Lucene search
K
Bdu FstecRecent

89987 matches found

BDU FSTEC
BDU FSTEC
added 2026/06/11 12:0 a.m.2 views

The vulnerability of the Microsoft Outlook email client and the Microsoft Word text editor involves the possibility of exploiting memory after it is freed, allowing an attacker to execute arbitrary code.

The vulnerability of the Microsoft Outlook email client and the Microsoft Word text editor is related to the possibility of exploiting memory after it is freed. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

8.4CVSS6AI score0.00438EPSS
Exploits0References2Affected Software4
BDU FSTEC
BDU FSTEC
added 2026/06/11 12:0 a.m.2 views

The vulnerability of the Microsoft Office software package, related to a countable loss of significance, allows an attacker to execute arbitrary code.

The vulnerability of the Microsoft Office suite is related to a countable loss of significance. Exploiting this vulnerability allows an attacker who operates remotely to execute arbitrary code...

10CVSS6AI score0.01914EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/11 12:0 a.m.2 views

The vulnerability of the PointerLock component in Microsoft Edge and Google Chrome browsers allows a hacker to replace the user interface.

The vulnerability of the PointerLock component in Microsoft Edge and Google Chrome is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to replace the user interface with a specially created HTML page from a remote location...

5CVSS5.8AI score0.00149EPSS
Exploits0References4Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/06/11 12:0 a.m.2 views

The vulnerability of the privacy protection function of Fenced Frames in Microsoft Edge and Google Chrome browsers allows attackers to bypass existing security mechanisms.

The vulnerability of the confidentiality function of Fenced Frames in Microsoft Edge and Google Chrome is related to a lack of verification mechanism for the source of the data. Exploiting this vulnerability can allow attackers to bypass existing security measures remotely...

7.8CVSS5.7AI score0.0015EPSS
Exploits0References4Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of the ANGLE library in Google Chrome and Microsoft Edge browsers on macOS operating systems allows a hacker to gain unauthorized access to protected information.

The vulnerability of the ANGLE library in Google Chrome and Microsoft Edge browsers on MacOS operating systems is related to a numerical overflow vulnerability. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

5.3CVSS5.9AI score0.00285EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of the Navigation function in Google Chrome and Microsoft Edge browsers on Android operating systems allows attackers to bypass security restrictions.

The vulnerability of the Navigation function in Google Chrome and Microsoft Edge browsers on Android operating systems is related to the implementation of security features at the client side. Exploiting this vulnerability allows a malicious actor to bypass security restrictions remotely...

7.8CVSS5.7AI score0.0028EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of the ANGLE library in Google Chrome and Microsoft Edge browsers on macOS operating systems allows attackers to bypass the sandboxing protection mechanisms.

The vulnerability of the ANGLE library in Google Chrome and Microsoft Edge browsers on MacOS operating systems is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow a malicious actor to bypass the sandboxing protection mechanisms...

10CVSS6.1AI score0.00301EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.2 views

The vulnerability of the WebUSB API interface in Google Chrome and Microsoft Edge browsers on Windows operating systems allows a perpetrator to bypass the sandboxing protection mechanisms.

The vulnerability of the WebUSB API interface in Google Chrome and Microsoft Edge browsers on Windows operating systems is related to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to bypass the sandboxing protection mechanisms...

10CVSS5.8AI score0.00325EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of the Web Serial API interface of Google Chrome and Microsoft Edge browsers on Android operating systems allows attackers to bypass the sandboxing protection mechanisms.

The vulnerability of the Web Serial API interface in Google Chrome and Microsoft Edge browsers on Android operating systems is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to bypass the sandboxing protection mechanisms...

8.3CVSS5.8AI score0.00286EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of the Actor component in Google Chrome and Microsoft Edge browsers allows attackers to bypass security restrictions.

The vulnerability of the Actor component in Google Chrome and Microsoft Edge is related to the implementation of security features at the client side. Exploiting this vulnerability allows a malicious actor to bypass security restrictions remotely...

7.8CVSS5.7AI score0.0028EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of WebRTC technology in Google Chrome and Microsoft Edge browsers allows attackers to execute arbitrary code.

The vulnerability of WebRTC technology in Google Chrome and Microsoft Edge relates to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS6.1AI score0.00456EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of the libexpat library for analyzing XML files is related to its inefficient algorithmic complexity, which allows attackers to trigger a service failure.

The vulnerability of the libexpat library for processing XML files is related to the inefficient algorithmic complexity in handling attribute names. Exploiting this vulnerability could allow a malicious actor to cause service failures...

7.8CVSS5.7AI score0.00428EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of the software for deploying and executing AI models with NVIDIA Triton Inference Server (previously known as TensorRT Inference Server) involves uncontrolled memory consumption, which allows a malicious actor to cause service failures.

The vulnerability of the software for deploying and executing NVIDIA Triton Inference Server previously known as TensorRT Inference Server is related to uncontrolled memory consumption. Exploiting this vulnerability could allow a malicious actor to cause service failures...

7.8CVSS5.8AI score0.00528EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability in the built-in reverse proxy server of the Go programming language allows a hacker to perform an SSRF attack.

The vulnerability of the built-in reverse proxy server in the Go programming language is related to insufficient checking of requests on the server side. Exploiting this vulnerability allows a remote attacker to perform an SSRF attack...

5.3CVSS5.8AI score0.0039EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.2 views

The vulnerability of the built-in mobile security firewall Ivanti Sentry lies in the lack of measures to neutralize specific elements, allowing a intruder to execute arbitrary commands with root privileges.

The vulnerability of the built-in mobile security firewall, Ivanti Sentry, is related to the failure to take measures to neutralize specific elements. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands with root privileges...

10CVSS6.4AI score0.98937EPSS
Exploits5References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of the Model.load_model() function in the Keras library allows a hacker to execute arbitrary code.

The vulnerability of the Model.loadmodel function in the Keras library is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

7.3CVSS6AI score0.00186EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of the formModifyWebAuthWhiteUser() function in the Tenda W15E router’s microprogramming software allows a hacker to cause a service failure.

The vulnerability of the formModifyWebAuthWhiteUser function in the Tenda W15E router’s microprogramming system is related to the issue of the operation going beyond the buffer in memory when processing the webAuthWhiteID parameter. Exploiting this vulnerability could allow a malicious actor to...

9CVSS6AI score0.00309EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of the formAddWebAuthWhiteUser() function in the Tenda W15E router software allows a hacker to trigger a service failure.

The vulnerability of the formAddWebAuthWhiteUser function in the Tenda W15E router’s microprogramming software is related to the issue of the operation going beyond the buffer in memory when processing the webAuthWhiteUserInfo parameter. Exploiting this vulnerability could allow a malicious actor...

9CVSS6AI score0.00309EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of the fromSetDhcpRules() function in Tenda W15E router software allows a attacker to trigger a service failure.

The vulnerability of the fromSetDhcpRules function in the Tenda W15E router software is related to the operation that goes beyond the buffer in memory when processing the bindMACAddr parameter. Exploiting this vulnerability allows a remote attacker to trigger a service failure by sending a...

7.8CVSS6AI score0.00309EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of Adobe InDesign’s computer layout automation tool, related to buffer overflow in the stack, allows a hacker to execute arbitrary code.

The vulnerability of Adobe InDesign’s computer layout automation tool is related to buffer overflow in the stack. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file...

7.8CVSS6.4AI score0.00175EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of the “Universal Import” module, related to the lack of authentication for the critical function, allows attackers to perform operations through the administrative interface.

The vulnerability of the “Universal Import” module is related to the lack of authentication for the critical function. Exploiting this vulnerability allows a remote attacker to perform operations through the administrative interface...

9CVSS5.9AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of the Webview API in the Visual Studio Code editor allows attackers to replace data and perform cross-site scripting (XSS) attacks.

The vulnerability of the Webview API of the Visual Studio Code editor is related to errors in information representation by the user interface. Exploiting this vulnerability could allow a remote attacker to replace data and perform cross-site scripting attacks...

10CVSS5.8AI score
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of the PathMaterializer class in the ZenML machine learning pipeline creation framework allows a hacker to execute arbitrary code.

The vulnerability of the PathMaterializer class in the ZenML machine learning pipeline creation framework is related to an incorrect restriction on the path name to the restricted-access catalog. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

6.3CVSS6AI score0.00326EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of the formAddWebAuthWhiteUser() function in the Tenda W15E router software allows a hacker to trigger a service failure.

The vulnerability of the formAddWebAuthWhiteUser function in the Tenda W15E router’s microprogramming software is related to the issue of the operation going beyond the buffer in memory when processing the webAuthWhiteUserInfo parameter. Exploiting this vulnerability allows a malicious actor to...

7.8CVSS6AI score0.00309EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of the software for deploying and executing AI models developed by NVIDIA Triton Inference Server (previously known as TensorRT Inference Server) relates to incorrect pathname restrictions. This vulnerability allows attackers to disclose sensitive information or cause service failures.

The vulnerability of the software for deploying and executing NVIDIA Triton Inference Server previously known as TensorRT Inference Server is related to incorrect path name restrictions in the catalog. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information or...

4.8CVSS5.7AI score0.0048EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of Ollama’s system for running and managing large language models lies in the fact that code is loaded without any checks for its integrity, allowing attackers to execute arbitrary code.

The vulnerability of the Ollama system for running and managing large language models is related to the loading of code without checking its integrity. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS6.4AI score0.00379EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of the formPortalAuth() function in the Tenda W15E router’s microprogramming software allows a hacker to trigger a service failure.

The vulnerability of the formPortalAuth function in the Tenda W15E router’s microprogramming software is related to the issue of the operation going beyond the buffer in memory when processing the gotoUrl parameter. Exploiting this vulnerability allows a malicious actor to cause service failure b...

9CVSS6AI score0.00309EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of the formCropAndSetWewifiPic() function in the microprogramming software for Tenda W15E routers allows a hacker to induce a service failure.

The vulnerability of the formCropAndSetWewifiPic function in the microprogramming software for Tenda W15E routers is related to the issue of the operation exceeding the buffer boundaries in memory when processing the picCropName parameter. Exploiting this vulnerability could allow an attacker to...

7.8CVSS6AI score0.00309EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of the formDelStaState() function in the Tenda W15E router software allows a hacker to cause a service failure.

The vulnerability of the formDelStaState function in the Tenda W15E router’s microprogramming software is related to the issue of the operation going beyond the buffer in memory when processing the macAddr parameter. Exploiting this vulnerability can allow a remote attacker to cause a service...

7.8CVSS6AI score0.00309EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of the formAddWebAuthUser() function in the Tenda W15E router software allows a hacker to trigger a service failure.

The vulnerability of the formAddWebAuthUser function in the Tenda W15E router’s microprogramming software is related to the issue of the operation going beyond the buffer in memory when processing the webAuthUserInfo parameter. Exploiting this vulnerability could allow a malicious actor to cause...

7.8CVSS6AI score0.00309EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability in the debugging function of the CPython interpreter allows attackers to circumvent security restrictions.

The vulnerability of the debug function in the CPython interpreter relates to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow an attacker to circumvent security restrictions...

5.6CVSS6.1AI score0.00132EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of Adobe InDesign’s computer layout automation tool, related to buffer overflow in dynamic memory, allows attackers to execute arbitrary code.

The vulnerability of Adobe InDesign’s computer layout automation tool is related to overflowing buffers in dynamic memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file...

7.8CVSS6.1AI score0.00175EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of Adobe InDesign’s computer layout automation tool, related to the manipulation of the zero pointer, allows a hacker to trigger a service failure.

The vulnerability of Adobe InDesign’s computer layout automation tool is related to the manipulation of the zero pointer. Exploiting this vulnerability can allow an attacker to trigger a service failure using a specially created file...

5.5CVSS5.7AI score0.0013EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of the “Universal Import” module, due to insufficient validation of requests on the server side, allows attackers to execute SSRF attacks.

The vulnerability of the “Universal Import” module is related to insufficient validation of requests on the server side. Exploiting this vulnerability allows a remote attacker to execute an SSRF attack...

7.4CVSS5.9AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of the formAddWebAuthUser() function in the Tenda W15E router software allows a hacker to trigger a service failure.

The vulnerability of the formAddWebAuthUser function in the Tenda W15E router’s microprogramming software is related to the issue of the operation going beyond the buffer in memory when processing the webAuthUserPwd parameter. Exploiting this vulnerability could allow a malicious actor to cause...

9CVSS6AI score0.00309EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of the formAddWewifiWhiteUser() function in the Tenda W15E router software allows a hacker to induce a service failure.

The vulnerability of the formAddWewifiWhiteUser function in the Tenda W15E router’s microprogramming software is related to the issue of the operation going beyond the buffer in memory when processing the wewifiWhiteUserInfo parameter. Exploiting this vulnerability could allow a remote attacker t...

9CVSS6AI score0.00309EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of the formAddWebAuthUser() function in the Tenda W15E router software allows a hacker to trigger a service failure.

The vulnerability of the formAddWebAuthUser function in the Tenda W15E router’s microprogramming software is related to the issue of the operation going beyond the buffer in memory when processing the webAuthUserInfo parameter. Exploiting this vulnerability could allow a malicious actor to cause...

9CVSS6AI score0.00309EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of the formDelwebAuthPic() function in the Tenda W15E router software allows a hacker to cause a service failure.

The vulnerability of the formDelwebAuthPic function in the Tenda W15E router’s microprogramming software is related to the operation of pushing data out of the buffer into memory when processing the picName parameter. Exploiting this vulnerability could allow an attacker to cause a service failur...

9CVSS6AI score0.00309EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of the formCropAndSetWewifiPic() function in the microprogramming software for Tenda W15E routers allows a hacker to induce a service failure.

The vulnerability of the formCropAndSetWewifiPic function in the microprogramming software for Tenda W15E routers is related to the issue of the operation exceeding the buffer boundaries in memory when processing the picCropName parameter. Exploiting this vulnerability could allow an attacker to...

9CVSS6AI score0.00309EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of the Internet Key Exchange (IKEv1) implementation in Check Point Security Gateways and Check Point Spark Firewalls allows attackers to carry out “man-in-the-middle” attacks and bypass certificate verification in VPN connections.

The vulnerability of the Internet Key Exchange IKEv1 protocol implemented by Check Point Security Gateways and Check Point Spark Firewall is related to deficiencies in authentication procedures. Exploiting this vulnerability allows a malicious actor to carry out “man-in-the-middle” attacks and...

7.4CVSS6.1AI score0.04859EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of Adobe InDesign’s computer layout automation tool, related to the use of memory after it is freed, allows a hacker to execute arbitrary code.

The vulnerability of Adobe InDesign’s computer layout automation tool is related to the use of memory after it is released. Exploiting this vulnerability can allow an attacker to execute arbitrary code using a specially created file...

7.8CVSS6.1AI score0.00166EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of Adobe InDesign’s computer layout automation tool, related to buffer overflow in the stack, allows a hacker to execute arbitrary code.

The vulnerability of Adobe InDesign’s computer layout automation tool is related to buffer overflow in the stack. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file...

7.8CVSS6.4AI score0.00175EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of Adobe InDesign’s computer layout automation tool, related to the manipulation of the zero pointer, allows a hacker to trigger a service failure.

The vulnerability of Adobe InDesign’s computer layout automation tool is related to the manipulation of the zero pointer. Exploiting this vulnerability can allow an attacker to trigger a service failure using a specially created file...

5.5CVSS5.7AI score0.0013EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of the AI agent OpenClaw (formerly known as ClawdBot or MoltBot) arises from an improper authorization process based on a list of permitted senders. This allows attackers to bypass existing security mechanisms.

The vulnerability of the AI agent OpenClaw formerly known as ClawdBot or MoltBot is related to an incorrect authorization process based on a list of permitted senders. Exploiting this vulnerability could allow a hacker to bypass existing security mechanisms...

7.8CVSS6.1AI score0.00112EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of the AI agent OpenClaw (formerly known as ClawdBot or MoltBot) relates to the use of an incomplete black list, which allows a perpetrator to execute arbitrary code.

The vulnerability of the AI agent OpenClaw formerly known as ClawdBot or MoltBot is related to the use of an incomplete black list. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9CVSS6.4AI score0.00362EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.2 views

The vulnerability of the ANGLE library in Google Chrome and Microsoft Edge browsers allows a hacker to gain unauthorized access to protected information.

The vulnerability of the ANGLE library in Google Chrome and Microsoft Edge relates to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

5.4CVSS6.1AI score0.00274EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of Adobe InDesign’s computer layout automation tool, related to buffer overflow in the stack, allows a hacker to execute arbitrary code.

The vulnerability of Adobe InDesign’s computer layout automation tool is related to buffer overflow in the stack. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file...

7.8CVSS6.4AI score0.00175EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of the search-ms handler in Windows operating systems allows a hacker to disclose protected information (NTLM hashes).

The vulnerability of the search-ms handler in Windows operating systems is related to the lack of measures taken to neutralize special elements. Exploiting this vulnerability can allow a remote attacker to disclose protected information NTLM hashes...

5CVSS5.8AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of Ollama’s system for running and managing large language models lies in its improper name restriction for the path to the catalog, allowing a violator to execute arbitrary code.

The vulnerability of the Ollama system for running and managing large language models is related to an incorrect restriction on the path name to the catalog. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

10CVSS6.4AI score0.00625EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/06/10 12:0 a.m.1 views

The vulnerability of the formModifyWebAuthUser() function in the Tenda W15E router’s software allows a hacker to cause a service failure.

The vulnerability of the formModifyWebAuthUser function in the Tenda W15E router’s microprogramming system is related to the issue of the operation going beyond the buffer in memory when processing the webAuthUserPwd parameter. Exploiting this vulnerability could allow an attacker to cause a...

9CVSS6AI score0.00309EPSS
Exploits0References2Affected Software1
Total number of security vulnerabilities89987