open?metaName=. Exploitation of this vulnerability allows a malicious actor to execute unauthorized SQL queries against the database of the...

9CVSS5.8AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/10/09 12:0 a.m.11 views

Vulnerability of the Server: Optimizer component of the Oracle MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the Server: Optimizer component of the Oracle MySQL Server database management system is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to cause service interruptions using the MySQL protocol...

6.8CVSS5.4AI score0.03294EPSS
Exploits0References11Affected Software14
BDU FSTEC
BDU FSTEC
added 2019/08/08 12:0 a.m.11 views

The vulnerability of the SetPixelViaPixelInfo function in the console-based image editing tool ImageMagick allows a hacker to cause a service failure or execute arbitrary code.

The vulnerability of the SetPixelViaPixelInfo function in the ImageMagick console-based graphics editor is related to reading data beyond the buffer boundary in dynamic memory. Exploiting this vulnerability can allow a remote attacker to cause a service failure or execute arbitrary code using a...

10CVSS8.4AI score0.0237EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2019/08/08 12:0 a.m.11 views

The vulnerability of the WritePNMImage function in the console-based image editing tool ImageMagick allows a hacker to cause a service failure or execute arbitrary code.

The vulnerability of the WritePNMImage function in the console-based image editing tool ImageMagick is related to the execution of operations beyond the buffer’s boundaries. Exploiting this vulnerability could allow a remote attacker to cause service interruptions or execute arbitrary code using ...

6.8CVSS8.4AI score0.02082EPSS
Exploits1References12Affected Software3
BDU FSTEC
BDU FSTEC
added 2019/08/06 12:0 a.m.11 views

The vulnerability of the Security component of the Oracle Hyperion Planning application, which automates budget management processes, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Security component of the Oracle Hyperion Planning application, which is used for automating budget management processes, is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access t...

4.9CVSS7.8AI score0.04314EPSS
Exploits4References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/08/06 12:0 a.m.11 views

The vulnerability of the Cisco Unified Communications Manager web framework allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Cisco Unified Communications Manager web framework is related to the lack of protection for operational data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information through a specially created...

6.5CVSS5.5AI score0.01739EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2019/08/06 12:0 a.m.11 views

The vulnerability of the Advanced Console controller’s sub-component of Oracle Identity Manager, a software platform of Oracle Fusion Middleware, allows an intruder to gain unauthorized access to protected data.

The vulnerability of the Advanced Console controller’s sub-component in Oracle Identity Manager, a software platform of Oracle Fusion Middleware, is related to access control deficiencies. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to...

4.3CVSS7.8AI score0.00859EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/07/30 12:0 a.m.11 views

The vulnerability of the eDocLib platform for storing and processing corporate data arises from the lack of measures taken to protect the website structure. This vulnerability allows attackers to carry out cross-site scripting attacks.

The vulnerability of the eDocLib platform for storing and processing corporate data exists due to the lack of measures taken to protect the structure of its web page. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the user’s browser by placing it in a speciall...

6CVSS6AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2019/06/27 12:0 a.m.11 views

The vulnerability in the implementation of the lmc_init_one handler in Linux kernel allows a hacker to trigger a service failure.

The vulnerability in the implementation of the lmcinitone handler of the loaded module drivers/net/wan/lmc/lmc.ko in the Linux operating system arises due to the assignment of a null pointer. Exploiting this vulnerability can allow an attacker to cause a system failure by connecting a LanMedia...

6.2CVSS5.5AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/06/14 12:0 a.m.11 views

The vulnerability of the Win32k component of the Windows operating system, which allows a hacker to execute arbitrary code in kernel mode

The vulnerability of the Win32k component of the Windows operating system is related to deficiencies in access control. Exploiting this vulnerability allows an attacker to execute arbitrary code in kernel mode using a specially created application...

7.8CVSS6AI score0.01084EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2019/04/25 12:0 a.m.11 views

The vulnerability of the fetch module in the Ansible configuration management system arises from incorrect restrictions on the path to the restricted-access directory. This allows attackers to gain unauthorized access to information and compromise its integrity.

The vulnerability of the fetch module in the Ansible configuration system is related to an incorrect path limitation for the restricted access directory. Exploiting this vulnerability could allow a local attacker to gain unauthorized access to information and compromise its integrity by copying a...

4.2CVSS5.8AI score0.00522EPSS
Exploits0References10Affected Software6
BDU FSTEC
BDU FSTEC
added 2019/04/25 12:0 a.m.11 views

The vulnerability in the 6LoWPAN dissector of the Wireshark network traffic analysis tool is related to insufficient validation of input data. This allows a hacker to trigger a service failure.

The vulnerability in the 6LoWPAN dissector of the Wireshark network traffic analyzer program is related to the failure to use a virtual buffer for testing before calling the dissector. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

5.5CVSS6.5AI score0.01424EPSS
Exploits1References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2019/04/25 12:0 a.m.11 views

The vulnerability of the ca_file_read function in the libcaca graphics library, related to integer overflow, allows an attacker to gain unauthorized access to sensitive information.

The vulnerability of the cafileread function in the libcaca graphics library is related to integer overflow. Exploiting this vulnerability allows an attacker who operates remotely to gain unauthorized access to sensitive information...

9.3CVSS6.5AI score0.01827EPSS
Exploits1References11Affected Software6
BDU FSTEC
BDU FSTEC
added 2019/04/25 12:0 a.m.11 views

The vulnerability of the ui_clip_handle_data function in the RDP client rdesktop software, related to reading data beyond the buffer boundary, allows attackers to access confidential data.

The vulnerability of the uicliphandledata function in the RDP client rdesktop is related to reading data beyond the buffer boundary. Exploiting this vulnerability could allow an attacker to gain access to confidential data remotely...

5.3CVSS7.6AI score0.03512EPSS
Exploits1References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2019/04/25 12:0 a.m.11 views

The vulnerability in the Phusion Passenger web server relates to the possibility of creating a symbolic link between a REVISION file and an arbitrary file in the system. This allows a malicious actor to gain access to confidential data.

The vulnerability in the Phusion Passenger web server relates to the ability to create symbolic links between a REVISION field and any arbitrary file in the system. Exploiting this vulnerability could allow an attacker to gain access to confidential data...

5.3CVSS6.2AI score0.00358EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2019/04/23 12:0 a.m.11 views

The vulnerability of the Core component of the Oracle VM VirtualBox virtualization tool, which allows a hacker to gain unauthorized access to protected information

The vulnerability of the Core component of Oracle VM VirtualBox is related to deficiencies in access control. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...

6.5CVSS7AI score0.00533EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/03/22 12:0 a.m.11 views

The vulnerability in the configuration of file system permissions in the Cisco NX-OSS device’s networking operating system allows a hacker to gain access to read and write file permissions.

The vulnerability of the file system configuration permissions in the Cisco NX-OSS device operating system is related to lack of access control mechanisms. Exploiting this vulnerability can allow an attacker to gain read and write access to files...

7.8CVSS7.2AI score0.00392EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2019/03/13 12:0 a.m.11 views

The vulnerability of the WebKit rendering module arises from an operation that goes beyond the buffer boundaries in memory, allowing a malicious actor to execute arbitrary code.

The vulnerability of the WebKit rendering module arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially crafted web page...

9.3CVSS8.3AI score0.0179EPSS
Exploits0References8Affected Software8
BDU FSTEC
BDU FSTEC
added 2019/02/19 12:0 a.m.11 views

The vulnerability of the LibVNC library, related to initialization errors in client code, allows attackers to disclose protected information.

The vulnerability of the LibVNC library is related to initialization errors in the client code. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information...

8.6CVSS6.8AI score0.02937EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2019/02/19 12:0 a.m.11 views

The vulnerability of the LibVNC library, related to the use of memory after it is freed, allows a hacker to execute arbitrary code.

The vulnerability of the LibVNC library lies in the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

8.1CVSS8.1AI score0.26543EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2019/01/28 12:0 a.m.11 views

The vulnerability of the sub-component “Attachments/File Upload” of the Oracle Application Object Library in the Oracle E-Business Suite system allows a perpetrator to access, modify, add, or delete data.

The vulnerability of the Attachments/File Upload sub-component of the Oracle Application Object Library in the Oracle E-Business Suite system related to access control deficiencies. Exploiting this vulnerability could allow an attacker, operating remotely, to gain access to modify, add, or delete...

8.2CVSS7.5AI score0.02009EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/01/23 12:0 a.m.11 views

The vulnerability of the Core component in Oracle VM VirtualBox allows a hacker to gain full control over the application.

The vulnerability of the Core component in Oracle VM VirtualBox is related to access control deficiencies. Exploiting this vulnerability can allow an attacker to gain full control over the application...

8.6CVSS6.7AI score0.00722EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/01/23 12:0 a.m.11 views

The vulnerability of the Security component of the Oracle Retail Xstore Payment software allows a perpetrator to modify protected information or cause service failures.

The vulnerability of the Security component of the Oracle Retail Xstore Payment software lies in deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to modify protected information or cause service failures using the HTTP protocol...

9CVSS7.6AI score0.01698EPSS
Exploits0References2Affected Software1
Total number of security vulnerabilities5000