74701 matches found
The vulnerability of the Windows RRAS operating system’s routing and remote access services allows attackers to disclose sensitive information and execute arbitrary code.
The vulnerability of the Windows RRAS operating system’s routing and remote access service is related to reading data outside of the allowed range in memory. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information and execute arbitrary code by sending a special...
The vulnerability of the NTFS file system in Windows operating systems allows attackers to increase their privileges.
The vulnerability of the NTFS file system in Windows operating systems relates to reading data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the Microsoft DWM Core Library on Windows operating systems allows attackers to escalate their privileges.
The vulnerability of the Microsoft DWM Core Library on Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of the Microsoft Dynamics 365 Business Central software for small and medium-sized businesses stems from insufficient validation of input data. This allows a malicious actor to gain unauthorized access to protected information.
The vulnerability of the Microsoft Dynamics 365 Business Central software for small and medium-sized businesses is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...
The vulnerability of XML parser components in the iText software development tool allows attackers to execute XXE attacks.
The vulnerability of XML parser components in the iText software development tool is related to incorrect restrictions on XML references to external objects. Exploiting this vulnerability allows a malicious actor to perform XXE attacks by sending specially created malicious PDF files...
The vulnerability of programs for managing and monitoring IT services such as Microsoft System Center Operations Manager, System Center Service Manager, System Center Orchestrator, System Center Data Protection Manager, and System Center Virtual Machine Manager lies in the use of an insecure search path, which allows an attacker to escalate their privileges.
The vulnerabilities of programs for managing and monitoring IT services such as Microsoft System Center Operations Manager, System Center Service Manager, System Center Orchestrator, System Center Data Protection Manager, and System Center Virtual Machine Manager are related to the use of an...
The vulnerability of the Windows Telephony Service in Windows operating systems allows a perpetrator to execute arbitrary code.
The vulnerability of the Windows Telephony Service in Windows operating systems is related to buffer overflow in the stack. Exploiting this vulnerability allows an attacker to execute arbitrary code by sending a request to the server...
Vulnerability of the geneve_rx() function in the drivers/net/geneve.c module – This driver for network devices in the Linux operating system allows a hacker to cause a service failure.
Vulnerability of the geneverx function in the drivers/net/geneve.c module – The Linux kernel’s network device driver framework is vulnerable due to incorrect input validation. Exploiting this vulnerability could allow an attacker to cause system failures...
The vulnerability of the Remote Desktop Client for Windows operating systems in relation to client exploitation, involving buffer overflow in dynamic memory, allows attackers to execute arbitrary code.
The vulnerability of the Remote Desktop Client for Windows operating systems in dealing with client remote desktops is related to buffer overflows in dynamic memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
The vulnerability in the web interface for managing Tenda FH1202 micro-program software routers allows a hacker to escalate their privileges.
The vulnerability of the web interface for managing Tenda FH1202 micro-programming software routers is related to deficiencies in access control when processing the /goform/VirSerDMZ endpoint. Exploiting this vulnerability allows a malicious actor to enhance their privileges by sending a speciall...
The vulnerability of the Windows Bluetooth service on Windows operating systems allows a perpetrator to escalate their privileges.
The vulnerability of the Windows Bluetooth service on Windows operating systems is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow an attacker to gain increased privileges...
The vulnerability of the Windows Standards-Based Storage Management Service in the Windows operating system allows a hacker to cause a service failure.
The vulnerability of the Windows Standards-Based Storage Management Service in the Windows operating system is related to an uncontrolled consumption of resources. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...
The vulnerability of Siemens Solid Edge’s design and simulation tools relates to writing beyond buffer boundaries in memory, allowing a malicious actor to execute arbitrary code.
The vulnerability of Siemens Solid Edge’s design and simulation tools lies in the issue of writing beyond buffer boundaries in memory when processing DFT format files. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the recvSlaveUpgstatus() function in the TOTOLINK T8 router’s microprogramming software allows a hacker to execute arbitrary commands.
The vulnerability of the recvSlaveUpgstatus function in the microprogramming software for TOTOLINK T8 routers is related to the lack of measures taken to clean data at the management level when processing the ip parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrar...
The vulnerability of Microsoft 365 Apps for Enterprise and Office, related to the swapping of an unreliable pointer, allows a perpetrator to execute arbitrary code.
The vulnerability of Microsoft 365 Apps for Enterprise and Office relates to the use of an untrusted pointer. Exploiting this vulnerability could allow a perpetrator to execute arbitrary code...
The vulnerability of the Standards-Based Storage Management Service for Windows operating systems allows a perpetrator to trigger a service failure.
The vulnerability of the Standards-Based Storage Management Service for Windows operating systems is related to an uncontrolled consumption of resources. Exploiting this vulnerability can allow a remote attacker to cause service failures...
The vulnerability of the Resilient File System (ReFS) in Windows operating systems allows a perpetrator to disclose protected information.
The vulnerability of the Resilient File System ReFS in Windows operating systems is related to insufficient access control. Exploiting this vulnerability can allow a malicious actor to disclose protected information from a remote location...
The vulnerability of the Windows Update Stack component of the Windows operating system, which allows a hacker to increase their privileges
The vulnerability of the Windows Update Stack component of the Windows operating system is related to an incorrect definition of the link before accessing the file. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the hsr_get_node() function in the net/hsr/hsr_framereg.c module, which is part of the networking functions in the Linux kernel, allows a hacker to cause a service failure.
The vulnerability of the hsrgetnode function in the net/hsr/hsrframereg.c module, which is part of the Linux kernel’s networking functions, stems from the use of an uninitialized resource. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the persistent framework MyBatis, a programming language for Java (Kotlin), relates to deficiencies in the deserialization mechanism, allowing attackers to execute arbitrary code.
The vulnerability of the persistent framework MyBatis, written in the Java Kotlin programming language, is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...
The vulnerability of the meshSlaveUpdate() function in the microprogramming software for TOTOLINK T8 allows a hacker to execute arbitrary commands.
The vulnerability of the meshSlaveUpdate function in the microprogramming software for TOTOLINK T8 lies in the lack of measures taken to clean data at the control level when processing the serverIp parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...
The vulnerability of the Microsoft DWM Core Library in the Windows operating system allows attackers to escalate their privileges.
The vulnerability of the Microsoft DWM Core Library in the Windows operating system is related to insufficient validation of input data. Exploiting this vulnerability can allow attackers to gain increased privileges...
The vulnerability of the Windows RRAS operating system’s routing and remote access service allows attackers to disclose sensitive information.
The vulnerability of the Windows RRAS operating system’s routing and remote access service is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to disclose sensitive information that is protected by the system’s security measur...
The vulnerability of the Microsoft DWM Core Library on Windows operating systems allows attackers to escalate their privileges.
The vulnerability of the Microsoft DWM Core Library on Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of the Microsoft Visual Studio software development tool, related to access control deficiencies, allows attackers to escalate their privileges.
The vulnerability of the Microsoft Visual Studio software development tool is related to lack of access control. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of the meshSlaveDlfw() function in the microprogramming software for TOTOLINK T8 allows a hacker to execute arbitrary commands.
The vulnerability of the meshSlaveDlfw function in the microprogramming software for TOTOLINK T8 routers is related to the lack of measures taken to clean data at the management level when processing the serverIp parameter. Exploiting this vulnerability allows a remote attacker to execute arbitra...
The vulnerability of the recvSlaveCloudCheckStatus() function in the microprogramming software for TOTOLINK T8 allows a hacker to execute arbitrary commands.
The vulnerability of the recvSlaveCloudCheckStatus function in the microprogramming software for TOTOLINK T8 routers is related to the lack of measures taken to clean data at the management level when processing the ip parameter. Exploiting this vulnerability allows a remote attacker to execute...
The vulnerability of the Windows Installer component on Windows operating systems, which allows a hacker to increase their privileges
The vulnerability of the Windows Installer component in Windows operating systems is related to an incorrect definition of the reference before accessing the file. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the Windows Digital Media component in Windows operating systems allows attackers to enhance their privileges.
The vulnerability of the Windows Digital Media component in Windows operating systems is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of Windows operating systems, related to insufficient access control, allows attackers to increase their privileges and disclose sensitive information.
The vulnerability of Windows operating systems is related to insufficient access control. Exploiting this vulnerability allows a malicious actor to enhance their privileges and disclose sensitive information...
The vulnerability of the Windows RRAS operating system’s routing and remote access service allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the Windows RRAS operating system’s routing and remote access service is related to the execution of operations beyond the buffer in the data memory. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to protected information...
The vulnerability of Visual Studio Code’s source editor, related to access control deficiencies, allows attackers to escalate their privileges.
The vulnerability of Visual Studio Code’s source editor is related to lack of access control. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of the Windows operating system’s streaming data transmission service allows a hacker to cause a service failure.
The vulnerability of the Windows operating system’s streaming data transmission service is related to the use of insecure mechanisms for processing authentication data in the operating system’s memory. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...
The vulnerability of the Standards-Based Storage Management Service for Windows operating systems allows a perpetrator to trigger a service failure.
The vulnerability of the Standards-Based Storage Management Service for Windows operating systems is related to an uncontrolled consumption of resources. Exploiting this vulnerability can allow a remote attacker to cause service failures...
The vulnerability of Windows operating systems, related to the swapping of a non-trusted pointer, allows attackers to escalate their privileges.
The vulnerability of Windows operating systems is related to the use of a non-trusted pointer. Exploiting this vulnerability can allow an attacker to gain increased privileges...
The vulnerability of the UPnP Device Host operating system in Windows allows a hacker to increase their privileges.
The vulnerability of the UPnP Device Host operating system in Windows relates to the use of insecure mechanisms for processing authentication data in the operating system’s memory. Exploiting this vulnerability can allow a remote attacker to increase their privileges...
The vulnerability of the Primo RPA Orchestrator module of the Primo RPA automation platform allows a intruder to gain unauthorized access to protected information.
The vulnerability of the Primo RPA Orchestrator module of the Primo RPA automation platform lies in the use of a strictly encrypted cryptographic key. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information...
The vulnerability of the gzip_do_write() function in the zlib compression library allows a attacker to bypass ASLR protection, execute arbitrary code, or cause a denial-of-service attack.
The vulnerability of the gzipdowrite function in the zlib compression library, a command-line utility of CURL, is related to integer overflow. Exploiting this vulnerability allows an attacker to bypass ASLR protection, execute arbitrary code, or cause a denial-of-service attack...
The vulnerability of the Rack::Static class in the module interface between web servers and Rack web applications allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the Rack::Static module interface between web servers and Rack web applications is related to errors in processing relative pathnames to directories. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...
The vulnerability in the implementation of the LDAP service protocol for Windows operating systems allows a perpetrator to cause a service failure.
The vulnerability of the LDAP Lightweight Directory Access Protocol implementation in Windows operating systems is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service failures...
The vulnerability of the Microsoft Windows operating system’s Telephony Service allows a perpetrator to execute arbitrary code.
The vulnerability of the Microsoft Windows operating system’s Telephony Service is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the MoTw mechanism in Microsoft Windows operating systems allows a hacker to circumvent security restrictions.
The vulnerability of the MoTe-Web mechanism in Microsoft Windows operating systems is related to a breach of data protection mechanisms. Exploiting this vulnerability allows an attacker to bypass security restrictions from a remote location...
The vulnerability of the Windows Standards-Based Storage Management Service in Windows operating systems allows a hacker to cause a service failure.
The vulnerability of the Windows Standards-Based Storage Management Service in Windows operating systems is related to an uncontrolled consumption of resources. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...
The vulnerability of the Secure Channel component in Windows operating systems, which allows attackers to escalate their privileges
The vulnerability of the Secure Channel component in Windows operating systems is related to the reutilization of previously released memory due to competitive access to resources. This “race condition” allows an attacker to enhance their privileges...
The vulnerability of the page_alloc component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the pagealloc component in Linux operating systems is related to errors during the update of the link counters. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the DRM/AMD/display components in the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the DRM/amd/display components in the Linux operating system is related to pointer assignment errors. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the NTFS file system in Windows operating systems allows attackers to increase their privileges.
The vulnerability of the NTFS file system in Windows operating systems is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the web page rendering modules in WebKitGTK and WPE WebKit, related to reading data beyond the allowed buffer limits, allows attackers to cause service failures.
The vulnerability of the Web page rendering modules in WebKitGTK and WPE WebKit relates to reading data beyond the acceptable buffer limits. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...
The vulnerability of the web page rendering modules in WebKitGTK and WPE WebKit allows an attacker to manipulate the presentation of critical information to the user interface, thereby compromising data integrity.
The vulnerability of the Web page rendering modules in WebKitGTK and WPE WebKit is related to the improper presentation of critical information to the user interface. Exploiting this vulnerability can allow an attacker to compromise data integrity remotely...
The vulnerability of the stk1160-video.c component in the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the stk1160-video.c component in the Linux operating system is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to cause a system failure...