The vulnerability of the Microsoft Dataverse data management platform, related to incorrect authorization, allows a perpetrator to escalate their privileges.

The vulnerability of the Microsoft Dataverse data management platform is related to improper authentication. Exploiting this vulnerability can allow a malicious actor to increase their privileges remotely...

The vulnerability of the simple_inode_init_ts() function in the Linux file system allows a hacker to trigger a service failure.

The vulnerability of the simpleinodeinitts function in the Linux file system is related to the reutilization of previously freed memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the `btrfs_encoded_read_endio()` function in the `fs/btrfs/inode.c` module of the Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the btrfsencodedreadendio function in the fs/btrfs/inode.c module of the Linux kernel is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of protected...

The vulnerability of the Go programming language lies in the improper checking of syntax correctness in input, which allows attackers to trigger service failures.

The vulnerability of the Go programming language is related to improper checking of syntax correctness in input. Exploiting this vulnerability allows a remote attacker to cause service failures...

The vulnerability of the xsltGetInheritedNsList function in the libxslt library allows a attacker to influence the integrity and accessibility of the protected information.

The vulnerability of the xsltGetInheritedNsList function in the libxslt library is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to compromise the integrity and accessibility of the protected information...

Vulnerability of the nouveau_pstate_fops{} structure in the drivers/gpu/drm/nouveau/nouveau_debugfs.c module – This driver provides support for Direct Rendering Infrastructure (DRI) in NVIDIA’s Linux kernel, allowing attackers to cause system failures.

The vulnerability of the nouveaupstatefops structure in the drivers/gpu/drm/nouveau/nouveaudebugfs.c module – The driver that supports Direct Rendering Infrastructure DRI for NVIDIA graphics cards in the Linux operating system is vulnerable to a memory leak before the last reference is freed...

The vulnerability of the keyPut() function in Linux operating system kernels, which allows a hacker to cause a service failure

The vulnerability of the keyPut function in Linux operating system kernels is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the SAP Web Dispatcher web dispatcher and the SAP NetWeaver Internet Communication Manager web application servers involves the disclosure of password values in log files, allowing attackers to gain unauthorized access to protected information.

The vulnerability of the SAP Web Dispatcher web dispatcher and the SAP NetWeaver Internet Communication Manager web application servers relates to the disclosure of password values in log files. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized...

The vulnerability of the Git-based software platform for collaborative code development on GitLab EE/CE arises from deficiencies in the authentication mechanism, allowing unauthorized access to protected information.

The vulnerability of the Git-based software platform for collaborative code development in GitLab EE/CE is related to deficiencies in the authentication mechanism. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the CLI component of the Fortinet FortiManager device management software and the FortiAnalyzer and FortiAnalyzer-BigData security event monitoring and analysis tools allows a attacker to execute arbitrary commands or code.

The vulnerability of the CLI component of the Fortinet FortiManager device management software, as well as the FortiAnalyzer and FortiAnalyzer-BigData security event monitoring and analysis tools, is related to the lack of protective measures for the SQL query structure. Exploiting this...

The vulnerability of the efi_get_fdt_params() function in the drivers/firmware/efi/fdtparams.c module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the efigetfdtparams function in the drivers/firmware/efi/fdtparams.c module of the Linux operating system is related to the assignment of the NULL pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

Vulnerability of the ci_hdrc_imx_probe() function in the drivers/usb/chipidea/ci_hdrc_imx.c module – This driver provides support for USB devices on Linux kernels. It can be exploited by attackers to cause system failures.

Vulnerability of the cihdrcimxprobe function in the drivers/usb/chipidea/cihdrcimx.c module – The Linux kernel’s USB device support driver is vulnerable due to a pointer issue related to NULL pointers. Exploiting this vulnerability could allow an attacker to cause system failures...

The vulnerability of the digital_in_send_sdd_req() function in the net/nfc/digital_technology.c module of the NFC subsystem of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the digitalinsendsddreq function in the net/nfc/digitaltechnology.c module of the NFC subsystem of the Linux operating system is related to improper memory release before deleting the last pointer memory leak. Exploiting this vulnerability could allow an attacker to cause a...

The vulnerability of the page_is_secretmem() function in the include/linux/secretmem.h module of the Linux kernel allows a hacker to induce a service failure.

The vulnerability of the pageissecretmem function in the include/linux/secretmem.h module of the Linux kernel is related to the dereferencing of the NULL pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

Vulnerability of the corsair_void_remove() function in the drivers/hid/hid-corsair-void.c module – This driver of the user interface subsystem of the Linux operating system allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the corsairvoidremove function in the drivers/hid/hid-corsair-void.c module – the driver for the user interface devices in the Linux operating system – relates to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise...

The vulnerability of the AddPortMapping method in Netgear WNR854T router software allows a hacker to execute arbitrary commands.

The vulnerability of the AddPortMapping method in Netgear WNR854T router microprogramming software lies in the lack of measures to neutralize special elements used in the operating system’s commands when processing the NewInternalClient parameter. Exploiting this vulnerability allows a remote...

The vulnerability of the ice_create VFEntries() function in the Linux kernel network driver allows a hacker to cause a service failure.

The vulnerability of the icecreate VFEntries function in the Linux kernel driver is related to improper release of resources. Exploiting this vulnerability can allow an attacker to cause service failures...

The vulnerability of the SAP NetWeaver Application Server ABAP software integration platform arises from the lack of measures taken to protect the structure of web pages. This vulnerability allows attackers to carry out XSS attacks.

The vulnerability of the SAP NetWeaver Application Server ABAP software integration platform exists due to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

Vulnerability of the dsps_probe() function in the drivers/usb/musb/musb_dsps.c module – The driver for supporting USB devices in Linux kernels allows a hacker to cause a service failure.

Vulnerability of the dspsprobe function in the drivers/usb/musb/musbdsps.c module – The Linux kernel’s USB device support driver is vulnerable due to a pointer issue related to NULL pointers. Exploiting this vulnerability could allow an attacker to cause a service failure...

Vulnerability of the start_io_acct() function in the drivers/md/dm.c module – The driver for supporting multiple devices (such as RAID and LVM) in the Linux kernel allows a hacker to trigger a service failure.

Vulnerability of the startioacct function in the drivers/md/dm.c module – The driver for supporting multiple devices such as RAID and LVM in the Linux operating system is vulnerable due to the use of a NULL pointer. Exploiting this vulnerability could allow an attacker to cause service failures...

The vulnerability of the SetDefaultConnectionService() function in Netgear WNR854T router software allows a hacker to induce a service failure.

The vulnerability of the SetDefaultConnectionService function in Netgear WNR854T router microprogramming software is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a malicious actor to cause service failure...

Vulnerability of the felix_setup_mmio_filtering() function in the drivers/net/dsa/ocelot/felix.c module – a driver for supporting DSA cores in the Linux operating system, which allows an attacker to cause a service failure.

Vulnerability of the felixsetupmmiofiltering function in the drivers/net/dsa/ocelot/felix.c module – The DSA kernel support driver for the Linux operating system is vulnerable to uncontrolled resource consumption. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability in the web interface of Netgear WNR854T router software allows a hacker to execute arbitrary commands and gain full control over the device.

The vulnerability of the web interface of Netgear WNR854T router software lies in the lack of measures to neutralize special elements used in the operating system’s commands when processing the wanhostname parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrary...

Vulnerability of the thunderstrike_led_create() function in the drivers/hid/hid-nvidia-shield.c module – This driver of the Linux kernel’s input device subsystem allows a hacker to cause a service failure.

Vulnerability of the thunderstrikeledcreate function in the drivers/hid/hid-nvidia-shield.c module – The driver for the Linux kernel’s input device subsystem is vulnerable due to a reliance on the assignment of the NULL pointer. Exploiting this vulnerability could allow an attacker to cause syste...

Vulnerability of the amdgpu_dm_atomic_check() function in the drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.c file – This driver is part of the Linux operating system’s AMD graphics card Direct Rendering Infrastructure (DRI) support module. It allows a hacker to trigger a service failure.

Vulnerability of the amdgpudmatomiccheck function in the driver/gpu/drm/amd/display/amdgpudm/amdgpudm.c file – The driver for Linux operating system graphics cards that support Direct Rendering Infrastructure DRI is vulnerable due to a pointer issue related to NULL pointers. Exploiting this...

The vulnerability of the SAP Fiori business application design platform, related to bypassing authentication using a user-controlled key, allows attackers to circumvent existing security restrictions.

The vulnerability of the SAP Fiori business application development platform involves exploiting authentication via a key controlled by the user. Exploiting this vulnerability allows a malicious actor to circumvent existing security restrictions remotely...

The vulnerability of the graphical user interface of the FortiIsolator browser platform allows a hacker to execute arbitrary code.

The vulnerability of the graphical user interface of the FortiIsolator browser platform exists due to the lack of measures taken to neutralize special elements used in the operating system’s command set. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the SAML SSO library in Ruby allows a attacker to trigger a service failure.

The vulnerability of the SAML SSO library in Ruby SAML relates to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause a service failure...

The vulnerability of the Git-based software platform for collaborative code development in GitLab Enterprise Edition, related to deficiencies in the authentication mechanism, allows a malicious actor to influence the integrity of the protected information.

The vulnerability of the Git-based software platform for collaborative code development in GitLab Enterprise Edition is related to deficiencies in the authentication mechanism. Exploiting this vulnerability could allow a malicious actor to influence the integrity of the protected information...

The vulnerability of the 3DSecure (3DS2) protocol, related to the manipulation of inter-site requests, allows a perpetrator to carry out a CSRF attack.

The vulnerability of the 3DSecure 3DS2 protocol is related to the manipulation of inter-site requests. Exploiting this vulnerability allows a malicious actor to perform a CSRF attack by altering the HTTP headers Origin and Referer...

The vulnerability of the Git-based software platform for collaborative code development on GitLab, related to unlimited resource distribution, allows a hacker to cause a service failure.

The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to the unlimited distribution of resources. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause service failures...

The vulnerabilities of the FortiOS operating system’s GUI component, the FortiProxy proxy server for protecting against internet attacks, the FortiPAM account management system, the FortiWeb network gateway for web applications, and the FortiSRA software for secure remote access, allow attackers to execute arbitrary code or commands.

The vulnerabilities of the FortiOS operating system’s GUI component, the FortiProxy proxy server for protecting against Internet attacks, the FortiPAM account management system, the FortiWeb web application firewall, and the FortiSRA software for secure remote access are related to insufficient...

The vulnerability in the cmd.cgi script of Netgear WNR854T router software allows a hacker to execute arbitrary commands.

The vulnerability in the cmd.cgi script of Netgear WNR854T router microprogramming software relates to the failure to take measures to neutralize special elements used in operating system commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

The vulnerability in the web interface for managing Tenda FH1202 micro-program software routers allows a hacker to escalate their privileges.

The vulnerability of the web interface for managing Tenda FH1202 micro-programming software routers is related to deficiencies in access control when processing the end-point /goform/AdvSetWrl. Exploiting this vulnerability can allow a malicious actor to enhance their privileges by sending a...

The vulnerability in the driver (drivers/net/ethernet/mellanox/mlx5/core/esw/qos.c) of Linux operating systems, which allows a hacker to cause a service failure.

The vulnerability of the driver drivers/net/ethernet/mellanox/mlx5/core/esw/qos.c in Linux operating systems is related to improper release of resources. Exploiting this vulnerability can allow an attacker to cause service failures...

The vulnerability of the dbAdjTree() function in the fs/jfs/jfs_dmap.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the dbAdjTree function in the fs/jfs/jfsdmap.c module of the Linux operating system is related to unvalidated array indexing. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

Vulnerability of the md_check_recovery() function in the drivers/md/md.c module – The driver for supporting multiple devices (RAID and LVM) in the Linux kernel allows a hacker to trigger a service failure.

Vulnerability of the mdcheckrecovery function in the drivers/md/md.c module – The Linux kernel’s device support driver for multiple devices such as RAID and LVM is vulnerable due to unvalidated array indexing. Exploiting this vulnerability could allow an attacker to cause system failures...

Vulnerability of the nouveau_fence_context_kill() function in the drivers/gpu/drm/nouveau/nouveau_fence.c module – This driver is part of the NVIDIA Linux kernel’s Direct Rendering Infrastructure (DRI) support. It allows a hacker to trigger a service failure.

Vulnerability of the nouveaufencecontextkill function in the drivers/gpu/drm/nouveau/nouveaufence.c module – The drivers for NVIDIA’s Direct Rendering Infrastructure DRI in Linux kernel-based graphics cards are vulnerable to synchronization errors when using shared resources. Exploiting this...

The vulnerability of the Web Intelligence component of the SAP BusinessObjects Business Intelligence Platform allows a attacker to execute XSS attacks.

The vulnerability of the Web Intelligence component of the SAP BusinessObjects Business Intelligence Platform relates to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

The vulnerability of Netweaver Application Server Java web applications allows attackers to carry out XSS attacks.

The vulnerability of Netweaver Application Server Java web applications is related to the lack of protective measures for the structure of web pages. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

The vulnerability of the CLI component of the Fortinet FortiManager device management software and the FortiAnalyzer and FortiAnalyzer-BigData security event monitoring and analysis tools allows a attacker to execute arbitrary commands or code.

The vulnerability of the CLI component of the Fortinet FortiManager device management software, as well as the FortiAnalyzer and FortiAnalyzer-BigData security event monitoring and analysis tools, exists due to the failure to implement measures to neutralize specific elements. Exploiting this...

The vulnerability of the construct Phy() function in the DRI support driver for AMD graphics cards in Linux operating systems allows a hacker to cause a service failure.

The vulnerability of the construct Phy function in the DRI support driver for AMD graphics cards in Linux operating systems is related to pointer manipulation. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the dtReadFirst() function in the fs/jfs/jfs_dtree.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the dtReadFirst function in the fs/jfs/jfsdtree.c module of the Linux operating system is related to unvalidated array indexing. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

Vulnerability of the integritymetadata() function in the drivers/md/dm-integrity.c module – The driver for supporting multiple devices (such as RAID and LVM) in the Linux kernel allows a hacker to trigger a service failure.

Vulnerability of the integritymetadata function in the drivers/md/dm-integrity.c module – The Linux kernel’s driver for supporting multiple devices such as RAID and LVM is vulnerable to a memory leak before the last reference is freed. Exploiting this vulnerability could allow an attacker to caus...

The vulnerability of the GUI component of the FortiSandbox threat detection and mitigation system allows a perpetrator to execute arbitrary commands.

The vulnerability of the GUI component of the FortiSandbox threat detection and mitigation system exists because measures to neutralize its special elements have not been taken. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

The vulnerability of the API component of FortiWeb’s web applications allows a hacker to execute arbitrary code or commands.

The vulnerability of the API component of FortiWeb web applications relates to incorrect restrictions on the path name to the restricted directory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code or commands remotely...

Vulnerability of the mt7921_mcu_tx_rate_report() function in the drivers/net/wireless/mediatek/mt76/mt7921/mcu.c module – This driver is part of the Linux kernel’s wireless adapter support framework. It allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

Vulnerability of the mt7921mcutxratereport function in the drivers/net/wireless/mediatek/mt76/mt7921/mcu.c module – The driver for supporting wireless connection adapters in the Linux operating system is vulnerable due to buffer out-of-bounds reading. Exploiting this vulnerability could allow an...

Vulnerability of the rp2remove_ports() function in the drivers/tty/serial/rp2.c module – This driver supports the TTY console of the Linux operating system, and can be exploited by an attacker to cause a service failure.

Vulnerability of the rp2removeports function in the drivers/tty/serial/rp2.c module – The Linux kernel’s TTY console support driver is vulnerable due to a reliance on the NULL pointer pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the acpi_has_cpu_in_madt() function in the arch/loongarch/include/asm/acpi.h file, which is part of the LoongArch architecture support for the Linux operating system, allows a hacker to trigger a service failure.

The vulnerability of the acpihascpuinmadt function in the arch/loongarch/include/asm/acpi.h file, which is part of the LoongArch architecture support for Linux operating systems, stems from the copying of buffers without checking the size of the input data a classic buffer overflow attack...

The vulnerability of the manaDestroyTxq() function in the Linux kernel driver allows a hacker to induce a service failure.

The vulnerability of the manaDestroyTxq function in the Linux kernel driver is related to incorrect initialization of resources. Exploiting this vulnerability can allow an attacker to cause a service failure...