74701 matches found
The vulnerability of the digital_in_send_sdd_req() function in the net/nfc/digital_technology.c module of the NFC subsystem of the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the digitalinsendsddreq function in the net/nfc/digitaltechnology.c module of the NFC subsystem of the Linux operating system is related to improper memory release before deleting the last pointer memory leak. Exploiting this vulnerability could allow an attacker to cause a...
The vulnerability of the page_is_secretmem() function in the include/linux/secretmem.h module of the Linux kernel allows a hacker to induce a service failure.
The vulnerability of the pageissecretmem function in the include/linux/secretmem.h module of the Linux kernel is related to the dereferencing of the NULL pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...
Vulnerability of the start_io_acct() function in the drivers/md/dm.c module – The driver for supporting multiple devices (such as RAID and LVM) in the Linux kernel allows a hacker to trigger a service failure.
Vulnerability of the startioacct function in the drivers/md/dm.c module – The driver for supporting multiple devices such as RAID and LVM in the Linux operating system is vulnerable due to the use of a NULL pointer. Exploiting this vulnerability could allow an attacker to cause service failures...
The vulnerability of the parse_st() function in the UPnP service’s microprogramming software for Netgear WNR854T allows a hacker to execute arbitrary code.
The vulnerability of the parsest function in the UPnP service of Netgear’s WNR854T router software lies in the fact that the operation outside the buffer is allowed when processing the M-SEARCH request header value. Exploiting this vulnerability allows a remote attacker to execute arbitrary code ...
The vulnerability in the web interface of Netgear WNR854T router software allows a hacker to execute arbitrary commands and gain full control over the device.
The vulnerability of the web interface of Netgear WNR854T router software lies in the lack of measures to neutralize special elements used in the operating system’s commands when processing the wanhostname parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrary...
The vulnerability in the web interface for managing Tenda FH1202 micro-program software routers allows a hacker to escalate their privileges.
The vulnerability of the web interface for managing Tenda FH1202 micro-programming software routers is related to deficiencies in access control when processing the end-point /goform/AdvSetWrl. Exploiting this vulnerability can allow a malicious actor to enhance their privileges by sending a...
The vulnerability of the `skb_set_owner_w()` function in Linux operating system kernels, which allows a hacker to cause a service failure
The vulnerability of the skbsetownerw function in Linux operating systems is related to improper release of resources. Exploiting this vulnerability can allow an attacker to cause service failures...
The vulnerability of the xe_vm_userptr_pin() function in the drivers/gpu/drm/xe/xe_vm.c file of the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the xevmuserptrpin function in the drivers/gpu/drm/xe/xevm.c file of the Linux kernel is related to improper release of resources. Exploiting this vulnerability could allow an attacker to cause service failures...
The vulnerability of the ice_create VFEntries() function in the Linux kernel network driver allows a hacker to cause a service failure.
The vulnerability of the icecreate VFEntries function in the Linux kernel driver is related to improper release of resources. Exploiting this vulnerability can allow an attacker to cause service failures...
The vulnerability of the `btrfs_encoded_read_endio()` function in the `fs/btrfs/inode.c` module of the Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the btrfsencodedreadendio function in the fs/btrfs/inode.c module of the Linux kernel is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of protected...
The vulnerability of the btrfs_ref_tree_mod() function in the fs/btrfs/ref-verify.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the btrfsreftreemod function in the fs/btrfs/ref-verify.c module of the Linux operating system is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of...
The vulnerability of the traceprobe_parse_event_name() function in the kernel/trace/trace_probe.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the traceprobeparseeventname function in the kernel/trace/traceprobe.c file of the Linux operating system is related to the copying of buffers without checking the size of the input data a classic buffer overflow attack. Exploiting this vulnerability could allow an attacker t...
The vulnerability of the keyPut() function in Linux operating system kernels, which allows a hacker to cause a service failure
The vulnerability of the keyPut function in Linux operating system kernels is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the virtnet_probe() function in the drivers/net/virtio_net.c module of the Linux kernel allows a attacker to compromise the confidentiality and accessibility of protected information.
The vulnerability of the virtnetprobe function in the drivers/net/virtionet.c module of the Linux kernel is related to reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to compromise the confidentiality and accessibility of the protected information...
The vulnerability of the WEBGUI component of the SAP NetWeaver Application Server ABAP software integration platform allows a attacker to perform XSS attacks.
The vulnerability of the WEBGUI component of the SAP NetWeaver Application Server ABAP software integration platform exists due to the lack of measures taken to protect the web page structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...
The vulnerability of the sqlgvec_upd component in the Virtuoso-OpenSource web application development platform allows a attacker to cause a service failure.
The vulnerability of the sqlgvecupd component in the Virtuoso-OpenSource web application development platform is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows an attacker to cause service interruptions remotely...
The vulnerability of the sqlc_add_distinct_node component in the Virtuoso-OpenSource web application development platform allows a attacker to cause a service failure.
The vulnerability of the sqlcadddistinctnode component in the Virtuoso-OpenSource web application development platform is related to the improper elimination of special elements used in SQL commands. Exploiting this vulnerability can allow an attacker to cause service interruptions by sending...
The vulnerability in the web interface of the Splunk Web platform for operational analysis in Splunk Enterprise allows a attacker to perform a CSRF attack.
The vulnerability in the Splunk Web interface of the Splunk Enterprise operating analysis platform is related to the manipulation of cross-site requests. Exploiting this vulnerability allows a malicious actor to execute a CSRF attack remotely...
The vulnerability of the Splunk Dashboard Studio web interface on the Splunk Web platform for operational analysis in the Splunk Enterprise environment allows a hacker to disclose protected information.
The vulnerability of the Splunk Dashboard Studio web interface of the Splunk Enterprise operating analysis platform is related to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to disclose sensitive information by bypassing the modal dialog box...
The vulnerability of the dfe_body_copy component in the Virtuoso-OpenSource web application development platform allows a attacker to trigger a service failure.
The vulnerability of the dfebodycopy component in the Virtuoso-OpenSource web application development platform is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to cause service interruptions...
The vulnerability of the amdgpu_job_prepare_job() function in the driver’s code (drivers/gpu/drm/amd/amdgpu/amdgpu_job.c) in the Linux kernel allows a hacker to cause a service failure.
The vulnerability of the amdgpujobpreparejob function in the driver’s code drivers/gpu/drm/amd/amdgpu/amdgpujob.c in the Linux kernel is related to deficiencies in handling exceptional conditions. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the SCF file processing mechanism in Windows operating systems allows attackers to exploit the NTLM hash.
The vulnerability of the SCF-file processing mechanism in Windows operating systems is related to the lack of authentication for the critical function. Exploiting this vulnerability allows a remote attacker to reveal the NTLM hash when a user opens a folder containing a specially crafted SCF-file...
The vulnerability of the __kmem_cache_free_bulk() function in the Linux kernel’s memory management subsystem allows a attacker to trigger a system failure.
The vulnerability of the kmemcachefreebulk function in the Linux kernel’s memory management subsystem is related to incorrect validation of input data. Exploiting this vulnerability could allow an attacker to cause a system failure...
The vulnerability of the CI/CD application integration and delivery system of JetBrains TeamCity, related to the disclosure of information through registration files, allows a hacker to disclose protected information.
The vulnerability of the Continuous Integration and Deployment Application Delivery system CI/CD of JetBrains TeamCity is related to the disclosure of information through registration files due to incorrect encoding based on the base64 standard. Exploiting this vulnerability can allow a malicious...
The vulnerability of the agent’s integration module in the Cloud Profile of the Continuous Integration and Delivery Application System (CI/CD) of JetBrains TeamCity allows a hacker to disclose protected information.
The vulnerability of the agent’s integration module in the Cloud Profile of the Continuous Integration and Delivery Application System CI/CD of JetBrains TeamCity is related to deficiencies in the error reporting mechanism. Exploiting this vulnerability can allow a malicious actor to disclose...
The vulnerability of the drivers for Microprogrammed Software Printers and Canon’s Generic Plus series of multifunctional devices lies in the fact that they read data beyond the buffer in memory when processing EMF records, allowing for the execution of arbitrary code.
The vulnerability of the drivers for Canon’s Generic Plus series of microprogrammed printer and multifunctional devices lies in the reading of data beyond the buffer in memory when processing EMF records. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending ...
The vulnerability of the operating environment for managing and maintaining the Dell Unity Operating Environment (DELL Unity Operating Environment) storage system lies in the lack of measures taken to neutralize special elements used in the operating system’s command set. This allows attackers to enhance their privileges and execute arbitrary commands.
The vulnerability of the Dell Unity Operating Environment’s operating environment for data storage management and operation is related to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability can allow attackers to enhance...
The vulnerability of the operating environment for managing and maintaining the Dell Unity Operating Environment (DELL Unity OE) lies in the lack of measures taken to neutralize special elements used in the operating system’s command set. This allows attackers to enhance their privileges and execute arbitrary commands.
The vulnerability of the Dell Unity Operating Environment’s operating environment for data storage management and operation is related to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability can allow attackers to enhance...
The vulnerability of the operating environment for managing and maintaining the Dell Unity Operating Environment (DELL Unity OE) lies in the lack of measures taken to neutralize special elements used in the operating system’s command set. This allows attackers to enhance their privileges and execute arbitrary commands.
The vulnerability of the Dell Unity Operating Environment’s operating environment for data storage management and operation is related to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability can allow attackers to enhance...
The vulnerability of the Dell Unity Operating Environment’s operating environment for managing and maintaining data storage allows attackers to enhance their privileges, execute arbitrary commands, and gain full control over the application. This vulnerability arises from the lack of measures taken to neutralize special elements used in the operating system’s command set.
The vulnerability of the Dell Unity Operating Environment’s operating system for data storage management and operation is related to the lack of measures taken to neutralize special elements used in the operating system’s command set. Exploiting this vulnerability can allow a malicious actor to...
The vulnerability of the `dc_add_int` component in the Virtuoso-OpenSource web application development platform allows a hacker to trigger a service failure.
The vulnerability of the dcaddint component in the virtuoso-opensource web application development platform is related to improper elimination of special elements used in SQL commands. Exploiting this vulnerability can allow an attacker to cause a service failure by sending specially crafted SQL...
The vulnerability of the itc_hash_compare component in the Virtuoso-OpenSource web application development platform allows a attacker to trigger a service failure.
The vulnerability of the itchashcompare component in the Virtuoso-opensource web application development platform is related to the improper elimination of special elements used in SQL commands. Exploiting this vulnerability can allow an attacker to cause a service failure by sending specially...
The vulnerability of the itc_set_param_row component in the Virtuoso-OpenSource web application development platform allows a attacker to trigger a service failure.
The vulnerability of the itcsetparamrow component in the Virtuoso-OpenSource web application development platform is related to the improper elimination of special elements used in SQL commands. Exploiting this vulnerability can allow an attacker to cause a service failure by sending specially...
The vulnerability of the qst_vec_set_copy component in the Virtuoso-OpenSource web application development platform allows a hacker to trigger a service failure.
The vulnerability of the qstvecsetcopy component in the Virtuoso-OpenSource web application development platform is related to improper elimination of special elements used in SQL commands. Exploiting this vulnerability can allow an attacker to cause a service failure by sending specially crafted...
The vulnerability of the sqlg_parallel_ts_seq component in the Virtuoso-OpenSource web application development platform allows a attacker to cause a service failure.
The vulnerability of the sqlgparalleltsseq component in the Virtuoso-opensource web application development platform is related to the improper disabling or release of resources. Exploiting this vulnerability could allow a malicious actor to cause service interruptions by sending specially crafte...
The vulnerability of the dfe_unit_gb_dependant component in the Virtuoso-OpenSource web application development platform allows a attacker to trigger a service failure.
The vulnerability of the dfeunitgbdependant component in the virtuoso-opensource web application development platform is related to the improper elimination of special elements used in SQL commands. Exploiting this vulnerability allows an attacker to cause service interruptions by sending special...
The vulnerability of the psiginfo component in the virtuoso-opensource web application development platform allows a attacker to trigger a service failure.
The vulnerability of the psiginfo component in the virtuoso-opensource web application development platform is related to improper elimination of special elements used in SQL commands. Exploiting this vulnerability can allow an attacker to cause a service failure by sending specially crafted SQL...
The vulnerability of the sqlgplace_dpipes component in the Virtuoso-OpenSource web application development platform allows a hacker to trigger a service failure.
The vulnerability of the sqlgplacedpipes component in the Virtuoso-opensource web application development platform involves the distribution of resources without any restrictions or regulations. Exploiting this vulnerability allows a malicious actor to cause service failures by sending specially...
The vulnerability of the sqlo_df component in the virtuoso-opensource web application development platform allows a attacker to trigger a service failure.
The vulnerability of the sqlodf component in the virtuoso-opensource web application development platform is related to the improper disabling or release of resources. Exploiting this vulnerability allows a malicious actor to cause service interruptions by sending specially crafted SQL queries...
The vulnerability of the chash_array component in the virtuoso-opensource web application development platform allows a hacker to trigger a service failure.
The vulnerability of the chasharray component in the virtuoso-opensource web application development platform is related to improper elimination of special elements used in SQL commands. Exploiting this vulnerability can allow an attacker to cause a service failure by sending specially crafted SQ...
The vulnerability of the mobile device registration and mobile application deployment mechanism of Splunk Secure Gateway, a platform for operational analytics in Splunk Enterprise, arises from deficiencies in access control. This vulnerability allows an attacker to gain read, modify, or delete access to data stored in the KV Store (Key Value Store).
The vulnerability of the mobile device registration and mobile application deployment mechanism of Splunk Secure Gateway, a platform for operational analytics in Splunk Enterprise, is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to gain read,...
The vulnerability of the `dc_elt_size` component in the virtuoso-opensource web application development platform allows a attacker to trigger a service failure.
The vulnerability of the dceltsize component in the virtuoso-opensource web application development platform is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows an attacker to cause service interruptions remotely...
The vulnerability of the agent’s integration module in the Cloud Profile of the Continuous Integration and Delivery Application System (CI/CD) of JetBrains TeamCity allows a hacker to perform cross-site scripting attacks.
The vulnerability of the agent’s integration module in the Cloud Profile of the Continuous Integration and Delivery Application System CI/CD of JetBrains TeamCity is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to...
The vulnerability of the HTTP request processor daemon in the TRENDnet TEW-410APB wireless access point software allows a attacker to cause a service failure.
The vulnerability of the HTTP request processor in TRENDnet TEW-410APB wireless access points is related to the zero pointer swapping issue. Exploiting this vulnerability allows a remote attacker to cause service interruptions by sending a specially crafted POST request...
The vulnerability of the operating environment for managing and maintaining the Dell Unity Operating Environment (DELL Unity OE) lies in the lack of measures taken to neutralize special elements used in the operating system’s command set. This allows attackers to enhance their privileges and execute arbitrary commands.
The vulnerability of the Dell Unity Operating Environment’s operating environment for data storage management and operation is related to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability can allow attackers to enhance...
The vulnerability of the operating environment for managing and maintaining the Dell Unity Operating Environment (DELL Unity OE) lies in the lack of measures taken to neutralize special elements used in the operating system’s command set. This allows attackers to enhance their privileges and execute arbitrary commands.
The vulnerability of the Dell Unity Operating Environment’s operating environment for data storage management and operation is related to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability can allow attackers to enhance...
The vulnerability of the operating environment for managing and maintaining the Dell Unity Operating Environment (DELL Unity OE) lies in the lack of measures taken to neutralize special elements used in the operating system’s command set. This allows attackers to enhance their privileges and execute arbitrary commands.
The vulnerability of the Dell Unity Operating Environment’s operating environment for data storage management and operation is related to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability can allow attackers to enhance...
The vulnerability of the operating environment for managing and maintaining the Dell Unity Operating Environment (DELL Unity OE) lies in the lack of measures taken to neutralize special elements used in the operating system’s command set. This allows attackers to enhance their privileges and execute arbitrary commands.
The vulnerability of the Dell Unity Operating Environment’s operating environment for data storage management and operation is related to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability can allow attackers to enhance...
The vulnerability of the operating environment for managing and maintaining Dell Unity Operating Environment (OE) storage devices, which is related to the use of open redirection, allows attackers to carry out phishing attacks.
The vulnerability of the operating environment for managing and maintaining Dell Unity Operating Environment OE storage devices is related to the use of open redirection. Exploiting this vulnerability allows a malicious actor to perform phishing attacks remotely...
The vulnerability of the sqlexp component in the Virtuoso-OpenSource web application development platform allows a hacker to trigger a service failure.
The vulnerability of the sqlexp component in the virtuoso-opensource web application development platform is related to improper elimination of special elements used in SQL commands. Exploiting this vulnerability allows an attacker to cause service interruptions by sending specially crafted SQL...