74701 matches found
The vulnerability of the kernel component of the Linux operating system, which allows a hacker to cause a service failure
The vulnerability of the kernel component of the Linux operating system is related to errors in resource management in the function vectordevicerelease. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the fs component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the fs component in the Linux operating system’s kernel is related to the use of an uninitialized resource in the ocfs2setattr function. Exploiting this vulnerability could allow a attacker to cause a service failure...
The vulnerability of the bfq_setup_merge() function in the block/bfq-iosched.c module exposes the block-level kernel support of the Linux operating system, allowing attackers to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the bfqsetupmerge function in the block/bfq-iosched.c module related to Linux kernel’s block-level support involves the reutilization of previously freed memory. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibilit...
Vulnerability of the lgdt3306a_probe() function in the module drivers/media/dvb-frontends/lgdt3306a.c – A driver for supporting multimedia devices in the Linux operating system, which allows a hacker to cause a service failure.
The vulnerability of the lgdt3306aprobe function in the drivers/media/dvb-frontends/lgdt3306a.c module – Linux’s multimedia device support driver framework – is related to the dereferencing of a NULL pointer. Exploiting this vulnerability could allow an attacker to cause a system failure...
Vulnerability of the dce110_disable_stream() function in the drivers/gpu/drm/amd/display/dc/dce110/dce110_hw_sequencer.c file – This is a driver for supporting Direct Rendering Infrastructure (DRI) in AMD graphics cards for Linux operating systems. It allows attackers to cause service failures.
Vulnerability of the dce110disablestream function in the drivers/gpu/drm/amd/display/dc/dce110/dce110hwsequencer.c module – The driver for AMD GPU Direct Rendering Infrastructure in Linux operating systems is vulnerable to uncontrolled resource consumption. Exploiting this vulnerability could all...
Vulnerability of the ax88772_stop() function in the drivers/net/usb/asix_devices.c module – The Linux kernel’s USB adapter driver support mechanism can be exploited by attackers, allowing them to compromise the confidentiality, integrity, and accessibility of protected information.
Vulnerability of the ax88772stop function in the drivers/net/usb/asixdevices.c module – The Linux kernel’s USB adapter support driver is vulnerable due to the repeated use of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrit...
The vulnerability of the hugetlb component of the try_get_folio() function in the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the hugetlb component in the trygetfolio function of the Linux operating system is related to errors during link counter updates. Exploiting this vulnerability can allow an attacker to cause service failures remotely...
The vulnerability of the ceph_handle_caps() function in the fs/ceph/caps.c module of the Linux kernel’s file system support module allows a attacker to cause a service failure.
The vulnerability of the cephhandlecaps function in the fs/ceph/caps.c module of the Linux kernel’s file system support module is related to the lack of encryption measures for sensitive data. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the padata_reorder() function in the kernel/padata.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the padatareorder function in the kernel/padata.c module of the Linux operating system is related to the reutilization of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...
The vulnerability of the ovl component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the ovl component in the Linux operating system’s kernel is related to improper validation of input data. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability in the definition of the structure rtl_vnd{} in the module drivers/bluetooth/hci_h5.c – the driver for supporting Bluetooth devices in the Linux operating system – allows a attacker to compromise the confidentiality and accessibility of the protected information.
The vulnerability in determining the structure of the rtlvnd module in the drivers/bluetooth/hcih5.c file – the driver for supporting Bluetooth devices in Linux operating systems – involves reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to gain access ...
The vulnerability of the uprobes component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the uprobes component in the Linux operating system’s kernel is related to a memory leak. Exploiting this vulnerability can allow an attacker to cause a system failure...
The vulnerability of Cisco IOS XR routers in Cisco ASR 9000 systems, related to insufficient validation of input data, allows attackers to trigger service interruptions.
The vulnerability of Cisco IOS XR routers in the Cisco ASR 9000 family is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...
The vulnerability of the kernel component of the Linux operating system, which allows a hacker to cause a service failure
The vulnerability of the kernel component in the Linux operating system is related to errors in resource management in the netdevicerelease function. Exploiting this vulnerability can allow an attacker to cause a service failure...
Vulnerability of the amdgpu_get_xgmi_hive() function in the drivers/gpu/drm/amd/amdgpu/amdgpu_xgmi.c module – A driver for supporting AMD GPU cores in Linux operating systems, which allows a hacker to cause a service failure
Vulnerability of the amdgpugetxgmihive function in the drivers/gpu/drm/amd/amdgpu/amdgpuxgmi.c module – The Linux kernel driver for AMD GPU Direct Rendering Infrastructure supports is related to improper disabling or release of resources. Exploiting this vulnerability can allow an attacker to cau...
The vulnerability of the __neigh_notify() function in the net/core/neighbour.c module, which is part of Linux’s kernel-based networking functions, allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the neighnotify function in the net/core/neighbour.c module, which is part of Linux’s kernel-based networking functions, relates to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity...
Vulnerability of the meson_probe_remote() function in the drivers/gpu/drm/meson/meson_drv.c module – This driver provides support for the Direct Rendering Infrastructure (DRI) of the Linux operating system, allowing an attacker to cause a service failure.
Vulnerability of the mesonproberemote function in the drivers/gpu/drm/meson/mesondrv.c module – The driver for supporting Direct Rendering Infrastructure DRI in Linux kernels is vulnerable due to a NULL pointer dereferencing issue. Exploiting this vulnerability could allow an attacker to cause a...
The vulnerability of the __do_sys_perf_event_open() function in the kernel/events/core.c module of the Linux operating system allows a attacker to compromise the integrity of protected information.
The vulnerability of the dosysperfeventopen function in the kernel/events/core.c module of the Linux operating system is related to improper locking of resources. Exploiting this vulnerability could allow an attacker to compromise the integrity of protected information...
The vulnerability of Linux operating system’s DRM/amdgpu kernel components, which allows a hacker to trigger a service failure
The vulnerability of DRM/AMDGPU cores in the Linux operating system is related to incorrect resource blocking. Exploiting this vulnerability can allow a hacker to cause service failures...
The vulnerability of the sctp_stream_outq_migrate() function in the net/sctp/stream.c module of the Linux operating system’s SCTP protocol implementation allows a attacker to cause a service failure.
The vulnerability of the sctpstreamoutqmigrate function in the net/sctp/stream.c module of the Linux operating system’s SCTP protocol implementation is related to a memory leak. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the throttle_direct_reclaim function in the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the throttledirectreclaim function in Linux kernel relates to the execution of a loop with an unreachable exit condition. Exploiting this vulnerability could allow a remote attacker to cause a service failure...
The vulnerability of the tun_dst_unclone() function in the include/net/dstmetadata.h module of the Linux kernel allows a attacker to cause a service failure.
The vulnerability of the tundstunclone function in the include/net/dstmetadata.h module of the Linux kernel is related to improper memory release before deleting the last reference „memory leak“. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the Siemens License Server (SLS) software, related to errors in the authentication process, allows a violator to increase their privileges.
The vulnerability of the Siemens License Server SLS software management tool is related to errors in the certificate authenticity verification process. Exploiting this vulnerability can allow attackers to increase their privileges...
The vulnerability of the Mendix Runtime environment, related to inconsistencies in responses to incoming requests, allows attackers to disclose sensitive information.
The vulnerability of Mendix Runtime is related to inconsistencies in responses to incoming requests. Exploiting this vulnerability can allow a malicious actor to disclose protected information...
The vulnerability of the Adobe XMP-Toolkit-SDK software, related to the execution of operations beyond the buffer boundaries in memory, allows attackers to circumvent the ASLR protection mechanism and gain unauthorized access to protected information.
The vulnerability of the Adobe XMP-Toolkit-SDK lies in the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to bypass the ASLR protection mechanism and gain unauthorized access to protected information...
The vulnerability of the Adobe XMP-Toolkit-SDK software, related to the execution of operations beyond the buffer boundaries in memory, allows attackers to circumvent the ASLR protection mechanism and gain unauthorized access to protected information.
The vulnerability of the Adobe XMP-Toolkit-SDK lies in the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to bypass the ASLR protection mechanism and gain unauthorized access to protected information...
The vulnerability of the Adobe Framemaker desktop publishing system arises from the possibility of an operation going beyond the buffer boundaries in memory. This allows a hacker to bypass the ASLR protection mechanism and gain unauthorized access to protected information.
The vulnerability of the Adobe Framemaker desktop publishing system lies in the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to bypass the ASLR protection mechanism and gain unauthorized access to protected information...
The vulnerability of the ColdFusion software platform, related to insufficient protection of operational data, allows attackers to circumvent security restrictions.
The vulnerability of the ColdFusion software platform is related to insufficient protection for operational data. Exploiting this vulnerability can allow attackers to circumvent security restrictions...
The vulnerability of the Data Manager component of Siemens SENTRON 7KT PAC1260 multi-functional measurement instruments for electrical networks allows a hacker to alter the system password.
The vulnerability of the Data Manager component of the microprogramming software for multifunctional measurement instruments for Siemens SENTRON 7KT PAC1260 lies in the lack of necessary checks during password changes. Exploiting this vulnerability could allow an attacker to remotely change the...
The vulnerability of the Data Manager component of Siemens SENTRON 7KT PAC1260, a multi-functional device for measuring parameters of electrical circuits, allows a hacker to perform a CSRF attack.
The vulnerability of the Data Manager component in the microprogramming software for multifunctional measurement instruments for measuring electrical network parameters from Siemens SENTRON 7KT PAC1260 is related to the manipulation of cross-site requests. Exploiting this vulnerability allows a...
The vulnerability of the Siemens License Server (SLS) software management tool, related to deficiencies in access control, allows a violator to enhance their privileges and execute arbitrary code.
The vulnerability of the Siemens License Server SLS software management tool is related to deficiencies in access control. Exploiting this vulnerability can allow a perpetrator to enhance their privileges and execute arbitrary code...
The vulnerability of the Adobe XMP-Toolkit-SDK software, related to the execution of operations beyond the buffer boundaries in memory, allows attackers to circumvent the ASLR protection mechanism and gain unauthorized access to protected information.
The vulnerability of the Adobe XMP-Toolkit-SDK lies in the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to bypass the ASLR protection mechanism and gain unauthorized access to protected information...
The vulnerability of the Adobe XMP-Toolkit-SDK software, related to the execution of operations beyond the buffer boundaries in memory, allows attackers to circumvent the ASLR protection mechanism and gain unauthorized access to protected information.
The vulnerability of the Adobe XMP-Toolkit-SDK lies in the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to bypass the ASLR protection mechanism and gain unauthorized access to protected information...
The vulnerability of the Adobe Framemaker desktop publishing system arises from the possibility of an operation going beyond the buffer boundaries in memory. This allows a hacker to bypass the ASLR protection mechanism and gain unauthorized access to protected information.
The vulnerability of the Adobe Framemaker desktop publishing system lies in the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to bypass the ASLR protection mechanism and gain unauthorized access to protected information...
The vulnerability of the Adobe XMP-Toolkit-SDK software, related to the execution of operations beyond the buffer boundaries in memory, allows attackers to circumvent the ASLR protection mechanism and gain unauthorized access to protected information.
The vulnerability of the Adobe XMP-Toolkit-SDK lies in the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to bypass the ASLR protection mechanism and gain unauthorized access to protected information...
The vulnerability of the Microsoft DWM Core Library in the Windows operating system allows attackers to escalate their privileges.
The vulnerability of the Microsoft DWM Core Library in the Windows operating system is related to insufficient validation of input data. Exploiting this vulnerability can allow attackers to gain increased privileges...
The vulnerability of the Windows operating system’s streaming data transmission service allows a hacker to cause a service failure.
The vulnerability of the Windows operating system’s streaming data transmission service is related to the use of insecure mechanisms for processing authentication data in the operating system’s memory. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...
Vulnerability fixed on May 13, 2025
...
The vulnerability of the Microsoft DWM Core Library in the Windows operating system allows attackers to escalate their privileges.
The vulnerability of the Microsoft DWM Core Library in the Windows operating system is related to insufficient validation of input data. Exploiting this vulnerability can allow attackers to gain increased privileges...
The vulnerability of Microsoft 365 Apps for Enterprise and Office, related to the use of memory after it is freed, allows a perpetrator to execute arbitrary code.
The vulnerability of Microsoft 365 Apps for Enterprise and Office relates to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...
The vulnerability of Microsoft 365 Apps for Enterprise and Office, related to the swapping of an unreliable pointer, allows a perpetrator to execute arbitrary code.
The vulnerability of Microsoft 365 Apps for Enterprise and Office relates to the use of an untrusted pointer. Exploiting this vulnerability could allow a perpetrator to execute arbitrary code...
The vulnerability of the Windows RRAS operating system’s routing and remote access services allows attackers to disclose sensitive information and execute arbitrary code.
The vulnerability of the Windows RRAS operating system’s routing and remote access service is related to reading data outside of the allowed range in memory. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information and execute arbitrary code by sending a special...
The vulnerability of the Windows RRAS operating system’s routing and remote access service allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the Windows RRAS operating system’s routing and remote access service is related to the execution of operations beyond the buffer in the data memory. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to protected information...
The vulnerability of the Windows Update Stack component of the Windows operating system, which allows a hacker to increase their privileges
The vulnerability of the Windows Update Stack component of the Windows operating system is related to an incorrect definition of the link before accessing the file. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of Microsoft SharePoint Server and SharePoint Enterprise Server lies in their authentication procedures’ flaws, which allow attackers to execute arbitrary code.
The vulnerability of Microsoft SharePoint Server and SharePoint Enterprise Server lies in the deficiencies of the authentication process. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...
The vulnerability of Microsoft 365 Apps for Enterprise and Office, related to the use of memory after it is freed, allows attackers to increase their privileges.
The vulnerability of Microsoft 365 Apps for Enterprise and Office relates to the use of memory after it is released. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the NATS messaging system’s server lies in the lack of access control elements for the JetStream API. This allows attackers to delete data.
The vulnerability of the NATS messaging system server is related to the lack of access control elements for the JetStream API. Exploiting this vulnerability could allow a malicious actor to delete data by sending specially crafted requests...
The vulnerability of the Standards-Based Storage Management Service for Windows operating systems allows a perpetrator to trigger a service failure.
The vulnerability of the Standards-Based Storage Management Service for Windows operating systems is related to an uncontrolled consumption of resources. Exploiting this vulnerability can allow a remote attacker to cause service failures...
The vulnerability of the Windows Bluetooth service on Windows operating systems allows a perpetrator to escalate their privileges.
The vulnerability of the Windows Bluetooth service on Windows operating systems is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow an attacker to gain increased privileges...
The vulnerability of the Windows Installer component on Windows operating systems, which allows a hacker to increase their privileges
The vulnerability of the Windows Installer component in Windows operating systems is related to an incorrect definition of the reference before accessing the file. Exploiting this vulnerability can allow an attacker to increase their privileges...