The vulnerability of the SSL-VPN portal for FortiOS operating systems allows a hacker to induce a service failure.

The vulnerability of the SSL-VPN portal for FortiOS operating systems is related to the assignment of the zero pointer. Exploiting this vulnerability could allow a malicious actor to cause service interruptions remotely...

The vulnerability of the grub_net_search_config_file function in the Grub2 operating system allows a hacker to trigger a service failure.

The vulnerability of the grubnetsearchconfigfile function in the Grub operating system is related to writing beyond the boundaries. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of the System Management Mode (SMM) mode of AMD microprogramming software allows a hacker to execute arbitrary code.

The vulnerability of the System Management Mode SMM mode of AMD microprogramming processors is related to insufficient checking of input data. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the implementations of SMB and FTP protocols for microprogrammed printer software from Versalink and WorkCentre allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of SMB and FTP protocol implementations of Versalink and WorkCentre software lies in the lack of access control for the address book during scanning. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the Cisco IOS XR operating system, related to unlimited resource allocation, allows for service failures to occur.

The vulnerability of the Cisco IOS XR operating system is related to the unlimited distribution of resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

The vulnerability of the TIFF Image development platform QNX SDP allows attackers to disclose protected information.

The vulnerability of the TIFF Image development platform QNX SDP relates to reading data beyond the permitted range of memory. Exploiting this vulnerability can allow a malicious actor to disclose protected information remotely...

The vulnerability of the PCX Image development platform’s SDP code allows attackers to execute arbitrary code.

The vulnerability of the PCX Image development platform’s SDP code base relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code...

The vulnerability of the DCM files on the medical image and data management system, as well as the Sante PACS Server, allows a hacker to write these files in the context of the current user.

The vulnerability of the DCM files on the medical image and data management system, as well as those on the Sante PACS Server, is related to incorrect restrictions on the path name for accessing the restricted catalog. Exploiting this vulnerability allows a malicious actor to write files under th...

The vulnerability of the corporate version of the GitHub Enterprise Server, related to errors in verifying cryptographic signatures, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the corporate version of the GitHub Enterprise Server is related to errors in checking the cryptographic signature. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

The vulnerability of Cobalt Ashlar-Vellum’s parametric automated design and 3D modeling software lies in its ability to copy buffers without checking the size of the input data. This allows a hacker to execute arbitrary code.

The vulnerability of Cobalt Ashlar-Vellum software for parametric automated design and 3D modeling lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows an attacker to execute arbitrary code within the context of the current process...

The vulnerability of the NTFS file system of the Windows operating system, which allows a perpetrator to disclose protected information

The vulnerability of the NTFS file system in Windows operating systems is related to the disclosure of password values in the log files. Exploiting this vulnerability can allow an attacker to disclose sensitive information that is protected by these files...

The vulnerability of the NTFS file system of the Windows operating system, which allows a perpetrator to disclose protected information

The vulnerability of the NTFS file system in Windows operating systems is related to reading data beyond the allowed range in memory. Exploiting this vulnerability can allow an attacker to disclose protected information...

The vulnerability of the Substance 3D Sampler software for creating textures and materials for 3D models allows attackers to execute arbitrary code. This vulnerability stems from buffer overflows in the dynamic memory, enabling attackers to exploit the system.

The vulnerability of the Substance 3D Sampler software for creating textures and materials for 3D models is related to a buffer overflow in the dynamic memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code in the context of the current user...

The vulnerability of the Microsoft Visual Studio software development tool, related to an uncontrolled search path element, allows a hacker to escalate their privileges.

The vulnerability of the Microsoft Visual Studio software development tool is related to an uncontrollable element in the search process. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of Zoom’s software for conducting video conferences on the MacOS operating system, related to link handling errors, allows attackers to exploit their privileges.

The vulnerability of Zoom’s software for conducting video conferences on the MacOS operating system is related to errors in link handling. Exploiting this vulnerability can allow a malicious actor to gain increased privileges remotely...

The vulnerability of Zoom’s video conferencing software, related to data type mixing errors, allows attackers to exploit their privileges.

The vulnerability of Zoom’s video conferencing software is related to errors in data type mixing. Exploiting this vulnerability can allow a remote attacker to gain increased privileges...

The vulnerability of Fortinet FortiOS operating systems, related to the disclosure of information during data transmission, allows attackers to disclose the protected information.

The vulnerability of Fortinet FortiOS operating systems is related to the disclosure of information during data transmission. Exploiting this vulnerability allows a malicious actor to disclose the protected information remotely...

The vulnerability of the Fortinet FortiManager software, which is used for centralized device management, as well as the FortiAnalyzer security event monitoring and analysis tools, stems from insecure privilege management. This allows attackers to escalate their privileges.

The vulnerability of the Fortinet FortiManager software, which is used for centralized device management, as well as the FortiAnalyzer security monitoring and analysis tools, is related to insecure privilege management. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of the Splunk App for SOAR software lies in its insecure management of privileges, allowing attackers to elevate their privileges.

The vulnerability of the Splunk App for SOAR software relates to insecure management of privileges. Exploiting this vulnerability could allow a malicious actor to enhance their privileges remotely...

The vulnerability of Microsoft HPC Pack, a high-performance computing tool, arises from the lack of authentication for a critical function. This allows a malicious actor to execute arbitrary code.

The vulnerability of Microsoft HPC Pack, a high-performance computing solution, is related to the lack of authentication for a critical function. Exploiting this vulnerability could allow an attacker operating remotely to execute arbitrary code...

The vulnerability of the PDFium component in the Google Chrome browser allows a hacker to execute arbitrary code.

The vulnerability of the PDFium component in the Google Chrome browser is related to reading data beyond the buffer in memory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the Media Stream component of the Google Chrome browser, which allows a perpetrator to gain unauthorized access to protected information

The vulnerability of the Media Stream component in the Google Chrome browser relates to the exposure of confidential information through metadata. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information via a specially created HTML page...

The vulnerability of the PAN-OS operating system, related to incorrect external management of file names or file paths, allows attackers to delete any files they desire.

The vulnerability of the PAN-OS operating system is related to incorrect external management of file names or file paths. Exploiting this vulnerability allows a malicious actor to delete arbitrary files under the user “nobody”...

The vulnerability of the Secure Encrypted Virtualization (SEV) technology of AMD’s microprogramming processor allows a hacker to gain unauthorized access to protected information.

The vulnerability of the Secure Encrypted Virtualization SEV technology of AMD microprocessors lies in the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the filtering function for outgoing packets in IPv4 and IPv6 on the Cisco IOS XR operating system allows a hacker to circumvent existing security restrictions.

The vulnerability of the IPv4 and IPv6 outgoing packet filtering function in the Cisco IOS XR operating system is related to deficiencies in access control based on Access Control Lists ACLs. Exploiting this vulnerability allows a malicious actor to circumvent existing security restrictions...

The vulnerability of the Cisco IOS XR operating system, related to deficiencies in access control, allows attackers to circumvent security restrictions.

The vulnerability of the Cisco IOS XR operating system is related to deficiencies in access control based on access control lists ACLs. Exploiting this vulnerability allows a malicious actor to bypass security restrictions remotely...

The vulnerability of the Cisco IOS XR operating system’s loader allows a hacker to circumvent existing security restrictions.

The vulnerability of the Cisco IOS XR operating system’s loader is related to errors in verifying the cryptographic signature. Exploiting this vulnerability could allow a hacker to circumvent existing security restrictions...

The vulnerability of the DCM files on the medical image and data management system, as well as the Sante PACS Server, allows a perpetrator to trigger a service failure.

The vulnerability of the DCM files on the medical image and data management system, as well as those on the Sante PACS Server, is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

The vulnerability of the PCX Image development platform’s SDP code base allows attackers to trigger a service failure.

The vulnerability of the PCX Image development platform’s SDP code base is related to the manipulation of the zero pointer. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...

The vulnerability of TP-Link TL-SG108E router’s microprogramming software, related to errors in user interface representation, allows attackers to carry out clickjacking attacks.

The vulnerability of TP-Link TL-SG108E router’s microprogramming software is related to errors in information representation by the user interface. Exploiting this vulnerability allows a remote attacker to carry out a clickjacking attack...

The vulnerability of the profapi.dll file, a software component used for creating, testing, documenting, publishing, and maintaining the API of an application’s software interface, allows a perpetrator to execute arbitrary code.

The vulnerability of the profapi.dll file, which is used in software for creating, testing, documenting, publishing, and maintaining the API of an application, is related to the use of an insecure path for searching. Exploiting this vulnerability allows an attacker to execute arbitrary code...

The vulnerability of the xslt/txNodeSorter component in browsers such as Mozilla Firefox, Firefox ESR, and email clients like Thunderbird, Thunderbird ESR, allows attackers to influence the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the xslt/txNodeSorter component in browsers such as Mozilla Firefox, Firefox ESR, and the email client Thunderbird, Thunderbird ESR, is related to reading data beyond the permitted range of memory. Exploiting this vulnerability can allow an attacker to influence the...

The vulnerability of the Cobalt Ashlar-Vellum software for parametric automated design and 3D modeling lies in errors related to data type mixing, allowing a hacker to execute arbitrary code.

The vulnerability of the Cobalt Ashlar-Vellum software for parametric automated design and 3D modeling is related to errors in data type mixing. Exploiting this vulnerability could allow an attacker to execute arbitrary code within the context of the current process...

The vulnerability of the Cobalt Ashlar-Vellum software for parametric automated design and 3D modeling lies in its ability to read data beyond the acceptable range of memory. This allows a malicious actor to execute arbitrary code.

The vulnerability of the Cobalt Ashlar-Vellum software for parametric automated design and 3D modeling lies in the ability to read data beyond the acceptable range in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code within the context of the current process...

The vulnerability of Cobalt Ashlar-Vellum’s software for parametric automated design and 3D modeling lies in its integer overflow vulnerabilities, allowing an attacker to execute arbitrary code.

The vulnerability of Cobalt Ashlar-Vellum software for parametric automated design and 3D modeling is related to a numerical overflow condition. Exploiting this vulnerability could allow an attacker to execute arbitrary code within the context of the current process...

The vulnerability of Cobalt Ashlar-Vellum software for parametric automated design and 3D modeling lies in its integer overflow vulnerabilities, allowing an attacker to execute arbitrary code.

The vulnerability of the Cobalt Ashlar-Vellum software for parametric automated design and 3D modeling is related to a numerical overflow condition. Exploiting this vulnerability could allow an attacker to execute arbitrary code within the context of the current process...

The vulnerability of the Fast FAT File System Driver for the Windows operating system allows a hacker to execute arbitrary code.

The vulnerability of the Fast FAT File System Driver for the Windows operating system is related to a numerical overflow condition. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the Substance 3D Sampler software for creating textures and materials for 3D models lies in its ability to read data beyond the buffer boundaries in memory, allowing an attacker to execute arbitrary code.

The vulnerability of the Substance 3D Sampler software for creating textures and materials for 3D models involves reading beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code within the context of the current user...

The vulnerability of the Command Line Interface (CLI) on the Microsoft Azure platform, which allows a hacker to increase their privileges

The vulnerability of the Command Line Interface CLI of the Microsoft Azure platform is related to the lack of measures taken to clean data at the management level. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the CLI component of the FortiSandbox threat detection and mitigation system allows a perpetrator to elevate their privileges.

The vulnerability of the CLI component of the FortiSandbox threat detection and mitigation system is related to deficiencies in the authentication mechanism. Exploiting this vulnerability can allow attackers to increase their privileges...

The vulnerability of the Azure Agent for Backup software, which is responsible for data backup, and the Azure Agent for Site Recovery software, which handles replication and disaster recovery, allows a malicious individual to elevate their privileges to a system-level level.

The vulnerability of the Azure Agent for Backup software, as well as the Azure Agent for Site Recovery software, relates to insecure privilege management. Exploiting this vulnerability could allow an attacker to elevate their privileges to a system-level level...

The vulnerability in the web interface of Edimax AC1200 Wi-Fi 5 BR-6476AC microprogramming device allows a attacker to execute XSS attacks.

The vulnerability of the web interface of Edimax AC1200 Wi-Fi 5 BR-6476AC microprogramming device lies in the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a remote attacker to carry out XSS attacks...

The vulnerability of Zoom’s video conferencing software is related to the overflowing of buffers in dynamic memory, allowing attackers to exploit their privileges.

The vulnerability of Zoom’s video conferencing software is related to overflowing buffers in dynamic memory. Exploiting this vulnerability can allow a remote attacker to gain increased privileges...

The vulnerability of the information extraction application for Active Directory in Splunk’s Supporting Add-on for Active Directory lies in the use of a regular expression with high computational complexity, which can lead to service interruptions.

The vulnerability of the Active Directory data extraction application “Splunk Supporting Add-on for Active Directory” is related to the use of a regular expression with high computational complexity. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the Babel.Locale function in the library that helps to internationalize and localize Python applications allows attackers to execute arbitrary code.

The vulnerability of the Babel.Locale function in the library for helping with internationalization and localization of Python applications is related to an incorrect restriction on the path to a limited directory. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of the Profiles component in the Google Chrome browser allows a hacker to execute arbitrary code.

The vulnerability of the Profiles component in Google Chrome browser relates to the possibility of using memory after it is freed. Exploiting this vulnerability could allow a malicious actor, operating remotely, to execute arbitrary code using a specially created HTML page...

Microsoft Edge browser’s vulnerability, related to errors in data type mixing, allows attackers to execute arbitrary code.

The vulnerability of Microsoft Edge relates to type confusion errors in data types. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the Git-based software platform for collaborative code development on GitLab EE/CE arises from the lack of measures taken to protect the structure of web pages. This allows attackers to carry out XSS attacks.

The vulnerability of the Git-based software platform for collaborative code development in GitLab EE/CE is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

The vulnerability of the TIFF Image development platform QNX SDP allows attackers to disclose protected information.

The vulnerability of the TIFF Image development platform QNX SDP is related to an off-by-one error. Exploiting this vulnerability can allow a remote attacker to disclose sensitive information that is protected by the system’s security measures...

The vulnerability in the AudioIPC component of Mozilla Firefox, Firefox ESR, and the email client Thunderbird, Thunderbird ESR, allows a hacker to execute arbitrary code.

The vulnerability of the AudioIPC component affects browsers such as Mozilla Firefox, Firefox ESR, and the email client Thunderbird, Thunderbird ESR. This vulnerability is related to the ability to utilize memory after it is freed. Exploiting this vulnerability could allow a malicious actor to...