Lucene search
K
Bdu FstecMost viewed

90509 matches found

BDU FSTEC
BDU FSTEC
added 2024/04/19 12:0 a.m.10 views

The vulnerability of the Avalanche device management system, related to incorrect restrictions on the path name to the restricted access catalog, allows a perpetrator to execute arbitrary commands with SYSTEM privileges.

The vulnerability of the Avalanche device management system is related to incorrect restrictions on the path name to the restricted access catalog. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands with SYSTEM privileges remotely...

9CVSS7.9AI score0.03048EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/04/19 12:0 a.m.10 views

The vulnerability of the IPSec components of Ivanti Connect Secure and Ivanti Policy Secure network access control tools allows a hacker to trigger a service failure.

The vulnerability of the IPSec components of Ivanti Connect Secure and Ivanti Policy Secure network access control tools is related to buffer overflow attacks. Exploiting this vulnerability could allow a malicious actor to cause service interruptions remotely...

8.5CVSS7.2AI score0.03532EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/04/16 12:0 a.m.10 views

The vulnerability of the USB HID analyzer used by Wireshark, which is used to analyze computer network traffic, allows a hacker to perform a service denial.

The vulnerability of the USB HID analyzer used by Wireshark for analyzing computer network traffic is related to memory release errors. Exploiting this vulnerability can allow a remote attacker to cause a service failure...

7.8CVSS7.2AI score0.02411EPSS
Exploits1References11Affected Software5
BDU FSTEC
BDU FSTEC
added 2024/04/15 12:0 a.m.10 views

The vulnerability of the Model I/O framework in the macOS operating system, allowing a hacker to execute arbitrary code.

The vulnerability of the Model I/O framework in the macOS operating system is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file...

7.8CVSS7.8AI score0.00234EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/04/12 12:0 a.m.10 views

The vulnerabilities of Intel PROSet/Wireless WiFi and Intel Killer Wi-Fi network devices, related to lack of access control, allow attackers to trigger service interruptions.

The vulnerability of Intel PROSet/Wireless WiFi and Intel Killer Wi-Fi network devices is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to cause service interruptions...

7.1CVSS7AI score0.00189EPSS
Exploits0References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/04/10 12:0 a.m.10 views

The vulnerability of the software environment of Siemens Tecnomatix Plant Simulation, related to buffer overflow in the stack, allows a hacker to execute arbitrary code.

The vulnerability of the software environment for simulation modeling of systems and processes in Siemens Tecnomatix Plant Simulation lies in buffer overflow attacks. Exploiting this vulnerability can allow attackers to execute arbitrary code using a specially created WRL file...

7.8CVSS7.9AI score0.00313EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/04/09 12:0 a.m.10 views

The vulnerability of the /libheif/exif.cc decoder and encoder for libheif files allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the /libheif/exif.cc decoder and file format encoder in the libheif library is related to a segmentation error. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

10CVSS7.6AI score0.00804EPSS
Exploits1References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/04/09 12:0 a.m.10 views

The vulnerability in the file src/gif.imageio/gifinput.cpp of the OpenImageIO image processing library allows a attacker to cause a service failure.

The vulnerability in the src/gif.imageio/gifinput.cpp file of the OpenImageIO library relates to the ability to write beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

7.8CVSS7.4AI score0.0119EPSS
Exploits1References7Affected Software4
BDU FSTEC
BDU FSTEC
added 2024/04/09 12:0 a.m.10 views

The vulnerability of the ctts_box_read() function on the GPAC multimedia platform allows a intruder to trigger a service failure.

The vulnerability of the cttsboxread function on the GPAC multimedia platform is related to resource release errors. Exploiting this vulnerability could allow a hacker to cause a service failure...

5.5CVSS5.9AI score0.00214EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/04/09 12:0 a.m.10 views

The vulnerability of the NewSFDouble file in Scenegraph/vrmltools.c on the multimedia platform GPAC, which allows a hacker to cause a service failure.

The vulnerability of the NewSFDouble function in the Scenegraph/vrmltools.c file of the GPAC multimedia platform is related to the incorrect use of dynamic memory during program execution. Exploiting this vulnerability may allow an attacker to cause a service failure...

5.3CVSS5.9AI score0.00684EPSS
Exploits1References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/04/09 12:0 a.m.10 views

The vulnerability of the ProofreadPage extension, a software tool for implementing a hypertext environment like MediaWiki, allows a hacker to carry out cross-site scripting attacks.

The vulnerability of the ProofreadPage extension, a software tool for implementing the MediaWiki hypertext environment, exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability could allow a malicious actor to perform cross-site scripting attac...

6.4CVSS6AI score0.0032EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/04/09 12:0 a.m.10 views

The vulnerability of the gf_filterpacket_del() function in the gpac/src/filter_core/filter.c file of the multimedia platform GPAC allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the gffilterpacketdel function in the gpac/src/filtercore/filter.c file of the multimedia platform GPAC is related to the incorrect use of dynamic memory during program execution. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...

7.8CVSS7.2AI score0.00336EPSS
Exploits1References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/04/09 12:0 a.m.10 views

The vulnerability of the extension of the Wikibase software for implementing the MediaWiki hypertext environment allows a perpetrator to compromise the integrity of the data.

The vulnerability of the extension of the Wikibase software for implementing the MediaWiki hypertext environment is related to the failure of the editing filters. Exploiting this vulnerability could allow a malicious actor, operating remotely, to compromise confidentiality and affect the integrit...

5.3CVSS5.9AI score0.00342EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/04/09 12:0 a.m.10 views

The vulnerability of embedded Qualcomm microprogramming software, related to the lack of a data type conversion mechanism, allows attackers to execute arbitrary code.

The vulnerability of embedded software developed for Qualcomm chips lies in the lack of a mechanism for data type conversion. Exploiting this vulnerability allows an attacker to execute arbitrary code...

8.4CVSS7.6AI score0.0018EPSS
Exploits2References4
BDU FSTEC
BDU FSTEC
added 2024/04/08 12:0 a.m.10 views

The vulnerability of the `my_tcp_receive` function in the `libv2_sdk.so` library of the DJI Mavic 3 Pro, DJI Mavic 3, DJI Mavic 3 Classic, DJI Mavic 3 Enterprise, DJI Matrice 300, DJI Matrice M30, DJI Mavic Mini 3 Pro quadricopters allows a intruder to disclose confidential information or execute arbitrary code.

The vulnerability of the v2packarraytomsg function in the libv2sdk.so library of the DJI Mavic 3 Pro, DJI Mavic 3, DJI Mavic 3 Classic, DJI Mavic 3 Enterprise, DJI Matrice 300, DJI Matrice M30, and DJI Mavic Mini 3 Pro quadricopters is related to the execution of operations outside the buffer in...

6.8CVSS6AI score0.00246EPSS
Exploits0References3Affected Software7
BDU FSTEC
BDU FSTEC
added 2024/04/08 12:0 a.m.10 views

The vulnerability of the JuiceFSRuntime orchestrator environment for distributed data sets and the open-source Kubernetes accelerator for applications with intensive data processing in Fluid, allows attackers to execute arbitrary commands.

The vulnerability of the JuiceFSRuntime orchestrator for distributed data sets and the open-source Kubernetes accelerator for applications with intensive data processing exists due to the lack of measures taken to eliminate special elements used in the operating system command set. Exploiting thi...

4CVSS6.6AI score0.00611EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/04/08 12:0 a.m.10 views

The vulnerability of TP-Link Omada ER605 VPN router’s microprogramming system lies in the ability to write code outside the buffer, allowing a hacker to execute arbitrary code in the context of the root user.

The vulnerability of TP-Link Omada ER605 VPN router’s microprogramming software is related to the writing beyond buffer boundaries. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the root user, as a result of processing DHCP options...

7.5CVSS7.9AI score0.00912EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2024/04/08 12:0 a.m.10 views

The vulnerability of the SSH library wolfSSH, related to deficiencies in authentication procedures, allows attackers to circumvent existing security restrictions.

The vulnerability of the SSH library wolfSSH is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to circumvent existing security restrictions remotely...

9.4CVSS5.5AI score0.00628EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/04/08 12:0 a.m.10 views

The vulnerability of NETGEAR DGND4000’s built-in software allows a hacker to increase their privileges.

The vulnerability of NETGEAR DGND4000 router’s built-in software is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to enhance their privileges by using the nextfile parameter...

8.1CVSS5.4AI score0.0032EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/04/08 12:0 a.m.10 views

The vulnerability of TLS protocols (HTTPS, FTPS, IMAPS, POPS3, SMTPS, etc.) implemented in the command-line utility cURL, which allows attackers to perform spoofing attacks.

The vulnerability of TLS protocols HTTPS, FTPS, IMAPS, POPS3, SMTPS, etc. implemented by the command-line utility cURL is related to improper authentication of certificates. Exploiting this vulnerability allows a malicious actor to perform spoofing attacks remotely...

5.6CVSS6.7AI score0.01299EPSS
Exploits1References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/04/06 12:0 a.m.10 views

The vulnerability of the logging function of the Kibana data visualization service allows a perpetrator to disclose protected information.

The vulnerability of the logging function of the Kibana data visualization service is related to insufficient protection of registration data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to disclose the protected information...

6.8CVSS6.8AI score0.00608EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/04/06 12:0 a.m.10 views

The vulnerability of the Intersight Managed Mode (IMM) control mode of Cisco UCS 6400 and Cisco UCS 6500 Series Fabric Interconnects allows a attacker to trigger a service failure.

The vulnerability of the Intersight Managed Mode IMM control mode of Cisco UCS 6400 and Cisco UCS 6500 Series Fabric Interconnects routers is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service failures by sending a large...

5.3CVSS5.9AI score0.00826EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/04/03 12:0 a.m.10 views

The vulnerability of the AI application scaling framework and Python Ray, related to deficiencies in the authentication process, allows attackers to read arbitrary files from the /static/ directory.

The vulnerability of the AI application scaling framework and Python Ray is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to read arbitrary files from the /static/ directory using a specially crafted HTTP request...

7.8CVSS7.1AI score0.14652EPSS
Exploits3References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/04/02 12:0 a.m.10 views

The vulnerability of the PowerScale OneFS operating system, related to the transfer of data in an open manner, allows a hacker to increase their privileges.

The vulnerability of the PowerScale OneFS operating system is related to the transfer of data in an open manner. Exploiting this vulnerability can allow attackers to enhance their privileges...

7.3CVSS5.5AI score0.00113EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/04/02 12:0 a.m.10 views

The vulnerability of the Elasticsearch search engine’s application programming interface allows a hacker to trigger a service failure.

The vulnerability of the Elasticsearch search engine’s application programming interface is related to an exception handling error. Exploiting this vulnerability could allow a malicious actor to cause service failures using a specially crafted PDF file...

4.3CVSS5.5AI score0.00681EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/04/01 12:0 a.m.10 views

The vulnerability of the formQuickIndex() function (/goform/QuickIndex) in the Tenda FH1205 router software allows a attacker to compromise the integrity, accessibility, and confidentiality of the protected information.

The vulnerability of the formQuickIndex function /goform/QuickIndex of the Tenda FH1205 router’s software lies in the fact that the operation outputs outside the buffer in memory when processing the PPPOEPassword parameter. Exploiting this vulnerability allows an attacker to compromise the...

9CVSS7.9AI score0.01849EPSS
Exploits1References3
BDU FSTEC
BDU FSTEC
added 2024/04/01 12:0 a.m.10 views

The vulnerability in the dmin/run-movepass.php script of the OpenRapid RapidCMS CMS system allows a hacker to increase their privileges.

The vulnerability of the dmin/run-movepass.php script in the OpenRapid RapidCMS CMS system involves manipulating password arguments, resulting in an unreliable password recovery process. Exploiting this vulnerability could allow a malicious user, who has been removed from the system, to gain...

10CVSS6.7AI score0.00542EPSS
Exploits0References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/04/01 12:0 a.m.10 views

The vulnerability of the WebCodecs component of the Google Chrome browser allows a hacker to execute arbitrary code.

The vulnerability of Google Chrome’s WebCodecs component is related to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code through a specially created web page...

10CVSS7.5AI score0.0214EPSS
Exploits1References14Affected Software5
BDU FSTEC
BDU FSTEC
added 2024/04/01 12:0 a.m.10 views

The vulnerability of the Azure-c-shared-utility library in the Azure SDK for C development software package allows a attacker to execute arbitrary code.

The vulnerability of the Azure-c-shared-utility library in the Azure SDK for C development software package is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to execute arbitrary code using the buffer length...

6.4CVSS6.9AI score0.04967EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/03/27 12:0 a.m.10 views

The vulnerability of the contentLink parameter in the phpMyFAQ web application allows attackers to perform cross-site scripting attacks (XSS).

The vulnerability of the contentLink parameter in the phpMyFAQ web application is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting XSS attacks by injecting malicious HTML code...

4.7CVSS5.5AI score0.00539EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/03/20 12:0 a.m.10 views

The vulnerability of Adobe Experience Manager’s content and media data management system, related to inadequate access control mechanisms, allows attackers to circumvent existing security restrictions and gain unauthorized access to the application.

The vulnerability of the Adobe Experience Manager content and media data management system is related to lack of access control mechanisms. Exploiting this vulnerability could allow an attacker to bypass existing security restrictions and gain unauthorized access to the application...

5.3CVSS5.5AI score0.00644EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/03/20 12:0 a.m.10 views

The vulnerability of Adobe Experience Manager’s content and media data management system, which stems from the lack of measures taken to protect the website structure, allows attackers to perform cross-site scripting attacks.

The vulnerability of Adobe Experience Manager’s content and media data management system exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability could allow a malicious actor to perform cross-site scripting attacks...

5.5CVSS5.2AI score0.00427EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/03/15 12:0 a.m.10 views

The vulnerability of the Fortinet FortiClient Enterprise Management Server (EMS) server lies in the lack of security measures for the SQL query structure, allowing attackers to execute arbitrary code or commands.

The vulnerability of the Fortinet FortiClient Enterprise Management Server EMS server relates to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or commands by sending specially crafted SQL queries...

10CVSS8.7AI score0.97591EPSS
Exploits4References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/03/15 12:0 a.m.10 views

The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers allows attackers to execute arbitrary code or cause service interruptions.

The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers is related to operations that go beyond buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause a service failure through a specially crafted...

10CVSS8.3AI score0.13556EPSS
Exploits1References12Affected Software5
BDU FSTEC
BDU FSTEC
added 2024/03/15 12:0 a.m.10 views

The vulnerability of the enterprise management server through the Internet Open Management Infrastructure (OMI) relates to the use of memory after it is freed, allowing an attacker to execute arbitrary code.

The vulnerability of the enterprise management server through the Internet Open Management Infrastructure OMI is related to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by sending specially crafted requests...

10CVSS8.5AI score0.20157EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/03/15 12:0 a.m.10 views

The vulnerability of the FedCM component in browsers such as Google Chrome and Microsoft Edge allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the FedCM component relates to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause a service failure by using a specially created HTML page...

10CVSS8.1AI score0.01251EPSS
Exploits1References12Affected Software5
BDU FSTEC
BDU FSTEC
added 2024/03/11 12:0 a.m.10 views

The vulnerability of the setDiagnosisCfg function in the /cgi-bin/cstecgi.cgi file of the httpd web server software for the Totolink X6000R router allows a hacker to execute arbitrary code.

The vulnerability of the setDiagnosisCfg function in the /cgi-bin/cstecgi.cgi file of the httpd web server software for the Totolink X6000R router exists due to the failure to take measures to neutralize special elements used in the operating system command. Exploiting this vulnerability allows a...

10CVSS8AI score0.03952EPSS
Exploits2References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/03/05 12:0 a.m.10 views

The vulnerability of the WYSIWYG editor CKEditor’s preview function allows a hacker to execute arbitrary JavaScript code.

The vulnerability of the WYSIWYG editor CKEditor’s preview function exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability could allow a malicious actor to execute arbitrary JavaScript code remotely...

6.4CVSS7.2AI score0.01652EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/03/05 12:0 a.m.10 views

The vulnerability of the __thp_get_unmapped_area() function in the memory management subsystem of 32-bit Linux kernel allows a hacker to trigger a service failure.

The vulnerability of the thpgetunmappedarea function in the mm/hugememory.c module of the memory-management subsystem in 32-bit Linux kernel systems is related to memory allocation errors. Exploiting this vulnerability can allow an attacker to cause a system failure...

8.4CVSS5.9AI score0.00277EPSS
Exploits0References18Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/03/04 12:0 a.m.10 views

The vulnerability of the jsonpointer package on the Node.js software platform allows a perpetrator to execute arbitrary code.

The vulnerability of the jsonpointer package in the Node.js software platform is related to errors in data type conversion. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS8.1AI score0.02539EPSS
Exploits1References6Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/03/04 12:0 a.m.10 views

The vulnerability of the user_sdma_txadd function in the Linux operating system’s kernel driver allows a hacker to execute arbitrary code.

The vulnerability of the usersdmatxadd function in Linux kernel-based InfiniBand drivers is related to a pointer dereferencing error. Exploiting this vulnerability could allow an attacker to execute arbitrary code remotely...

7.8CVSS7AI score0.00251EPSS
Exploits0References21Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/03/04 12:0 a.m.10 views

The vulnerability of the update_cdn_status() function in the LiteSpeed Cache plugin for WordPress (LSCWP), a content management system for WordPress websites, allows a hacker to gain unauthorized access to protected information or enhance their privileges.

The vulnerability of the updatecdnstatus function in the LiteSpeed Cache plugin for WordPress LSCWP, a content management system for WordPress websites, is related to the lack of protective measures for website structures. Exploiting this vulnerability can allow an attacker to gain unauthorized...

6.8CVSS8.1AI score0.54872EPSS
Exploits5References8Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/02/28 12:0 a.m.10 views

The vulnerability of the Git-based software platform for collaborative code development on GitLab stems from deficiencies in the authentication process, which allows a malicious individual to alter the settings of the user interface for project management.

The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor, operating remotely, to modify the settings of the user interface for project...

4.3CVSS5.6AI score0.00404EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/02/22 12:0 a.m.10 views

Software vulnerabilities related to application optimization in Intel Optimization for TensorFlow framework, caused by incorrect elimination of special elements in the output data, allow attackers to exploit these vulnerabilities to gain enhanced privileges.

The vulnerability of software for application optimization in Intel Optimization for TensorFlow framework is related to incorrect elimination of certain elements in the output data. Exploiting this vulnerability can allow attackers to enhance their privileges...

5.5CVSS5.9AI score0.00189EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/02/20 12:0 a.m.10 views

The server for managing Fortinet FortiClient Enterprise Management Server (EMS) is vulnerable due to insecure privilege management, allowing attackers to execute arbitrary commands.

The vulnerability of the Fortinet FortiClient Enterprise Management Server EMS server relates to insecure management of privileges. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands using specially crafted HTTP or HTTPS requests...

9CVSS7.5AI score0.00823EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/02/20 12:0 a.m.10 views

The vulnerability of Microsoft Excel, the Microsoft Office suite of programs, and Skype for Business, related to the issue of out-of-buffer operations in memory, allows attackers to execute arbitrary code.

The vulnerability of Microsoft Excel, the Microsoft Office suite, and Skype for Business involves an operation beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.8CVSS7.9AI score0.01177EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/02/20 12:0 a.m.10 views

The vulnerability of the file loading function of the corporate cloud storage system HGiga OAKlouds allows a attacker to execute arbitrary code.

The vulnerability of the file loading function of the corporate cloud storage system HGiga OAKlouds relates to the unlimited loading of dangerous types of files. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code by sending a specially crafted file...

10CVSS8.2AI score0.00942EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/02/20 12:0 a.m.10 views

The vulnerability in the implementation of the LDAP service protocol on Windows operating systems allows a perpetrator to cause a service failure.

The vulnerability of the LDAP Lightweight Directory Access Protocol implementation in the Windows operating system is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures...

6.8CVSS6.9AI score0.02079EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2024/02/20 12:0 a.m.10 views

The vulnerability of the Windows Message Queuing system, which allows a hacker to escalate their privileges

The vulnerability of Windows’ Message Queuing system is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to gain increased privileges...

7CVSS7.2AI score0.00322EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2024/02/19 12:0 a.m.10 views

The vulnerability of the Windows Message Queuing system allows a perpetrator to execute arbitrary code.

The vulnerability of Windows’ Message Queuing system is related to errors in processing input data. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.8CVSS7.7AI score0.00801EPSS
Exploits0References3
Total number of security vulnerabilities5000