Lucene search
K
Bdu FstecMost viewed

90336 matches found

BDU FSTEC
BDU FSTEC
added 2017/05/18 12:0 a.m.10 views

The vulnerability of the ReadJPEG function in the LibreOffice office software package allows a attacker to cause a service failure or execute arbitrary code.

The vulnerability of the ReadJPEG function in the LibreOffice office software package is caused by a buffer overflow in the dynamic memory. Exploiting this vulnerability can allow an attacker to cause a service failure or execute arbitrary code...

10CVSS7.5AI score0.02093EPSS
Exploits0References7Affected Software3
BDU FSTEC
BDU FSTEC
added 2017/05/18 12:0 a.m.10 views

The vulnerability of the Hyper-V Network Switch component of the Windows operating system allows a hacker to bypass the certification verification.

The vulnerability of the Hyper-V Network Switch component of the Windows operating system exists due to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to bypass certificate verification...

7.4CVSS7.2AI score0.03147EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2017/05/15 12:0 a.m.10 views

The vulnerability of the console-based graphic editor ImageMagick, which allows a hacker to trigger a service failure

The vulnerability of the ReadSUNImage function in the ImageMagick console graphics editor’s sun.c file arises from the execution of an operation outside the buffer boundaries in memory. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause a service failure loss ...

4.3CVSS7.3AI score0.01935EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/05/15 12:0 a.m.10 views

The vulnerability of the console-based graphic editor ImageMagick, which allows a hacker to trigger a service failure

The vulnerability of the coders/dds.c component in the console-based graphic editor ImageMagick is related to improper management of system resources. Exploiting this vulnerability allows an attacker, operating remotely, to cause a service failure increased computational resource usage through a...

7.1CVSS7.1AI score0.03412EPSS
Exploits1References7
BDU FSTEC
BDU FSTEC
added 2017/04/27 12:0 a.m.10 views

The vulnerabilities of programs for viewing and editing PDF files such as Adobe Reader, Adobe Acrobat, Adobe Acrobat Document Cloud, and Adobe Reader Document Cloud allow attackers to execute arbitrary code.

The vulnerability of the XFA module for programs that read and edit PDF files, such as Adobe Reader, Adobe Acrobat, Adobe Acrobat Document Cloud, and Adobe Reader Document Cloud, is related to the use of memory after it is freed. Exploiting this vulnerability can allow a malicious actor to execut...

9.3CVSS7.9AI score0.04963EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2017/04/13 12:0 a.m.10 views

The vulnerability of the iOS operating system and the Mac OS X operating system allows attackers to trigger a service failure or exert other effects on the system.

The vulnerability of the Keychain component in the iOS operating system and the Mac OS X operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow a malicious actor to cause service failures or otherwise affect the system...

4.3CVSS7AI score0.0163EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2017/04/13 12:0 a.m.10 views

The vulnerabilities in iOS and Mac OS X operating systems allow attackers to trigger service failures or execute arbitrary code in privileged contexts.

The vulnerability of the Security component in iOS and Mac OS X operating systems is caused by buffer overflow. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in privileged context or cause a service failure using a specially created application...

9.3CVSS8.3AI score0.01598EPSS
Exploits0References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2017/04/13 12:0 a.m.10 views

The vulnerability of the Mac OS X operating system, which allows a perpetrator to trigger a service failure or cause other adverse effects

The vulnerability of the libxslt component of the Mac OS X operating system arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a malicious actor to cause service failures or other effects such as memory corruption through unknown mea...

7.5CVSS7.9AI score0.01224EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/04/13 12:0 a.m.10 views

The vulnerability of the console-based graphic editor ImageMagick, which allows a hacker to trigger a service failure

The vulnerability in the coder/mat.c section of the console-based graphic editor ImageMagick exists due to insufficient testing of input data. Exploiting this vulnerability allows an attacker, operating remotely, to cause a service failure application termination by using a mat file with an...

4.3CVSS6.6AI score0.01883EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2017/04/13 12:0 a.m.10 views

The vulnerability of the iOS operating system, the Safari browser, and the iTunes media player allows attackers to obtain confidential information or circumvent existing access restrictions policies.

The vulnerability of the WebKit component of the iOS operating system, Safari browser, and iTunes media player exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to bypass existing access restrictions or obtain confidential information...

4.3CVSS7AI score0.05738EPSS
Exploits3References7Affected Software3
BDU FSTEC
BDU FSTEC
added 2017/04/13 12:0 a.m.10 views

The vulnerabilities of operating systems Mac OS X and iOS allow attackers to execute arbitrary code in a privileged context.

The vulnerability of the Kernel component in Mac OS X and iOS systems is related to a numerical overflow condition. Exploiting this vulnerability allows an attacker to execute arbitrary code in a privileged context using a specially created application...

9.3CVSS7.9AI score0.04756EPSS
Exploits2References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2017/04/10 12:0 a.m.10 views

The vulnerability of the iOS operating system, which allows a hacker to compromise the security of information.

The vulnerability of the HomeKit operating system’s iOS component exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to compromise information security by manipulating the Home Control element within the Control Center...

10CVSS7.7AI score0.02431EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/04/06 12:0 a.m.10 views

The vulnerability of the Windows operating system, which allows a hacker to increase their privileges

The vulnerability of the Graphical Device Interface GDI in the Windows operating system is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker, operating locally, to enhance their privileges through a specially created application...

6.9CVSS7.5AI score0.11022EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2017/04/06 12:0 a.m.10 views

The vulnerability of the Windows operating system, which allows a hacker to bypass the certificate verification process

The vulnerability of the PowerShell script for the Windows operating system exists due to insufficient checking of input data. Exploiting this vulnerability allows a local attacker to bypass certificate verification...

2.1CVSS6.2AI score0.11264EPSS
Exploits1References3
BDU FSTEC
BDU FSTEC
added 2017/04/06 12:0 a.m.10 views

The vulnerability of the Windows operating system allows a perpetrator to obtain information that can be used to compromise the target system.

The vulnerability of the Windows DVD Maker application on the Windows operating system is related to improper correction of processed files. Exploiting this vulnerability allows a malicious actor, operating remotely, to obtain information that can be used to compromise the target system using a...

4.3CVSS6.2AI score0.06581EPSS
Exploits5References4
BDU FSTEC
BDU FSTEC
added 2017/03/31 12:0 a.m.10 views

The vulnerability of the console-based graphic editor ImageMagick, which allows a hacker to trigger a service failure

The vulnerability of the WriteGROUP4Image function in the console-based image editing tool ImageMagick is caused by buffer overflow. Exploiting this vulnerability can allow an attacker, operating remotely, to cause a service failure termination of the application using a specially crafted file...

6.8CVSS7.1AI score0.01715EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/03/31 12:0 a.m.10 views

The vulnerability of the Cisco Unified Communications Manager system allows a perpetrator to compromise data integrity.

The vulnerability of the web interface of the Cisco Unified Communications Manager web application is related to the falsification of cross-site requests. Exploiting this vulnerability could allow a malicious actor to compromise the integrity of the data...

4.3CVSS6.4AI score0.00769EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2017/03/31 12:0 a.m.10 views

The vulnerability of the console-based graphic editor ImageMagick, which allows a hacker to trigger a service failure

The vulnerability of the ReadRLEImage function in the coder/rle.c file of the console image editing tool ImageMagick is caused by buffer overflow. Exploiting this vulnerability could allow an attacker, operating remotely, to cause a service failure termination of the application through the use o...

6.8CVSS7.3AI score0.02047EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/03/23 12:0 a.m.10 views

The vulnerability of the Shockwave Player software platform, which allows a hacker to elevate their privileges

The vulnerability of the Shockwave Player software’s DLL hijacking library is related to the unreliable nature of the process for locating critical resources. Exploiting this vulnerability allows a malicious actor to enhance their privileges remotely...

6.8CVSS7.2AI score0.03028EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/03/23 12:0 a.m.10 views

The vulnerability of the Windows operating system allows a perpetrator to obtain confidential information from the process memory.

The vulnerability of the Uniscribe component of the Windows operating system is related to the lack of protection for service data. Exploiting this vulnerability allows a malicious actor, acting remotely, to obtain confidential information from the process’s memory through a specially crafted web...

4.3CVSS5.8AI score0.22471EPSS
Exploits1References3
BDU FSTEC
BDU FSTEC
added 2017/03/23 12:0 a.m.10 views

The vulnerability of the QEMU hardware emulation software, which allows a hacker to trigger a service failure

The vulnerability of the hw/audio/ac97.c component of the QEMU hardware emulation software is related to a memory leak. Exploiting this vulnerability could allow an attacker to trigger a service failure memory exhaustion...

4.9CVSS7.1AI score0.00399EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2017/03/16 12:0 a.m.10 views

The vulnerability of the iOS operating system, which allows a hacker to trigger a service failure

The vulnerability of the Safari component in the iOS operating system exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures through a specially crafted URL...

4.3CVSS5.8AI score0.00853EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/03/02 12:0 a.m.10 views

The vulnerability of Google Chrome browser allows a hacker to inject arbitrary scripts.

The vulnerability of the Blink component in Google Chrome allows for control over JavaScript during the execution of a method that initiates a custom script. Exploiting this vulnerability enables a malicious actor to inject any desired script or HTML code through a specially crafted HTML page...

4.3CVSS7.2AI score0.01221EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/02/21 12:0 a.m.10 views

The vulnerability of the Android operating system, allowing a hacker to execute arbitrary code

The vulnerability of the Qualcomm Android operating system’s Wi-Fi driver is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to enhance their privileges and execute arbitrary code within the kernel context, using a local malicious application...

7.6CVSS7.6AI score0.00845EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2017/02/17 12:0 a.m.10 views

The vulnerability of the Puppet Enterprise configuration management tool allows a hacker to redirect users to arbitrary websites.

The vulnerability of the Console service in the Puppet Enterprise configuration management tool is related to the use of open redirection. Exploiting this vulnerability allows a malicious actor to redirect users to arbitrary websites remotely...

5.8CVSS6.7AI score0.01459EPSS
Exploits2References7Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/02/09 12:0 a.m.10 views

The vulnerability of the Oracle Sun operating system, which allows a hacker to modify data

The vulnerability of the Oracle Sun operating system’s kernel is related to access control deficiencies. Exploiting this vulnerability allows a malicious actor, operating remotely, to gain access to modify, add, or delete data using network packets...

4.3CVSS5.8AI score0.01153EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/02/09 12:0 a.m.10 views

The vulnerability of Oracle Fusion Middleware’s core components allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of Oracle Fusion Middleware’s core components is related to security configuration errors. Exploiting this vulnerability can allow a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected information...

7.5CVSS7.7AI score0.97301EPSS
Exploits15References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/01/26 12:0 a.m.10 views

The vulnerability of the Android operating system, allowing a hacker to execute arbitrary code

The vulnerability of the Wi-Fi component of the Android operating system is related to deficiencies in access control. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9.3CVSS7.6AI score0.02797EPSS
Exploits1References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/01/26 12:0 a.m.10 views

The vulnerability of the Internet Explorer browser allows a perpetrator to obtain confidential information from the process memory.

The vulnerability of the Internet Explorer browser is related to the lack of protection for service data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to obtain confidential information from the process’s memory through a specially crafted web page...

4.3CVSS6.6AI score0.14972EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/01/26 12:0 a.m.10 views

Vulnerability of browsers Internet Explorer and Microsoft Edge, allowing hackers to circumvent existing access restrictions policies

The vulnerability of Internet Explorer and Microsoft Edge is related to security configuration errors. Exploiting this vulnerability can allow a malicious actor to bypass existing access control policies using uncertain vectors...

2.6CVSS7AI score0.13719EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/01/13 12:0 a.m.10 views

The vulnerability of the Flash Player software, which allows a perpetrator to execute arbitrary code

The vulnerability of the PlayStation Software Development Kit PSDK software platform arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS8.2AI score0.04978EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2016/12/27 12:0 a.m.10 views

Vulnerabilities of Microsoft Edge and Internet Explorer browsers, which allow attackers to circumvent existing access restrictions policies

The vulnerabilities of Microsoft Edge and Internet Explorer are caused by an operation that goes beyond the buffer boundaries in memory. Exploiting these vulnerabilities can allow a malicious actor to bypass existing access restrictions by using a specially crafted website...

2.6CVSS7.5AI score0.14329EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/12/15 12:0 a.m.10 views

The vulnerability of the Windows operating system, which allows a hacker to increase their privileges

The vulnerability of the Windows operating system’s virtual hard disk driver stems from an improper restriction on access to files. Exploiting this vulnerability allows a local attacker to enhance their privileges through a specially created application...

3.6CVSS7.2AI score0.01278EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2016/09/19 12:0 a.m.10 views

The vulnerability of Oracle WebLogic Server application servers allows attackers to compromise the confidentiality, integrity, and accessibility of information.

The vulnerability of the Oracle WebLogic Server application server is related to errors in the code. Exploiting this vulnerability can allow a malicious actor to compromise the confidentiality, integrity, and accessibility of information by manipulating components related to WLS Core Components...

10CVSS7.7AI score0.19775EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/08/31 12:0 a.m.10 views

The vulnerability of the Android operating system, which allows a hacker to increase their privileges

The vulnerability of the drivers/media/platform/msm/camerav2/sensor/cci/msmcci.c file of the Qualcomm Android operating system is related to a missing unit error. Exploiting this vulnerability allows a remote attacker to enhance their privileges through a specially created application that sends...

9.3CVSS7.3AI score0.0053EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/08/23 12:0 a.m.10 views

The vulnerability of the Android operating system, which allows a perpetrator to obtain confidential information

The vulnerability of the MediaTek driver for the Android operating system is related to the lack of protection for service data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to obtain confidential information through a specially created application...

4.3CVSS6.3AI score0.00344EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/08/23 12:0 a.m.10 views

The vulnerability of the Android operating system, which allows a hacker to trigger a service failure

The vulnerability of the decoder/ih264dapi.c file in the Android operating system’s media server is related to improper handling of invalid PPS and SPS blocks. Exploiting this vulnerability allows a malicious actor to cause service interruptions device freezing and reboots by using a specially...

7.1CVSS6.2AI score0.00574EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/08/23 12:0 a.m.10 views

The vulnerability of the Android operating system, which allows a perpetrator to trigger a service failure or cause other effects

The vulnerability in the drivers/media/video/msmmctlbuf.c file of the Qualcomm Android operating system is related to the lack of checking for image mode. Exploiting this vulnerability can allow a malicious actor to cause service failures or other effects through a specially created application...

6.8CVSS7.2AI score0.00385EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/08/23 12:0 a.m.10 views

The vulnerability of the Android operating system allows a hacker to trigger a service failure or execute arbitrary code.

The vulnerability of the exif.c file in the jhead 2.87 tool, which is used in the libjhead library of the Android operating system, arises due to buffer overflow. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause a service failure using specially crafted EX...

7.5CVSS8.2AI score0.01267EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/08/16 12:0 a.m.10 views

The vulnerability of the Microsoft Windows operating system, which allows a perpetrator to increase their privileges

The vulnerability of Microsoft Windows operating system’s kernel mode drivers is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker, operating locally, to enhance their privileges through a specially created application...

7.2CVSS7.2AI score0.02531EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2016/08/03 12:0 a.m.10 views

The vulnerability of the Android operating system, which allows a hacker to increase their privileges

The vulnerability of the libpng library in the Android operating system is related to errors in the code. Exploiting this vulnerability can allow a malicious actor, operating remotely, to increase their privileges through a specially created application...

7.5CVSS7.2AI score0.00461EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/08/03 12:0 a.m.10 views

The vulnerability of the Android operating system allows a hacker to trigger a service failure or execute arbitrary code.

The vulnerability of the H.264 decoder in Android media servers relates to initialization errors. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely or cause a service failure memory corruption by using a specially crafted media file...

7.5CVSS8.2AI score0.01412EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/08/03 12:0 a.m.10 views

The vulnerability of the Android operating system, which allows a hacker to bypass the security mechanisms of a isolated execution environment

The vulnerability of the libs/binder/Parcel.cpp file in the Parcels software interface of the Android operating system is related to the lack of checking for the return value of system calls. Exploiting this vulnerability allows a malicious actor to bypass the security mechanisms of isolated...

7.5CVSS7.2AI score0.00361EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/08/03 12:0 a.m.10 views

The vulnerabilities of PDF viewer programs such as Adobe Reader and Adobe Reader Document Cloud, as well as PDF editing programs like Adobe Acrobat and Adobe Acrobat Document Cloud, allow attackers to execute arbitrary code.

The vulnerabilities of PDF viewer programs such as Adobe Reader and Adobe Reader Document Cloud, as well as PDF editing programs like Adobe Acrobat and Adobe Acrobat Document Cloud, are related to the use of memory after it is freed. Exploiting these vulnerabilities can allow a malicious actor to...

7.3CVSS8.2AI score0.05297EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2016/08/03 12:0 a.m.10 views

The vulnerability of the Android operating system allows a perpetrator to trigger a service failure or obtain confidential information from the process’s memory.

The vulnerability of the decoder/impeg2dbitstream.c file in the Android operating system is related to resource management errors. Exploiting this vulnerability can allow a remote attacker to obtain confidential information from the process’s memory or trigger a service failure memory overflow...

6.4CVSS7.3AI score0.00391EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/08/03 12:0 a.m.10 views

The vulnerability of the Android operating system, which allows a hacker to increase their privileges

The vulnerability of the Bluetooth component in the Android operating system exists due to insufficient validation of input data. Exploiting this vulnerability can allow attackers to enhance their privileges by connecting devices via Bluetooth while the main user is working...

5.4CVSS7.2AI score0.00246EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/08/03 12:0 a.m.10 views

The vulnerability of the Android operating system, which allows a hacker to increase their privileges

The vulnerability of the MediaTek driver for the Android operating system is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to enhance their privileges through a specially created application...

9.3CVSS7.2AI score0.00421EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/07/21 12:0 a.m.10 views

The vulnerability of the ABB PCM600 control and configuration device allows a intruder to access information related to user account data.

The vulnerability of the ABB PCM600 control and configuration device lies in the way authentication information is stored in a database, in the form of hexadecimal ASCII values. Exploiting this vulnerability could allow an attacker, operating locally, to gain access to information about user...

1.9CVSS5.6AI score0.00322EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/07/19 12:0 a.m.10 views

The vulnerability of the OpenSSL library, which allows a hacker to trigger a service failure

The vulnerability in the ssl/s3clnt.c function of the OpenSSL library arises due to synchronization errors when using a shared resource. Exploiting this vulnerability allows a malicious actor to trigger a service denial game-of-thrones behavior and subsequent release by using a specially created...

4.3CVSS6.8AI score0.12814EPSS
Exploits1References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/07/19 12:0 a.m.10 views

The vulnerability of the microprogramming software of the Cisco TelePresence Video Communication Server allows a perpetrator to bypass the authentication process.

The vulnerability of the Mobile and Remote Access MRA component of the Cisco TelePresence Video Communication Server software exists due to insufficient verification of input data. Exploiting this vulnerability could allow a malicious actor to bypass authentication procedures using a trusted...

5.8CVSS7AI score0.01202EPSS
Exploits0References2
Total number of security vulnerabilities5000