The vulnerability of the IBM Sterling B2B Integrator software, related to the disclosure of system data to unauthorized individuals, allows a violator to gain unauthorized access to protected information.

The vulnerability of the IBM Sterling B2B Integrator software for automating business processes involves the exposure of system data to unauthorized individuals. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information...

Vulnerabilities of the MODULE_ALIAS() and j1939_send_one() functions (net/can/j1939/main.c) in the Linux operating system kernel, allowing a hacker to trigger a service failure

The vulnerability of the MODULEALIAS and j1939sendone functions net/can/j1939/main.c in the Linux operating system kernel is related to the use of uninitialized resources. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the pdf.js library on the MFlash secure data exchange platform, related to the lack of protective measures for website structures, allows attackers to execute arbitrary JavaScript code.

The vulnerability of the pdf.js library on the MFlash secure data exchange platform is related to the lack of protective measures for the web page structure. Exploiting this vulnerability could allow an attacker to execute arbitrary JavaScript code remotely...

The vulnerability of the Thunderbird email client, related to incorrect import of OpenPGP keys from the WKD server, allows attackers to gain unauthorized access to protected information.

The vulnerability of the Thunderbird email client is related to the improper import of the OpenPGP key from the WKD server. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

Vulnerability eliminated

...

The vulnerability of the FileProvider framework in operating systems such as macOS, iOS, iPadOS, and visionOS allows a malicious individual to gain unauthorized access to protected information.

The vulnerability of the FileProvider framework in operating systems such as macOS, iOS, iPadOS, and visionOS is related to insufficient protection of sensitive data. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected information...

The vulnerability of the btf_type_is_void() function (kernel/bpf/btf.c) in Linux operating systems allows a hacker to increase their privileges.

The vulnerability of the btftypeisvoid function kernel/bpf/btf.c in Linux operating systems is related to the use of memory and its subsequent release. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the DNN CMS system, related to the lack of measures taken to protect the website structure, allows attackers to carry out XSS attacks.

The vulnerability of the DNN CMS system is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

The vulnerability of the DNN CMS system, related to insufficient checking of unusual or exceptional states, allows attackers to circumvent existing security restrictions.

The vulnerability of the DNN CMS system is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability can allow a malicious actor to bypass existing security restrictions remotely...

The vulnerability in the DNN CMS system’s script execution scenario /Activity-Feed/userId/{user_id}, which allows a attacker to perform XSS attacks.

Vulnerability of the DNN CMS system’s /Activity-Feed/userId/userid endpoint: no measures taken to protect the website structure. Exploitation of this vulnerability allows a malicious actor to perform XSS attacks remotely...

The vulnerability of the idpf_probe() function in the Intel network adapter drivers (drivers/net/ethernet/intel/idpf/idpf_main.c) in Linux kernel allows a hacker to induce a service failure.

The vulnerability of the idpfprobe function in Intel network adapter drivers drivers/net/ethernet/intel/idpf/idpfmain.c in Linux operating systems is related to synchronization errors when using shared resources “Race Conditions”. Exploiting this vulnerability can allow an attacker to cause servi...

The vulnerability of the DNN CMS system, related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely.

The vulnerability of the DNN CMS system is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

The vulnerability of the DNN CMS system, related to the lack of measures taken to protect the website structure, allows attackers to execute arbitrary code.

The vulnerability of the DNN CMS system is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

Vulnerability eliminated

...

The vulnerability of the DNN CMS system, related to uncontrolled resource consumption, allows a hacker to cause a service failure.

The vulnerability of the DNN CMS system is related to uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service interruptions remotely...

The vulnerability of the integrated controller, Satellite Management Controller (SMC), in AMD MI300X microprocessor-based software allows a intruder to execute arbitrary commands and cause malfunctions during maintenance.

The vulnerability of the integrated controller, Satellite Management Controller SMC, in the microprogrammed software of AMD MI300X processors is related to insufficient verification of input data. Exploiting this vulnerability can allow a malicious actor to execute arbitrary commands and cause...

The vulnerability of the integrated controller, Satellite Management Controller (SMC), in AMD MI300X microprocessor-based software allows a intruder to execute arbitrary commands and cause malfunctions during maintenance.

The vulnerability of the integrated controller, Satellite Management Controller SMC, in the microprogrammed software of AMD MI300X processors is related to insufficient verification of input data. Exploiting this vulnerability can allow a malicious actor to execute arbitrary commands and cause...

The vulnerability of the integrated controller, Satellite Management Controller (SMC), in the microprogrammed software of AMD MI300X processors allows a hacker to execute arbitrary commands.

The vulnerability of the integrated controller, Satellite Management Controller SMC, in the microprogrammed software of AMD MI300X processors is related to insufficient verification of input data. Exploiting this vulnerability can allow a remote attacker to execute arbitrary commands...

The vulnerability of the BufferedReader.readLine() function in the Netty network programming framework, which allows a hacker to cause a service failure.

The vulnerability of the BufferedReader.readLine function in the Netty network programming framework is related to uncontrolled resource consumption. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability in the signature loading function of the APPE Signature Upgrade module of the DrayTek Vigor router microsoftware allows a violator to execute arbitrary code.

The vulnerability of the signature loading function in the APPE Signature Upgrade microprogramming software for DrayTek Vigor routers allows for unlimited loading of malicious files. Exploiting this vulnerability can enable a hacker to execute arbitrary code...

The vulnerability of the software tools for accelerated video processing at the hardware level, the Intel Video Processing Library (VPL), is related to an uncontrolled search path element, which allows a hacker to enhance their privileges.

The vulnerability of the software tools for accelerated video processing at the hardware level, the Intel Video Processing Library VPL, is related to an uncontrolled element in the search process. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of the DNN CMS system, related to the lack of measures taken to protect the website structure, allows attackers to execute arbitrary code.

The vulnerability of the DNN CMS system is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of the DNN CMS system, related to the lack of measures taken to protect the website structure, allows attackers to execute arbitrary code.

The vulnerability of the DNN CMS system is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of macOS Wi-Fi operating system modules, allowing a hacker to trigger a service failure

The vulnerability of Wi-Fi operating systems for macOS involves the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a system failure...

The vulnerability of the Intel QuickAssist Technology (QAT) driver package, which involves reading beyond the buffer in memory, allows attackers to exploit their privileges.

The vulnerability of the Intel QuickAssist Technology QAT driver package relates to reading data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to gain increased privileges...

The vulnerability of the Web page rendering module in the Safari browser of the WebKit operating systems for macOS, iOS, iPadOS, VisionOS, tvOS, and WatchOS allows attackers to circumvent security restrictions and gain unauthorized access to protected information.

The vulnerability of the Web page rendering module in Safari web browsers for macOS, iOS, iPadOS, VisionOS, tvOS, and WatchOS lies in insufficient protection of service data. Exploiting this vulnerability allows a malicious actor to bypass security restrictions and gain unauthorized access to...

The vulnerability of the saveSettings() function in the settings.php script of the NetAlert X intrusion notification network infrastructure allows a intruder to execute arbitrary code.

The vulnerability of the saveSettings function in the settings.php script of the NetAlert X intrusion notification network infrastructure is related to the failure to take measures to neutralize special elements used in the command due to lack of authentication. Exploiting this vulnerability can...

The vulnerability of the DNN CMS system, related to the lack of measures taken to protect the website structure, allows attackers to execute arbitrary code.

The vulnerability of the DNN CMS system is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of the httpGetEnv() function in the microprogramming software of TP-Link’s wireless signal booster device TL-WA850RE allows a hacker to induce a service failure.

The vulnerability of the httpGetEnv function in the microprogramming software of TP-Link’s wireless signal booster device TL-WA850RE is related to the operation that goes beyond the buffer in memory when processing the end-point data/syslog.filter.json file with the type parameter. Exploiting thi...

The vulnerability of the DNN CMS system, related to the lack of measures taken to protect the website structure, allows attackers to carry out XSS attacks.

The vulnerability of the DNN CMS system is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

The vulnerability of the DNN CMS system, related to the improper implementation of the sequence of actions to be performed, allows a perpetrator to gain unauthorized access to the system’s functions.

The vulnerability of the DNN CMS system is related to the improper implementation of the sequence of actions to be performed. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to the system’s functions...

Vulnerability eliminated

...

The vulnerability of the Web page rendering module in the Safari browser of the WebKit framework in operating systems macOS, iOS, iPadOS, visionOS, tvOS, and watchOS allows a hacker to trigger a service failure.

The vulnerability of the Web page rendering module in Safari browsers of macOS, iOS, iPadOS, VisionOS, tvOS, and WatchOS operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow a remote attacker to cause a service failure...

The vulnerability in the security.php script of the NetAlert X intrusion notification network infrastructure allows a perpetrator to read arbitrary files.

The vulnerability in the security.php script of the NetAlert X intrusion notification network infrastructure is related to an incorrect restriction on the path to the restricted directory, resulting from a lack of authentication. Exploiting this vulnerability allows an attacker to read arbitrary...

The vulnerability of the LaunchServices service in operating systems such as macOS, iOS, iPadOS, tvOS, and watchOS allows attackers to circumvent security restrictions and gain increased privileges.

The vulnerability of the LaunchServices service in operating systems such as macOS, iOS, iPadOS, tvOS, and watchOS is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to bypass security restrictions and gain increased privileges...

The vulnerability of Wi-Fi operating systems in macOS, iOS, and iPadOS allows a hacker to trigger a service failure.

The vulnerability of Wi-Fi operating systems for macOS, iOS, and iPadOS relates to the execution of operations beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the TCC component in operating systems for macOS, iOS, and iPadOS allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the TCC component in macOS, iOS, and iPadOS is related to an improper limitation on the visible layers of the user interface. Exploiting this vulnerability can allow a malicious individual to gain unauthorized access to protected information...

The vulnerability of the personal assistant Siri in operating systems such as macOS, iOS, and iPadOS allows a hacker to disclose protected information.

The vulnerability of the personal assistant Siri in operating systems such as macOS, iOS, and iPadOS is related to a breach of data protection mechanisms. Exploiting this vulnerability could allow an attacker to disclose protected information...

The vulnerability of the Image Capture application on macOS operating systems allows attackers to circumvent security restrictions and gain unauthorized access to protected information.

The vulnerability of the Image Capture application in macOS operating systems relates to a flaw in the data protection mechanism. Exploiting this vulnerability can allow attackers to circumvent security restrictions and gain unauthorized access to protected information...

The vulnerability of software platforms for developing and managing online stores such as Magento Open Source, Adobe Commerce, and Adobe Commerce B2B lies in the lack of protective measures for website structures, allowing attackers to execute arbitrary code.

The vulnerabilities of the software platforms for developing and managing online stores such as Magento Open Source, Adobe Commerce, and Adobe Commerce B2B are related to the lack of measures taken to protect the website structure. Exploiting these vulnerabilities allows a malicious actor to...

The vulnerability of software platforms for developing and managing online stores such as Magento Open Source, Adobe Commerce, and Adobe Commerce B2B lies in the lack of protective measures for website structures, allowing attackers to execute arbitrary code.

The vulnerabilities of the software platforms for developing and managing online stores such as Magento Open Source, Adobe Commerce, and Adobe Commerce B2B are related to the lack of measures taken to protect the website structure. Exploiting these vulnerabilities allows a malicious actor to...

The vulnerability of software platforms for developing and managing online stores such as Magento Open Source, Adobe Commerce, and Adobe Commerce B2B lies in the lack of protective measures for website structures, allowing attackers to execute arbitrary code.

The vulnerabilities of the software platforms for developing and managing online stores such as Magento Open Source, Adobe Commerce, and Adobe Commerce B2B are related to the lack of measures taken to protect the website structure. Exploiting these vulnerabilities allows a malicious actor to...

The vulnerability of software platforms for developing and managing online stores such as Magento Open Source, Adobe Commerce, and Adobe Commerce B2B lies in the lack of protective measures for website structures, allowing attackers to execute arbitrary code.

The vulnerabilities of the software platforms for developing and managing online stores such as Magento Open Source, Adobe Commerce, and Adobe Commerce B2B are related to the lack of measures taken to protect the website structure. Exploiting these vulnerabilities allows a malicious actor to...

The vulnerability of the iwl_mvm_bt_coex_notif_iterator() function in the iwlwifi driver (drivers/net/wireless/intel/iwlwifi/mvm/coex.c) in Linux operating systems allows a hacker to cause a service failure.

The vulnerability of the iwlmvmbtcoexnotifiterator function in the iwlwifi driver drivers/net/wireless/intel/iwlwifi/mvm/coex.c in Linux operating systems is related to the use of pointers. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the Windows Operating System’s Telephony Service allows a perpetrator to execute arbitrary code.

The vulnerability of the Windows Operating System’s Telephony Service is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

The vulnerability of software platforms for developing and managing online stores such as Magento Open Source, Adobe Commerce, and Adobe Commerce B2B, related to lack of access control, allows attackers to bypass existing security restrictions and gain unauthorized access to protected information.

The vulnerabilities of the software platforms for developing and managing online stores such as Magento Open Source, Adobe Commerce, and Adobe Commerce B2B are related to lack of access control mechanisms. Exploiting these vulnerabilities can allow unauthorized actors to bypass existing security...

The vulnerability of software platforms for developing and managing online stores such as Magento Open Source, Adobe Commerce, and Adobe Commerce B2B lies in their improper handling of logical operations. This allows attackers to circumvent existing security restrictions and gain unauthorized access to protected information.

The vulnerabilities of software platforms for developing and managing online stores such as Magento Open Source, Adobe Commerce, and Adobe Commerce B2B are related to improper handling of logical operations. Exploiting these vulnerabilities can allow attackers to bypass existing security...

The vulnerability of the ubifs_dump_tnc() function in the file system of the UBIFS driver (fs/ubifs/debug.c) in Linux kernel allows a attacker to cause a service failure.

The vulnerability of the ubifsdumptnc function in the file system of the UBIFS driver fs/ubifs/debug.c in Linux operating systems is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability in the web interface of the Cisco AsyncOS operating system allows attackers to perform cross-site scripting attacks.

The vulnerability in the web interface of the Cisco AsyncOS operating system is related to the lack of protective measures for the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

The vulnerability of the software platform for developing and managing Adobe Commerce B2B platforms, related to lack of access control, allows a hacker to bypass existing security restrictions and gain unauthorized access to protected information.

The vulnerability of the software platform for developing and managing Adobe Commerce B2B is related to lack of access control. Exploiting this vulnerability could allow a malicious actor to bypass existing security restrictions and gain unauthorized access to protected information...