90604 matches found
The vulnerability of the idpf component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the idpf component in the Linux operating system’s kernel is related to pointer arithmetic errors. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the nilfs2 component in the Linux operating system’s kernel, which allows a hacker to cause a service failure
The vulnerability of the nilfs2 component in the Linux operating system’s kernel is related to insufficient blocking mechanisms. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the nouveau/firmware component of the Linux operating system’s kernel, which allows a hacker to trigger a service failure
The vulnerability of the nouveau/firmware component in the Linux operating system’s kernel is related to improper memory release before deleting the last reference. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the console-based graphic editor ImageMagick, related to uncontrolled recursion, allows a hacker to trigger a service failure.
The vulnerability of the console-based graphic editor ImageMagick is related to uncontrolled recursion. Exploiting this vulnerability can allow a malicious actor to cause service interruptions by using a malicious SVG file...
The vulnerability of the FFmpeg multimedia library, related to pointer dereferencing errors, allows attackers to trigger a service failure.
The vulnerability of the FFmpeg multimedia library is related to pointer dereferencing errors. Exploiting this vulnerability could allow an attacker to cause a service failure by using a corrupted audio file...
The vulnerability of the visualization plugin for the Grafana-cubism-panel platform, which allows attackers to disclose and modify protected information.
The vulnerability of the visualization plugin for the Grafana Panel platform, which is used for monitoring and observation, relates to the lack of protective measures for the website structure. Exploiting this vulnerability can allow a malicious actor to disclose and modify protected information...
The vulnerability of the raid5_store_group_thread_cnt() function in the drivers/md/raid5.c module of the Linux operating system’s kernel allows a hacker to cause service failure.
The vulnerability of the raid5storegroupthreadcnt function in the drivers/md/raid5.c module of the Linux operating system’s kernel relates to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the CUPS Filters printing package and the Libcupsfilters library for printing servers allows a attacker to cause a service failure.
The vulnerability of the CUPS Filters printing package and the Libcupsfilters printing library is related to writing beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerabilities of the functions copy_from_bpfptr_offset() and strncpy_from_bpfptr() in the include/linux/bpfptr.h module of the Linux kernel allow attackers to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerabilities of the copyfrombpfptroffset and strncpyfrombpfptr functions in the include/linux/bpfptr.h header of the Linux kernel are related to insufficient validation of input data. Exploiting these vulnerabilities could allow attackers to compromise the confidentiality, integrity, and...
The vulnerability of the Windows Device Association Service on Windows operating systems allows a perpetrator to increase their privileges.
The vulnerability of the Windows Device Association Service in Windows operating systems is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow attackers to gain increased privileges...
The vulnerability of the print spooler driver for Windows operating systems allows a hacker to execute arbitrary code.
The vulnerability of the Windows Print Spooler in operating systems related to printing vulnerabilities involve the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the ceph kernel component in the Linux operating system, which allows a hacker to trigger a service failure
The vulnerability of the ceph kernel component in the Linux operating system is related to insufficient access control details. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the IShellLink interface in Windows operating systems allows attackers to perform spoofing attacks.
The vulnerability of the IShellLink interface in Windows operating systems is related to insufficient protection of service data. Exploiting this vulnerability allows a remote attacker to perform spoofing attacks...
The vulnerability of the xe_vmbind_ioctl() function in the drivers/gpu/drm/xe/xe_vm.c module of the Direct Rendering Infrastructure (DRI) driver in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the xevmbindiocl function in the drivers/gpu/drm/xe/xevm.c module of the Direct Rendering Infrastructure DRI driver for the Linux operating system is related to the reallocation of previously released memory. Exploiting this vulnerability could allow an attacker to compromise...
The vulnerability of the write_one_eb() function in the fs/btrfs/extent_io.c module of the Btrfs file system in the Linux kernel allows a attacker to cause a service failure.
The vulnerability of the writeoneeb function in the fs/btrfs/extentio.c file of the Btrfs file system in the Linux kernel is related to incomplete cleanup of temporary or auxiliary resources. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the software for creating 3D visualizations in Adobe Substance 3D Stager lies in the use of memory after it is freed, allowing an attacker to execute arbitrary code.
The vulnerability of the Adobe Substance 3D Stager software for creating 3D visualizations is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to execute arbitrary code using a specially created file...
The vulnerability of the Windows Hyper-V hardware virtualization system allows attackers to escalate their privileges.
The vulnerability of the Windows Hyper-V hardware virtualization system in Windows operating systems is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the net/smc component in Linux operating systems allows a hacker to trigger a service failure.
The vulnerability of the net/smc component in Linux operating systems is related to the simultaneous execution using shared resources with incorrect synchronization. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the Web page rendering modules in WebKitGTK and WPE WebKit, related to the occurrence of operations outside the buffer in memory, allows attackers to access confidential data, compromise its integrity, and cause service failures.
The vulnerability of the Web page rendering modules in WebKitGTK and WPE WebKit relates to the escape of operations beyond the buffer in memory. Exploiting this vulnerability can allow a remote attacker to access confidential data, compromise its integrity, and cause service failures...
The vulnerability of the smb3_fs_contextParseParam() function in the fs/smb/client/fsContext.c module, which is part of the SMB client support for Linux operating systems, allows a hacker to cause a service failure.
The vulnerability of the smb3fscontextParseParam function in the fs/smb/client/fsContext.c module, which is part of the SMB client support for Linux operating systems, relates to incomplete cleanup of temporary or auxiliary resources. Exploiting this vulnerability could allow an attacker to cause...
The vulnerability of the rose_kill_by_device() function in the net/rose/af_rose.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the rosekillbydevice function in the net/rose/afrose.c module of the Linux kernel is related to a situation where data exceeds the bounds of the buffer allocated for the stack. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity,...
The vulnerability of the perf/x86/intel component in the Linux operating system’s kernel, which allows a hacker to trigger a service failure
The vulnerability of the perf/x86/intel component in the Linux operating system is related to reading data from buffer files beyond their allowable limits. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerabilities of the functions exfat_find_dir_entry() and exfat_count_dirEntries() in the fs/exfat/dir.c module of the exFAT file system for Linux operating systems allow attackers to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the exfatfinddirentry and exfatcountdirEntries functions in the fs/exfat/dir.c file of the exFAT file system in Linux operating systems is related to the execution of a loop with an unreachable exit condition „Infinite loop“. Exploiting this vulnerability could allow an...
The vulnerability of the Windows Graphics component in Windows operating systems allows a hacker to trigger a service failure.
The vulnerability of the Windows Graphics component in Windows operating systems is related to pointer manipulation. Exploiting this vulnerability can allow an attacker to cause a system failure...
The vulnerability of the Windows operating system’s kernel, which allows a hacker to increase their privileges
The vulnerability of Windows operating system kernels is related to incorrect external management of file names or file paths. Exploiting this vulnerability can allow an attacker to gain increased privileges...
The vulnerability of the Windows Ancillary Function Driver for WinSock on Windows operating systems allows attackers to exploit their privileges.
The vulnerability of the Windows Ancillary Function Driver for WinSock operating systems is related to improper validation of the specified data type. Exploiting this vulnerability can allow an attacker to gain increased privileges...
The vulnerability of the Windows Operating System’s Telephony Service allows attackers to exploit their privileges.
The vulnerability of the Windows Operating System’s Telephony Service is related to overflowing buffers in the dynamic memory. Exploiting this vulnerability allows a remote attacker to gain increased privileges...
The vulnerability of the NTFS file system in Windows operating systems allows attackers to increase their privileges.
The vulnerability of the NTFS file system in Windows operating systems relates to reading beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the Windows Routing and Remote Access Service (RRAS) on Windows operating systems allows a hacker to execute arbitrary code.
The vulnerability of the Windows Routing and Remote Access Service RRAS on Windows operating systems is related to a potential overflow condition. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
The vulnerability of the Windows Device Association Service in Windows operating systems allows a hacker to increase their privileges.
The vulnerability of the Windows Device Association Service in Windows operating systems is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow attackers to gain increased privileges...
The vulnerability of the Brokering File System (BFS) in Windows operating systems allows a perpetrator to increase their privileges.
The vulnerability of the Brokering File System BFS in Windows operating systems is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the Apache Airflow network software lies in the insufficient control over resources with dynamic management, allowing a hacker to execute arbitrary code.
The vulnerability of the Apache Airflow network software lies in the insufficient control over resources with dynamic management. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending a specially crafted HTTP request...
The vulnerability of the NBDKit Plugin Framework, a tool for creating NBD servers, is related to a single shift error, which allows a hacker to trigger a service failure.
The vulnerability of the NBDKit Plugin Framework, a tool for creating NBD servers, is related to a single-shift error. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability in the `src/synth/fluid_synth_monopoly.c` component of the software synthesizer FluidSynth allows a hacker to cause a system failure.
The vulnerability of the src/synth/fluidsynthmonopoly.c component of the software synthesizer FluidSynth is related to pointer arithmetic errors. Exploiting this vulnerability could allow an attacker to cause a system failure...
The vulnerability of the software for creating 3D visualizations in Adobe Substance 3D Stager lies in the ability to write beyond the buffer boundaries in memory, allowing an attacker to execute arbitrary code.
The vulnerability of the software for creating 3D visualizations in Adobe Substance 3D Stager is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file...
The vulnerability of the System Image Manager tool in Windows operating systems allows a perpetrator to execute arbitrary code.
The vulnerability of the System Image Manager SIM tool in Windows operating systems is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability allows an attacker to execute arbitrary code...
The vulnerability of PDF viewing and editing programs such as Acrobat DC, Acrobat Reader DC, and Acrobat 2024 lies in the use of memory after it is freed, allowing an attacker to execute arbitrary code.
The vulnerability of PDF viewing and editing programs such as Acrobat DC, Acrobat Reader DC, and Acrobat 2024 is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
The vulnerability of PDF viewing and editing programs such as Acrobat DC, Acrobat Reader DC, and Acrobat 2024 lies in the use of memory after it is freed, allowing an attacker to execute arbitrary code.
The vulnerability of PDF viewing and editing programs such as Acrobat DC, Acrobat Reader DC, and Acrobat 2024 is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
The vulnerability of the software for creating 3D visualizations in Adobe Substance 3D Stager lies in the ability to write beyond the buffer boundaries in memory, allowing an attacker to execute arbitrary code.
The vulnerability of the software for creating 3D visualizations in Adobe Substance 3D Stager is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file...
The vulnerability of the UNIX Disk Format File System Driver (UDFS) on Windows operating systems allows a hacker to increase their privileges.
The vulnerability of the UNIX Disk Format File System Driver UDFS on Windows operating systems lies in the reading of data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain increased privileges...
The vulnerability of software platforms for developing and managing online stores like Magento Open Source, Adobe Commerce, and Adobe Commerce B2B lies in their lack of authentication mechanisms, which allow attackers to circumvent security restrictions.
The vulnerabilities of the software platforms for developing and managing online stores such as Magento Open Source, Adobe Commerce, and Adobe Commerce B2B are related to deficiencies in authentication mechanisms. Exploiting these vulnerabilities can allow attackers to bypass security restriction...
The vulnerability of software platforms for developing and managing online stores such as Magento Open Source, Adobe Commerce, and Adobe Commerce B2B lies in the lack of protective measures for website structures, allowing attackers to exploit their privileges.
The vulnerabilities of the software platforms for developing and managing online stores such as Magento Open Source, Adobe Commerce, and Adobe Commerce B2B are related to the lack of measures taken to protect the website structure. Exploiting these vulnerabilities can allow attackers to enhance...
The vulnerability of software platforms for developing and managing online stores such as Magento Open Source, Adobe Commerce, and Adobe Commerce B2B lies in their lack of authentication mechanisms, which allow attackers to increase their privileges.
The vulnerabilities of the software platforms for developing and managing online stores such as Magento Open Source, Adobe Commerce, and Adobe Commerce B2B are related to deficiencies in authentication mechanisms. Exploiting these vulnerabilities can allow attackers to enhance their privileges...
The vulnerability of the Broadcast DVR service for Windows operating systems allows attackers to escalate their privileges.
The vulnerability of the Broadcast DVR service for Windows operating systems relates to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the Fortinet FortiClient Enterprise Management Server (EMS) and the FortiClient EMS Cloud cloud storage service lies in insufficient verification of the connection source. This allows attackers to replace the trusted host.
The vulnerability of the Fortinet FortiClient Enterprise Management Server EMS and the FortiClient EMS Cloud cloud storage service is related to insufficient verification of the connection source. Exploiting this vulnerability allows a malicious actor to replace the trusted host...
The vulnerability of the Winlogon entry program in Windows operating systems allows attackers to escalate their privileges.
The vulnerability of the Winlogon entry program in Windows operating systems is related to the incorrect definition of symbolic links during access to the file. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of the Windows Routing and Remote Access Service (RRAS), which allows a hacker to execute arbitrary code.
The vulnerability of the Windows Routing and Remote Access Service RRAS for operating systems is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the Azure IoT Explorer software, related to the transmission of critical information in plaintext, allows a perpetrator to disclose protected information.
The vulnerability of the Azure IoT Explorer software is related to the transmission of critical information in open text format. Exploiting this vulnerability could allow a malicious actor to disclose the protected information...
The vulnerability of Microsoft Office and 365 Apps for Enterprise packages, related to data type mixing errors, allows attackers to execute arbitrary code.
The vulnerability of Microsoft Office packages and 365 Apps for Enterprise is related to data type mixing errors. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
The vulnerability of the Azure Connected Machine Agent, a software tool for managing servers and virtual machines, relates to bypassing authentication by using an alternative path or channel. This allows attackers to escalate their privileges.
The vulnerability of the Azure Connected Machine Agent, a software tool for managing servers and virtual machines, relates to bypassing authentication by using an alternative path or channel. Exploiting this vulnerability can allow attackers to enhance their privileges...