The vulnerability of the igc_clean_tx_ring() function in the drivers/net/ethernet/intel/igc/igc_main.c file of the Linux kernel’s Ethernet adapter support driver allows a attacker to cause a service failure.

The vulnerability of the igccleantxring function in the drivers/net/ethernet/intel/igc/igcmain.c file of the Linux kernel’s Ethernet adapter support module is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the gitRepo function in the Kubernetes cluster management software allows a attacker to influence the confidentiality and integrity of the protected information.

The vulnerability of the gitRepo function in the Kubernetes cluster management software is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to influence the confidentiality and integrity of the protected information...

The vulnerability of the web interface of the IBM Sterling B2B Integrator software allows a perpetrator to execute arbitrary code and gain unauthorized access to protected information.

The vulnerability of the web interface of the IBM Sterling B2B Integrator software solution relates to the lack of protective measures for the website structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely and gain unauthorized access to protected...

The vulnerability of the NTLM protocol implementation in Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the NTLM protocol implemented by the Windows operating system is related to external file name or path control. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the Windows Hyper-V hardware virtualization system allows attackers to escalate their privileges.

The vulnerability of the Windows Hyper-V hardware virtualization system is related to buffer overflows in dynamic memory. Exploiting this vulnerability can allow an attacker to gain increased privileges...

The vulnerability of the Windows operating system’s streaming data transmission service allows a hacker to execute arbitrary code.

The vulnerability of the Windows operating system’s streaming data transmission service is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the microprogrammed software for Intel Ethernet Connection I219 network adapters, related to buffer overflow in the stack, allows a hacker to cause a service failure.

The vulnerability of the Microprogrammed Software for Intel Ethernet Connection I219 network adapters is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the 3D model texturing software Adobe Substance 3D Painter, related to reading beyond the buffer boundary in memory, allows a hacker to execute arbitrary code.

The vulnerability of the 3D model texturing software Adobe Substance 3D Painter lies in the reading of data beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code by opening a specially created malicious file...

The vulnerability of Adobe Illustrator’s graphic editor lies in the ability to read data beyond the buffer in memory, allowing attackers to bypass ASLR protection and gain unauthorized access to protected information.

The vulnerability of Adobe Illustrator’s graphic editor is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to bypass ASLR protection and gain unauthorized access to protected information...

The vulnerability of the fromAdvSetMacMtuWan() function in the Tenda AC9 router’s software allows a hacker to execute arbitrary code or cause service failures.

The vulnerability of the fromAdvSetMacMtuWan function in the Tenda AC9 router’s microprogramming software is related to the buffer overflow attack when processing the mac parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause service failures...

Vulnerability of the siw_create_listen() function in the drivers/infiniband/sw/siw/siw_cm.c module – the Linux kernel’s InfiniBand support driver, which allows an attacker to compromise the confidentiality, integrity, and accessibility of protected information.

Vulnerability of the siwcreatelisten function in the drivers/infiniband/sw/siw/siwcm.c module – The Linux kernel’s InfiniBand support driver is vulnerable due to the repeated use of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality...

The vulnerability of the io_clone_buffers() function in the io_uring/rsrc.c module of the Linux kernel’s asynchronous input/output interface allows a attacker to cause a service failure.

The vulnerability of the ioclonebuffers function in the iouring/rsrc.c module of the Linux kernel’s asynchronous input/output interface is related to improper validation of input data. Exploiting this vulnerability could allow an attacker to cause service failures...

The vulnerability of the vm_fault_t vas_mmap_fault() function in the arch/powerpc/platforms/book3s/vas-api.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the vmfaultt vasmmapfault function in the arch/powerpc/platforms/book3s/vas-api.c module of the Linux operating system is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrit...

The vulnerability of video surveillance cameras for monitoring and surveillance systems, related to insufficient protection of operational data, allows intruders to gain unauthorized access to protected information.

The vulnerability of video surveillance cameras for monitoring and surveillance systems is related to insufficient protection of operational data. Exploiting this vulnerability can allow an unauthorized intruder to gain unauthorized access to protected information...

The vulnerability of the Windows Telephony Server server allows a hacker to execute arbitrary code.

The vulnerability of the Windows Telephony Server server for Windows operating systems is related to buffer overflow attacks. Exploiting this vulnerability allows an attacker who operates remotely to execute arbitrary code...

The vulnerability of the Git-based software platform for collaborative code development in GitLab EE lies in the use of files and directories accessible from external parties, which allows attackers to gain unauthorized access to protected information.

The vulnerability of the Git-based software platform for collaborative code development in GitLab EE is related to the use of files and directories accessible from external parties. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to...

The vulnerability of the Git-based software platform for collaborative code development on GitLab EE/CE arises from the lack of proper input validation when requesting external server authentication. This allows a malicious actor to gain unauthorized access to protected information.

The vulnerability of the Git-based software platform for collaborative code development in GitLab EE/CE stems from the lack of proper input sanitization when requesting external server authentication. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized...

The vulnerability in the implementation of the SAML SSO protocol for the Ruby SAML library and the git-based software platform for collaborative code development on GitLab CE/EE allows a perpetrator to bypass authentication.

The vulnerability of the SAML SSO protocol implementation for the Ruby SAML library and the git-based software platform for collaborative code development on GitLab CE/EE is related to errors in cryptographic signature verification. Exploiting this vulnerability could allow an attacker to bypass...

The vulnerability of the drm_dp_mst_up_req_work() function in the driver drivers/gpu/drm/display/drm_dp_mst_topology.c, which supports the Direct Rendering Infrastructure (DRI) of the Linux operating system’s kernel, allows a hacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the drmdpmstupreqwork function in the driver drivers/gpu/drm/display/drmdpmsttopology.c, which is part of the Direct Rendering Infrastructure DRI support for the Linux kernel, relates to the assignment of the NULL pointer. Exploiting this vulnerability could allow an attacker...

The vulnerability of the fromAdvSetMacMtuWan() function in the Tenda AC9 router’s software allows a hacker to execute arbitrary code or cause service failures.

The vulnerability of the fromAdvSetMacMtuWan function in the Tenda AC9 router’s microprogramming software is related to the buffer overflow attack when processing the cloneType parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause service failures...

The vulnerability of FortiWeb web applications’ network firewalls arises from incorrect processing of syntaxically incorrect structures, allowing attackers to bypass security restrictions and execute arbitrary commands.

The vulnerability of FortiWeb web applications’ network firewalls is related to the improper processing of syntaxically incorrect structures. Exploiting this vulnerability allows a malicious actor to bypass security restrictions and execute arbitrary commands by sending specially crafted HTTP/S...

The vulnerability of FortiWeb web applications’ network firewalls arises from incorrect processing of syntaxically incorrect structures, allowing attackers to bypass security restrictions and execute arbitrary commands.

The vulnerability of FortiWeb web applications’ network firewalls is related to the improper processing of syntaxically incorrect structures. Exploiting this vulnerability allows a malicious actor to bypass security restrictions and execute arbitrary commands by sending specially crafted HTTP/S...

The vulnerability of the btrfs_force_cow_block() function in the fs/btrfs/ctree.c module of the Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the btrfsforcecowblock function in the fs/btrfs/ctree.c module of the Linux kernel is related to the reutilization of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of protected...

The vulnerability of the ublk_unquiesce_dev() function in the drivers/block/ublk_drv.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the ublkunquiescedev function in the drivers/block/ublkdrv.c module of the Linux kernel is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of protect...

The vulnerability of the FortiWeb web applications’ network interface filter component allows attackers to execute arbitrary commands.

The vulnerability of the log removal filter component in FortiWeb web applications is related to the lack of security measures for the SQL query structure. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary commands...

The vulnerability of the BI Launchpad component of the SAP BusinessObjects Business Intelligence Platform allows a attacker to perform cross-site scripting attacks.

The vulnerability of the BI Launchpad component of the SAP BusinessObjects Business Intelligence Platform relates to the lack of protective measures for the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks XSS remotely...

UpdraftPlus plugin’s vulnerability: The WP Backup & Migration system for WordPress content management system, which allows attackers to inject a PHP object into the system.

UpdraftPlus plugin’s vulnerability: The WP Backup & Migration system of the WordPress content management system is vulnerable due to shortcomings in the deserialization mechanism. Exploiting this vulnerability allows an attacker to inject a PHP object remotely...

The vulnerability of the MoTw mechanism in Windows operating systems allows attackers to circumvent existing security restrictions and gain access to encrypted data.

The vulnerability of the MoTe-Web mechanism in Windows operating systems is related to a breach of data protection mechanisms. Exploiting this vulnerability allows attackers to circumvent existing security restrictions and gain access to encrypted data...

The vulnerability of the 3D model texturing software Adobe Substance 3D Painter, related to reading beyond the buffer boundary in memory, allows a hacker to execute arbitrary code.

The vulnerability of the 3D model texturing software Adobe Substance 3D Painter lies in the reading of data beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created malicious file...

The vulnerability of Adobe Illustrator’s graphic editor lies in the ability to read data beyond the buffer in memory, allowing attackers to bypass ASLR protection and gain unauthorized access to protected information.

The vulnerability of Adobe Illustrator’s graphic editor is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to bypass ASLR protection and gain unauthorized access to protected information...

The vulnerability of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2020, and Adobe Acrobat Reader 2020 lies in the use of an uninitialized pointer, which allows a malicious actor to execute arbitrary code.

The vulnerability of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2020, and Adobe Acrobat Reader 2020 is related to the use of an uninitialized pointer during the processing of the itemVariationDataCount field. Exploitin...

Vulnerability of the CalculateBytePerPixelAndBlockSizes() function in the drivers/gpu/drm/amd/display/dc/dml2/dml21/src/dml2_core/dml2_core_dcn4_calcs.c file – A driver for supporting Direct Rendering Infrastructure (DRI) in AMD graphics cards for Linux operating systems. This vulnerability allows a attacker to cause a service failure.

Vulnerability of the CalculateBytePerPixelAndBlockSizes function in the drivers/gpu/drm/amd/display/dc/dml2/dml21/src/dml2core/dml2coredcn4calcs.c file – The driver that supports Direct Rendering Infrastructure DRI for AMD graphics cards in Linux operating systems has a vulnerability due to...

The vulnerability of the Internet Printing Protocol (IPP) implementation in multifunctional HP LaserJet MFP devices allows a perpetrator to cause service interruptions.

The vulnerability of the Internet Printing Protocol IPP implementation in microprogrammed multifunctional devices like HP LaserJet MFP is related to improper handling of unexpected types of data. Exploiting this vulnerability allows a malicious actor to cause service interruptions by sending...

The vulnerability of the fromAdvSetMacMtuWan() function in the Tenda AC9 router’s software allows a hacker to execute arbitrary code or cause service failures.

The vulnerability of the fromAdvSetMacMtuWan function in the Tenda AC9 router’s microprogramming software is related to the buffer overflow attack when processing the wanSpeed parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause service failures...

The vulnerability of the IBM Security QRadar EDR endpoint protection mechanism, which stems from the use of cryptographic algorithms containing defects, allows attackers to gain unauthorized access to protected information.

The vulnerability of the IBM Security QRadar EDR endpoint protection mechanism lies in the use of cryptographic algorithms that contain vulnerabilities. Exploiting this vulnerability could allow an attacker operating remotely to gain unauthorized access to protected information...

The vulnerability of the encryption and digital signature verification library in the Node.js software platform xml-crypto is related to deficiencies in the mechanism for verifying cryptographic signatures. This vulnerability allows attackers to enhance their privileges.

The vulnerability of the XML-crypto library and the digital signature verification mechanism in Node.js software platforms is related to deficiencies in the signature verification mechanism. Exploiting this vulnerability could allow a malicious actor to enhance their privileges by sending special...

The vulnerability of the Adobe Substance 3D Modeler software-related to pointer manipulation allows a hacker to trigger a service failure.

The vulnerability of the Adobe Substance 3D Modeler software for 3D modeling is related to pointer manipulation. Exploiting this vulnerability can allow an attacker to cause a system failure...

The vulnerability of the Adobe Substance 3D Modeler software lies in its reliance on memory after it is released, allowing an attacker to execute arbitrary code.

The vulnerability of the Adobe Substance 3D Modeler software-related to memory usage after it is released. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of the PHP programming language interpreter, related to deficiencies in handling HTTP request headers, allows attackers to send hidden HTTP requests (HTTP Request Smuggling attack).

The vulnerability of the PHP programming language interpreter is related to deficiencies in the processing of HTTP request headers. Exploiting this vulnerability allows a malicious actor to send hidden HTTP requests a type of HTTP Request Smuggling attack...

The vulnerability of the `close_ctree()` function in the `fs/btrfs/disk-io.c` module of the Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the closectree function in the fs/btrfs/disk-io.c module of the Linux kernel is related to the reutilization of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of protected...

The vulnerability of the design and analysis tools for developing efficient Intel Advisor code, as well as the Intel oneAPI Base Toolkit, related to insufficient access control mechanisms, allows attackers to exploit these vulnerabilities to enhance their privileges.

The vulnerability of the design and analysis tools for developing efficient Intel Advisor code, as well as the Intel oneAPI Base Toolkit, is related to deficiencies in access control. Exploiting this vulnerability could allow attackers to enhance their privileges...

The vulnerability of microprogrammed software in Intel NUC laptops arises from insufficient testing of input data, allowing attackers to exploit this weakness to gain increased privileges.

The vulnerability of Intel NUC laptop microprogramming software exists due to insufficient testing of input data. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of the software installer for Zoom video conferencing applications on macOS systems allows a hacker to escalate their privileges.

The vulnerability of the software installer for Zoom video conferencing on macOS operating systems is related to insecure management of privileges. Exploiting this vulnerability can allow attackers to gain unauthorized access...

The vulnerability of Zoom’s video conferencing software, related to buffer overflows, allows attackers to trigger a service failure.

The vulnerability of Zoom’s video conferencing software is related to buffer overflow attacks. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of the Intel Simics Package Manager, related to an uncontrolled search path element, allows a perpetrator to escalate their privileges.

The vulnerability of the Intel Simics Package Manager’s manager is related to an uncontrolled element in the search process. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of the Intel Integrated Performance Primitives library in the Intel oneAPI Base Toolkit development tools, related to an uncontrolled search path element, allows attackers to exploit their privileges.

The vulnerability of the Intel Integrated Performance Primitives library in the Intel oneAPI Base Toolkit development tools set is related to an uncontrolled element in the search process. Exploiting this vulnerability could allow attackers to enhance their privileges...

The vulnerability of the software installer for Zoom video conferencing applications on macOS systems allows a hacker to escalate their privileges.

The vulnerability of the software installer for Zoom video conferencing on macOS systems is related to the use of an unreliable search path. Exploiting this vulnerability can allow attackers to gain increased privileges...

The vulnerability of Zoom’s video conferencing software, related to buffer overflows, allows attackers to trigger a service failure.

The vulnerability of Zoom’s video conferencing software is related to buffer overflow attacks. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of the Trusted Execution Environment (TEE) for the deployment of Intel Trust Domain Extensions (Intel TDX) allows a perpetrator to exploit their privileges by exploiting incomplete filtering of special elements.

The vulnerability of the Trusted Execution Environment TEE for the deployment of Intel Trust Domain Extensions virtual machines is related to incomplete filtering of special elements. Exploiting this vulnerability can allow an attacker to enhance their privileges...

The vulnerability of TP-Link Tapo C500 Wi-Fi cameras, which stems from the use of a rigidly encrypted cryptographic key, allows attackers to carry out “man-in-the-middle” attacks.

The vulnerability of TP-Link Tapo C500 Wi-Fi cameras lies in the use of a strictly encrypted cryptographic key. Exploiting this vulnerability could allow an attacker to carry out a “man-in-the-middle” attack...