74701 matches found
The vulnerability of the Simple Network Management Protocol (SNMP) implementation in Cisco IOS and Cisco IOS XE operating systems allows a attacker to induce a service failure.
The vulnerability of the Simple Network Management Protocol SNMP implementation in Cisco IOS and Cisco IOS XE operating systems is related to the escape of operations beyond the buffer in memory. Exploiting this vulnerability can allow a malicious actor to trigger a service failure remotely...
The vulnerability of the Disk Cleanup Tool component of the Windows operating system, which allows a hacker to exploit their privileges
The vulnerability of the Disk Cleanup Tool component of the Windows operating system is related to errors in handling symbolic links. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the e_node() function in the htmldoc/html.cxx script of the HTMLDOC conversion tool allows a perpetrator to cause a service failure.
The vulnerability of the enode function in the htmldoc/html.cxx document, a tool for converting HTML DOC documents, is related to the escape character being output outside of the buffer in memory. Exploiting this vulnerability allows an attacker to cause service interruptions...
The vulnerability of the implementation of the Factory Interface Network Service (FINS) protocol in the microcomputer-based software for programmable logic controllers SYSMAC allows a intruder to gain unauthorized access to protected information and execute arbitrary commands.
The vulnerability of the Factory Interface Network Service FINS protocol implemented in SYSMAC programmable logic controllers is related to the absence of authentication. Exploiting this vulnerability allows a malicious actor, operating remotely, to gain unauthorized access to sensitive informati...
The vulnerability of the setIpPortFilterRules function in the Totolink CP450 router software allows a hacker to execute arbitrary code.
The vulnerability of the setIpPortFilterRules function in the Totolink CP450 router software lies in the reading of data outside the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by sending a specially crafted POST request...
Vulnerabilities include SQLite hint functions and ETRN serialization of the Exim mail server, which allows attackers to cause service interruptions.
The vulnerabilities of SQLite’s hints and Exim mail server’s ETRN serialization are related to the lack of measures taken to protect the SQL query structure. Exploiting these vulnerabilities can allow a malicious actor to cause service failures by sending specially crafted SQL queries...
The vulnerability of the bonding component of the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the bonding component of the Linux operating system’s kernel is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the sctp component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the sctp component in the Linux operating system’s kernel is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the `char` component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the char component in the Linux operating system’s kernel is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service failures...
The vulnerability of components such as DRM, AMDGPU, and CPU cores in the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of DRM/AMDGPU/CPU cores in the Linux operating system is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the Linux operating system’s USB kernel component, which allows a hacker to cause a service failure
The vulnerability of the Linux operating system’s USB kernel component is related to memory corruption. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the netfilter component in the Linux operating system’s kernel allows a hacker to induce a service failure.
The vulnerability of the netfilter component in the Linux operating system’s kernel is related to the use of an uninitialized resource. Exploiting this vulnerability can allow an attacker to gain elevated privileges within the system...
The vulnerability of components related to DRM, AMD, and PM in the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of DRM/AMD/PM components in the Linux operating system is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to trigger a service failure...
The vulnerability of the microprogramming software used in programmable logic controllers of the SYSMAC series, CS, CJ, and CP, allows attackers to circumvent existing security restrictions and gain unauthorized access to protected information.
The vulnerability of the microprogramming software used in SYSMAC programmable logic controllers of the CS, CJ, and CP series is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to bypass existing security restrictions and gain unauthorized access t...
The vulnerability of the padata component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the padata component in the Linux operating system’s kernel is related to the lack of zero-division checking in the padatadomultithreaded function. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the i2c component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the i2c component in the Linux operating system’s kernel is related to improper locking mechanisms. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the sshterm.php script (located at usr/local/nagiosxi/html/admin/sshterm.php), a monitoring tool for Nagios XI, allows attackers to perform cross-site scripting attacks.
The vulnerability of the sshterm.php script located at usr/local/nagiosxi/html/admin/sshterm.php, a monitoring tool for Nagios XI, is related to the lack of security measures taken to protect the web page structure. Exploiting this vulnerability could allow an attacker, operating remotely, to...
The vulnerability of the phpgacl/assign_group.tpl template in the PHP library for managing access in web applications of the phpGACL system for managing medical documentation in OpenEMR, allowing attackers to perform cross-site scripting attacks.
The vulnerability of the phpgacl/assigngroup.tpl template in the PHP library for managing access in web applications is related to the lack of protective measures taken when processing the groupid template parameter. Exploiting this vulnerability allows a malicious actor to perform cross-site...
The vulnerability of the message.jsp scenario in the Apache ActiveMQ software platform’s administration web consoles allows attackers to perform cross-site scripting attacks.
The vulnerability of the message.jsp script in the Apache ActiveMQ software’s administration web consoles relates to the lack of protective measures for the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...
The vulnerability of D-Link DSL-3782 router microprogramming software, related to the lack of measures to neutralize special elements, allows a hacker to execute arbitrary commands.
The vulnerability of D-Link DSL-3782 router’s microprogramming software is related to the lack of measures taken to neutralize special elements during the processing of parameters sambawg and sambanbn. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...
The vulnerability of D-Link DSL-3782 router’s microprogramming software lies in the fact that the operation output goes beyond the buffer in memory, allowing a hacker to cause a service failure.
The vulnerability of D-Link DSL-3782 router microprogramming software lies in the fact that the operation data is written outside the buffer in memory when processing parameters such as destination, netmask, and gateway. Exploiting this vulnerability allows a remote attacker to cause a service...
The vulnerability of the SolrSearchMacros component of the XWiki Platform, a platform for creating collaborative web applications. This allows a hacker to execute arbitrary code.
The vulnerability of the SolrSearchMacros component in the XWiki Platform for creating collaborative web applications stems from the lack of measures taken to neutralize instructions in dynamically executed code. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by...
The vulnerability of the TestEmail command in the Reolink RLC-410W, C1 Pro, Reolink C2 Pro, RLC-422W, and RLC-511W software-based cameras allows a intruder to execute arbitrary commands.
The vulnerability of the TestEmail command in the Reolink RLC-410W, C1 Pro, Reolink C2 Pro, RLC-422W, and RLC-511W software-based cameras is related to the failure to take measures to neutralize special elements during the processing of the addr1 field. Exploiting this vulnerability can allow a...
The vulnerability in the handle_import_user.php script of the NUUO NVRmini 2 software, which allows a intruder to gain access to read, modify, or delete data.
The vulnerability in the handleimportuser.php script of the NUUO NVRmini 2 network video recorder software relates to the absence of authentication for a critical function. Exploiting this vulnerability can allow an attacker to gain access to read, modify, or delete data...
The vulnerability of D-Link DSL-3782 router microprogramming software, related to the lack of measures to neutralize special elements, allows a hacker to execute arbitrary commands.
The vulnerability of D-Link DSL-3782 router’s microprogramming software is related to the lack of measures taken to neutralize special elements during the processing of the publictype parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...
The vulnerability of the phpgacl/acl_admin.tpl template in the PHP library for managing access in web applications. This is part of the phpGACL system used for managing medical documentation in OpenEMR. It allows attackers to perform cross-site scripting attacks.
The vulnerability of the phpgacl/acladmin.tpl PHP template used in the phpGACL access control library for web applications in the OpenEMR medical documentation system is related to the lack of protection for the website structure when processing the aclid template parameter. Exploiting this...
The vulnerability of the phpgacl/acl_admin.tpl template in the PHP library for managing access in web applications. This is part of the phpGACL system used for managing medical documentation in OpenEMR. It allows attackers to perform cross-site scripting attacks.
The vulnerability of the phpgacl/acladmin.tpl template in the PHP library for managing access in web applications is related to the lack of protective measures taken when processing the action template parameters. Exploiting this vulnerability allows a remote attacker to perform cross-site...
The vulnerability of the runas function in the microprogramming software of the digital analysis system MEAC300 allows a hacker to elevate their privileges to the level of an administrator.
The vulnerability of the runas function in the MEAC300 digital analysis system is related to insufficient protection for registration data. Exploiting this vulnerability can allow an attacker, operating remotely, to elevate their privileges to the level of an administrator...
The vulnerability of the pfcp_newlink() function in Linux operating systems allows a hacker to trigger a service failure.
The vulnerability of the pfcpnewlink function in Linux operating systems is related to incorrect display of the list of network devices due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service failures...
The vulnerability of the memcg component in the Linux operating system allows a hacker to gain elevated privileges within the system.
The vulnerability of the memcg component in the Linux operating system’s kernel is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to gain elevated privileges within the system...
The vulnerability in the open-source e-commerce web application PrestaShop relates to the lack of measures taken to protect the website structure, allowing attackers to perform cross-site scripting attacks.
The vulnerability in the open-source e-commerce web application PrestaShop relates to the lack of measures taken to protect the website’s structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks...
The vulnerability of the Linux operating system’s kernel tracing component, which allows a hacker to trigger a service failure
The vulnerability of the Linux operating system’s kernel tracing component relates to the possibility of using memory after it is freed. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the iio component in the Linux operating system allows a hacker to execute arbitrary code.
The vulnerability of the iio component in the Linux operating system’s kernel involves reading beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
The vulnerability of the btrfs component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the btrfs component in the Linux operating system’s kernel is related to incorrect blocking of resources in the btrfsqgroupinherit function. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the Mongoose library, related to the lack of protection for SQL query structures, allows attackers to execute arbitrary code and gain access to read and modify data.
The vulnerability of the Mongoose library relates to the lack of protection for the SQL query structure when the $where operator is used. Exploiting this vulnerability allows an attacker to execute arbitrary code and gain access to read and modify data...
The vulnerability of the mlxsw component in the Linux operating system’s kernel, which allows a hacker to trigger a service failure
The vulnerability of the mlxsw component in the Linux operating system’s kernel is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the Linux operating system’s kernel component “perf”, which allows a hacker to trigger a service failure
The vulnerability of the perf component in the Linux operating system’s kernel is related to the lack of memory release after the effective service life in the eventschedout function. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the btrfs component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the btrfs component in Linux operating systems is related to improper locking mechanisms. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerabilities of Linux operating system’s mm/vmalloc components, which allow attackers to trigger service failures
The vulnerability of mm/vmalloc components in Linux operating systems is related to memory corruption. Exploiting this vulnerability can allow an attacker to cause a system failure...
Vulnerabilities of components in Linux operating system’s tick/broadcast kernel, allowing attackers to cause service failures
The vulnerability of Linux operating system’s stick/broadcast components is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause service failures...
The vulnerability of the NetScaler Console application delivery management service and the NetScaler Agent, related to insecure privilege management, allows attackers to escalate their privileges.
The vulnerability of the NetScaler Console delivery management service and the NetScaler Agent agent is related to insecure management of privileges. Exploiting this vulnerability can allow a malicious actor to enhance their privileges remotely...
The vulnerability of the Linux operating system’s serial kernel component, which allows a hacker to trigger a service failure
The vulnerability of the Linux operating system’s serial kernel component is related to improper locking of resources. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the netfilter component in the Linux operating system’s kernel allows a hacker to induce a service failure.
The vulnerability of the netfilter component in the Linux operating system’s kernel is related to the lack of memory release after the effective lifespan of the component has ended. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the Grafana data presentation web tool, related to bypassing authentication using a user-controlled key, allows attackers to influence the integrity of the protected information.
The vulnerability of the Grafana data processing web tool relates to bypassing authentication using a user-controlled key. Exploiting this vulnerability allows an attacker to remotely influence the integrity of the protected information...
The vulnerability of the Linux operating system’s kernel’s media component, which allows a hacker to cause a service failure
The vulnerability of the Linux operating system’s kernel media component is related to the assignment of the NULL pointer in the function cx23885videoregister. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the xhci kernel component in Linux operating systems allows a hacker to trigger a service failure.
The vulnerability of the xhci kernel component in Linux operating systems is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to trigger a service failure...
The vulnerability of the VerifyHostKeyDNS component in the OpenSSH cryptographic security tool allows a attacker to perform XSS attacks.
The vulnerability of the VerifyHostKeyDNS component in the OpenSSH cryptographic security tool is related to deficiencies in error handling during host key verification. Exploiting this vulnerability allows a malicious actor to perform XSS attacks remotely...
The vulnerability of Intel Xeon processors lies in the improper use of standard resolutions, which allows attackers to increase privileges within the system.
The vulnerability of Intel Xeon processors is related to the incorrect use of standard resolutions. Exploiting this vulnerability can allow attackers to increase their privileges within the system...
The vulnerability of the Linux operating system’s kernel PCI component, which allows a hacker to trigger a service failure
The vulnerability of the Linux operating system’s kernel PCI component is related to improper validation of input data. Exploiting this vulnerability can allow an attacker to cause service failures...
The vulnerability of the Linux operating system’s kernel device driver component, which allows a hacker to cause a service failure
The vulnerability of the devres component of the Linux operating system’s kernel is related to the lack of memory release after the effective lifespan of the EXPORTSYMBOLGPL function. Exploiting this vulnerability can allow an attacker to cause a service failure...