The vulnerability of Microsoft Edge browser, related to the absence of warnings for dangerous actions, allows attackers to carry out spoofing attacks.

The vulnerability of Microsoft Edge is related to the absence of warnings about dangerous actions. Exploiting this vulnerability allows a remote attacker to carry out spear-phishing attacks...

The vulnerability of the cuobjdump software tool for parallel computing on NVIDIA CUDA GPUs allows a hacker to trigger a service failure.

The vulnerability of the cuobjdump software tool for parallel computing on NVIDIA CUDA GPUs involves reading data beyond the allowable range in memory. Exploiting this vulnerability can allow an attacker to cause a system failure...

The vulnerability of the nvdisasm file in the NVIDIA CUDA Toolkit software for parallel computing on Graphics Processing Units allows a hacker to induce a service failure.

The vulnerability of the nvdisasm function in the NVIDIA CUDA Toolkit for parallel computing on Graphics Processing Units is related to the use of a zero pointer. Exploiting this vulnerability could allow an attacker to cause a system failure...

The vulnerability of the virtual learning environment Moodle, related to insufficient protection of operational data, allows a intruder to gain unauthorized access to protected information.

The vulnerability in the virtual learning environment Moodle is related to insufficient protection of operational data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the Google Chrome browser’s Extensions API allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Google Chrome browser’s Extensions API is related to errors in information representation by the user interface. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information through a special extension of Chrome...

The vulnerability in the virtual learning environment Moodle, related to the lack of protective measures for website structures, allows attackers to carry out XSS attacks.

The vulnerability in the virtual learning environment Moodle is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks...

The vulnerability of the /api/dev-console/proxy/internet file on the Red Hat OpenShift Container Platform corporate platform allows a attacker to perform an SSRF attack.

The vulnerability of the /api/dev-console/proxy/internet file on the Red Hat OpenShift Container Platform corporate platform is related to insufficient validation of requests at the server side. Exploiting this vulnerability could allow a malicious actor to execute an SSRF attack remotely...

The vulnerability of Intel High Level Synthesis (HLS) compilers lies in their uncontrolled search path, which allows attackers to exploit their privileges.

The vulnerability of Intel’s High-Level Synthesis HLS compilers is related to an uncontrolled element in the search process. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of the set_qos() function in the internet.cgi script of the Wavlink AC3000 (WL-WN533A8) router microprogramming system allows a hacker to execute arbitrary code.

The vulnerability of the setqos function in the internet.cgi script of the Wavlink AC3000 WL-WN533A8 router microprogramming system is related to the escape of operations from the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the qosSettings() function in the qos.cgi script of the Wavlink AC3000 (WL-WN533A8) router’s script allows a hacker to execute arbitrary code.

The vulnerability of the qosSettings function in the qos.cgi script of the Wavlink AC3000 WL-WN533A8 router software lies in the fact that the output of the operation goes beyond the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of Ivanti Connect Secure and Ivanti Policy Secure, which are network access control tools, stems from buffer overflow in the stack. This allows a malicious user to trigger a service failure.

The vulnerability of Ivanti Connect Secure and Ivanti Policy Secure network access control tools is related to buffer overflow in the stack. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

The vulnerability of the IAM and user directory management software of IBM Security Verify Directory, which exists due to the failure to take measures to neutralize special elements, allows a perpetrator to execute arbitrary commands.

The vulnerability of the IAM and user directory management software of IBM Security Verify Directory exists due to the failure to take measures to neutralize special elements. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands through a specially crafted request...

The vulnerability of the virtual learning environment Moodle, related to insufficient protection of operational data, allows a intruder to gain unauthorized access to protected information.

The vulnerability in the virtual learning environment Moodle is related to insufficient protection of operational data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the cuobjdump software tool for parallel computing on NVIDIA CUDA GPUs allows a hacker to trigger a service failure.

The vulnerability of the cuobjdump software tool for parallel computing on NVIDIA CUDA GPUs involves reading data beyond the allowable range in memory. Exploiting this vulnerability can allow an attacker to cause a system failure...

The vulnerability of the tool for configuring and managing Linux operating system’s iptables packet filtering rules stems from insecure privilege management, allowing a malicious actor to execute arbitrary bash commands.

The vulnerability of the tool for configuring and managing iptables packet filtering rules in Linux operating systems is related to insecure management of privileges. Exploiting this vulnerability allows a malicious actor to execute arbitrary bash commands by adding comments to security rules fro...

The vulnerability of Intel Quartus Prime’s automated design system lies in its uncontrolled search path, which allows attackers to escalate their privileges.

The vulnerability of Intel Quartus Prime’s automated design system is related to an uncontrolled element in the search process. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerabilities of Mozilla Firefox, Firefox ESR, and the email client Thunderbird, Thunderbird ESR, are related to the possibility of exploiting memory after it is freed. This allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of Mozilla Firefox, Firefox ESR, and the email client Thunderbird, Thunderbird ESR, is related to the possibility of using memory after it is freed. Exploiting this vulnerability can allow a remote attacker to compromise the confidentiality, integrity, and accessibility of...

The vulnerabilities of Mozilla Firefox, Firefox ESR, and the email client Thunderbird, Thunderbird ESR, are related to synchronization errors when using a shared resource (“Race Situation”). These vulnerabilities allow attackers to gain unauthorized access to protected information.

The vulnerability of Mozilla Firefox, Firefox ESR, and the email client Thunderbird, Thunderbird ESR, is related to synchronization errors when using a shared resource “Race Situation”. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerabilities of Intel System Resources Defense and Intel System Security Report, microprogramming software for Intel processors, allow attackers to disclose protected information.

The vulnerabilities of Intel System Resources Defense and Intel System Security software for Intel microprocessors are related to synchronization errors when using shared resources. Exploiting these vulnerabilities can allow attackers to disclose sensitive information that is protected by these...

The vulnerability of the upKeeper Instant Privilege Access software lies in its insecure management of privileges, allowing attackers to escalate their own privileges.

The vulnerability of the upKeeper Instant Privilege Access software lies in the insecure management of privileges. Exploiting this vulnerability could allow a malicious actor to increase their privileges remotely...

The vulnerability of the set_add_routing function in the internet.cgi script of the Wavlink AC3000 (WL-WN533A8) router microprogramming system allows a hacker to execute arbitrary commands.

The vulnerability of the setaddrouting function in the internet.cgi script of the Wavlink AC3000 WL-WN533A8 router microprogramming system is related to the lack of data cleaning measures at the management level. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

The vulnerability of the set_qos() function in the internet.cgi script of the Wavlink AC3000 router microprogramming system allows a hacker to execute arbitrary commands.

The vulnerability of the setqos function in the internet.cgi script of the Wavlink AC3000 WL-WN533A8 router microprogramming system is related to the escape of operations from the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands by sending...

The vulnerability of the qosSettings() function in the qos.cgi script of the Wavlink AC3000 (WL-WN533A8) router’s software allows a hacker to execute arbitrary code.

The vulnerability of the qosSettings function in the qos.cgi script of the Wavlink AC3000 WL-WN533A8 router software lies in the fact that the output of the operation goes beyond the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the set_ftp_cfg() function in the nas.cgi script of the Wavlink AC3000 router’s microprogramming system allows a hacker to circumvent existing security restrictions.

The vulnerability of the setftpcfg function in the nas.cgi script of the Wavlink AC3000 WL-WN533A8 router’s microprogramming system is related to errors in system configuration or settings. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions by sending...

The vulnerability of GitLab Pages, a software platform based on Git for collaborative code development on GitLab, allows attackers to influence the integrity of data.

The vulnerability of GitLab Pages, a software platform based on Git for collaborative code development on GitLab, is related to incomplete comparisons with absent factors. Exploiting this vulnerability could allow a malicious actor to influence the integrity of data...

The vulnerability of the Ivanti Connect Secure network access control tool lies in the reading of data outside the permitted range in memory, allowing a intruder to trigger a service failure.

The vulnerability of the Ivanti Connect Secure network access control tool is related to reading data beyond the allowed range in memory. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

The vulnerability of the Address Book URI field in the Thunderbird email client, specifically in Thunderbird ESR, arises from the lack of protection for the website structure. This allows attackers to execute arbitrary JavaScript code.

The vulnerability of the Address Book URI field in the Thunderbird email client, specifically in Thunderbird ESR, is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to execute arbitrary JavaScript code remotely...

The vulnerability of the eventfd file descriptor in the libcurl library allows a attacker to execute arbitrary code or disclose protected information.

The vulnerability of the eventfd file descriptor in the libcurl library is related to multiple releases of the same resource or descriptor. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or disclose sensitive information...

The vulnerability in the virtual learning environment Moodle, related to the lack of measures to protect the SQL query structure, allows attackers to gain unauthorized access to protected information.

The vulnerability in the virtual training environment Moodle is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information by sending a specially...

The vulnerability of the Git-based software platform for collaborative code development on GitLab EE/CE arises from the lack of measures taken to protect the structure of web pages. This allows attackers to carry out XSS attacks.

The vulnerability of the Git-based software platform for collaborative code development in GitLab EE/CE is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

The vulnerability of the Unmarshal function in the Go YAML library, related to deficiencies in the deserialization mechanism, allows attackers to trigger a denial-of-service attack.

The vulnerability of the Unmarshal function in the Go YAML library is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability can allow an attacker, operating remotely, to cause service failures...

The vulnerabilities of Intel System Resources Defense and Intel System Security Report, microprogramming software for Intel processors, allow attackers to enhance their privileges.

The vulnerability of Intel System Resources Defense and Intel System Security software related to Intel microprocessors involves executing operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of the Parameter Context component in the Apache NiFi data processing platform allows a hacker to access confidential information.

The vulnerability of the Parameter Context component in the Apache NiFi data processing platform relates to the disclosure of information through registration files. Exploiting this vulnerability may allow attackers to gain access to confidential information...

The vulnerability of the web interface of the Aruba Networks ClearPass Policy Manager allows a perpetrator to execute arbitrary commands.

The vulnerability of the Aruba Networks ClearPass Policy Manager’s web interface is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor to execute arbitrary commands remotely...

The vulnerability of the implementations of TLS and SSL protocols in the B&R Automation Runtime and B&R mapp View software for managing and controlling industrial processes allows a perpetrator to compromise the integrity of the protected information.

The vulnerability of the TLS and SSL protocol implementations in B&R Automation Runtime and B&R mapp View software for process control and management involves the use of cryptographic algorithms that contain vulnerabilities. Exploiting this vulnerability could allow a malicious actor to compromis...

The vulnerability of the set_ftp_cfg() function in the nas.cgi script of the Wavlink AC3000 router’s microprogramming system allows a hacker to circumvent existing security restrictions.

The vulnerability of the setftpcfg function in the nas.cgi script of the Wavlink AC3000 WL-WN533A8 router’s microprogramming system is related to errors in system configuration or settings. Exploiting this vulnerability allows a malicious actor to circumvent existing security restrictions by...

The vulnerability of the add_dir() function in the nas.cgi script of the Wavlink AC3000 router’s microprogramming system allows a hacker to circumvent existing security restrictions.

The vulnerability of the adddir function in the nas.cgi script of the Wavlink AC3000 WL-WN533A8 router microprogramming system is related to an incorrect restriction on the path name to the restricted directory. Exploiting this vulnerability allows a malicious actor to bypass existing security...

The vulnerability of the `new_stream_audio` function in the `fftools/ffmpeg_mux_init.c` file of the FFmpeg multimedia library allows a hacker to execute arbitrary code.

The vulnerability of the newstreamaudio function in the fftools/ffmpegmuxinit.c file of the FFmpeg multimedia library is related to a memory reclamation error. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of the msp_info_htm() function in D-Link DI-8200 router microprogramming software allows a hacker to execute arbitrary commands.

The vulnerability of the mspinfohtm function in D-Link DI-8200 router microprogramming software is related to the execution of operations outside the buffer during the processing of the flag and cmd parameters. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

The vulnerability of IBM Concert Software’s artificial intelligence-based automation tools lies in the lack of data encryption measures, which allows attackers to disclose protected information.

The vulnerability of IBM Concert Software’s artificial intelligence-based automation tools is related to the lack of data encryption measures. Exploiting this vulnerability could allow a malicious actor to disclose protected information by executing a “man-in-the-middle” attack...

The vulnerability of the Safearchive library for processing tar and zip archives lies in its uncontrolled search path element, which allows attackers to escalate their privileges.

The vulnerability of the Safearchive library for processing tar and zip archives is related to an uncontrolled element in the search process. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of the Git-based software platform for collaborative code development in GitLab Enterprise Edition, related to improper management of user actions, allows a violator to gain unauthorized access to protected information.

The vulnerability of the Git-based software platform for collaborative code development in GitLab Enterprise Edition is related to improper management of user actions. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected informati...

The vulnerability of the nvdisasm file in the NVIDIA CUDA Toolkit software for parallel computing on Graphics Processing Units allows a hacker to induce a service failure.

The vulnerability of the nvdisasm file in the NVIDIA CUDA Toolkit for parallel computing on Graphics Processing Units is related to reading data beyond the allowed range in memory. Exploiting this vulnerability can allow an attacker to cause a system failure...

The vulnerabilities of Intel System Resources Defense and Intel System Security Report, microprogramming software for Intel processors, allow attackers to enhance their privileges.

The vulnerability of Intel System Resources Defense and Intel System Security software related to Intel microprocessors involves executing operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of the Query Handler component of the IBM DB2 database management system and the IBM DB2 Connect Server automatic redirection server allows a perpetrator to cause service failures.

The vulnerability of the Query Handler component of the IBM DB2 database management system and the IBM DB2 Connect Server automatic redirection server is related to uncontrolled memory allocation. Exploiting this vulnerability could allow a malicious actor to cause service interruptions by using ...

The vulnerability of the sch_reboot() function in the adm.cgi script of the Wavlink AC3000 (WL-WN533A8) router’s microprogramming system allows a hacker to execute arbitrary commands.

The vulnerability of the schreboot function in the adm.cgi script of the Wavlink AC3000 WL-WN533A8 router’s microprogramming system is related to the failure to take measures for data cleaning at the control level. Exploiting this vulnerability allows a remote attacker to execute arbitrary comman...

The vulnerability of the sch_reboot() function in the adm.cgi script of the Wavlink AC3000 (WL-WN533A8) router’s microprogramming system allows a hacker to execute arbitrary commands.

The vulnerability of the schreboot function in the adm.cgi script of the Wavlink AC3000 WL-WN533A8 router’s microprogramming system is related to the lack of measures taken to manage data at the control level. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands by...

The vulnerability of the add_dir() function in the nas.cgi script of the Wavlink AC3000 router’s microprogramming system allows a hacker to execute arbitrary commands.

The vulnerability of the adddir function in the nas.cgi script of the Wavlink AC3000 WL-WN533A8 router’s microprogramming system is related to the failure to take measures to neutralize special elements. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands by sendi...

The vulnerability of the openvpn_server_setup() function in the openvpn.cgi scenario of the Wavlink AC3000 (WL-WN533A8) router microprogramming software allows a hacker to circumvent existing security restrictions.

The vulnerability of the openvpnserversetup function in the openvpn.cgi script of the Wavlink AC3000 WL-WN533A8 router software is related to errors in system configuration or settings. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions by sending...

The vulnerability of the virtual learning environment Moodle, related to lack of access control, allows a intruder to gain unauthorized access to protected information.

The vulnerability of the virtual learning environment Moodle is related to lack of access control. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...