90604 matches found
The vulnerability of the “Vzlet SP” software suite arises from the lack of measures taken to protect the structure of the web page, allowing a hacker to execute arbitrary code.
The vulnerability of the “Vzlet SP” software suite is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the “Vzlet SP” software suite is related to deficiencies in the authentication process. This allows a hacker to alter the user identifier to any desired value and reassign the user’s password.
The vulnerability of the “Vzlet SP” software suite is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to remotely alter the user identifier and reassign the user’s password...
The vulnerability of the “Vzlet SP” software suite, related to deficiencies in the authorization process, allows a perpetrator to gain unauthorized access to protected information or functions.
The vulnerability of the “Vzlet SP” software complex is related to deficiencies in the authentication process. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information or functions...
The vulnerability of the “Vzlet SP” software suite, related to deficiencies in the authorization process, allows a perpetrator to gain unauthorized access to protected information or functions.
The vulnerability of the “Vzlet SP” software complex is related to deficiencies in the authentication process. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information or functions...
The vulnerability of the “Vzlet SP” software suite, related to the unlimited loading of dangerous types of files, allows a perpetrator to load any files they desire.
The vulnerability of the “Vzlet SP” software complex is related to the unlimited loading of dangerous files. Exploiting this vulnerability allows a remote attacker to load any desired files...
The vulnerability of the “Vzlet SP” software suite arises from the lack of measures taken to protect the structure of the web page, allowing a hacker to execute arbitrary code.
The vulnerability of the “Vzlet SP” software complex is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the “Vzlet SP” software suite arises from the lack of measures taken to protect the structure of the web page, allowing a hacker to execute arbitrary code.
The vulnerability of the “Vzlet SP” software suite is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the “Vzlet SP” software suite arises from the lack of measures taken to protect the structure of the web page, allowing a hacker to execute arbitrary code.
The vulnerability of the “Vzlet SP” software suite is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
Windows OOB
...
The vulnerability of the Trust Domain Extensions (TDX) module in Intel microprogramming software allows a hacker to gain unauthorized access to protected information.
The vulnerability of the Trust Domain Extensions TDX module in Intel microprogramming devices relates to reading data outside of the allowed range in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...
The vulnerability of the Secure Encrypted Virtualization (SEV) technology of AMD’s microprogramming processor allows attackers to compromise the confidentiality of protected information.
The vulnerability of the Secure Encrypted Virtualization SEV technology of AMD microprocessors is related to deficiencies in access control. Exploiting this vulnerability could allow attackers to compromise the confidentiality of the protected information...
The vulnerability of the Adobe DNG Software Development Kit’s file reading and writing software lies in its integer overflow vulnerabilities, which allow attackers to trigger a service failure.
The vulnerability of the Adobe DNG Software Development Kit’s file reading and writing software is related to a numerical overflow condition. Exploiting this vulnerability can allow an attacker to cause a service failure using a specially created file...
The vulnerability of the Adobe Bridge file manager, related to integer overflow, allows an attacker to execute arbitrary code.
The vulnerability of the Adobe Bridge file manager is related to a potential integer overflow. Exploiting this vulnerability could allow an attacker to execute arbitrary code...
The vulnerability of Microprogrammed Software for Industrial Controllers SCADAPack 47xi, SCADAPack 47x, and SCADAPack 57x, as well as the SCADAPack RemoteConnect configuration software, stems from insufficient testing of unusual or exceptional states. This allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the microprogrammed software of the SCADAPack 47xi, SCADAPack 47x, and SCADAPack 57x systems lies in the insufficient testing of unusual or exceptional states. Exploiting this vulnerability could allow an attacker operating remotely to compromise the confidentiality, integrit...
The vulnerability of the SCADA system FAST/TOOLS lies in the redirection of URLs to an unreliable website, allowing a hacker to redirect users to any given URL address.
The vulnerability of the SCADA system FAST/TOOLS is related to the redirection of URLs to an unreliable website. Exploiting this vulnerability allows a malicious actor to redirect users to any given URL address...
The vulnerability of the MUNGE authentication service allows a malicious actor to gain unauthorized access to protected information and elevate their privileges to root level.
The vulnerability of the MUNGE authentication service is related to writing beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information and elevate their privileges to root level by sending specially crafted packets...
The vulnerability of the SCADA system’s web server FAST/TOOLS allows a intruder to disclose protected information.
The vulnerability of the FAST/TOOLS SCADA system’s web server is related to the use of cryptographic algorithms that contain vulnerabilities. Exploiting this vulnerability could allow a malicious actor to disclose the protected information...
The vulnerability of the SCADA system’s web server FAST/TOOLS allows a perpetrator to carry out an MITM attack.
The vulnerability of the FAST/TOOLS SCADA system’s web server is related to improper security checks for standard elements. Exploiting this vulnerability could allow a malicious actor to carry out an MITM attack...
The vulnerability of Adobe Audition’s audio editor lies in its ability to record beyond the buffer limit in memory, allowing a hacker to execute arbitrary code.
The vulnerability of Adobe Audition is related to recording beyond the buffer limits in memory. Exploiting this vulnerability allows a hacker to execute arbitrary code, provided that the user opens a specially crafted file...
The vulnerability of Adobe Audition’s audio editor, related to reading data beyond the buffer in memory, allows a hacker to gain unauthorized access to protected information.
The vulnerability of Adobe Audition relates to reading data beyond the buffer in memory. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information, provided that the user opens a specially crafted file...
The vulnerability of Adobe Audition’s audio editor lies in the ability to record data beyond the buffer limit in memory, which allows a hacker to cause a service failure.
The vulnerability of Adobe Audition is related to the recording of data beyond the buffer limits in memory. Exploiting this vulnerability can allow an attacker to cause a service failure if the user opens a specially crafted file...
The vulnerability of Adobe After Effects’ video and dynamic image editing software, related to integer overflow, allows attackers to execute arbitrary code.
The vulnerability of Adobe After Effects software for video and dynamic image editing is related to a numerical overflow condition. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in its reliance on memory after it is freed, allowing an attacker to execute arbitrary code.
The vulnerability of Adobe After Effects’ video and dynamic image editing software relates to the use of memory after deallocation. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
The vulnerability of Adobe InDesign’s computer design automation tool, related to reading data beyond the buffer in memory, allows attackers to gain unauthorized access to protected information.
The vulnerability of Adobe InDesign’s computer layout automation tool is related to reading data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information, provided that the user opens a specially crafted file...
The vulnerability of the 3D model texturing program Adobe Substance 3D Designer, related to writing beyond the buffer boundaries in memory, allows a hacker to execute arbitrary code.
The vulnerability of the 3D model texturing program Adobe Substance 3D Designer lies in the writing of code beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code, provided that the user opens a specially crafted file...
The vulnerability of the 3D model texturing program Adobe Substance 3D Designer, related to reading beyond the permitted range in memory, allows a malicious actor to gain unauthorized access to protected information.
The vulnerability of the 3D model texturing program Adobe Substance 3D Designer lies in the reading of data beyond the permitted range in memory. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information, provided that the user opens a specially...
The vulnerability of the PDF, EPUB, MOBI, FB2, CHM, XPS, and DjVu viewing program SumatraPDF lies in its authentication procedures’ deficiencies, allowing for arbitrary code execution.
The vulnerability of the SumatraPDF software for viewing documents in PDF, EPUB, MOBI, FB2, CHM, XPS, and DjVu formats is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to execute arbitrary code, provided that the user opens a special...
The vulnerability of the mergeConfig() function in the axios library allows a attacker to cause a service failure by sending a specially crafted JSON file.
The vulnerability of the mergeConfig function in the axios library is related to insufficient checks for exceptional states. Exploiting this vulnerability could allow a malicious actor to trigger a service failure by sending a specially crafted JSON file...
The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in its ability to read data beyond the buffer memory limit, allowing an attacker to execute arbitrary code.
The vulnerability of Adobe After Effects’ video and dynamic image editing software relates to reading beyond the buffer limit of memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
The vulnerability of the RMP (Reverse Map Table) component of AMD’s microprogramming software allows attackers to compromise the integrity of protected information.
The vulnerability of the RMP Reverse Map Table component of AMD’s microprogramming system processors is related to incorrect initialization of resources. Exploiting this vulnerability can allow attackers to compromise the integrity of the protected information...
The vulnerability of Dell RecoverPoint’s data protection software for virtual machines, related to the use of strictly encrypted authentication data, allows a malicious actor to gain unauthorized access to the operating system with root privileges.
The vulnerability of Dell RecoverPoint data protection software for virtual machines relates to the use of strictly encrypted authentication data. Exploiting this vulnerability could allow an attacker to gain unauthorized access to the operating system with root privileges...
The vulnerability of the Adobe DNG Software Development Kit’s file reading and writing software lies in its ability to read data beyond the allowed range of memory, allowing an intruder to gain unauthorized access to protected information.
The vulnerability of the Adobe DNG Software Development Kit’s file reading and writing software relates to reading data beyond the permitted range of memory. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...
The vulnerability of the Substance 3D Stager software lies in its inability to handle buffer overflow attacks, allowing attackers to execute arbitrary code.
The vulnerability of the Substance 3D Stager software lies in the ability to execute code outside the buffer boundaries. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file...
The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in its ability to read data beyond the buffer memory limit, allowing an attacker to execute arbitrary code.
The vulnerability of Adobe After Effects’ video and dynamic image editing software relates to reading beyond the buffer limit of memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in its inability to access resources through incompatible data types. This allows attackers to execute arbitrary code.
The vulnerability of Adobe After Effects software for video and dynamic image editing lies in the access to resources through incompatible data types. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
The vulnerability of Adobe InDesign’s computer layout automation tool, related to writing beyond the buffer limit of memory, allows a hacker to trigger a service failure.
The vulnerability of Adobe InDesign’s computer layout automation tool is related to writing beyond the buffer of memory. Exploiting this vulnerability can allow an attacker to cause a service failure if the user opens a specially crafted file...
The vulnerability of Google Chrome’s DevTools component, which allows a hacker to trigger a service failure
The vulnerability of Google Chrome’s DevTools component is related to synchronization errors when using a shared resource “Race Conditions”. Exploiting this vulnerability can allow an attacker to cause a service failure by using a specially created file...
The vulnerability of Google Chrome’s Codecs component allows a hacker to trigger a service failure.
The vulnerability of Google Chrome’s Codecs component is related to writing beyond the buffer boundaries. Exploiting this vulnerability could allow a malicious actor to cause a service failure through a specially created HTML page...
The vulnerability of the File input component in Google Chrome allows a hacker to replace the user interface.
The vulnerability of the File input component in Google Chrome relates to information representation errors in the user interface. Exploiting this vulnerability could allow an attacker to replace the user interface with a specially created HTML page...
The vulnerability of the Google Chrome browser’s CSS component, which allows a hacker to trigger a service failure
The vulnerability of the Google Chrome browser’s CSS component is related to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to cause a service failure through a specially crafted HTML page...
The vulnerability of the Ozone component in the Google Chrome browser allows a hacker to trigger a service failure.
The vulnerability of the Ozone component in the Google Chrome browser is related to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to cause a service failure through a specially created HTML page...
The vulnerability of the Git-based software platform for collaborative code development on GitLab EE/CE lies in the lack of measures taken to protect the website structure, allowing attackers to perform cross-site scripting attacks (XSS).
The vulnerability of the Git-based software platform for collaborative code development in GitLab EE/CE is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...
The vulnerability of the internal locking mechanism of the MongoDB database management system allows a hacker to trigger a service failure.
The vulnerability of the internal locking mechanism of the MongoDB database management system is related to the locking mechanism with unlimited external access. Exploiting this vulnerability could allow a malicious actor to cause service failures...
The vulnerability of Intel microprogramming software, related to incorrect handling of values, allows attackers to exploit their privileges.
The vulnerability of Intel microprogramming software is related to incorrect handling of values. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of the Secure Encrypted Virtualization (SEV) technology of AMD’s microprogramming processor allows attackers to compromise the confidentiality of protected information.
The vulnerability of the Secure Encrypted Virtualization SEV technology of AMD microprocessors is related to deficiencies in access control. Exploiting this vulnerability could allow attackers to compromise the confidentiality of the protected information...
The vulnerability of the EcoStruxure Building Operation Workstation interface and the EcoStruxure Building Operation WebStation software’s web interface arises from improper code generation. This vulnerability allows a perpetrator to execute arbitrary code.
The vulnerability of the EcoStruxure Building Operation Workstation interface and the EcoStruxure Building Operation WebStation software’s web interface is related to incorrect code generation. Exploiting this vulnerability could allow an attacker to execute arbitrary code using a specially creat...
The vulnerability of the Adobe DNG Software Development Kit’s file reading and writing software lies in its integer overflow vulnerabilities, which allow attackers to execute arbitrary code.
The vulnerability of the Adobe DNG Software Development Kit’s file reading and writing software is related to a numerical overflow condition. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file...
The vulnerability of the Adobe DNG Software Development Kit’s file reading and writing software lies in its ability to write beyond the buffer boundaries, allowing an attacker to execute arbitrary code.
The vulnerability of the Adobe DNG Software Development Kit’s file reading and writing software relates to writing beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to execute arbitrary code...
The vulnerability of the Substance 3D Stager software lies in its ability to read data beyond the acceptable range of memory, allowing an attacker to execute arbitrary code.
The vulnerability of the Substance 3D Stager software-related 3D design software is related to reading beyond the allowable range of memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file...
The vulnerability of the Substance 3D Stager software lies in its inability to handle buffer overflow attacks, allowing attackers to execute arbitrary code.
The vulnerability of the Substance 3D Stager software lies in the ability to execute code outside the buffer boundaries. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file...