Lucene search
K
Bdu FstecMost viewed

90509 matches found

BDU FSTEC
BDU FSTEC
added 2021/02/08 12:0 a.m.11 views

The vulnerability of the components of the Cisco Email Security Appliance, a system for email security management, and the Cisco Content Security Management Appliance, a system for content security management, as well as the Cisco Web Security Appliance, an internet gateway, allows attackers to gain unauthorized access to protected information.

The vulnerability of the components of the Cisco Email Security Appliance, the Cisco Content Security Management Appliance, and the Cisco Web Security Appliance involves a lack of authentication token requirements. Exploiting this vulnerability can allow an attacker to gain unauthorized access to...

5.3CVSS5.9AI score0.01142EPSS
Exploits0References2Affected Software3
BDU FSTEC
BDU FSTEC
added 2021/02/08 12:0 a.m.11 views

The vulnerability in the vManage web interface of the software-defined Cisco SD-WAN network allows a malicious individual to gain unauthorized access to protected information.

The vulnerability of the vManage web interface of the Cisco SD-WAN program-defined network is related to insufficient validation of input data. Exploiting this vulnerability could allow an attacker operating remotely to gain unauthorized access to protected information...

6.8CVSS6.5AI score0.0141EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/01/26 12:0 a.m.11 views

The vulnerability of the Windows file system filter driver allows a hacker to gain unauthorized access to protected information.

The vulnerability of the Windows file system filter driver is related to the disclosure of information. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...

5.5CVSS5.9AI score0.01201EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2020/12/03 12:0 a.m.11 views

The vulnerability of the expand_downwards and expand_upwards functions (mm/mmap.c) in Linux operating systems allows a hacker to trigger a service failure.

The vulnerability of the expanddownwards and expandupwards functions in Linux kernel systems is related to errors during multi-threaded tasks race conditions. Exploiting this vulnerability can allow an attacker to cause service failures...

7CVSS6.4AI score0.0045EPSS
Exploits1References17Affected Software2
BDU FSTEC
BDU FSTEC
added 2020/12/03 12:0 a.m.11 views

The vulnerability of the show_numa_stats() function in the NUMA-enabled kernel of Linux operating systems allows a hacker to trigger a service failure.

The vulnerability of the shownumastats function in Linux NUMA cores relates to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.3CVSS6.4AI score0.00313EPSS
Exploits0References13Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/11/24 12:0 a.m.11 views

The vulnerability of Intel Quartus Prime’s automated design system for Intel(R) 50GbE IP Core lies in an unprocessed exception that allows a hacker to trigger a service failure.

The vulnerability of Intel Quartus Prime’s automated design system for IntelR 50GbE IP Core relates to an unprocessed exception. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

4.4CVSS5.9AI score0.00271EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/10/29 12:0 a.m.11 views

The vulnerability of the Samba file system arises from an incorrect limitation on the path to the restricted access directory. This allows a malicious user to gain access to files and directories beyond the SMB network paths.

The vulnerability of the Samba file system exists due to an incorrect limitation on the path name for the restricted access directory. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain access to files and directories beyond the boundaries of the SMB network...

7.1CVSS6.2AI score0.03515EPSS
Exploits0References7Affected Software6
BDU FSTEC
BDU FSTEC
added 2020/10/29 12:0 a.m.11 views

The vulnerability of the Camera Codec Pack component of the Windows operating system allows a hacker to execute arbitrary code.

The vulnerability of the Camera Codec Pack component of the Windows operating system is related to errors in object handling in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code using a specially created file...

7.8CVSS8AI score0.03871EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2020/10/27 12:0 a.m.11 views

The vulnerability of the `register_queue_kobjects()` function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the registerqueuekobjects function in the Linux operating system’s kernel net/core/net-sysfs.c is related to a memory leak issue. Exploiting this vulnerability could allow an attacker to cause service interruptions remotely...

7.8CVSS6.5AI score0.03784EPSS
Exploits0References22Affected Software10
BDU FSTEC
BDU FSTEC
added 2020/10/22 12:0 a.m.11 views

The vulnerability of the Windows Backup Service allows attackers to exploit their privileges.

The vulnerability of the Windows Backup Service in Microsoft Windows operating systems is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.8CVSS7.2AI score0.00912EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2020/09/02 12:0 a.m.11 views

The vulnerabilities of PDF viewer programs such as Adobe Reader and Document Cloud, as well as PDF editing programs like Adobe Acrobat Document Cloud and Adobe Acrobat, are related to memory usage after it is freed. This allows attackers to execute arbitrary code.

The vulnerabilities of PDF viewer programs such as Adobe Reader and Document Cloud, as well as PDF editing programs like Adobe Acrobat Document Cloud and Adobe Acrobat, are related to the use of memory after it is freed. Exploiting these vulnerabilities can allow an attacker to execute arbitrary...

10CVSS7.9AI score0.48441EPSS
Exploits2References3
BDU FSTEC
BDU FSTEC
added 2020/08/28 12:0 a.m.11 views

The vulnerability of the Windows Media Foundation component in Windows operating systems allows attackers to gain privileges to install programs, view, modify, or delete data, as well as create new user accounts with full user rights.

The vulnerability of the Windows Media Foundation component in Windows operating systems arises from operations that occur outside the buffer in memory. Exploiting this vulnerability can allow attackers to gain control over programs, access data, modify or delete data, and create new user account...

7.8CVSS7.4AI score0.02678EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2020/08/12 12:0 a.m.11 views

The vulnerability of the Linux operating system’s kernel, related to the use of memory after it is freed, allows a hacker to cause a service failure.

The vulnerability in the drivers/net/slip/slip.c and drivers/net/can/slcan.c files of the Linux operating system relates to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to cause a service failure...

4.7CVSS6.5AI score0.00321EPSS
Exploits0References16Affected Software3
BDU FSTEC
BDU FSTEC
added 2020/07/31 12:0 a.m.11 views

The vulnerability of the br.com.anteros.dbcp.AnterosDBCPConfig Java library for JSON file parsing with Jackson-Databind, which allows attackers to cause a service failure.

The vulnerability of the br.com.anteros.dbcp.AnterosDBCPConfig Java library for JSON file parsing involving Jackson-Databind is related to the restoration of unreliable data in memory. Exploiting this vulnerability can allow an attacker to cause service failures remotely...

9.8CVSS7.4AI score0.18345EPSS
Exploits0References16Affected Software37
BDU FSTEC
BDU FSTEC
added 2020/07/29 12:0 a.m.11 views

The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2017, Adobe Acrobat Reader 2017, and Adobe Acrobat 2015/Reader 2015 involve reading beyond the buffer in memory, allowing attackers to gain unauthorized access to protected information.

The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2017, Adobe Acrobat Reader 2017, and Adobe Acrobat 2015 are related to reading data beyond the buffer in memory. Exploiting these vulnerabilities can...

7.8CVSS7.7AI score0.03EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2020/07/29 12:0 a.m.11 views

The vulnerability of the Discovery and collection script component of the Oracle Configuration Manager software, which is used for collecting configuration information about client configurations. This vulnerability allows an attacker to gain access to modify, add, or delete data, or to unauthorizedly access protected information.

The vulnerability of the Discovery and collection script component of the Oracle Configuration Manager software lies in insufficient validation of input data. Exploiting this vulnerability allows an attacker, operating remotely, to modify, add, or delete data, or gain unauthorized access to...

7.5CVSS7.2AI score0.01112EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/07/29 12:0 a.m.11 views

The vulnerability of the JVMCI Interpreter component in the Oracle GraalVM Enterprise Edition virtual machine allows a perpetrator to compromise the confidentiality, integrity, or accessibility of protected information.

The vulnerability of the JVMCI Interpreter component in the Oracle GraalVM Enterprise Edition virtual machine is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, or accessibility of protected...

9CVSS7.3AI score0.01485EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/07/29 12:0 a.m.11 views

The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2017, Adobe Acrobat Reader 2017, and Adobe Acrobat 2015/Reader 2015 involve reading beyond the buffer in memory, allowing attackers to gain unauthorized access to protected information.

The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2017, Adobe Acrobat Reader 2017, and Adobe Acrobat 2015 are related to reading data beyond the buffer in memory. Exploiting these vulnerabilities can...

7.1CVSS7.7AI score0.03181EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2020/07/29 12:0 a.m.11 views

The vulnerability of the Web Services component of the Oracle WebLogic Server application server allows a perpetrator to gain access to confidential information.

The vulnerability of the Web Services component of Oracle WebLogic Server servers exists due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to access confidential information using IIOP and T3 protocols...

7.8CVSS7.2AI score0.02249EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/07/29 12:0 a.m.11 views

The vulnerability of the Investor Module component of the Primavera Portfolio Management software, a software solution for automating management processes in production operations, allows a perpetrator to gain access to modify, add, or delete data, or to unauthorizedly access protected information.

The vulnerability of the Investor Module component of Primavera Portfolio Management software exists due to insufficient verification of input data. Exploiting this vulnerability could allow an attacker, operating remotely, to modify, add, or delete data, or gain unauthorized access to protected...

6.4CVSS6.9AI score0.00962EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/07/29 12:0 a.m.11 views

The vulnerability of the Oracle Application Express component of the Oracle Database Server database management system allows attackers to gain access to modify, add, or delete data, or to unauthorizedly access protected information.

The vulnerability of the Oracle Application Express component of the Oracle Database Server management system exists due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to modify, add, or delete data, or to gain unauthorized acces...

5.5CVSS6.9AI score0.00661EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/07/29 12:0 a.m.11 views

The vulnerabilities of PDF viewing and editing programs like Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2017, Adobe Acrobat Reader 2017, Adobe Acrobat 2015, Adobe Acrobat Reader 2015 are related to security exploits that allow attackers to escalate their privileges within the context of the current user.

The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2017, Adobe Acrobat Reader 2017, and Adobe Acrobat 2015 are related to bypassing security features. Exploiting these vulnerabilities can allow attackers...

9.3CVSS6.8AI score0.02795EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2020/07/24 12:0 a.m.11 views

The vulnerability of AppX Deployment Extensions in Windows operating systems allows attackers to enhance their privileges.

The vulnerability of AppX Deployment Extensions in Windows operating systems is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to enhance their privileges through a specially created application...

7.8CVSS7.2AI score0.00739EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2020/07/21 12:0 a.m.11 views

The vulnerability of the Cisco Webex Meetings Server and Cisco Webex Meetings software lies in the lack of proper validation of input data, allowing attackers to alter the content of web pages.

The vulnerability of Cisco Webex Meetings Server and Cisco Webex Meetings software exists due to insufficient verification of input data. Exploiting this vulnerability can allow a malicious actor to alter the content of web pages from a remote location...

5CVSS5.5AI score0.01212EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2020/07/17 12:0 a.m.11 views

The vulnerability in the Microsoft Edge browser extension allows a hacker to enhance their privileges.

The vulnerability of the Microsoft Edge browser’s “Feedback” extension is related to insecure handling of privileges. Exploiting this vulnerability can allow a malicious actor to enhance their privileges remotely...

7.1CVSS5.8AI score0.02545EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/07/17 12:0 a.m.11 views

The vulnerability of the Agent Activation Runtime service in the Windows operating system allows a perpetrator to disclose protected information.

The vulnerability of the Agent Activation Runtime service in the Windows operating system exists due to object handling errors in memory. Exploiting this vulnerability can allow an attacker to disclose sensitive information through a specially created application...

5.5CVSS6.2AI score0.01224EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2020/07/03 12:0 a.m.11 views

The vulnerability of the software update service for Cisco Webex Meetings Desktop App allows a perpetrator to execute arbitrary code.

The vulnerability of the software update service for the Cisco Webex Meetings Desktop App is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

7.6CVSS7.6AI score0.04117EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/06/26 12:0 a.m.11 views

The vulnerability of the PDF Reader component of the Microsoft Edge browser, which allows a hacker to execute arbitrary code.

The vulnerability of the Windows operating system’s PDF library, specifically Microsoft Edge browsers, arises due to an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially created Microsoft...

7.6CVSS7.2AI score0.07082EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2020/06/19 12:0 a.m.11 views

The vulnerability of the ntp_sync.cgi component of the D-Link DIR-825 router’s microprogramming system allows a hacker to execute arbitrary commands.

The vulnerability of the ntpsync.cgi component of the D-Link DIR-825 router’s microprogramming system is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary commands...

9CVSS8.3AI score0.18327EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/06/05 12:0 a.m.11 views

The vulnerability of Thunderbolt devices’ microcontrollers, related to errors in the implementation of the SPI Flash interface, allows attackers to gain direct access to the memory of computing devices connected to Thunderbolt interfaces.

The vulnerability of Thunderbolt device microcontrollers is related to errors in the implementation of the SPI Flash interface. Exploiting this vulnerability can allow an attacker to gain direct access to the memory of computing devices, to which Thunderbolt-enabled devices are connected...

7.6CVSS5.5AI score
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/06/02 12:0 a.m.11 views

The vulnerability of the Local Download Sharing Service, a traffic analyzer for computer networks by Wireshark, allows a hacker to cause a service failure.

The vulnerability of the Local Download Sharing Service, a traffic analyzer for computer networks in Wireshark, is related to the manipulation of the zero pointer. Exploiting this vulnerability can allow an attacker, operating remotely, to cause service failures...

7.8CVSS6.5AI score0.05592EPSS
Exploits1References16Affected Software7
BDU FSTEC
BDU FSTEC
added 2020/05/21 12:0 a.m.11 views

The vulnerability of the VBScript script handler in Internet Explorer allows a hacker to execute arbitrary code.

The vulnerability of VBScript script handlers in Internet Explorer is related to errors in memory object handling. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

7.6CVSS7.3AI score0.07746EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/05/21 12:0 a.m.11 views

The vulnerability of the systemd_run function on the vdsm control server of the virtual infrastructure management tool Ovirt allows a attacker to execute arbitrary code.

The vulnerability of the systemdrun function in the VDS management tool of the Ovirt virtual infrastructure involves a lack of measures taken to clean data at the management level. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...

9CVSS7.1AI score0.01029EPSS
Exploits0References3Affected Software3
BDU FSTEC
BDU FSTEC
added 2020/05/21 12:0 a.m.11 views

The vulnerability of the Windows Push Notification Service allows a perpetrator to escalate their privileges on Windows operating systems.

The vulnerability of the Windows Push Notification Service is related to errors in memory object handling on Windows operating systems. Exploiting this vulnerability can allow an attacker to gain increased privileges...

7.8CVSS7.2AI score0.00856EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2020/05/21 12:0 a.m.11 views

The vulnerabilities of PDF viewing and editing programs like Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2017, Adobe Acrobat Reader 2017, Adobe Acrobat 2015, and Adobe Acrobat Reader 2015 are related to memory usage after it is freed. This allows attackers to execute arbitrary code.

The vulnerability of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2017, Adobe Acrobat Reader 2017, and Adobe Acrobat 2015 is related to the use of memory after it is freed. Exploiting this vulnerability can allow an...

9.3CVSS7.8AI score0.03637EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2020/04/27 12:0 a.m.11 views

The vulnerability of Google Chrome’s browser, related to bypassing authentication through spoofing, allows attackers to compromise data integrity.

The vulnerability of Google Chrome relates to bypassing authentication through spamming. Exploiting this vulnerability allows a malicious actor, operating remotely, to compromise data integrity by using a specially created HTML page...

4.3CVSS6.5AI score0.00926EPSS
Exploits0References9Affected Software4
BDU FSTEC
BDU FSTEC
added 2020/04/27 12:0 a.m.11 views

The vulnerability of Google Chrome’s browser, related to bypassing authentication through spoofing, allows attackers to compromise data integrity.

The vulnerability of Google Chrome relates to bypassing authentication through spamming. Exploiting this vulnerability allows a malicious actor, operating remotely, to compromise data integrity by using a specially created HTML page...

4.3CVSS6.6AI score0.0092EPSS
Exploits0References9Affected Software4
BDU FSTEC
BDU FSTEC
added 2020/04/23 12:0 a.m.11 views

Vulnerabilities of Microsoft Visio graphic editors, Microsoft Excel electronic spreadsheet editors, Microsoft PowerPoint presentation creation software, Microsoft Word text editors, the Microsoft Office and Office 365 software suite, Microsoft Outlook email client, Microsoft Publisher publishing software, Microsoft Project project management software, Microsoft Access database management systems. These vulnerabilities are related to insufficient input validation, allowing attackers to execute arbitrary code.

The vulnerabilities of Microsoft Visio, a graphic editor; Microsoft Excel, an electronic spreadsheet editor; Microsoft PowerPoint, a presentation software; Microsoft Word, a text editor; the Microsoft Office and Office 365 software suite; Microsoft Outlook, a mail client; Microsoft Publisher,...

9.3CVSS7.9AI score0.0861EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2020/04/23 12:0 a.m.11 views

The vulnerability of Google Chrome’s high-performance rendering system, SwiftShader, relates to reading data beyond the buffer in memory, allowing attackers to access confidential data.

The vulnerability of Google Chrome’s high-performance rendering system, SwiftShader, is related to object lifecycle errors. Exploiting this vulnerability can allow an attacker to gain access to confidential data...

7.1CVSS7AI score0.01652EPSS
Exploits0References10Affected Software5
BDU FSTEC
BDU FSTEC
added 2020/04/23 12:0 a.m.11 views

The vulnerability of Google Chrome web browser’s download manager allows a hacker to compromise data integrity, cause service failures, or gain unauthorized access to confidential information.

The vulnerability of Google Chrome web browser’s download manager is related to the use of freed memory segments. Exploiting this vulnerability can allow an attacker to compromise data integrity, cause service failures, or gain unauthorized access to confidential information through a specially...

9.3CVSS7.6AI score0.01315EPSS
Exploits0References12Affected Software5
BDU FSTEC
BDU FSTEC
added 2020/04/23 12:0 a.m.11 views

The vulnerability of the Blink web browser component in Google Chrome, which allows a hacker to compromise data integrity

The vulnerability of the Blink web browser component in Google Chrome is related to the lack of a mechanism for checking input data. Exploiting this vulnerability allows an attacker to affect data integrity through a specially created HTML page...

7.1CVSS7AI score0.00718EPSS
Exploits0References10Affected Software5
BDU FSTEC
BDU FSTEC
added 2020/04/10 12:0 a.m.11 views

The vulnerability of the security interface of Google Chrome’s pop-up blockers allows attackers to compromise data integrity.

The vulnerability of the security interface of Google Chrome’s pop-up blockers is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to compromise data integrity through a specially created HTML page...

4.3CVSS7AI score0.01061EPSS
Exploits0References9Affected Software5
BDU FSTEC
BDU FSTEC
added 2020/02/27 12:0 a.m.11 views

The vulnerability of the TIFFOpen function in the LibTIFF library, which allows a hacker to cause a service failure

The vulnerability of the TIFFOpen function in the LibTIFF library is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

7.1CVSS6.5AI score0.02748EPSS
Exploits0References6Affected Software4
BDU FSTEC
BDU FSTEC
added 2020/02/17 12:0 a.m.11 views

The vulnerability of the Firefox browser’s WebRTC extension, which allows a perpetrator to compromise data integrity

The vulnerability of the Firefox browser’s WebRTC extension is related to a display-related error in the origin domain. Exploiting this vulnerability could allow an attacker to compromise the integrity of data...

5.3CVSS6.8AI score0.00397EPSS
Exploits0References5Affected Software3
BDU FSTEC
BDU FSTEC
added 2020/02/11 12:0 a.m.11 views

The vulnerability of the Junos Dynamic Host Configuration Protocol Daemon (JDHCPD) in the operating system allows a attacker to execute arbitrary commands with root privileges.

The vulnerability of the Junos Dynamic Host Configuration Protocol Daemon JDHCPD operating system exists due to the lack of measures taken to eliminate special elements used in the operating system’s commands. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands wi...

8.8CVSS7.9AI score0.00937EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2020/02/11 12:0 a.m.11 views

The vulnerability of the libzypp library in software developed for the SUSE CaaS Platform and SUSE Linux Enterprise Server allows a perpetrator to gain unauthorized access to information.

The vulnerability of the libzypp library in SUSE CaaS Platform and SUSE Linux Enterprise Server software is related to errors in the use of standard permissions. Exploiting this vulnerability can allow an attacker to gain unauthorized access to information...

4CVSS6.3AI score0.00301EPSS
Exploits0References4Affected Software5
BDU FSTEC
BDU FSTEC
added 2020/02/06 12:0 a.m.11 views

The vulnerability of the Extensibility Framework component of the Enterprise Manager Base Platform allows a perpetrator to gain access to modify, add, or delete data, to gain unauthorized access to protected information, or to cause service failures.

The vulnerability of the Extensibility Framework component of the Enterprise Manager Base Platform is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to modify, add, or delete data, gain unauthorized access to protected...

8CVSS6.6AI score0.01205EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/02/03 12:0 a.m.11 views

The vulnerability in the vManage web interface of the software-defined Cisco SD-WAN network allows a attacker to execute arbitrary SQL queries.

The vulnerability in the vManage web interface of the Cisco SD-WAN software-defined networking system is related to input validation errors. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL queries remotely...

4.3CVSS5.9AI score
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/01/08 12:0 a.m.11 views

The vulnerability of the microprogrammed Ethernet switch software from Moxa series EDS-405A lies in insufficient validation of input data, allowing a intruder to trigger a service failure.

The vulnerability of the microprogrammed Ethernet switch software from Moxa EDS-405A series exists due to insufficient verification of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures by sending HTTP GET requests to the vulnerable device...

8.6CVSS5.5AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/12/13 12:0 a.m.11 views

The vulnerability of the i40e controller drivers for Intel Ethernet Series 700 models allows a hacker to cause a service failure.

The vulnerability of the i40e controller drivers for Intel Ethernet Series 700 models is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a perpetrator to cause service failures...

5.5CVSS6.1AI score0.00294EPSS
Exploits0References13Affected Software8
Total number of security vulnerabilities5000