The vulnerability in the web interface of the Cisco Identity Services Engine (ISE) management platform allows a perpetrator to upload arbitrary files, increase their privileges, and execute arbitrary commands.

The vulnerability in the web interface of the Cisco Identity Services Engine ISE management platform relates to the unlimited loading of dangerous files. Exploiting this vulnerability allows a malicious actor to load arbitrary files, increase their privileges, and execute arbitrary commands...

The vulnerability of the Network Access Manager module of the Cisco Secure Client (formerly Cisco AnyConnect Secure Mobility Client) security solution allows a hacker to increase their privileges.

The vulnerability of the Network Access Manager module of the Cisco Secure Client formerly Cisco AnyConnect Secure Mobility Client security solution lies in the lack of authentication checks for a critical function. Exploiting this vulnerability can allow attackers to increase their privileges...

The vulnerability of the Internet Key Exchange Protocol Daemon (iked) in Juniper Networks’ Junos OS-based routers of the SRX, MX-SPC3, and NFX350 series allows a attacker to cause service interruptions.

The vulnerability of the Internet Key Exchange Protocol Daemon iked in Juniper Networks’ Junos OS-based routers of the SRX, MX-SPC3, and NFX350 series is related to insufficient handling of exceptional states. Exploiting this vulnerability can allow a malicious actor to cause service interruption...

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system, related to insufficient validation of input data, allows attackers to bypass security restrictions and execute arbitrary code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to bypass security restrictions and execute arbitrary code...

The vulnerability of the TIFFInput::read_native_tile() function in the src/tiff.imageio/tiffinput.cpp module of the OpenImageIO library allows a attacker to cause a service failure.

The vulnerability of the TIFFInput::readnativetile function in the src/tiff.imageio/tiffinput.cpp module of the OpenImageIO library is related to improper memory allocation. Exploiting this vulnerability may allow an attacker to cause a service failure...

The vulnerability of the pata_macio_do_resume() function in the Linux operating system’s SATA/PATA kernel support driver allows a hacker to cause a service failure.

The vulnerability of the patamaciodoresume function in the SATA/PATA driver of the Linux operating system is related to incorrect validation of input data. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the mptcp_pm_nl_rm_addr_or_subflow() function in the Linux operating system, which allows a hacker to cause a service failure

The vulnerability of the mptcppmnlrmaddrorsubflow function in the Linux operating system is related to improper flow management. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the xe_device_probe() function in the DRI driver allows a hacker to induce a service failure.

The vulnerability of the xedeviceprobe function in the DRI driver is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the Layer 2 Address Learning Daemon (L2ALD) in Juniper Networks’ Junos OS Evolved operating systems allows a hacker to induce a service failure.

The vulnerability of the Layer 2 Address Learning Daemon L2ALD in Juniper Networks’ Junos OS Evolved operating systems is related to uncontrolled resource consumption. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code using a specially created malicious website...

The vulnerability of the genelinkbind() function (drivers/net/usb/gl620a.c) in the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the genelinkbind function drivers/net/usb/gl620a.c in the Linux kernel is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause service failures...

The vulnerability of the bond_ipsec_add_sa() function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the bondipsecaddsa function in the Linux operating system is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the RSVP protocol implementation in Juniper Networks’ Junos OS and Junos OS Evolved operating systems allows a attacker to cause service interruptions.

The vulnerability of the RSVP protocol implementation in Juniper Networks’ Junos OS and Junos OS Evolved operating systems is related to insufficient handling of exceptional states. Exploiting this vulnerability can allow a malicious actor to cause service failures...

The vulnerability of the Packet Forwarding Engine (PFE) module in Juniper Networks’ Junos OS Evolved operating systems allows a hacker to trigger a service failure.

The vulnerability of the Packet Forwarding Engine PFE module in Juniper Networks’ Junos OS Evolved operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow attackers to cause service failures...

The vulnerability of the `ustring::make_unique()` function in the `src/libutil/ustring.cpp` module of the OpenImageIO library allows a malicious actor to cause a service failure.

The vulnerability of the ustring::makeunique function in the src/libutil/ustring.cpp module of the OpenImageIO library is related to the execution of a loop with an unreachable exit condition. Exploiting this vulnerability could allow a remote attacker to cause service failures...

The vulnerability of the BmpInput::read_native_scanline() function in the src/bmp.imageio/bmpinput.cpp module of the OpenImageIO library allows a hacker to cause a service failure.

The vulnerability of the BmpInput::readnativescanline function in the src/bmp.imageio/bmpinput.cpp module of the OpenImageIO library is related to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability in the web interface for managing micro-program software on Cisco Expressway allows a hacker to redirect users to any arbitrary URL address.

The vulnerability of the web interface for managing microprogramming software in Cisco Expressway is related to the use of open redirection. Exploiting this vulnerability allows a malicious actor to redirect users to any arbitrary URL address...

The vulnerability of the iommu_report_device_fault() function in the Linux kernel’s IOMMU support driver allows a attacker to trigger a service failure.

The vulnerability of the iommureportdevicefault function in the Linux kernel’s IOMMU support driver is related to deficiencies in exception handling. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the Juniper Networks Junos OS Evolved operating system’s extraction service allows a hacker to trigger a service failure.

The vulnerability of Juniper Networks Junos OS Evolved operating system-based filtering services is related to the disclosure of information in the erroneous data area. Exploiting this vulnerability can allow a malicious actor to trigger service failures remotely...

The vulnerability of the Command Line Interface (CLI) of the Fortinet FortiClient security device allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Command Line Interface CLI of the Fortinet FortiClient security device is related to the storage of critical information in an open manner. Exploiting this vulnerability can allow an attacker to gain unauthorized access to the protected information...

The vulnerability of the TIFFInput::read_native_scanlines() function in the src/tiff.imageio/tiffinput.cpp module of the OpenImageIO library allows an attacker to compromise the integrity and accessibility of the protected information.

The vulnerability of the TIFFInput::readnativescanlines function in the src/tiff.imageio/tiffinput.cpp module of the OpenImageIO library is related to integer overflow. Exploiting this vulnerability could allow an attacker to compromise the integrity and accessibility of the protected information...

Vulnerability of the functions sof_ipc4_widget_setup_comp_dai() and sof_ipc4_prepare_copier_module() (sound/soc/sof/ipc4-topology.c) in the Linux operating system, allowing a hacker to cause a service failure

The vulnerabilities of the functions sofipc4widgetsetupcompdai and sofipc4preparecopiermodule sound/soc/sof/ipc4-topology.c in the Linux kernel are related to the assignment of zero pointers. Exploiting these vulnerabilities could allow an attacker to cause a service failure...

The vulnerability of the htlb_allow_alloc_fallback() function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the htlballowallocfallback function in the Linux operating system is related to insufficient resource locking. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the dpu_encoder_virt_atomic_mode_set() function in the Linux kernel’s Direct Rendering Infrastructure (DRI) support driver allows a malicious actor to cause a system crash.

The vulnerability of the dpuencodervirtatomicmodeset function in the Linux kernel’s Direct Rendering Infrastructure Support driver is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a system failure...

The vulnerability of the `sysfb_disable()` function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the sysfbdisable function in the Linux operating system is related to pointer manipulation. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the BmpInput::read_rle_image() function in the src/bmp.imageio/bmpinput.cpp module of the OpenImageIO library allows a attacker to compromise the integrity of the protected information or cause service failures.

The vulnerability of the BmpInput::readrleimage function in the src/bmp.imageio/bmpinput.cpp module of the OpenImageIO library is related to writing beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to compromise the integrity of the protected information or caus...

Vulnerability of the btrfs_scan_root() function (fs/btrfs/extent_map.c) in the Linux operating system, which allows a hacker to increase their privileges

The vulnerability of the btrfsscanroot function fs/btrfs/extentmap.c in the Linux operating system is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the IBM Common Cryptographic Architecture (CCA) lies in the writing beyond the buffer boundaries in memory, which allows a attacker to trigger a failure in the operation of the Hardware Security Module (HSM).

The vulnerability of the IBM Common Cryptographic Architecture CCA lies in the writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a malicious actor, operating remotely, to cause a failure in the Hardware Security Module HSM’s security hardware module by usin...

The vulnerability of the startup_kernel() function in the arch/s390/boot/startup.c module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the startupkernel function in the arch/s390/boot/startup.c module of the Linux operating system is related to the unlimited distribution of resources. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the ipsec_fs_roce_tx_mpv_create() function in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the ipsecfsrocetxmpvcreate function in the Linux operating system is related to insufficient resource locking. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the BmpInput::read_native_scanline() function in the src/bmp.imageio/bmpinput.cpp module of the OpenImageIO library allows an attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the BmpInput::readnativescanline function in the src/bmp.imageio/bmpinput.cpp module of the OpenImageIO library is related to writing beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

The vulnerability of the efi_mokvar_table_init() function (drivers/firmware/efi/mokvar-table.c) in the Linux kernel allows a hacker to trigger a service failure.

The vulnerability of the efimokvartableinit function drivers/firmware/efi/mokvar-table.c in the Linux kernel involves executing a loop with an unreachable exit condition. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the pktgen_thread_worker() function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the pktgenthreadworker function in the Linux operating system’s kernel is related to insufficient resource locking. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the omap8250_suspend() function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the omap8250suspend function in the Linux operating system is related to improper control of resource identifiers “resource injection”. Exploiting this vulnerability can allow an attacker to trigger a service failure...

The vulnerability of the ImageInput::read_image() function in the src/libOpenImageIO/imageinput.cpp module of the OpenImageIO library allows a hacker to cause a service failure.

The vulnerability of the ImageInput::readimage function in the src/libOpenImageIO/imageinput.cpp module of the OpenImageIO library is related to the lack of checks for division by zero. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

The vulnerability of the Knowledge Space integrated planning platform, related to the storage of passwords in an open manner, allows attackers to disclose the protected information.

The vulnerability of the Knowledge Space integrated planning platform lies in the storage of passwords in an open manner. Exploiting this vulnerability could allow a malicious actor, operating remotely, to disclose the protected information...

The vulnerability of the configure_lttpr_mode_non_transparent() function in the DRI driver for AMD kernel-based Linux graphics cards allows a attacker to cause a service failure.

The vulnerability of the configurelttprmodenontransparent function in the DRI driver for AMD kernel-based Linux graphics cards is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the gp_open_scratch_file_impl() function in the files base/gp_mswin.c and base/winrtsup.cpp of the Ghostscript processing, conversion, and generation software suite allows a malicious actor to read arbitrary files.

The vulnerability of the gpopenscratchfileimpl function in the base/gpmswin.c and base/winrtsup.cpp files of the Ghostscript processing, conversion, and generation software suite is related to an incorrect path name limitation. Exploiting this vulnerability could allow a remote attacker to read...

The vulnerability of the intel_spi_populate_chip() function in the Linux kernel’s SPI device support driver allows a hacker to cause a service failure.

The vulnerability of the intelspipopulatechip function in the Linux kernel’s SPI device support driver is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a system failure...

The vulnerability of the web interface of Moxa network device software for models EDF-G1002-BP, EDR-810, EDR-8010, EDR-G9004, EDR-G9010, NAT-102, TN-4900, and OnCell G4302-LTE4 allows a perpetrator to execute arbitrary commands through NTP settings, thereby gaining full control over the device.

The vulnerability of the web interface of Moxa network devices of the EDF-G1002-BP, EDR-810, EDR-8010, EDR-G9004, EDR-G9010, NAT-102, TN-4900, and OnCell G4302-LTE4 series is related to the lack of measures to neutralize specific components. Exploiting this vulnerability allows a malicious actor ...

The vulnerability of the `ovl_dentry_update_reval()` function in the `fs/overlayfs/copy_up.c` file of the Linux kernel file system allows a attacker to cause a service failure.

The vulnerability of the ovldentryupdatereval function in the fs/overlayfs/copyup.c file of the Linux kernel file system is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability in the kernel driver drivers/pinctrl/qcom/pinctrl-x1e80100.c of the Linux operating system allows a attacker to cause a service failure.

The vulnerability in the drivers/pinctrl/qcom/pinctrl-x1e80100.c kernel driver of the Linux operating system is related to the implementation of an incorrect control flow. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the irqfd_wakeup() function in Linux kernel-based Xen drivers allows a hacker to trigger a service failure.

The vulnerability of the irqfdwakeup function in Xen kernel-based Linux operating system drivers is related to insufficient resource locking. Exploiting this vulnerability can allow an attacker to trigger a service failure...

The vulnerability of the HeaderHandler component in the Java framework of Apache Camel allows a attacker to compromise the integrity and accessibility of the protected information.

The vulnerability of the Header Handler component in the Java framework Apache Camel is related to the lack of measures taken to neutralize internal special elements. Exploiting this vulnerability allows a remote attacker to compromise the integrity and accessibility of the protected information...

The vulnerability of the amdgpu_device_gpu_recover() function in the DRI driver allows a hacker to induce a service failure. This vulnerability is related to AMD graphics cards and Linux operating systems.

The vulnerability of the amdgpudevicegpurecover function in the DRI support driver for AMD graphics cards in Linux operating systems is related to pointer manipulation. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the hci_dma_cleanup() function in the I3C driver of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the hcidmacleanup function in the I3C driver of the Linux operating system is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the dcn_bw_update_from_pplib_fclks() function in the DRI driver for AMD Linux kernel-based video cards allows a hacker to cause a service failure.

The vulnerability of the dcnbwupdatefrompplibfclks function in the DRI driver for AMD kernel-based Linux operating system-related graphics cards is related to integer overflow or cyclic shift vulnerabilities. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the system for managing internal services and automating business processes, IntraService, arises from the lack of measures taken to protect the website structure. This allows attackers to execute arbitrary JavaScript code.

The vulnerability of the system for managing internal services and automating business processes is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary JavaScript code remotely...

The vulnerability in the driver (drivers/infiniband/hw/bnxt_re/ib_verbs.c) of Linux operating systems, which allows a hacker to cause a service failure.

The vulnerability in the driver drivers/infiniband/hw/bnxtre/ibverbs.c of Linux operating systems is related to incorrect calculations. Exploiting this vulnerability can allow an attacker to cause service failures...

The vulnerability of the XWiki platform for creating collaborative web applications lies in errors that occur when using privileged application programming interfaces (APIs). This allows a malicious individual to gain access to read, modify, and delete user accounts.

The vulnerability of the XWiki Platform relates to errors that occur when using privileged application programming interfaces APIs. Exploiting this vulnerability can allow a malicious actor to gain access to read, modify, and delete user accounts...