Lucene search
K
Bdu FstecRecent

90709 matches found

BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.4 views

The vulnerability of the graphical interface of the QGIS QWC2 web application, which allows a hacker to execute arbitrary code.

The vulnerability of the graphical interface of the QGIS QWC2 web application is related to the lack of protective measures for the structure of the web page. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

7.5CVSS6AI score0.00392EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.2 views

The vulnerability of the virtual learning environment Moodle, related to improper code generation, allows a perpetrator to execute arbitrary code and compromise the system.

The vulnerability in the virtual learning environment Moodle is related to incorrect code generation management. Exploiting this vulnerability allows a malicious actor to execute arbitrary code and compromise the system...

9CVSS6.1AI score0.00528EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.5 views

The vulnerability in the application programming interface of the SmarterTools SmarterMail mail server allows a malicious individual to update the administrator password to the default value and gain unauthorized access to the server.

The vulnerability of the application software interface “force-reset-password” in the SmarterTools SmarterMail mail server is related to bypassing the authentication process by using an alternative path or channel. Exploiting this vulnerability allows a malicious actor to update the administrator...

10CVSS7.5AI score0.96268EPSS
Exploits3References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.3 views

The vulnerability of the setSmartPowerManagement() function in Tenda AC8 router software allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the setSmartPowerManagement function in Tenda AC8 router software lies in the ability to write data beyond the buffer in memory during the processing of the time parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause service...

10CVSS7.9AI score0.00776EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.3 views

The vulnerability of the QGIS QWC2 web application, related to the lack of protective measures for the web page structure, allows a hacker to execute arbitrary code.

The vulnerability of the QGIS QWC2 web application is related to the lack of protective measures for the structure of the web page. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

7.5CVSS6AI score0.00395EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.3 views

The vulnerability of the /etc/shadow file in Wavlink WN531P3 software routers allows a hacker to circumvent existing security restrictions.

The vulnerability of the /etc/shadow file in Wavlink WN531P3 microprogramming routers is related to the incorrect use of standard permissions. Exploiting this vulnerability could allow a malicious actor to bypass existing security restrictions remotely...

10CVSS5.7AI score0.00543EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.5 views

The vulnerability of the Sitecore Experience Manager (XM), Experience Platform (XP), and the Experience Commerce (XC) platform for personalized purchasing processes is related to deficiencies in the deserialization mechanism. This allows attackers to execute arbitrary code and gain unauthorized access to protected information.

The vulnerability of the Sitecore Experience Manager XM, Experience Platform XP, and the Experience Commerce XC platform for personalized purchasing processes is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability allows an attacker to execute arbitrary code an...

9CVSS6.5AI score0.30809EPSS
Exploits3References4
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.4 views

The vulnerability of the JavaFX component of Oracle Java SE software allows a perpetrator to gain access to read, modify, or delete data.

The vulnerability of the JavaFX component of Oracle Java SE software relates to the execution of operations outside the buffer boundaries. Exploiting this vulnerability can allow an attacker to gain read, modify, or delete access to data...

3.1CVSS7AI score0.00204EPSS
Exploits0References4Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.3 views

The vulnerability of the fromSetRouteStatic() function in Tenda AC8 router software allows a hacker to execute arbitrary code or cause service failures.

The vulnerability of the fromSetRouteStatic function in the Tenda AC8 router software lies in the ability to write data beyond the buffer in memory during the processing of the list parameter. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code or cause service...

10CVSS7.9AI score0.00776EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.2 views

The vulnerability of the fromSetRouteStatic() function in Tenda AC8 router software allows a hacker to execute arbitrary code or cause service failures.

The vulnerability of the fromSetRouteStatic function in Tenda AC8 router software lies in the ability to write data beyond the buffer in memory during the processing of the list parameter. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code or cause service...

10CVSS7.9AI score0.00701EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.2 views

The vulnerability of the save_virtualser_data() function in Tenda AC8 router software allows a hacker to induce a service failure.

The vulnerability of the savevirtualserdata function in Tenda AC8 router microprogramming software lies in the ability to write data beyond the buffer into memory during the processing of the list parameter. Exploiting this vulnerability could allow a remote attacker to cause service interruption...

7.8CVSS7.3AI score0.00682EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.4 views

The vulnerability of the Microsoft Outlook email client, related to the lack of protective measures for the website structure, allows attackers to inject arbitrary CSS styles.

The vulnerability of the Microsoft Outlook email client is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to inject arbitrary CSS styles remotely...

7.7CVSS5.8AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.2 views

The vulnerability of the ANGLE library in Google Chrome browser allows a hacker to induce a service failure.

The vulnerability of the ANGLE library in Google Chrome browsers is related to the storage of data beyond the buffer boundaries of memory. Exploiting this vulnerability could allow an attacker to cause a service failure through a specially crafted HTML page...

10CVSS7.5AI score0.22721EPSS
Exploits10References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.2 views

Vulnerability of Microsoft Excel, Microsoft Office, and Microsoft 365 Apps for Enterprise software packages, allowing a hacker to execute arbitrary code.

The vulnerability of Microsoft Excel, Microsoft Office, and Microsoft 365 Apps for Enterprise programs is related to the use of an untrusted pointer. Exploiting this vulnerability can allow attackers to execute arbitrary code by sending a specially crafted malicious file...

5.5CVSS6.1AI score0.00399EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.3 views

The vulnerability of the Packet Handler component in the PAN-OS operating system allows a perpetrator to trigger a service failure by sending a continuous stream of specially created packets.

The vulnerability of the Packet Handler component in the PAN-OS operating system is related to insufficient checks for unusual or exceptional states. Exploiting this vulnerability could allow a attacker to cause a service failure by sending a continuous stream of specially created LLDP packets...

4.9CVSS6.1AI score0.00555EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.4 views

The vulnerability of the sub_403010() function in the /cgi-bin/wireless.cgi script of the Wavlink WL-NU516U1 wireless USB printer software allows a hacker to execute arbitrary commands.

The vulnerability of the sub403010 function in the /cgi-bin/wireless.cgi script of the Wavlink WL-NU516U1 wireless USB printer software is related to the lack of measures taken to clean data at the control level when processing the macAddr parameter. Exploiting this vulnerability allows an attack...

6.5CVSS6.8AI score0.06807EPSS
Exploits1References3
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.4 views

The vulnerability of the set_sys_adm() function in the microprogramming software for Wavlink routers WL-WN530H4 allows a hacker to execute arbitrary commands.

The vulnerability of the setsysadm function in the microprogramming-based routing software of Wavlink WL-WN530H4 lies in the lack of measures taken to sanitize data at the control level when processing the newpass parameter. Exploiting this vulnerability allows a remote attacker to execute...

10CVSS6.1AI score0.01948EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.3 views

The vulnerability of the Git-based software platform for collaborative code development on GitLab, related to unlimited resource distribution, allows a hacker to cause a service failure.

The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to the unlimited distribution of resources. Exploiting this vulnerability allows a malicious actor to cause service interruptions by sending specially crafted requests...

7.8CVSS6.2AI score0.00846EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.2 views

The vulnerability of the sscanf() function in Tenda AC8 router software allows a hacker to cause a service failure.

The vulnerability of the sscanf function in Tenda AC8 router microprogramming software relates to the possibility of writing beyond the buffer in memory when processing the time parameter. Exploiting this vulnerability can allow a remote attacker to cause a service failure...

7.8CVSS7.3AI score0.00682EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.2 views

The vulnerability of the Microsoft Outlook email client, related to the lack of protective measures for the website structure, allows attackers to bypass existing security mechanisms and execute arbitrary JavaScript code.

The vulnerability of the Microsoft Outlook email client is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to bypass existing security mechanisms and execute arbitrary JavaScript code...

7.7CVSS6AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.2 views

The vulnerability of the Microsoft Outlook email client, related to the activation of functions from an unverified controlled area, allows a perpetrator to execute arbitrary code.

The vulnerability of the Microsoft Outlook email client is related to the inclusion of functions from an unverified and uncontrolled area. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

8.7CVSS6AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.2 views

The vulnerability of the software for managing and monitoring NDD Print Agent, related to synchronization errors when using a shared resource (“Race Situation”), allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the software for managing and monitoring NDD Print Agent is related to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

7.8CVSS5.8AI score0.00133EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.3 views

The vulnerability of the sub_4012A0() function in the /cgi-bin/login.cgi script of the Wavlink WL-NU516U1 wireless USB printer software allows a hacker to execute arbitrary commands.

The vulnerability of the sub4012A0 function in the /cgi-bin/login.cgi script of the Wavlink WL-NU516U1 wireless USB printer software is related to the lack of data cleaning measures at the control level when processing the ipaddr parameter. Exploiting this vulnerability allows an attacker to...

6.5CVSS6AI score0.20023EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.3 views

The vulnerability of the sub_400B90() function in the /cgi-bin/ExportAllSettings.cgi script of the Wavlink M86X3A router’s microprogramming system, which allows a hacker to cause a service failure.

The vulnerability of the sub400B90 function in the /cgi-bin/ExportAllSettings.cgi script of the Wavlink M86X3A router’s microprogramming system is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to cause a servic...

8.8CVSS5.8AI score0.01904EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.2 views

The vulnerability of the Jenkins automation server’s plugin-related coverage lies in the lack of protective measures for website structure, allowing attackers to perform cross-site scripting attacks.

The vulnerability of the Jenkins automation server’s plugin-related to the lack of security measures for website structures. Exploiting this vulnerability allows attackers to perform cross-site scripting attacks remotely...

9CVSS5.5AI score0.00262EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.2 views

The vulnerability of the setSchedWifi() function in Tenda AC8 router software allows a hacker to execute arbitrary code or cause service interruptions.

The vulnerability of the setSchedWifi function in Tenda AC8 router microprogramming software lies in the possibility of writing data beyond the buffer in memory when processing the parameters schedStartTime and schedEndTime. Exploiting this vulnerability could allow a remote attacker to execute...

10CVSS7.9AI score0.00701EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.2 views

The vulnerability of the Microsoft Outlook email client, related to the activation of functions from an unverified controlled area, allows a perpetrator to execute arbitrary code.

The vulnerability of the Microsoft Outlook email client is related to the inclusion of functions from an unverified and uncontrolled area. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

8.7CVSS6AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.4 views

The vulnerability of Qfiling’s automatic file organization and sorting software arises from incorrect path name restrictions for the directory. This allows attackers to gain unauthorized access to protected information.

The vulnerability of Qfiling’s automatic file organization and sorting software is related to incorrect restrictions on path names to the catalog. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

10CVSS5.8AI score0.00447EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.5 views

The vulnerability of WAGO 750 programmable logic controllers’ microprogramming software lies in its dependence on cookie files without any checks for their reliability and integrity. This allows attackers to exploit their privileges.

The vulnerability of the microprogrammed software in WAGO 750 programmable logic controllers is related to the reliance on cookie files without any checks for their authenticity and integrity. Exploiting this vulnerability can allow an attacker to enhance their privileges remotely...

10CVSS5.8AI score0.00476EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.3 views

The vulnerability of the Sitecore PowerShell Extensions module, related to unlimited loading of dangerous files, allows attackers to execute remote code.

The vulnerability of the Sitecore PowerShell Extensions module is related to the unlimited loading of dangerous files. Exploiting this vulnerability allows a remote attacker to execute malicious code remotely...

9CVSS7.7AI score0.09118EPSS
Exploits4References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.4 views

The vulnerability of the Oracle Solaris operating system’s file system, which allows a perpetrator to cause a service failure

The vulnerability of the Oracle Solaris operating system’s file system is related to insufficient validation of input data. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

5CVSS7.1AI score0.00114EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.3 views

The vulnerability of the /etc/shadow file in Wavlink WN701AE software routers allows a hacker to circumvent existing security restrictions.

The vulnerability of the /etc/shadow file in Wavlink WN701AE router microprogramming software is related to the incorrect use of standard permissions. Exploiting this vulnerability can allow a malicious actor to bypass existing security restrictions remotely...

10CVSS5.7AI score0.00543EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.1 views

The vulnerability of the mariadb-dump component of the MariaDB database management system allows a hacker to execute arbitrary code.

The vulnerability of the mariadb-dump component of the MariaDB database management system is related to an incorrect limitation on the path name to the directory. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

7CVSS7.3AI score0.00414EPSS
Exploits0References11Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.4 views

The vulnerability of the Azure Core client library for Python, related to deserialization mechanism flaws, allows attackers to execute arbitrary code.

The vulnerability of the Azure Core client library for Python is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

7.5CVSS6.1AI score0.00776EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/26 12:0 a.m.3 views

The vulnerability of the FortAuditLogController application interface of the IT infrastructure and cybersecurity management system Sangfor Operation and Maintenance Security Management System (OSM) allows a perpetrator to execute arbitrary commands.

The vulnerability of the FortAuditLogController application interface of the IT infrastructure and cybersecurity management system Sangfor Operation and Maintenance Security Management System OSM is related to the failure to take measures to neutralize specific elements. Exploiting this...

7.5CVSS7.4AI score0.03946EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/25 12:0 a.m.4 views

The vulnerability of the kernel of the Oracle VM VirtualBox virtualization software, related to data protection mechanisms that are flawed, allows attackers to bypass existing security measures.

The vulnerability of the Oracle VM VirtualBox virtualization software’s kernel is related to deficiencies in its data protection mechanisms. Exploiting this vulnerability could allow attackers to bypass existing security measures...

8.2CVSS7.1AI score0.00196EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/01/23 12:0 a.m.5 views

The vulnerability of the centralized battery management system (BMS) is related to insufficient protection of registration data, allowing a perpetrator to replace the cryptographic signature.

The vulnerability of a centralized battery management system BMS is related to insufficient protection of registration data. Exploiting this vulnerability could allow an attacker to replace the cryptographic signature...

8.8CVSS5.8AI score0.0036EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/23 12:0 a.m.2 views

The vulnerability of the drm_sched_stop() function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the drmschedstop function in the Linux operating system’s kernel is related to the use of memory after it has been freed. Exploiting this vulnerability could allow a hacker to trigger a service failure...

6.5CVSS5.7AI score0.00155EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/23 12:0 a.m.4 views

The vulnerability of the Core component in Oracle VM VirtualBox allows a hacker to gain full control over the system.

The vulnerability of the Core component in Oracle VM VirtualBox is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to gain full control over the system...

6CVSS6.7AI score0.00234EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/01/23 12:0 a.m.3 views

The vulnerability of Adobe Dreamweaver HTML editor arises from insufficient validation of input data, allowing attackers to gain unauthorized access to protected information.

The vulnerability of Adobe Dreamweaver HTML editor is related to insufficient validation of entered data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

8.6CVSS5.8AI score0.00195EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/23 12:0 a.m.3 views

The vulnerability of the Core component in Oracle VM VirtualBox allows a hacker to trigger a service failure.

The vulnerability of the Core component in Oracle VM VirtualBox is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause a service failure...

7.1CVSS7.1AI score0.00186EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/01/23 12:0 a.m.5 views

The vulnerability of the Dell ECS storage platform, related to the use of default credentials, allows attackers to escalate their privileges.

The vulnerability of the Dell ECS storage platform is related to the use of default credentials. Exploiting this vulnerability could allow a malicious actor to gain increased privileges remotely...

9CVSS5.7AI score0.00332EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/01/23 12:0 a.m.3 views

The vulnerability of the SAP Fiori App web application, related to the disclosure of system data by unauthorized parties in the controlled area, allows attackers to gain unauthorized access to protected information.

The vulnerability of the SAP Fiori App relates to the disclosure of system data by unauthorized parties in the controlled area. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

4.3CVSS5.8AI score0.00187EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2026/01/23 12:0 a.m.4 views

The vulnerability of the SAP Supplier Relationship Management procurement automation application lies in the redirection of URLs to an unreliable website, allowing a hacker to redirect users to arbitrary URL addresses.

The vulnerability of the SAP Supplier Relationship Management procurement automation application lies in the redirection of the URL to an unreliable website. Exploiting this vulnerability allows a malicious actor to redirect users to any given URL address...

5CVSS5.8AI score0.00171EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2026/01/23 12:0 a.m.4 views

The vulnerability of the verify() and decrypt() functions in the npm OpenPGP library allows a perpetrator to obtain a valid message signature and disclose the protected information.

The vulnerability of the verify and decrypt functions in the npm OpenPGP library is related to errors in verifying the cryptographic signature. Exploiting this vulnerability could allow a malicious actor to obtain a valid signature for a message and disclose the protected information...

7.8CVSS7.6AI score0.00642EPSS
Exploits0References7Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/23 12:0 a.m.6 views

The vulnerability in the web interface of the Cisco Unified Communications Manager system, the Cisco Unified Communications Manager Session Management Edition (SME) system, the Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) call management system, the integrated Cisco Unity Connection messaging system, and the cloud-based web conference platform Cisco Webex Calling Dedicated Instance allows a malicious actor to execute arbitrary commands and elevate their privileges to the root level.

The vulnerability in the web interface of the Cisco Unified Communications Manager system, the Cisco Unified Communications Manager Session Management Edition SME system, the Cisco Unified Communications Manager IM & Presence Service Unified CM IM&P system, the integrated messaging system Cisco...

10CVSS6.4AI score0.04307EPSS
Exploits1References2Affected Software5
BDU FSTEC
BDU FSTEC
added 2026/01/23 12:0 a.m.2 views

The vulnerability of the Core component in Oracle VM VirtualBox allows a hacker to gain unauthorized access to protected information or cause a service failure.

The vulnerability of the Core component in Oracle VM VirtualBox is related to deficiencies in access control. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information or cause service failures...

4.6CVSS7.1AI score0.00121EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/01/23 12:0 a.m.2 views

The vulnerability in the drivers/target/target_core_transport.c file of the Linux operating system’s SCSI device support driver allows a hacker to cause a service failure.

The vulnerability in the drivers/target/targetcoretransport.c file of the Linux operating system’s SCSI device support driver is related to errors in the pointer assignment for ttaskcdb. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6AI score0.00173EPSS
Exploits0References13Affected Software4
BDU FSTEC
BDU FSTEC
added 2026/01/23 12:0 a.m.2 views

The vulnerability of the net/mlx5e component in the Mellanox Ethernet adapter driver for Linux operating systems allows a hacker to trigger a service failure.

The vulnerability of the net/mlx5e driver for Mellanox Ethernet adapter devices in Linux operating systems relates to the reutilization of previously released memory. Exploiting this vulnerability can allow attackers to cause service failures...

6.1CVSS5.8AI score0.00155EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/01/23 12:0 a.m.2 views

The vulnerability of the Dell ECS storage platform, related to the transmission of data in an open manner, allows a intruder to gain unauthorized access to protected information.

The vulnerability of the Dell ECS storage platform lies in the transfer of data in an open manner. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

7.6CVSS5.8AI score0.00192EPSS
Exploits0References2Affected Software2
Total number of security vulnerabilities90709