89987 matches found
The vulnerability of Microsoft Visual Studio Code’s editor, related to errors in processing relative path handling for directories, allows attackers to gain read and modify access to data.
The vulnerability of Microsoft Visual Studio Code’s editor is related to errors in handling relative pathnames to directories. Exploiting this vulnerability can allow an attacker to gain read and modify access to data remotely...
The vulnerability of Adobe Dreamweaver HTML editor lies in insufficient validation of input data, allowing attackers to read arbitrary files.
The vulnerability of the Adobe Dreamweaver HTML editor is related to insufficient validation of input data. Exploiting this vulnerability may allow attackers to read arbitrary files...
The vulnerability of Adobe Dreamweaver HTML editor stems from deficiencies in the authentication process, allowing attackers to read arbitrary files.
The vulnerability of the Adobe Dreamweaver HTML editor is related to deficiencies in the authentication process. Exploiting this vulnerability can allow attackers to read arbitrary files...
The vulnerability in the Adobe InCopy text creation and editing software relates to the execution of operations beyond the buffer boundaries in memory, allowing an attacker to execute arbitrary code.
The vulnerability of the Adobe InCopy text creation and editing software is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code...
The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Server Subscription Edition, and Microsoft SharePoint Enterprise Server programs lies in the lack of security measures for website structures, allowing attackers to perform spear-phishing attacks.
The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Server Subscription Edition, and Microsoft SharePoint Enterprise Server is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform spear-phishin...
The vulnerability of Microsoft Office packages, Microsoft 365 Apps for Enterprise, and Microsoft SharePoint relates to reading data beyond the buffer in memory, allowing an intruder to gain unauthorized access to protected information.
The vulnerability of Microsoft Office packages, Microsoft 365 Apps for Enterprise, and Microsoft SharePoint relates to reading data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...
The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Server Subscription Edition, and Microsoft SharePoint Enterprise Server programs lies in the lack of security measures for website structures, allowing attackers to perform spear-phishing attacks.
The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Server Subscription Edition, and Microsoft SharePoint Enterprise Server is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform spear-phishin...
The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Server Subscription Edition, and Microsoft SharePoint Enterprise Server programs lies in the lack of security measures for website structures, allowing attackers to perform spear-phishing attacks.
The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Server Subscription Edition, and Microsoft SharePoint Enterprise Server is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform spear-phishin...
The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Server Subscription Edition, and Microsoft SharePoint Enterprise Server packages lies in insufficient input validation, allowing attackers to perform spoofing attacks.
The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Server Subscription Edition, and Microsoft SharePoint Enterprise Server is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to perform spear-phishing attacks remotely...
The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Server Subscription Edition, and Microsoft SharePoint Enterprise Server programs lies in the lack of security measures for website structures, allowing attackers to perform spear-phishing attacks.
The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Server Subscription Edition, and Microsoft SharePoint Enterprise Server is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform spear-phishin...
The vulnerability of Adobe Dreamweaver HTML editor stems from deficiencies in the authentication process, allowing attackers to execute arbitrary code.
The vulnerability of the Adobe Dreamweaver HTML editor is related to deficiencies in the authentication process. Exploiting this vulnerability allows an attacker to execute arbitrary code...
The vulnerability of the Substance 3D Sampler software for creating textures and materials for 3D models allows a hacker to execute arbitrary code by allowing the operation to escape out of the buffer in memory.
The vulnerability of the Substance 3D Sampler software for creating textures and materials for 3D models involves the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code...
The vulnerability of the Substance 3D Sampler software for creating textures and materials for 3D models allows a hacker to execute arbitrary code by allowing the operation to escape out of the buffer in memory.
The vulnerability of the Substance 3D Sampler software for creating textures and materials for 3D models involves the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code...
The vulnerability of the Adobe Dreamweaver HTML editor lies in its dependence on a vulnerable external component, allowing attackers to execute arbitrary code.
The vulnerability of the Adobe Dreamweaver HTML editor is related to its dependence on a vulnerable external component. Exploiting this vulnerability allows an attacker to execute arbitrary code...
The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Server Subscription Edition, and Microsoft SharePoint Enterprise Server programs lies in the incorrect path name limitation of the directory, which allows an attacker to execute arbitrary code.
The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Server Subscription Edition, and Microsoft SharePoint Enterprise Server is related to an incorrect limitation on the path name to the directory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code...
The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Server Subscription Edition, and Microsoft SharePoint Enterprise Server programs lies in the lack of security measures for website structures, allowing attackers to perform spear-phishing attacks.
The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Server Subscription Edition, and Microsoft SharePoint Enterprise Server is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform spear-phishin...
The vulnerability of the Updates Environment Management component in the Oracle PeopleSoft Enterprise PeopleTools business application suite allows a perpetrator to execute arbitrary code.
The vulnerability of the Updates Environment Management component in the Oracle PeopleSoft Enterprise PeopleTools business application suite is related to the lack of authentication for a critical function. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary...
The vulnerability of the Kernel TLS (KTLS) technology in FreeBSD systems allows attackers to increase their privileges.
The vulnerability of the Kernel TLS KTLS technology in FreeBSD systems is related to inadequate control over resources throughout their entire lifecycle. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of the Substance 3D Sampler software for creating textures and materials for 3D models allows a hacker to execute arbitrary code by allowing the operation to escape out of the buffer in memory.
The vulnerability of the Substance 3D Sampler software for creating textures and materials for 3D models involves the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code...
The vulnerability in the Adobe InCopy text creation and editing software relates to the execution of operations beyond the buffer boundaries in memory, allowing an attacker to execute arbitrary code.
The vulnerability of the Adobe InCopy text creation and editing software is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code...
The vulnerability of Windows operating systems, related to insufficient protection of sensitive data, allows attackers to circumvent the BitLocker data encryption function.
The vulnerability of Windows operating systems lies in the possibility of copying the unattend.xml file and the Recovery directory along with the ReAgent.xml file to the recovery partition’s root directory, due to insufficient protection of service data. Exploiting this vulnerability can allow an...
Vulnerability of Microsoft Office packages, Microsoft 365 Apps for Enterprise, and Microsoft SharePoint, related to buffer overflow in dynamic memory, allows attackers to execute arbitrary code.
The vulnerability of Microsoft Office packages, Microsoft 365 Apps for Enterprise, and Microsoft SharePoint is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Server Subscription Edition, and Microsoft SharePoint Enterprise Server programs lies in the lack of security measures for website structures, allowing attackers to perform spear-phishing attacks.
The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Server Subscription Edition, and Microsoft SharePoint Enterprise Server is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform spear-phishin...
The vulnerability of Adobe Dreamweaver HTML editor lies in insufficient validation of input data, allowing attackers to execute arbitrary code.
The vulnerability of the Adobe Dreamweaver HTML editor is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
The vulnerability of the Substance 3D Sampler software for creating textures and materials for 3D models allows a hacker to execute arbitrary code by allowing the operation to escape out of the buffer in memory.
The vulnerability of the Substance 3D Sampler software for creating textures and materials for 3D models involves the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code...
The vulnerability in the Adobe InCopy text creation and editing software relates to the execution of operations beyond the buffer boundaries in memory, allowing an attacker to execute arbitrary code.
The vulnerability of the Adobe InCopy text creation and editing software is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code...
The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Server Subscription Edition, and Microsoft SharePoint Enterprise Server programs lies in the lack of security measures for website structures, allowing attackers to perform spear-phishing attacks.
The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Server Subscription Edition, and Microsoft SharePoint Enterprise Server is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform spear-phishin...
The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Server Subscription Edition, and Microsoft SharePoint Enterprise Server programs lies in the lack of security measures for website structures, allowing attackers to perform spear-phishing attacks.
The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Server Subscription Edition, and Microsoft SharePoint Enterprise Server is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform spear-phishin...
The vulnerability of the Management Web Interface component of the PAN-OS operating system allows a hacker to bypass existing security restrictions and execute arbitrary code with root privileges.
The vulnerability of the Management Web Interface component of the PAN-OS operating system relates to the failure to take measures to neutralize specific elements. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions and execute arbitrary code with root...
The vulnerability of the Ancillary Function Driver for WinSock in Windows operating systems allows attackers to increase their privileges.
The vulnerability of the Ancillary Function Driver for WinSock in Windows operating systems relates to the possibility of using memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the Universal Plug and Play (UPnP) Device Host Service in Windows operating systems allows a hacker to execute arbitrary code.
The vulnerability of the Universal Plug and Play UPnP Device Host Service in Windows operating systems is related to data type mixing errors. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the NTFS file system in Windows operating systems allows a perpetrator to execute arbitrary code.
The vulnerability of the NTFS file system in Windows operating systems is related to buffer overflows in dynamic memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
The vulnerability in the implementation of the Secure Boot protocol for operating systems with Windows, which allows attackers to circumvent existing security restrictions.
The vulnerability of the Secure Boot protocol for loading operating systems on Windows is related to deficiencies in access control. Exploiting this vulnerability could allow a perpetrator to circumvent existing security restrictions...
The vulnerability of the DWM Core Library in Windows operating systems allows attackers to enhance their privileges.
The vulnerability of the DWM Core Library in Windows operating systems relates to the ability to utilize memory after it is freed. Exploiting this vulnerability can allow an attacker to enhance their privileges...
The vulnerability of Microsoft Office packages, Microsoft 365 Apps for Enterprise, and Microsoft SharePoint relates to reading data beyond the buffer in memory, allowing an intruder to gain unauthorized access to protected information.
The vulnerability of Microsoft Office packages, Microsoft 365 Apps for Enterprise, and Microsoft SharePoint relates to reading data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...
The vulnerability of Google Chrome and Microsoft Edge web browser components allows attackers to bypass the sandboxing protection mechanisms.
The vulnerability of Google Chrome and Microsoft Edge web browsers’ Bluetooth components stems from the absence of a mechanism for verifying input data on the server side. Exploiting this vulnerability allows an attacker to bypass the sandboxing protection mechanisms...
The vulnerability of the Extensions component in Google Chrome and Microsoft Edge allows a hacker to execute arbitrary code.
The vulnerability of the Extensions component in Google Chrome and Microsoft Edge relates to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code through malicious network traffic...
The vulnerability of the Tab Hover Cards component in Google Chrome and Microsoft Edge browsers allows a hacker to perform domain substitution attacks.
The vulnerability of the Tab Hover Cards component in Google Chrome and Microsoft Edge is related to information representation errors in the user interface. Exploiting this vulnerability can allow an attacker to replace a domain name using a created domain name...
The vulnerability of Google Chrome and Microsoft Edge web browsers allows attackers to bypass existing security measures.
The vulnerability of Google Chrome and Microsoft Edge web browsers is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to bypass existing security mechanisms through the created HTML pages...
The vulnerability of the File Input service in Google Chrome and Microsoft Edge browsers allows a hacker to replace the user interface.
The vulnerability of the File Input service in Google Chrome and Microsoft Edge is related to information representation errors in the user interface. Exploiting this vulnerability allows an attacker to replace the user interface by creating a new HTML page...
The vulnerability of the Safe Browsing service in Google Chrome and Microsoft Edge allows a hacker to execute arbitrary code.
The vulnerability of the Safe Browsing service in Google Chrome and Microsoft Edge is related to improper code generation. Exploiting this vulnerability allows a remote attacker to execute arbitrary code through a malicious file...
The vulnerability of the Networking component of the Firefox browser and the Thunderbird email client allows a hacker to execute arbitrary code.
The vulnerability of the Networking component of the Firefox browser and the Thunderbird email client is related to the use of an untrusted network policy file. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the user interface of the WebUI on Google Chrome and Microsoft Edge browsers allows a hacker to perform domain substitution.
The vulnerability of the WebUI user interface of Google Chrome and Microsoft Edge is related to information representation errors in the user interface. Exploiting this vulnerability can allow a malicious actor to perform domain substitution using a created domain name...
The vulnerability of the Tab Strip control elements in Google Chrome and Microsoft Edge browsers allows a hacker to perform domain substitution attacks.
The vulnerability of the Tab Strip control element in Google Chrome and Microsoft Edge is related to information representation errors in the user interface. Exploiting this vulnerability can allow an attacker to perform domain substitution through a created HTML page...
The vulnerability of the Media components in Google Chrome and Microsoft Edge allows a hacker to replace the user interface.
The vulnerability of the Media component in Google Chrome and Microsoft Edge is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to replace the user interface through a created HTML page...
The vulnerability of the Enterprise browser components of Google Chrome and Microsoft Edge allows attackers to enhance their privileges.
The vulnerability of the Enterprise browsers’ components in Google Chrome and Microsoft Edge is related to insecure management of privileges. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of the TabGroups function in Google Chrome and Microsoft Edge browsers allows a hacker to replace the user interface.
The vulnerability of the TabGroups function in Google Chrome and Microsoft Edge is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to replace the user’s interface with malicious network traffic...
The vulnerability in the API for working with foldable devices allows a hacker to bypass existing security mechanisms. This vulnerability is related to the Foldable API of Google Chrome and Microsoft Edge browsers.
The vulnerability of the API for working with foldable devices, such as Google Chrome and Microsoft Edge browsers’ APIs, is related to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to bypass existing security measures remotely...
The vulnerability of Mozilla Firefox and Firefox Focus lies in a violation of data protection mechanisms, allowing attackers to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of Mozilla Firefox and Firefox Focus is related to a violation of data protection mechanisms. Exploiting this vulnerability allows an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...
The vulnerability relates to the implementation of the HTTP/2 decoder in Python programming language. This allows a attacker to trigger a service failure.
The vulnerability of the HTTP/2 decoder implementation in Python programming language is related to resource management errors. Exploiting this vulnerability can allow a malicious actor to cause service failures...