Lucene search
K
Bdu FstecMost viewed

90509 matches found

BDU FSTEC
BDU FSTEC
added 2024/11/26 12:0 a.m.10 views

The vulnerability of the software environment of Siemens Tecnomatix Plant Simulation in simulation models for systems and processes involves writing beyond buffer boundaries, allowing attackers to execute arbitrary code.

The vulnerability of the software environment for simulation modeling of systems and processes in Siemens Tecnomatix Plant Simulation lies in the issue of buffer overflow attacks. Exploiting this vulnerability can allow attackers to execute arbitrary code using specially created WRL files...

7.8CVSS7.9AI score0.00236EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/26 12:0 a.m.10 views

The vulnerability of the MDP package for the operating system of industrial personal computers TwinCAT/BSD, related to operations beyond the buffer in memory, allows attackers to exploit their privileges, execute arbitrary code, or cause system failures.

The vulnerability of the MDP package for the operating system of industrial personal computers TwinCAT/BSD relates to operations that occur outside the buffer in memory. Exploiting this vulnerability can allow attackers to enhance their privileges, execute arbitrary code, or cause service failure...

6.5CVSS6AI score0.00265EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/11/25 12:0 a.m.10 views

The vulnerability in the virtual learning environment Moodle, related to improper restrictions on the path name to a limited catalog, allows a intruder to gain access to confidential data.

The vulnerability in the virtual training environment Moodle is related to the local loading of files during the restoration of incorrect backup copies of modules. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain access to confidential data...

7.8CVSS5.4AI score0.00638EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/11/22 12:0 a.m.10 views

The vulnerability of the Ivanti Endpoint Manager software for managing endpoints in information networks arises from incorrect restrictions on the path name to the restricted access directory. This allows a perpetrator to execute arbitrary code.

The vulnerability of the Ivanti Endpoint Manager software for managing endpoints in information networks is related to incorrect restrictions on the path name to the restricted-access directory. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

7.8CVSS7.5AI score0.17851EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2024/11/21 12:0 a.m.10 views

The vulnerability of the xen/evtchn components in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the xen/evtchn components in the Linux operating system’s kernel is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause service failures...

5.5CVSS6.8AI score0.00222EPSS
Exploits0References21Affected Software4
BDU FSTEC
BDU FSTEC
added 2024/11/21 12:0 a.m.10 views

The vulnerability of the setParentalRules() function in TOTOLINK X5000R and A7000R router microprogramming software allows a violator to trigger a service failure.

The vulnerability of the setParentalRules function in TOTOLINK X5000R and A7000R router microprogramming systems lies in the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a malicious actor to cause service failure by sending a specially crafted PO...

7.8CVSS7.6AI score0.00718EPSS
Exploits1References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/11/21 12:0 a.m.10 views

The vulnerability of the mptcp component in Linux kernel, which allows a hacker to cause a service failure

The vulnerability of the mptcp component in Linux operating systems is related to inadequate access restrictions. Exploiting this vulnerability can allow attackers to cause service failures...

5.5CVSS6.6AI score0.0022EPSS
Exploits0References15Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/11/19 12:0 a.m.10 views

The vulnerability of the fbmon component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the fbmon component in the Linux operating system’s kernel is related to improper locking of resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.4AI score0.00223EPSS
Exploits0References43Affected Software5
BDU FSTEC
BDU FSTEC
added 2024/11/18 12:0 a.m.10 views

The vulnerability of the clk component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the clk component in the Linux operating system’s kernel is related to the assignment of the NULL pointer in the clkcoreget function. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.2AI score0.00292EPSS
Exploits0References48Affected Software6
BDU FSTEC
BDU FSTEC
added 2024/11/18 12:0 a.m.10 views

The vulnerability of the USB-Audio component in the Linux operating system allows a hacker to execute arbitrary code.

The vulnerability of the USB-Audio component in the Linux operating system’s kernel is related to writing beyond the allocated memory buffer in the convertchmap function. Exploiting this vulnerability allows an attacker to execute arbitrary code...

7.8CVSS7.2AI score0.00622EPSS
Exploits0References51Affected Software6
BDU FSTEC
BDU FSTEC
added 2024/11/15 12:0 a.m.10 views

The vulnerability of the InnoDB component of the Oracle MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the InnoDB component in the Oracle MySQL Server database management system is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service interruptions using the MySQL protocol...

6.8CVSS5.8AI score0.00894EPSS
Exploits0References7Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/11/15 12:0 a.m.10 views

The vulnerability of the apcli_wps_gen_pincode function in the TOTOLINK A6000R router’s microprogramming system allows a hacker to execute arbitrary commands.

The vulnerability of the apcliwpsgenpincode function in the TOTOLINK A6000R router’s microprogramming system is related to the lack of measures taken to neutralize special elements used in the command when processing the ifname parameter. Exploiting this vulnerability allows a remote attacker to...

10CVSS5.9AI score0.02429EPSS
Exploits1References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/15 12:0 a.m.10 views

The vulnerability of the PL/Perl environment in the PostgreSQL database management system allows a hacker to execute arbitrary code.

The vulnerability in the PL/Perl environment of the PostgreSQL database management system is related to errors in system configuration or settings. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by modifying system environment variables, such as PATH...

9CVSS7.4AI score0.04422EPSS
Exploits1References20Affected Software9
BDU FSTEC
BDU FSTEC
added 2024/11/14 12:0 a.m.10 views

The vulnerability of Adobe Experience Manager’s content and media data management system, which stems from the lack of measures taken to protect the structure of web pages, allows attackers to carry out XSS attacks.

The vulnerability of Adobe Experience Manager’s content and media data management system exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

5.5CVSS5.4AI score0.00272EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/14 12:0 a.m.10 views

The vulnerability of the WireGuard component in the Linux operating system’s kernel allows a hacker to increase their privileges within the system.

The vulnerability of the WireGuard component in the Linux operating system’s kernel is related to errors that occur during the execution of the wggetdevicedump function after it is enabled. Exploiting this vulnerability can allow an attacker to gain increased privileges within the system...

8.8CVSS6.9AI score0.00234EPSS
Exploits0References40Affected Software7
BDU FSTEC
BDU FSTEC
added 2024/11/14 12:0 a.m.10 views

The vulnerability of the web page rendering modules in WebKitGTK and WPE WebKit, related to the disclosure of information, allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the Web page rendering modules in WebKitGTK and WPE WebKit relates to the disclosure of information. Exploiting this vulnerability can allow a malicious actor to gain access to confidential data, compromise its integrity, and even cause service failures through the use of a...

7.6CVSS7AI score0.01286EPSS
Exploits0References6Affected Software5
BDU FSTEC
BDU FSTEC
added 2024/11/14 12:0 a.m.10 views

The vulnerability of the SaveRestoreConnector function in NVIDIA NeMo’s comprehensive platform for training and applying neural networks in speech processing and natural language processing allows a hacker to execute arbitrary code.

The vulnerability of the SaveRestoreConnector function in NVIDIA NeMo’s comprehensive platform for training and applying neural networks in speech processing and natural language processing is related to an incorrect restriction on the path name to the restricted-access catalog. Exploiting this...

6.3CVSS8.4AI score0.00243EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/11/14 12:0 a.m.10 views

The vulnerability of the Action Dispatch component in the Action Pack extension’s Ruby interpreter allows a attacker to trigger a service failure.

The vulnerability of the Action Dispatch component in the Action Pack extension’s Ruby interpreter involves unlimited distribution of resources. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...

3.7CVSS5.7AI score0.01103EPSS
Exploits0References9Affected Software6
BDU FSTEC
BDU FSTEC
added 2024/11/14 12:0 a.m.10 views

The vulnerability of Microsoft Exchange Server servers, related to errors in information representation by the user interface, allows attackers to perform spear-phishing attacks.

The vulnerability of Microsoft Exchange Server servers is related to errors in information representation by the user interface. Exploiting this vulnerability can allow attackers to carry out spear-phishing attacks...

7.8CVSS7.7AI score0.07748EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2024/11/14 12:0 a.m.10 views

The vulnerability of the ConsumerPullTransferTokenValidationApiController component in the data-processing and information ecosystem software for Eclipse EDC allows a perpetrator to bypass token expiration checks.

The vulnerability of the ConsumerPullTransferTokenValidationApiController component in the data-processing and information ecosystem of Eclipse EDC is related to authentication procedures’ flaws. Exploiting this vulnerability could allow a malicious actor to bypass token expiration checks...

8.5CVSS5.5AI score0.00407EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/14 12:0 a.m.10 views

The vulnerability of the Adobe Illustrator graphic editor arises from overflowing buffer spaces in dynamic memory, allowing attackers to execute arbitrary code.

The vulnerability of Adobe Illustrator’s graphic editor arises due to an overflow in the buffer in the dynamic memory. Exploiting this vulnerability allows a hacker to execute arbitrary code using a specially created file...

7.8CVSS6.2AI score0.00301EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/11/13 12:0 a.m.10 views

The vulnerability of the upgrade_filter_asp function in the /upgrade_filter.asp file of the D-Link DI-8003 router’s microprogramming system, allowing a hacker to execute arbitrary commands.

The vulnerability of the upgradefilterasp function in the /upgradefilter.asp file of the D-Link DI-8003 router microprogramming system is related to the lack of measures taken at the control level for data cleaning. Exploiting this vulnerability allows a remote attacker to execute arbitrary...

6.5CVSS6.9AI score0.0425EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/13 12:0 a.m.10 views

The vulnerability of components related to DRM, AMD, and display kernels in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of components such as DRM, AMD, and display kernels in the Linux operating system is related to the assignment of the NULL pointer in the edpsetreplayallowactive function. Exploiting this vulnerability can allow a hacker to trigger a service failure...

5.5CVSS5.8AI score0.00248EPSS
Exploits0References20Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/11/13 12:0 a.m.10 views

The vulnerability of the Task Scheduler in Windows operating systems allows a malicious individual to escalate their privileges.

The vulnerability of the Task Scheduler in Windows operating systems is related to deficiencies in the authentication process. Exploiting this vulnerability can allow an attacker to increase their privileges, provided that a specially crafted application is executed. Additionally, updates from...

8.8CVSS7.8AI score0.13719EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2024/11/13 12:0 a.m.10 views

The vulnerabilities of the s390/cio components of Linux kernel, which allow a hacker to trigger a service failure

The vulnerability of the s390/cio component of the Linux operating system’s kernel is related to the state of the ccwdevicesetonline function. Exploiting this vulnerability can allow an attacker to gain increased privileges within the system...

5.5CVSS6.1AI score0.00175EPSS
Exploits0References36Affected Software6
BDU FSTEC
BDU FSTEC
added 2024/11/13 12:0 a.m.10 views

The vulnerability of the kprobes/x86 components in the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the kprobes/x86 components in the Linux operating system’s kernel is related to incorrect input checking in the canprobe function. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.8AI score0.00241EPSS
Exploits0References24Affected Software5
BDU FSTEC
BDU FSTEC
added 2024/11/13 12:0 a.m.10 views

The vulnerability of the qcom component in the Linux operating system’s kernel allows a hacker to influence the accessibility of protected information.

The vulnerability of the qcom component in the Linux operating system’s kernel is related to read misses outside of the memory boundary. Exploiting this vulnerability could allow an attacker to compromise the accessibility of protected information...

5.5CVSS5.9AI score0.00224EPSS
Exploits0References20Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/11/13 12:0 a.m.10 views

The vulnerability of the Ivanti Endpoint Manager software for managing endpoints in information networks relates to the lack of security measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely.

The vulnerability of the Ivanti Endpoint Manager software for managing endpoints in information networks relates to the lack of security measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

10CVSS7.7AI score0.40512EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/11/13 12:0 a.m.10 views

The vulnerability of the Amiro.CMS content management system, related to the manipulation of cross-site requests, allows a hacker to create an administrator account.

The vulnerability of the Amiro.CMS content management system is related to the manipulation of cross-site requests. Exploiting this vulnerability allows a malicious actor to create an administrator account remotely...

8.5CVSS5.3AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/13 12:0 a.m.10 views

The vulnerability of the nouveau/dmem components of the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the nouveau/dmem components in the Linux operating system’s kernel is related to the assignment of the NULL pointer in the nouveaudmemevictchunk function. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00225EPSS
Exploits0References23Affected Software4
BDU FSTEC
BDU FSTEC
added 2024/11/13 12:0 a.m.10 views

The vulnerability of the Portal for ArcGIS web portal involves incorrect elimination of special elements in the output data used by the incoming component. This allows a malicious user to execute arbitrary HTML code.

The vulnerability of the Portal for ArcGIS web portal is related to incorrect neutralization of special elements in the output data used by the incoming component. Exploiting this vulnerability allows a malicious actor to execute arbitrary HTML code remotely...

5.5CVSS5.8AI score0.00266EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/13 12:0 a.m.10 views

The vulnerability of the Portal for ArcGIS web portal, related to the lack of protective measures for the website structure, allows attackers to carry out cross-site scripting attacks and gain full control over the application.

The vulnerability of the Portal for ArcGIS is related to the lack of measures taken to protect the web page structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks and gain full control over the application through a specially created web page...

5.5CVSS5.2AI score0.00268EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/13 12:0 a.m.10 views

The vulnerability of the netdev component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the netdev component in the Linux operating system’s kernel is related to errors in resource management within the netdev Triggered Notifications function. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS5.9AI score0.00222EPSS
Exploits0References20Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/11/13 12:0 a.m.10 views

The vulnerability of the md component in the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the md component in the Linux operating system’s kernel is related to errors in resource management in the submitflushes function. Exploiting this vulnerability can allow an attacker to trigger a service failure...

5.5CVSS6.2AI score0.00272EPSS
Exploits0References16Affected Software5
BDU FSTEC
BDU FSTEC
added 2024/11/13 12:0 a.m.10 views

The vulnerability of the f2fs component of the Linux operating system’s kernel, which allows a hacker to cause a service failure

The vulnerability of the f2fs kernel component in the Linux operating system is related to incorrect input validation in the fs/f2fs/f2fs.h file. Exploiting this vulnerability can allow an attacker to cause a system failure...

5.5CVSS5.8AI score0.00266EPSS
Exploits0References20Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/11/13 12:0 a.m.10 views

The vulnerability of DRM/VMWGFX components in Linux operating systems allows a perpetrator to trigger a service failure.

The vulnerability of the DRM/VMWGFX components of the Linux operating system is related to errors in resource management in the vmwdebugfsresourcemanagersinit function. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00227EPSS
Exploits0References25Affected Software6
BDU FSTEC
BDU FSTEC
added 2024/11/12 12:0 a.m.10 views

The vulnerability of the platform driver for video surveillance systems called Siveillance Video (formerly known as Siveillance VMS) allows a intruder to execute arbitrary code.

The vulnerability of the platform driver for video surveillance systems called Siveillance Video formerly known as Siveillance VMS lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

6.7CVSS5.9AI score0.00219EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/11 12:0 a.m.10 views

The vulnerability of the full-screen mode of the Mozilla Firefox Focus browser on Android operating systems allows attackers to carry out spoofing attacks.

The vulnerability of Mozilla Firefox Focus’ full-screen mode on Android operating systems is related to an improper limitation on the number of user interface layers that can be displayed. Exploiting this vulnerability allows a remote attacker to perform spoofing attacks...

6.4CVSS7.1AI score0.0028EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/11 12:0 a.m.10 views

The vulnerability of the Schneider Electric Data Center Expert software monitoring tool for equipment information lies in the lack of authentication for a critical function, allowing attackers to gain access to confidential information.

The vulnerability of the Schneider Electric Data Center Expert monitoring software relates to the absence of authentication for a critical function. Exploiting this vulnerability could allow an attacker, operating remotely, to gain access to confidential information...

5.9CVSS6.2AI score0.0054EPSS
Exploits0References7Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/08 12:0 a.m.10 views

The vulnerability of the iommufd component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the iommufd component in the Linux operating system’s kernel is related to improper release of resources in the ioptaddaccess function. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00222EPSS
Exploits0References13Affected Software4
BDU FSTEC
BDU FSTEC
added 2024/11/07 12:0 a.m.10 views

The vulnerability of the sptlrpc_svc_unwrap_request() function in the ptlrpc module of the Lustre file system, related to reading beyond the buffer data’s allowable limits, allows a attacker to cause a service failure.

The vulnerability of the sptlrpcsvcunwraprequest function in the ptlrpc module of the Lustre file system is related to reading data from buffers beyond their acceptable limits. Exploiting this vulnerability could allow a remote attacker to cause service failures...

7.8CVSS7.2AI score0.01896EPSS
Exploits1References8Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/11/07 12:0 a.m.10 views

The vulnerability of the AWS Core plugin in the Continuous Integration and Delivery application system (CI/CD) of JetBrains TeamCity allows a hacker to execute cross-site scripting attacks.

The vulnerability of the AWS Core plugin in the Continuous Integration and Delivery application system CI/CD of JetBrains TeamCity exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting...

5.5CVSS5.2AI score0.00278EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/06 12:0 a.m.10 views

The vulnerability of the tx() function in the ATA over Ethernet (AoE) driver of the Linux operating system allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the tx function in the drivers/block/aoe/aoenet.c module of the Linux kernel is related to an incorrect counting of references to the netdevice structure object. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code or cause service failures...

8.3CVSS7.8AI score0.00259EPSS
Exploits0References28Affected Software4
BDU FSTEC
BDU FSTEC
added 2024/11/06 12:0 a.m.10 views

The vulnerability of the cdns_i3c_masterremove() function in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the cdnsi3cmasterremove function in the drivers/i3c/master/i3c-master-cdns.c file of the Linux kernel is related to the reutilization of previously freed memory due to concurrent access to resources. Exploiting this vulnerability could allow an attacker to compromise the...

7CVSS7.2AI score0.00214EPSS
Exploits0References14Affected Software4
BDU FSTEC
BDU FSTEC
added 2024/11/01 12:0 a.m.10 views

The vulnerability of the DatabaseSearch function in the XWiki platform, a tool for creating collaborative web applications. This vulnerability allows attackers to execute arbitrary code.

The vulnerability of the DatabaseSearch function in the XWiki platform for creating collaborative web applications stems from the lack of measures taken to neutralize instructions in dynamically executed code. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remote...

10CVSS8.1AI score0.3452EPSS
Exploits4References9Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/01 12:0 a.m.10 views

The vulnerability of the Relevanssi plugin of the WordPress content management system allows attackers to execute cross-site scripting attacks.

The vulnerability of the Relevanssi plugin of the WordPress content management system exists due to the lack of measures taken to protect the website’s structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks by injecting malicious scripts...

5.5CVSS5.2AI score0.00414EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/01 12:0 a.m.10 views

The vulnerability of the TCP Intercept function and the Snort intrusion detection system of Cisco Firepower Threat Defense (FTD) allows attackers to bypass security restrictions and carry out SYN flood attacks.

The vulnerability of the TCP Intercept function and the Snort intrusion detection system of Cisco Firepower Threat Defense’s microprogramming network interface devices is related to resource management errors caused by an incorrect setting of the Maximum Embryonic TCP connections value. Exploitin...

5.8CVSS5.5AI score0.00391EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/01 12:0 a.m.10 views

Vulnerability of the Server component: The Optimizer component of the Oracle MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the Oracle MySQL Server component of the database management system’s optimizer is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service interruptions using the MySQL network protocol...

6.8CVSS6.6AI score0.00876EPSS
Exploits0References7Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/11/01 12:0 a.m.10 views

The vulnerability of the CLFS driver for Microsoft Windows operating systems allows a hacker to gain increased privileges.

The vulnerability of the CLFS driver in Microsoft Windows operating systems is related to errors in privilege management. Exploiting this vulnerability can allow an attacker to elevate their privileges to the SYSTEM level using a specially crafted blk-file...

7.8CVSS5.5AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/10/31 12:0 a.m.10 views

The vulnerability of the formEasySetPassword function (/goform/formEasySetPassword) in D-Link DIR-605L router software allows a hacker to execute arbitrary code.

The vulnerability of the formEasySetPassword function /goform/formEasySetPassword in D-Link DIR-605L router microprogramming software is related to copying buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to execute arbitrary code using th...

9CVSS8.1AI score0.01515EPSS
Exploits1References2
Total number of security vulnerabilities5000