Lucene search
K
Bdu FstecRecent

90604 matches found

BDU FSTEC
BDU FSTEC
added 2026/02/13 12:0 a.m.3 views

The vulnerability of the GDI+ component of the Windows operating system, which allows a hacker to trigger a service failure

The vulnerability of the GDI+ component in the Windows operating system is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a malicious actor to cause service interruptions from a remote location...

7.8CVSS6.1AI score0.0134EPSS
Exploits0References2Affected Software21
BDU FSTEC
BDU FSTEC
added 2026/02/13 12:0 a.m.3 views

The vulnerability of Cisco Unified Contact Center Enterprise and Cisco Packaged Contact Center Enterprise software lies in the insufficient protection of the website structure, which allows attackers to perform cross-site scripting (XSS) attacks.

The vulnerability of Cisco Unified Contact Center Enterprise and Cisco Packaged Contact Center Enterprise software lies in the insufficient protection of the website structure. Exploiting this vulnerability allows an attacker to perform cross-site scripting attacks XSS remotely...

5.5CVSS5.5AI score0.00173EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/02/13 12:0 a.m.3 views

The vulnerability of the microprogramming software in Cisco SIP IP phones such as Cisco Video Phone 8875, Desk Phone 9800, and IP Phones series 7800, 8800, allows a intruder to gain access to record arbitrary files, due to errors in access control.

The vulnerability of the microprogramming software in Cisco SIP IP phones, such as Cisco Video Phone 8875, Desk Phone 9800, and IP Phones series 7800 and 8800, is related to access control errors. Exploiting this vulnerability can allow an attacker operating remotely to gain access to arbitrary...

5.3CVSS5.9AI score0.00332EPSS
Exploits0References3Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/02/13 12:0 a.m.3 views

The vulnerability of the microprogramming software in Cisco SIP IP phones such as Cisco Video Phone 8875, Desk Phone 9800, and IP Phones series 7800 and 8800 relates to the ability to disclose information, allowing unauthorized access to confidential data.

The vulnerability of the microprogramming software in Cisco SIP IP phones, such as Cisco Video Phone 8875, Desk Phone 9800, and IP Phone 7800/8800 series, relates to the disclosure of information. Exploiting this vulnerability can allow an unauthorized attacker to gain unauthorized access to...

5.3CVSS5.8AI score0.00349EPSS
Exploits0References3Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/02/13 12:0 a.m.3 views

The vulnerability of the chassisd system daemon in Juniper Networks’ Junos routers of the MX, SRX, and EX series allows a attacker to cause service interruptions.

The vulnerability of the chassisd system daemon in Juniper Networks’ Junos routers of the MX, SRX, and EX series is related to the swapping of zero pointers. Exploiting this vulnerability can allow an attacker to cause service interruptions...

5.5CVSS5.8AI score0.0013EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/13 12:0 a.m.4 views

The vulnerability of the Power BI Report Server server, related to insufficient validation of input data, allows a perpetrator to execute arbitrary code.

The vulnerability of the Power BI Report Server is related to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

9CVSS6AI score0.00902EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/13 12:0 a.m.3 views

The vulnerability of Microsoft Office, Excel, and 365 Apps for Enterprise packages lies in the fact that operations are performed outside of the buffer in memory, allowing attackers to exploit their privileges.

The vulnerability of Microsoft Office, Excel, and 365 Apps for Enterprise packages is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.8CVSS6.1AI score0.00524EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/02/13 12:0 a.m.3 views

The vulnerability of the Mailslot File System component in Windows operating systems, which allows attackers to exploit their privileges.

The vulnerability of the Mailslot File System component in Windows operating systems relates to the possibility of exploiting memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...

7CVSS5.8AI score0.00767EPSS
Exploits0References2Affected Software21
BDU FSTEC
BDU FSTEC
added 2026/02/13 12:0 a.m.3 views

The vulnerability in the implementation of the LDAP service protocol on the Windows operating system allows a hacker to induce a service failure.

The vulnerability of the LDAP Lightweight Directory Access Protocol implementation in the Windows operating system is related to pointer aliasing. Exploiting this vulnerability can allow a malicious actor to cause service failures...

7.8CVSS5.8AI score0.0134EPSS
Exploits0References2Affected Software7
BDU FSTEC
BDU FSTEC
added 2026/02/13 12:0 a.m.4 views

The vulnerability of the HTTP.sys driver on Windows operating systems, which allows attackers to increase their privileges

The vulnerability of the HTTP.sys driver on Windows operating systems is related to synchronization errors when using shared resources „Race Conditions“. Exploiting this vulnerability can allow an attacker to gain increased privileges...

7.8CVSS5.8AI score0.00267EPSS
Exploits0References2Affected Software14
BDU FSTEC
BDU FSTEC
added 2026/02/13 12:0 a.m.3 views

The vulnerability of the Hyper-V component of the Windows operating system, allowing a hacker to execute arbitrary code

The vulnerability of the Hyper-V component of the Windows operating system is related to buffer overflows in dynamic memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.3CVSS6.2AI score0.01243EPSS
Exploits1References2Affected Software17
BDU FSTEC
BDU FSTEC
added 2026/02/13 12:0 a.m.3 views

The vulnerability of the compatibility subsystem’s kernel allows for the execution of Linux applications on Windows operating systems through the Windows Subsystem for Linux (WSL2). This enables attackers to gain increased privileges.

The vulnerability of the compatibility subsystem’s kernel for running Linux applications, as provided by Windows Subsystem for Linux WSL2 on Windows operating systems, is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow attackers to gain...

7CVSS5.8AI score0.00261EPSS
Exploits0References2Affected Software11
BDU FSTEC
BDU FSTEC
added 2026/02/13 12:0 a.m.3 views

The vulnerability of the Snort detection mechanism of Cisco Secure Firewall’s Threat Defense system allows a perpetrator to gain unauthorized access to confidential information.

The vulnerability of the Snort detection mechanism of Cisco Secure Firewall’s Threat Defense system is related to the disclosure of information. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to confidential information...

5.3CVSS6.3AI score0.00567EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/02/13 12:0 a.m.3 views

The vulnerability in the web interface of the Cisco Identity Services Engine (ISE) management platform allows a attacker to perform XSS attacks.

The vulnerability of the Cisco Identity Services Engine ISE web interface relates to insufficient protection of the website structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks...

5.5CVSS5.8AI score0.00238EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/13 12:0 a.m.4 views

The vulnerability in the web interface of the Cisco Identity Services Engine (ISE) and the Cisco ISE Passive Identity Connector (ISE-PIC), a virtual device for collecting user authentication data, allows attackers to carry out XSS attacks.

The vulnerability of the Cisco Identity Services Engine ISE web interface and the Cisco ISE Passive Identity Connector ISE-PIC virtual authentication data collection device is related to the failure to implement measures to neutralize HTML tags. Exploiting this vulnerability allows a malicious...

5.5CVSS5.9AI score0.00238EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2026/02/13 12:0 a.m.4 views

The vulnerability of the Gridscale X Prepay software lies in its inability to properly respond to incoming requests, allowing an attacker to carry out a brute-force attack.

The vulnerability of the Gridscale X Prepay software is related to inconsistencies in the responses to incoming requests. Exploiting this vulnerability allows a remote attacker to carry out a brute-force attack...

5.3CVSS7.6AI score0.00393EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/13 12:0 a.m.5 views

The compatibility subsystem for running Linux applications allows Windows Subsystem for Linux (WSL) operating systems. This enables attackers to increase their privileges.

The vulnerability of the compatibility subsystem for running Linux applications involves the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...

7CVSS5.8AI score0.0034EPSS
Exploits0References2Affected Software11
BDU FSTEC
BDU FSTEC
added 2026/02/13 12:0 a.m.4 views

The vulnerability of Microsoft Office, Excel, and 365 Apps for Enterprise programs relates to reading data beyond the buffer in memory, allowing an attacker to disclose protected information.

The vulnerability of Microsoft Office, Excel, and 365 Apps for Enterprise packages is related to reading data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to disclose sensitive information that is protected by these security measures...

5.5CVSS5.8AI score0.00596EPSS
Exploits0References2Affected Software4
BDU FSTEC
BDU FSTEC
added 2026/02/13 12:0 a.m.3 views

The vulnerability of the Windows Installer component of Windows applications allows attackers to increase their privileges.

The vulnerability of the Windows Installer component of Windows applications is related to an incorrect definition of symbolic links before accessing the file. Exploiting this vulnerability can allow attackers to increase their privileges...

4.7CVSS5.8AI score0.00355EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/13 12:0 a.m.2 views

The vulnerability of the Azure Local local infrastructure software, related to errors in the certificate validation process, allows a perpetrator to execute arbitrary code.

The vulnerability of the Azure Local local infrastructure software is related to errors in the certificate validation process. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

8.1CVSS6.1AI score0.00729EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/13 12:0 a.m.3 views

The vulnerability in the web interface of the Cisco Unified Computing System (UCS) Manager allows a perpetrator to execute arbitrary code and expose confidential information.

The vulnerability of the web interface of the Cisco Unified Computing System UCS Manager relates to the lack of protective measures for the web page structure. Exploiting this vulnerability allows an attacker to execute arbitrary code and disclose confidential information...

5.5CVSS6.3AI score0.00207EPSS
Exploits0References3Affected Software4
BDU FSTEC
BDU FSTEC
added 2026/02/12 12:0 a.m.2 views

The vulnerability of the shadow copying subsystem of the Secret Net Studio protection tool allows a hacker to manipulate the screen locking process.

The vulnerability of the shadow copying subsystem of the Secret Net Studio protection tool is related to deficiencies in resource blocking mechanisms. Exploiting this vulnerability could allow attackers to influence the screen locking process...

3.6CVSS5.8AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/12 12:0 a.m.4 views

The vulnerability of the Notepad text editor on Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Windows operating system’s text editor, Notepad, is related to the lack of measures taken at the control level to clean up data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS6.4AI score0.1165EPSS
Exploits9References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/12 12:0 a.m.5 views

The vulnerability of the ext4_bmap_bit_set function in the lwext4 library allows a attacker to execute arbitrary code and cause a service failure.

The vulnerability of the ext4bmapbitset function in the lwext4 library arises from writing beyond the buffer of the block bitmap when processing a specially crafted ext image. Exploitation of this vulnerability could allow an attacker to execute arbitrary code and cause service failures...

5.5CVSS6.3AI score
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/12 12:0 a.m.5 views

The vulnerability of the “Continent” security complex version 4, which involves the use of weak protection mechanisms, allows attackers to bypass authentication mechanisms and gain administrative access to the complex.

The vulnerability of the “Continent” security complex version 4 is related to the use of weak protection mechanisms. Exploiting this vulnerability could allow an attacker to bypass authentication mechanisms and gain administrative access to the complex...

7.4CVSS5.8AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/12 12:0 a.m.5 views

The vulnerability of the Info.plist parser in Swedish

...

5.8AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2026/02/12 12:0 a.m.4 views

The vulnerability of the ext4_fs_init inode_bitmap function in the lwext4 library allows a attacker to execute arbitrary code and cause a service denial.

The vulnerability of the ext4fsinit inodebitmap function in the lwext4 library involves a heap-buffer-overflow issue during the initialization of the inode bitmap. Exploiting this vulnerability allows an attacker to execute arbitrary code and cause service failures...

7.8CVSS6.1AI score
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/12 12:0 a.m.3 views

The vulnerability of GitHub Copilot for Jetbrains, related to the lack of data cleaning at the management level, allows a hacker to execute arbitrary code.

The vulnerability of GitHub Copilot for Jetbrains relates to the lack of measures taken to protect data at the management level. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

10CVSS6.1AI score0.0081EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/11 12:0 a.m.2 views

The vulnerability of the raid1_remove_disk() function in the drivers/md/raid1.c module of the Linux kernel’s device driver for multiple devices (RAID and LVM), which allows a hacker to cause a service failure.

The vulnerability of the raid1removedisk function in the drivers/md/raid1.c module of the Linux device driver suite, which handles multiple devices such as RAID and LVM, is related to buffer overflow attacks. Exploiting this vulnerability could allow an attacker to cause a system failure...

4.4CVSS6.8AI score0.00193EPSS
Exploits0References20Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/02/11 12:0 a.m.3 views

The vulnerability of the web client scenario creation tool of the SAP CRM system, which manages customer relationships, and the SAP S/4HANA software platform allows a perpetrator to execute arbitrary code and gain unauthorized access to the database.

The vulnerability of the web client scenario creation tool of the SAP CRM system and the SAP S/4HANA software platform is related to deficiencies in the authentication process. Exploiting this vulnerability allows an attacker to execute arbitrary code and gain unauthorized access to the database ...

9.9CVSS6.5AI score0.0049EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/02/11 12:0 a.m.3 views

Vulnerability of functions rtw89_core_register_hw() and rtw89pci_probe() in the driver module net/wireless/realtek/rtw89/core.c of the Realtek wireless adapter driver for the Linux operating system. This vulnerability allows a hacker to cause a service failure.

The vulnerability of the functions rtw89coreregisterhw and rtw89pciprobe in the driver module net/wireless/realtek/rtw89/core.c of the Realtek wireless adapter driver in the Linux operating system is related to synchronization errors when using shared resources. Exploiting this vulnerability can...

4.7CVSS5.8AI score0.00104EPSS
Exploits0References9Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/02/11 12:0 a.m.3 views

The vulnerability of the `efivar_ssdt_load()` function in the `drivers/firmware/efi/efi.c` file of the Linux kernel’s driver framework allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the efivarssdtload function in the drivers/firmware/efi/efi.c file of the Linux kernel’s firmware driver relates to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

7.8CVSS7AI score0.00143EPSS
Exploits0References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/02/11 12:0 a.m.2 views

The vulnerability of the XML syntactic analysis library Apache Xerces, related to the execution of a loop with an unavailable exit condition, allows attackers to cause service failures.

The vulnerability of the XML syntactic analysis library Apache Xerces is related to the execution of a loop with an unavailable exit condition. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...

7.8CVSS6.9AI score0.0444EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/02/11 12:0 a.m.2 views

The vulnerability of the Xerces2 Java XML parser, related to resource management errors, allows attackers to cause service failures.

The vulnerability of the Xerces2 Java XML parser is related to resource management errors. Exploiting this vulnerability can allow a malicious actor to cause service failures by sending a specially crafted XML message...

7.8CVSS6.8AI score0.24738EPSS
Exploits0References11Affected Software4
BDU FSTEC
BDU FSTEC
added 2026/02/11 12:0 a.m.8 views

The vulnerability of the KLogic SCADA system’s virtual controller “KASCAD” allows a intruder to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the KLogic SCADA system “KASKAD”’s virtual controller is related to the use of a password hash instead of the actual password for authentication. Exploiting this vulnerability allows an intruder to compromise the confidentiality, integrity, and accessibility of the protected...

10CVSS5.8AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/11 12:0 a.m.4 views

The vulnerability of the JSON Web Token Handler component of the Keycloak identity and access management software allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the JSON Web Token Handler component in the software for managing identification and access in Keycloak is related to errors in verifying the cryptographic signature. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to...

8.5CVSS5.8AI score0.00453EPSS
Exploits2References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/11 12:0 a.m.3 views

The vulnerability of the org.assertj.core.util.xml.XmlStringPrettyFormatter component in the Java library for writing assertions in module tests in AssertJ allows attackers to perform XXE attacks.

The vulnerability in the org.assertj.core.util.xml.XmlStringPrettyFormatter component of the Java library for writing assertions in module tests within AssertJ is related to an incorrect limitation on XML references to external objects. Exploiting this vulnerability could allow attackers to perfo...

7.3CVSS7.2AI score0.00542EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/02/11 12:0 a.m.2 views

The vulnerability of the commonprefix() function in the pip module of the Python programming language allows a malicious actor to gain access to add and modify any arbitrary files.

The vulnerability of the commonprefix function in the pip module of the Python programming language is related to an incorrect limitation on the path name for the directory. Exploiting this vulnerability could allow a malicious actor to gain access to add and modify any files they desire...

4CVSS7.1AI score0.0039EPSS
Exploits1References5Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/02/11 12:0 a.m.3 views

The vulnerability of the HSQLDB database management system lies in the use of externally controlled input for class selection, allowing an attacker to execute arbitrary code.

The vulnerability of the HyperSQL Database Management System HSQLDB is related to the use of externally controlled input data for class selection. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

10CVSS7.1AI score0.03519EPSS
Exploits1References3Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/02/11 12:0 a.m.5 views

The vulnerability of the EdDSA digital signature algorithm implementation in EdDSA-Java (ed25519-java) arises from incorrect verification of the EdDSA cryptographic signature. This allows a perpetrator to replace the cryptographic signature with an unauthorized one.

The vulnerability of the EdDSA digital signature algorithm implementation in EdDSA-Java ed25519-java is related to incorrect verification of the EdDSA cryptographic signature. Exploiting this vulnerability could allow an attacker to replace the cryptographic signature...

4.3CVSS6.4AI score0.00133EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/02/11 12:0 a.m.2 views

The vulnerability of the node-tar library on the Node.js software platform allows attackers to gain access and modify/write arbitrary files.

The vulnerability of the node-tar library in the Node.js software platform is related to the manipulation of intersite requests. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to modify and write arbitrary files...

9CVSS5.9AI score0.00233EPSS
Exploits1References4Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/02/11 12:0 a.m.3 views

The vulnerability of the PostgreSQL database management system, related to incorrect array indexing, allows a hacker to execute arbitrary code in the context of the current user.

The vulnerability of the PostgreSQL database management system is related to incorrect array indexing. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the current user, using specially created queries...

9CVSS6.1AI score0.01079EPSS
Exploits0References6Affected Software8
BDU FSTEC
BDU FSTEC
added 2026/02/11 12:0 a.m.3 views

The vulnerability of the FortiSandbox’s web interface allows a perpetrator to execute arbitrary code.

The vulnerability of the FortiSandbox threat detection and mitigation web interface is related to the lack of protective measures for the website’s structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending specially crafted requests...

10CVSS6.1AI score0.06289EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/11 12:0 a.m.4 views

The vulnerability of the adv7842_cp_log_status() function in the drivers/media/i2c/adv7842.c file of the Linux kernel’s multimedia device driver allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the adv7842cplogstatus function in the drivers/media/i2c/adv7842.c file of the Linux kernel-based multimedia device driver involves a lack of checking for the return value. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

5.5CVSS7AI score0.00117EPSS
Exploits0References10Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/02/11 12:0 a.m.4 views

The vulnerability of the drain_obj_stock() function in the mm/memcontrol.c module of the Linux kernel’s memory management subsystem allows a hacker to cause a service failure.

The vulnerability of the drainobjstock function in the mm/memcontrol.c module of the Linux kernel’s memory management subsystem is related to the pointer dereferencing that occurs due to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to cau...

4.7CVSS5.8AI score0.00126EPSS
Exploits0References11Affected Software6
BDU FSTEC
BDU FSTEC
added 2026/02/11 12:0 a.m.3 views

The vulnerability of the irdma_net_event() function in the drivers/infiniband/hw/irdma/utils.c file of the Linux operating system’s kernel driver allows a hacker to cause a service failure.

The vulnerability of the irdmanetevent function in the drivers/infiniband/hw/irdma/utils.c file of the InfiniBand driver for the Linux operating system is related to reading beyond the buffer boundaries. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

3.1CVSS6.5AI score0.00153EPSS
Exploits0References11Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/02/11 12:0 a.m.3 views

The vulnerability of the Shell command shell in Windows operating systems, which allows attackers to bypass existing security mechanisms

The vulnerability of the Shell command shell in Windows operating systems is related to a breach of data protection mechanisms. Exploiting this vulnerability allows an attacker to bypass existing security measures remotely...

10CVSS6.1AI score0.25835EPSS
Exploits3References2Affected Software21
BDU FSTEC
BDU FSTEC
added 2026/02/11 12:0 a.m.4 views

The vulnerability of the nouveau_gem_prime_import_sg_table() function in the drivers/gpu/drm/nouveau/nouveau_prime.c driver of the Direct Rendering Infrastructure (DRI) subsystem of the NVIDIA graphics card driver for the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the nouveaugemprimeimportsgtable function in the drivers/gpu/drm/nouveau/nouveauprime.c file of the Nouveau driver for Direct Rendering Infrastructure DRI in NVIDIA’s Linux kernel is related to the reutilization of previously freed memory. Exploiting this vulnerability could...

7.8CVSS6.6AI score0.0015EPSS
Exploits0References10Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/02/11 12:0 a.m.4 views

The vulnerability of the gfx_v9_0_hw_fini() function in the drivers/gpu/drm/amd/amdgpu/gfx_v9_0.c driver for AMD GPU cores in Linux operating systems allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the gfxv90hwfini function in the drivers/gpu/drm/amd/amdgpu/gfxv90.c driver for AMD GPU cores in Linux operating systems is related to the use of a name with incorrect references. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...

7.8CVSS6.6AI score0.00153EPSS
Exploits0References12Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/02/11 12:0 a.m.4 views

The vulnerability of the Microsoft Office software package arises from the use of unreliable input data during security decision-making, allowing attackers to circumvent existing security restrictions.

The vulnerability of the Microsoft Office suite is related to the use of unreliable input data during security decision-making. Exploiting this vulnerability can allow attackers to circumvent existing security restrictions...

7.8CVSS6.1AI score0.01517EPSS
Exploits0References4Affected Software2
Total number of security vulnerabilities90604