Lucene search
K
Bdu FstecMost viewed

90509 matches found

BDU FSTEC
BDU FSTEC
added 2022/09/26 12:0 a.m.10 views

The vulnerability of the Apex One antivirus software is related to deficiencies in its authentication process. This allows unauthorized users to gain access to protected information and circumvent security restrictions.

The vulnerability of the Apex One antivirus software is related to deficiencies in the authentication process when processing request parameters. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information and circumvent security...

8.5CVSS7.3AI score0.0218EPSS
Exploits0References7
BDU FSTEC
BDU FSTEC
added 2022/09/23 12:0 a.m.10 views

The vulnerability of the Dpkg::Source::Archive component of the package manager Dpkg allows a hacker to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the Dpkg::Source::Archive component of the package manager Dpkg is related to deficiencies in pathname restrictions for directories. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its integrity, and cause service failures...

10CVSS7.7AI score0.02871EPSS
Exploits0References14Affected Software5
BDU FSTEC
BDU FSTEC
added 2022/09/23 12:0 a.m.10 views

The vulnerability of the _zip_read_eocd64 function in the zip_open.c component of the Libzip library allows a attacker to cause a service failure.

The vulnerability of the zipreadeocd64 function in the zipopen.c component of the Libzip library library for working with Zip archives is related to the allocation of unlimited memory. Exploiting this vulnerability allows a remote attacker to cause service interruptions...

7.1CVSS6.2AI score0.032EPSS
Exploits0References9Affected Software3
BDU FSTEC
BDU FSTEC
added 2022/09/19 12:0 a.m.10 views

The vulnerability of the sbr_process_channel function in the libfaad/sbr_dec.c component of the Freeware Advanced Audio Decoder 2 (FAAD2) allows a intruder to trigger a service failure.

The vulnerability of the sbrprocesschannel function in the libfaad/sbrdec.c component of the Freeware Advanced Audio Decoder 2 FAAD2 audio decoder is related to improper processing of new PS channels. Exploiting this vulnerability allows a remote attacker to cause service interruptions...

7.1CVSS6.6AI score0.01128EPSS
Exploits1References11Affected Software5
BDU FSTEC
BDU FSTEC
added 2022/09/16 12:0 a.m.10 views

The vulnerability of Mozilla Firefox, Firefox ESR, and the email client Thunderbird relates to the writing of data beyond the buffer boundaries in memory, allowing an attacker to execute arbitrary code.

The vulnerability of Mozilla Firefox, Firefox ESR, and the email client Thunderbird lies in the writing of data beyond the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS8.2AI score0.01814EPSS
Exploits0References13Affected Software9
BDU FSTEC
BDU FSTEC
added 2022/09/16 12:0 a.m.10 views

The vulnerability of the Overview Mode function in Google Chrome browser allows a hacker to execute arbitrary code.

The vulnerability of the Overview Mode function in Google Chrome browser is related to the use of memory after it is freed. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code through a specially created web page from a remote location...

10CVSS8.1AI score0.00422EPSS
Exploits0References11Affected Software6
BDU FSTEC
BDU FSTEC
added 2022/09/14 12:0 a.m.10 views

The vulnerability of the `cgroup1_parse_param` function in the kernel/cgroup/cgroup-v1.c file of the Linux operating system allows a hacker to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the cgroup1parseparam function in the kernel/cgroup/cgroup-v1.c file of the Linux operating system is related to the lack of checks to ensure that the source parameter is indeed a string. Exploiting this vulnerability could allow an attacker to access confidential data,...

8.8CVSS6.6AI score0.01206EPSS
Exploits2References20Affected Software4
BDU FSTEC
BDU FSTEC
added 2022/09/14 12:0 a.m.10 views

The vulnerability of the Linux operating system’s sound subsystem allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the Linux operating system’s kernel audio subsystem is related to incorrect handling of parallel calls to the PCM hwparams function. Exploiting this vulnerability can allow an attacker to access confidential data, compromise its integrity, and cause service failures...

7CVSS6.7AI score0.00236EPSS
Exploits0References39Affected Software6
BDU FSTEC
BDU FSTEC
added 2022/09/14 12:0 a.m.10 views

The vulnerabilities of DCE/RPC components in Samba’s network communication software package allow attackers to compromise data integrity.

The vulnerability of DCE/RPC components in Samba’s networking communication software lies in the insufficient neutralization of certain elements in requests. Exploiting this vulnerability allows a remote attacker to compromise data integrity...

7.8CVSS7.4AI score0.01953EPSS
Exploits0References11Affected Software5
BDU FSTEC
BDU FSTEC
added 2022/09/12 12:0 a.m.10 views

Vulnerability of the vmw_execbuf_tie context driver’s function in the vmwgfx driver (drivers/gpu/vmxgfx/vmxgfx_execbuf.c) in the Linux operating system, which allows a malicious actor to increase their privileges or cause service failures.

The vulnerability of the vmwexecbuftie context driver function in the vmwgfx driver file: drivers/gpu/vmxgfx/vmxgfxexecbuf.c in the Linux operating system is related to the use of memory after it is freed. Exploiting this vulnerability can allow a remote attacker to gain elevated privileges or...

7.5CVSS6.8AI score0.00485EPSS
Exploits0References8Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/09/09 12:0 a.m.10 views

The vulnerability of the disaster recovery tool for Azure virtual machines – Azure Site Recovery and VMWare to Azure – arises due to insufficient validation of input data. This allows attackers to execute arbitrary code.

The vulnerability of the disaster recovery tool for Azure virtual machines exists due to insufficient verification of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

9CVSS7.7AI score0.01942EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/09/09 12:0 a.m.10 views

The vulnerability of the utf_ptr2char function in the Vim text editor allows for reading data beyond the buffer’s boundaries in memory, enabling an attacker to execute arbitrary code.

The vulnerability of the utfptr2char function in the Vim text editor relates to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

7.8CVSS7.8AI score0.00485EPSS
Exploits1References11Affected Software7
BDU FSTEC
BDU FSTEC
added 2022/09/08 12:0 a.m.10 views

The vulnerability of the NPM package manager vm2 library allows a hacker to execute arbitrary code.

The vulnerability of the NPM packet manager’s vm2 library is related to insufficient control over resources with dynamic management. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS8.4AI score0.47868EPSS
Exploits2References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/09/08 12:0 a.m.10 views

The vulnerability of the messaging service in the centralized network management system of Cisco Catalyst SD-WAN Manager allows a attacker to compromise the integrity of protected information or cause service failures.

The vulnerability of the Cisco Catalyst SD-WAN Manager, a centralized messaging service, is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to compromise the integrity of protected information or cause service failures by sending specially...

9.6CVSS7.8AI score0.00342EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/09/07 12:0 a.m.10 views

The vulnerability of the do_tag() function in the Vim text editor allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the dotag function in the Vim text editor is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

7.8CVSS7.2AI score0.00528EPSS
Exploits1References7Affected Software3
BDU FSTEC
BDU FSTEC
added 2022/09/07 12:0 a.m.10 views

The vulnerability of the Device Software Manager installer, related to an uncontrolled search path, allows a hacker to load arbitrary files.

The vulnerability of the Device Software Manager installer is related to an uncontrolled element in the search process. Exploiting this vulnerability could allow a hacker to load arbitrary files...

7.8CVSS5.6AI score0.0021EPSS
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/09/07 12:0 a.m.10 views

The vulnerability of the Infrastructure sub-component of the Oracle FLEXCUBE Universal Banking banking analytics system’s simulation model, allowing a perpetrator to gain access to read data and modify it.

The vulnerability of the Infrastructure sub-component of the Oracle FLEXCUBE Universal Banking banking analytics system’s simulation model exists due to insufficient validation of input data. Exploiting this vulnerability could allow an attacker, operating remotely, to gain access to read, modify...

6.6CVSS6.9AI score0.00508EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/09/07 12:0 a.m.10 views

The vulnerability of the Crow web service framework relates to the possibility of exploiting memory after it is freed, allowing an attacker to execute arbitrary code.

The vulnerability of the Crow web service creation framework relates to the possibility of using memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS8.1AI score0.02133EPSS
Exploits1References3
BDU FSTEC
BDU FSTEC
added 2022/09/07 12:0 a.m.10 views

The vulnerability of Firefox browser, related to insufficient validation of input data, allows attackers to circumvent security restrictions.

The vulnerability of Firefox browsers is related to insufficient validation of input data when processing values of array elements. Exploiting this vulnerability can allow a remote attacker to bypass security restrictions...

5CVSS6.8AI score0.0042EPSS
Exploits0References9Affected Software3
BDU FSTEC
BDU FSTEC
added 2022/09/07 12:0 a.m.10 views

The vulnerability of the User Interface sub-component of the Oracle WebCenter Sites Support Tools software platform allows a malicious individual to gain unauthorized access to read, modify, or add data, or to cause service interruptions.

The vulnerability of the User Interface sub-component of the Oracle WebCenter Sites Support Tools software platform exists due to insufficient validation of input data. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to read, modify, or add...

6.1CVSS6.8AI score0.00437EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/09/07 12:0 a.m.10 views

The vulnerability of the RPKI validator OctoRPKI, which stems from the lack of data validation during data transmission, allows a violator to trigger a service failure.

The vulnerability of the RPKI validator OctoRPKI is related to the lack of verification of returned data during the generation of Route Origin Authorisations. Exploiting this vulnerability could allow a malicious actor to cause service failures...

5.4CVSS6.5AI score0.00878EPSS
Exploits0References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2022/09/07 12:0 a.m.10 views

The vulnerability of the dict0dict.cc component of the MariaDB database management system allows a attacker to cause a service failure.

The vulnerability of the dict0dict.cc component in the MariaDB database management system is related to the use of the assert function or similar operators. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...

7.8CVSS7.3AI score0.0184EPSS
Exploits1References5Affected Software3
BDU FSTEC
BDU FSTEC
added 2022/09/07 12:0 a.m.10 views

The vulnerability of the GetValue() function in the microprogramming software for LinkHub Mesh Wi-Fi AC1200 allows a hacker to execute arbitrary code.

The vulnerability in the implementation of the GetValue function in the microprogramming system of LinkHub Mesh Wi-Fi AC1200 lies in the copying of buffers without checking the size of the input data during the processing of the logserver file. Exploiting this vulnerability allows an attacker...

9.6CVSS8.1AI score0.01088EPSS
Exploits1References5
BDU FSTEC
BDU FSTEC
added 2022/09/05 12:0 a.m.10 views

The vulnerability of SAP Enterprise Extension Defense Forces & Public Security software, related to authentication errors, allows a perpetrator to increase their privileges.

The vulnerability of SAP Enterprise Extension Defense Forces & Public Security software is related to authentication errors. Exploiting this vulnerability can allow a malicious actor to increase their privileges remotely...

6.5CVSS5.5AI score0.00444EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/09/02 12:0 a.m.10 views

The vulnerability of Google Chrome’s SplitScreen display mode allows a hacker to disclose protected information.

The vulnerability of Google Chrome’s SplitScreen display mode is related to the use of memory after it is freed. Exploiting this vulnerability can allow a remote attacker to disclose protected information...

7.8CVSS7.6AI score0.00543EPSS
Exploits0References4Affected Software3
BDU FSTEC
BDU FSTEC
added 2022/09/02 12:0 a.m.10 views

The vulnerability of the REST API interface of the Apache Geode data management platform allows a hacker to execute arbitrary code.

The vulnerability of the REST API interface of the Apache Geode data management platform involves the restoration of unreliable data in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

10CVSS7AI score0.01335EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/08/31 12:0 a.m.10 views

The vulnerability of microprogrammed software in industrial software-hardware equipment from General Electric’s Renewable Energy iNET, iNET II, TD220X, and TD220MAX models is related to uncontrolled resource consumption. This vulnerability allows a perpetrator to cause malfunctions in the equipment.

The vulnerability of microprogrammed software in industrial software-hardware equipment from General Electric’s Renewable Energy iNET, iNET II, TD220X, and TD220MAX models is related to uncontrolled resource consumption. Exploiting this vulnerability can allow attackers to cause malfunctions in t...

8CVSS7.7AI score0.00631EPSS
Exploits0References4Affected Software5
BDU FSTEC
BDU FSTEC
added 2022/08/30 12:0 a.m.10 views

The vulnerability of the Zabbix Frontend universal monitoring system arises from the lack of protective measures for the web page structure, allowing attackers to compromise the confidentiality and integrity of the protected information.

The vulnerability of the Zabbix Frontend universal monitoring system exists due to the lack of measures taken to protect the web page structure. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality and integrity of the protected information through a specially...

4.4CVSS5.8AI score0.01203EPSS
Exploits0References13Affected Software6
BDU FSTEC
BDU FSTEC
added 2022/08/30 12:0 a.m.10 views

The vulnerability of the SBIOS component in NVIDIA’s DGX A100 server allows a hacker to execute arbitrary code, cause system failures, or compromise the confidentiality of protected information.

The vulnerability of the SBIOS component in NVIDIA’s Ofbd server NVIDIA DGX A100 is related to the use of an uninitialized pointer on the stack. Exploiting this vulnerability could allow a attacker to execute arbitrary code, cause service failures, or compromise the confidentiality of protected...

8.2CVSS7.8AI score0.00243EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/08/29 12:0 a.m.10 views

The vulnerability of the /librarian/studentdetails.php component of the Library Management System allows a malicious individual to execute arbitrary SQL queries.

The vulnerability of the /librarian/studentdetails.php component of the Library Management System lies in the possibility of executing commands. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL queries remotely...

7.5CVSS8AI score0.00866EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/08/24 12:0 a.m.10 views

The vulnerability of the Azure RTOS GUIX Studio development environment, related to access segmentation faults, allows attackers to disclose protected information.

The vulnerability of the Azure RTOS GUIX Studio development environment is related to access control errors. Exploiting this vulnerability could allow an attacker to disclose sensitive information through a specially created application...

5.5CVSS6.5AI score0.00889EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2022/08/24 12:0 a.m.10 views

The vulnerability of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat, and Adobe Acrobat Reader lies in their memory management after memory is freed, allowing an attacker to execute arbitrary code.

The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat, and Adobe Acrobat Reader are related to the use of memory after it is freed. Exploiting these vulnerabilities can allow attackers to execute arbitrary...

7.8CVSS7.7AI score0.03847EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2022/08/22 12:0 a.m.10 views

The vulnerability in the web interface of Cisco IOS XE allows a hacker to inject commands into the base operating system with root privileges.

The vulnerability of Cisco IOS XE web interfaces exists due to the lack of measures taken to neutralize specific elements. Exploiting this vulnerability allows a malicious actor, operating remotely, to inject commands into the base operating system with root privileges, as a result of sending...

6.5CVSS6.5AI score0.01542EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2022/08/19 12:0 a.m.10 views

The vulnerability of the `createThumbnailFromPath` function in the Electron application creation software platform allows a hacker to disclose protected information.

The vulnerability of the createThumbnailFromPath function in the Electron application development platform is related to the disclosure of information in a erroneous data area. Exploiting this vulnerability can allow an attacker, operating remotely, to disclose the protected information...

8.6CVSS7.5AI score0.01017EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/08/18 12:0 a.m.10 views

The vulnerability of the Windows Bluetooth Service driver of the Windows operating system allows a hacker to execute arbitrary code.

The vulnerability of the Windows Bluetooth Service driver exists due to insufficient validation of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

7.5CVSS7.7AI score0.00845EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2022/08/18 12:0 a.m.10 views

The vulnerability of the monitoring tool for the virtual infrastructure vRealize Operations lies in insufficient validation of incoming requests, allowing a perpetrator to disclose sensitive information.

The vulnerability of the monitoring tool for the vRealize Operations virtual infrastructure is related to insufficient checking of incoming requests. Exploiting this vulnerability could allow a malicious actor, operating remotely, to disclose sensitive information...

4CVSS5.3AI score0.00588EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/08/12 12:0 a.m.10 views

The vulnerability of the Azure Batch service for Windows operating systems allows attackers to escalate their privileges.

The vulnerability of the Azure Batch service for Windows operating systems is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to enhance their privileges...

7CVSS7.4AI score0.00374EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2022/08/12 12:0 a.m.10 views

The vulnerability of Microsoft Windows Defender operating system allows attackers to increase their privileges.

The vulnerability of Microsoft Windows Defender operating system is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to enhance their privileges...

7.8CVSS7.3AI score0.00749EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2022/08/10 12:0 a.m.10 views

The vulnerability of the Jenkins Repository Connector Plugin, related to deficiencies in the authentication process, allows attackers to disclose sensitive information about the file system.

The vulnerability of the Jenkins Repository Connector Plugin is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor, operating remotely, to disclose sensitive information about the file system...

4.3CVSS5.4AI score0.00581EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/08/04 12:0 a.m.10 views

The vulnerability of the HTTP Request Handler component in the SAP Business One License service API allows a perpetrator to execute arbitrary code due to incorrect authentication.

The vulnerability of the HTTP Request Handler component in the SAP Business One License service API is related to incorrect authentication. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted HTTP request...

7.8CVSS7.6AI score0.00867EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/08/02 12:0 a.m.10 views

The vulnerability of microprogrammed software in Siemens SIMATIC S7-400 and SIMATIC S7-410 programmable logic controllers arises from the possibility of an operation outputting data beyond the buffer boundaries in memory. This vulnerability allows a malicious entity to cause malfunctions during maintenance operations.

The vulnerability of microprogrammed software in Siemens SIMATIC S7-400 and SIMATIC S7-410 programmable logic controllers is related to the execution of operations outside the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause malfunctions by sending special...

7.8CVSS7.5AI score0.00965EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2022/08/01 12:0 a.m.10 views

The vulnerability of the TestEmail function in the Reolink RLC-410W camera’s microprogramming system allows a intruder to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the TestEmail function in the Reolink RLC-410W camera’s microprogramming system is related to memory overflow. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected information through...

10CVSS7.8AI score0.01397EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/08/01 12:0 a.m.10 views

The vulnerability of microprogramming software in industrial software-hardware equipment from General Electric’s Renewable Energy iNET, iNET II, TD220X, and TD220MAX systems lies in the fact that code loading occurs without checking its integrity. This allows attackers to gain unauthorized access to the target system.

The vulnerability of microprogrammed software in industrial software-hardware equipment from General Electric’s Renewable Energy iNET, iNET II, TD220X, and TD220MAX systems lies in the fact that code can be loaded without checking its integrity. Exploiting this vulnerability allows a malicious...

9CVSS7.8AI score0.00353EPSS
Exploits0References3Affected Software5
BDU FSTEC
BDU FSTEC
added 2022/08/01 12:0 a.m.10 views

The vulnerability of the XPC service implementation in the Mac OS X operating system allows a perpetrator to bypass the authentication process.

The vulnerability of the XPC service implementation in the Mac OS X operating system is related to security configuration errors. Exploiting this vulnerability can allow an attacker to bypass authentication procedures and gain administrator privileges...

8.4CVSS7.7AI score0.09887EPSS
Exploits16References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/07/29 12:0 a.m.10 views

The vulnerability of the nfnetlink_queue module in Linux operating systems, related to incorrect handling of verdicts with a single-byte attribute nfta_payload, allows a perpetrator to trigger a service failure.

The vulnerability of the nfnetlinkqueue module in Linux operating systems is related to incorrect handling of verdicts with a single-byte attribute named nftapayload. Exploiting this vulnerability allows an attacker to cause service failures remotely...

9CVSS6.5AI score0.05542EPSS
Exploits1References51Affected Software5
BDU FSTEC
BDU FSTEC
added 2022/07/22 12:0 a.m.10 views

The vulnerability of the Redis database management system, related to buffer overflows in the queue, allows attackers to execute arbitrary code.

The vulnerability of the Redis database management system is related to buffer overflow in the queue. Exploiting this vulnerability allows an attacker to execute arbitrary code using the X AUTOCLAIM command...

7CVSS6.7AI score0.02383EPSS
Exploits0References7Affected Software3
BDU FSTEC
BDU FSTEC
added 2022/07/20 12:0 a.m.10 views

The vulnerability of the Apache Tomcat application server’s Realm implementation, related to information disclosure due to mismatches, allows attackers to determine all existing user names.

The vulnerability of the Apache Tomcat application server’s Realm implementation is related to the exposure of information through mismatches. Exploiting this vulnerability allows a remote attacker to discover all existing user names...

5.9CVSS6.5AI score0.07991EPSS
Exploits0References21Affected Software10
BDU FSTEC
BDU FSTEC
added 2022/07/20 12:0 a.m.10 views

The vulnerability of the Red Database database management system lies in the improper neutralization of equivalent special elements, allowing attackers to provide unreliable data during a search query.

The vulnerability of the RedBase database management system is related to the improper neutralization of equivalent special elements. Exploiting this vulnerability allows an attacker to provide unreliable data during a search using Distinguished Names, by employing special symbols...

4CVSS5.5AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/07/18 12:0 a.m.10 views

The vulnerability of the Windows operating system’s kernel, which allows a hacker to disclose protected information

The vulnerability of the Windows operating system’s kernel is related to the disclosure of information in the erroneous data area. Exploiting this vulnerability can allow an attacker to disclose the protected information...

4.7CVSS6.3AI score0.00649EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2022/07/13 12:0 a.m.10 views

The vulnerability of the Client Server Run-Time Subsystem (CSRSS) in the Windows operating system, which allows a hacker to increase their privileges

The vulnerability of the Client Server Run-Time Subsystem CSRSS in the Windows operating system is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to enhance their privileges...

7.8CVSS7.8AI score0.00983EPSS
Exploits1References3
Total number of security vulnerabilities5000