90604 matches found
The vulnerability of the WPE WebKit and WebKitGTK web page rendering modules, related to the disclosure of information, allows attackers to access confidential data.
The vulnerability of the WPE WebKit and WebKitGTK page rendering modules is related to the disclosure of information. Exploiting this vulnerability can allow a remote attacker to gain access to confidential data...
The vulnerability of the `php_read_stream_all_chunks` function in the PHP programming language, which allows an attacker to gain access to confidential data
The vulnerability of the phpreadstreamallchunks function in the PHP programming language is related to the possibility of speculative execution of commands. Exploiting this vulnerability can allow an attacker to gain access to confidential data...
The vulnerability of the drivers/net/ethernet/intel/ixgbevf component in Linux kernel allows a hacker to cause a service failure.
The vulnerability of the drivers/net/ethernet/intel/ixgbevf component in Linux operating systems is related to errors during resource release. Exploiting this vulnerability can allow an attacker to cause service failures...
The vulnerability of the requeue_pi_wake_futex() function in the kernel/futex/requeue.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the requeuepiwakefutex function in the kernel/futex/requeue.c module of the Linux operating system is related to the reutilization of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...
The vulnerability of the fs/btrfs component in the Linux operating system, which allows a hacker to trigger a service failure
The vulnerability of the fs/btrfs component in the Linux operating system is related to pointer arithmetic errors. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the task_can_attach() function in the kernel/sched/core.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the taskcanattach function in the kernel/sched/core.c module of the Linux operating system is related to the execution of operations outside of memory buffers. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibilit...
The vulnerability of Containerd’s execution environment, related to improper execution permissions, allows a perpetrator to access confidential data, compromise its integrity, and cause service failures.
The vulnerability of the Containerd execution environment is related to improper execution permissions. Exploiting this vulnerability can allow attackers to access confidential data, compromise its integrity, and even cause service failures...
The vulnerability of the `uiinput_ffUploadToUser()` function in the `drivers/input/misc/uinput.c` driver for Linux operating system input devices allows a hacker to cause a service failure.
The vulnerability of the uiinputffUploadToUser function in the drivers/input/misc/uinput.c file of the Linux input driver module is related to incorrect resource initialization. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the access control service for remote catalogs and the SSSD authentication mechanism, due to insecure management of privileges, allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.
The vulnerability of the access control service for remote catalogs and the SSSD authentication mechanism are related to insecure management of privileges. Exploiting this vulnerability could allow an attacker operating remotely to gain access to confidential data, compromise its integrity, and...
The vulnerability of the d_alloc_parallel() function in the fs/dcache.c module of the Linux kernel file system allows a attacker to cause a service failure.
The vulnerability of the dallocparallel function in the fs/dcache.c module of the Linux kernel’s file system is related to improper memory release. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability in the web interface of the Cisco Secure Firewall Management Center (formerly known as Cisco Firepower Management Center) allows a perpetrator to execute arbitrary code with root privileges.
The vulnerability of the Web interface for managing Cisco Secure Firewall Management Center software formerly known as Cisco Firepower Management Center is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability allows a malicious actor to execute arbitrary code wi...
The vulnerability of the pgAdmin 4 database management tool, related to access control errors, allows attackers to execute arbitrary commands.
The vulnerability of the pgAdmin 4 database management tool is related to access control errors. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely...
The vulnerability of the XML component of the Oracle Database Server system allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the XML component of the Oracle Database Server system is related to access control errors. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...
The vulnerability of the setWebWlanIdx function in the microprogrammed software of TOTOLINK N300RH allows a perpetrator to execute arbitrary commands.
The vulnerability of the setWebWlanIdx function in the microprogrammed software of TOTOLINK N300RH routers is related to the lack of measures taken to clean data at the management level. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...
The vulnerability of the NVUE interface in NVIDIA Cumulus Linux and Operating System (NVOS) operating systems allows attackers to increase their privileges.
The vulnerability of the NVUE interface in NVIDIA Cumulus Linux and Operating System NVOS systems is related to privilege assignment errors. Exploiting this vulnerability can allow a malicious actor to increase their privileges remotely...
The vulnerability of the NVUE interface in NVIDIA Cumulus Linux and Operating System (NVOS) operating systems allows attackers to increase their privileges.
The vulnerability of the NVUE interface in NVIDIA Cumulus Linux and Operating System NVOS systems is related to the lack of measures taken to clean data at the management level. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of the microprogrammed software of the WiFi router ZBT (Shenzhen Zhibotong Electronics) WE2001, related to incorrect restrictions on the path name to the directory, allows a intruder to gain unauthorized access and delete protected information.
The vulnerability of the microprogrammed software of the WiFi router ZBT Shenzhen Zhibotong Electronics WE2001 is related to incorrect restrictions on the path name to the directory. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access and delete...
The vulnerability of the setIptvCfg handler in the /usr/sbin/lighttpd executable file of the TOTOLINK X5000R router microprogramming system allows a attacker to execute arbitrary commands.
The vulnerability of the setIptvCfg handler in the /usr/sbin/lighttpd executable file of the TOTOLINK X5000R router microprogramming system exists due to the lack of measures taken to neutralize the special elements used in the operating system commands. Exploiting this vulnerability allows a...
The vulnerability of ClamBC, a byte-code interpreter in the ClamAV antivirus software, allows a perpetrator to execute arbitrary code or cause a service failure.
The vulnerability of the byte-code interpreter in the ClamAV antivirus software package ClamBC is related to improper code generation. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause system failures...
The vulnerability of the Python library for working with PDF files, PyPDF, related to uncontrolled resource consumption, allows a hacker to cause a service failure.
The vulnerability of the Python library for working with PDF files, PyPDF, is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...
The vulnerabilities of the functions vhost_scsi_set_endpoint() and vhost_scsi_clear_endpoint() in the drivers/vhost/scsi.c module of the Linux operating system allow attackers to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerabilities of the functions vhostscsisetendpoint and vhostscsiclearendpoint in the drivers/vhost/scsi.c module of the Linux kernel are related to the repeated use of previously freed memory. Exploiting these vulnerabilities could allow an attacker to compromise the confidentiality,...
The vulnerability of the VMware Workstation hypervisor arises from reading data outside of the permitted range in memory, resulting in unauthorized access to protected information.
The vulnerability of VMware Workstation’s hypervisor is related to reading data beyond the allowed range in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...
The vulnerability of the fromAdvSetWan() function in the Tenda F453 router software allows a hacker to disrupt network services.
The vulnerability of the fromAdvSetWan function in the Tenda F453 router software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...
The vulnerability of Fortinet FortiClientWindows security tools arises from incorrect handling of symbolic links before accessing a file. This allows attackers to escalate their privileges.
The vulnerability of Fortinet FortiClientWindows protection lies in the improper handling of symbolic links before accessing the file. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of the `alloc_quote_buf()` function in the drivers/virt/coco/tdx-guest/tdx-guest.c file of the Linux kernel allows a hacker to gain unauthorized access to protected information.
The vulnerability of the allocquotebuf function in the drivers/virt/coco/tdx-guest/tdx-guest.c file of the Linux kernel is related to errors in handling exceptional conditions. Exploiting this vulnerability may allow an attacker to gain unauthorized access to protected information...
The vulnerability of the iso_listen_bis() function in the net/bluetooth/iso.c module of the Linux kernel’s Bluetooth subsystem allows a attacker to cause a service failure.
The vulnerability of the isolistenbis function in the net/bluetooth/iso.c module of the Linux kernel’s Bluetooth subsystem is related to the improper disabling or release of resources. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the `tcp_packets_in_flight()` function in the `include/net/tcp.h` module of the Linux kernel allows a hacker to cause a service failure.
The vulnerability of the tcppacketsinflight function in the include/net/tcp.h module of the Linux kernel relates to the disclosure of confidential information. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the md_bitmap_read_sb() function in the drivers/md/md-bitmap.c file of the driver module exposes it to being exploited by attackers, causing service interruptions for systems supporting multiple devices such as RAID and LVM in the Linux kernel.
The vulnerability of the mdbitmapreadsb function in the drivers/md/md-bitmap.c file of the Linux support module for multiple devices RAID and LVM involves an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the rxrpc_send_data() function in the net/rxrpc/sendmsg.c module, which is part of the RxRPC session socket support in the Linux operating system, allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the rxrpcsenddata function in the net/rxrpc/sendmsg.c module, which supports RxRPC session sockets in Linux operating systems, is related to synchronization errors when using shared resources. Exploiting this vulnerability could allow an attacker to compromise the...
The vulnerability of the nft_tproxy_dump() function in the net/netfilter/nft_tproxy.c module of the netfilter component of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the nfttproxydump function in the net/netfilter/nfttproxy.c module of the netfilter component of the Linux operating system is related to the use of the NULL pointer. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...
The vulnerability of the function ice_xsk_pool_setup() in the driver drivers/net/ethernet/intel/ice/ice_xsk.c of the Intel Ethernet network adapter driver for the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the function icexskpoolsetup in the driver module drivers/net/ethernet/intel/ice/icexsk.c of the Intel Ethernet network adapter driver for the Linux operating system is related to the assignment of the NULL pointer. Exploiting this vulnerability could allow an attacker to...
The vulnerability of the `pn532_uart_remove()` function in the `drivers/nfc/pn533/uart.c` file of the Linux NFC kernel driver allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the pn532uartremove function in the drivers/nfc/pn533/uart.c file of the Linux NFC kernel driver is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow a remote attacker to compromise the confidentiality, integrity, and...
The vulnerability of the `cdns3_wa2_remove_old_request()` function in the `drivers/usb/cdns3/cdns3-gadget.c` driver for USB device drivers in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the cdns3wa2removeoldrequest function in the drivers/usb/cdns3/cdns3-gadget.c device driver of the Linux operating system’s USB device driver is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the...
The vulnerabilities of the functions iavf_init_asq() and iavf_init_arq() in the driver drivers/net/ethernet/intel/iavf/iavf_adminq.c of the Intel Ethernet network adapter driver for the Linux operating system allow attackers to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerabilities of the functions iavfinitasq and iavfinitarq in the file drivers/net/ethernet/intel/iavf/iavfadminq.c of the Intel Ethernet network adapter driver for the Linux operating system are related to a memory leak. Exploiting these vulnerabilities could allow an attacker to compromis...
The vulnerability of the iavf_reset_task() function in the drivers/net/ethernet/intel/iavf/iavf_main.c file of the Intel Ethernet network adapter driver for the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the iavfresettask function in the drivers/net/ethernet/intel/iavf/iavfmain.c file of the Intel Ethernet network adapter driver for the Linux operating system is related to the improper shutdown or release of resources. Exploiting this vulnerability could allow an attacker to...
The vulnerability of the fastrpc_cb_probe() function in the drivers/misc/fastrpc.c module of the Linux kernel allows a hacker to cause a service failure.
The vulnerability of the fastrpccbprobe function in the drivers/misc/fastrpc.c module of the Linux kernel is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the SSH library wolfSSH, related to deficiencies in authentication procedures, allows attackers to circumvent existing security restrictions.
The vulnerability of the SSH library wolfSSH is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to circumvent existing security restrictions remotely...
The vulnerability of the Vim text editor arises from the possibility of an operation going beyond the buffer boundaries into memory, allowing an attacker to compromise the integrity of the protected information.
The vulnerability of the Vim text editor is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to compromise the integrity of the protected information...
The vulnerability of Moxa industrial computers lies in the transmission of critical information in plaintext, which allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of Moxa industrial computers lies in the transmission of critical information in plaintext. Exploiting this vulnerability can allow attackers to compromise the confidentiality, integrity, and accessibility of the protected information...
The vulnerability of Moxa industrial computers lies in the insufficient protection of registration data, which allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of Moxa industrial computers lies in the insufficient protection of registration data. Exploiting this vulnerability can allow attackers to compromise the confidentiality, integrity, and accessibility of the protected information...
The vulnerability of the xdr_stream_decode_uint32_array() function in the include/linux/sunrpc/xdr.h module of the Linux kernel allows a attacker to cause a service failure.
The vulnerability of the xdrstreamdecodeuint32array function in the include/linux/sunrpc/xdr.h module of the Linux kernel is related to integer overflow. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability in the isp116xremove() function of the drivers/usb/host/isp116x-hcd.c driver module allows a malicious actor to cause a service failure.
The vulnerability of the isp116xremove function in the drivers/usb/host/isp116x-hcd.c file of the Linux kernel’s USB device support driver is related to the lack of checking for the return value. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the ieee80211_beacons_stop() function in the drivers/staging/rtl8192u/ieee80211/ieee80211_softmac.c module allows a hacker to trigger a service failure. This vulnerability exposes additional devices in the Linux operating system’s kernel support.
The vulnerability of the ieee80211beaconsstop function in the drivers/staging/rtl8192u/ieee80211/ieee80211softmac.c module relates to the occurrence of mutual locking. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the mips_cpc_default_phys_base() function in the arch/mips/kernel/mips-cpc.c module of the Linux operating system’s MIPS architecture support module allows a attacker to cause a service failure.
The vulnerability of the mipscpcdefaultphysbase function in the arch/mips/kernel/mips-cpc.c module of the Linux operating system’s MIPS architecture support module is related to security configuration errors. Exploiting this vulnerability could allow an attacker to cause a system failure...
Vulnerability of the rtl8180_tx() function in the drivers/net/wireless/realtek/rtl818x/rtl8180/dev.c file – This is a driver for supporting Realtek wireless adapter devices in the Linux operating system. It allows a hacker to cause a service failure.
Vulnerability of the rtl8180tx function in the drivers/net/wireless/realtek/rtl818x/rtl8180/dev.c file – The drivers for Realtek wireless adapters in the Linux operating system are vulnerable due to the use of uninitialized resources. Exploiting this vulnerability could allow an attacker to cause...
The vulnerability of the ext4_setattr() function in the fs/ext4/inode.c module of the Linux file system support module allows a attacker to cause a service failure.
The vulnerability of the ext4setattr function in the fs/ext4/inode.c module of the Linux file system support module is related to the distribution of resources without any restrictions or regulation. Exploiting this vulnerability could allow a attacker to cause service failures...
The vulnerability in the sanity_check inode() function of the fs/f2fs/inode.c module of the F2FS file system support in the Linux operating system allows a attacker to cause a service failure.
The vulnerability of the sanitycheck inode function in the fs/f2fs/inode.c module of the F2FS file system support in the Linux operating system is related to code errors. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the f2fs_evict inode() function in the fs/f2fs/inode.c module of the F2FS file system support in Linux’s kernel allows a attacker to cause a service failure.
The vulnerability of the f2fsevict inode function in the fs/f2fs/inode.c module of the F2FS file system support in Linux operating systems is related to data processing errors. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the enter_rtas() function in the arch/powerpc/kernel/rtas.c module, which is part of the PowerPC platform support for the Linux operating system, allows a hacker to trigger a service failure.
The vulnerability of the enterrtas function in the arch/powerpc/kernel/rtas.c module of the Linux operating system’s PowerPC kernel is related to an uncontrolled recursion. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the hi3xxx_smp_prepare_cpus() function in the arch/arm/mach-hisi/platsmp.c module, which is part of the ARM platform support for the Linux operating system, allows a hacker to cause a service failure.
The vulnerability of the hi3xxxsmppreparecpus function in the arch/arm/mach-hisi/platsmp.c module, which is part of the Linux operating system’s ARM platform support, involves a memory leak. Exploiting this vulnerability can allow an attacker to cause a system failure...