Lucene search
K
Bdu FstecRecent

90709 matches found

BDU FSTEC
BDU FSTEC
•added 2026/01/20 12:0 a.m.•4 views

The vulnerability of the strcpy() function in the microprogrammed software for UTT 520W routers allows a hacker to cause a service failure.

The vulnerability of the strcpy function in the UTT 520W router microprogramming system is related to the output of the operation being sent out of the buffer into memory. Exploiting this vulnerability could allow a malicious actor to cause a service failure by sending a specially crafted POST...

9CVSS7.5AI score0.0065EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/20 12:0 a.m.•3 views

The vulnerability of the strcpy() function in the HiPER 810 router’s microprogramming software allows a hacker to cause a service failure.

The vulnerability of the strcpy function in the HiPER 810 router’s microprogramming software is related to the operation that occurs outside the buffer during the processing of the passwd1 parameter. Exploiting this vulnerability allows an attacker to cause a service failure by sending a speciall...

10CVSS7.5AI score0.00681EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/20 12:0 a.m.•4 views

The vulnerability of the strcpy() function in the microprogrammed software for UTT 520W routers allows a hacker to cause a service failure.

The vulnerability of the strcpy function in the microprogrammed routing device UTT 520W is related to the output of the operation beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a malicious actor to cause a service failure by sending a specially crafted POST...

9CVSS7.5AI score0.00855EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/20 12:0 a.m.•3 views

The vulnerability of the setTracerouteCfg() function in the microprogrammed software of TOTOLINK LR350 routers allows a intruder to execute arbitrary commands.

The vulnerability of the setTracerouteCfg function in TOTOLINK LR350 router microprogramming software is related to the lack of measures taken to clean up data at the control level. Exploiting this vulnerability could allow a remote attacker to execute arbitrary commands...

6.5CVSS6.9AI score0.0235EPSS
Exploits1References6Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/20 12:0 a.m.•2 views

The vulnerability of the RDP client FreeRDP, related to the execution of operations beyond the buffer boundaries in memory, allows a hacker to trigger a service failure.

The vulnerability of the RDP client FreeRDP is related to the escape of operations beyond the buffer in memory due to incorrect encoding based on the Base64 standard. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

7.1CVSS7.5AI score0.00599EPSS
Exploits1References5Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/20 12:0 a.m.•3 views

The vulnerability of the audin_process_formats() function in the RDP client of FreeRDP, allowing a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the audinprocessformats function in the RDP client FreeRDP is related to writing beyond the buffer boundaries. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code or cause service failures remotely...

7.6CVSS7.7AI score0.00365EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/20 12:0 a.m.•2 views

The vulnerability of the drive_process_irp_read() function in the RDP client FreeRDP allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the driveprocessirpread function in the RDP client FreeRDP is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause a service failure...

7.6CVSS8AI score0.00453EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/20 12:0 a.m.•3 views

The vulnerability of the strcpy() function in the microprogrammed software for UTT 520W routers allows a hacker to cause a service failure.

The vulnerability of the strcpy function in the microprogrammed routing device UTT 520W is related to the output of the operation beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a malicious actor to cause a service failure by sending a specially crafted POST...

9CVSS7.5AI score0.00855EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/20 12:0 a.m.•6 views

The vulnerability of the setWiFiEasyCfg() function in the cgi-bin/cstecgi.cgi script of the TOTOLINK LR350 router’s microprogramming software allows a hacker to induce a service failure.

The vulnerability of the setWiFiEasyCfg function in the cgi-bin/cstecgi.cgi script of the TOTOLINK LR350 router’s microprogramming system is related to the issue of data being written outside the buffer in memory when processing the ssid parameter. Exploiting this vulnerability could allow an...

9CVSS7.5AI score0.00885EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/20 12:0 a.m.•2 views

The vulnerability of the setWiFiBasicCfg() function in the cgi-bin/cstecgi.cgi script of the TOTOLINK LR350 router’s software allows a hacker to induce a service failure.

The vulnerability of the setWiFiBasicCfg function in the cgi-bin/cstecgi.cgi script of the TOTOLINK LR350 router’s microprogramming system is related to the issue of data leaving the buffer and being stored in memory when processing the ssid parameter. Exploiting this vulnerability could allow an...

9CVSS7.5AI score0.00619EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/20 12:0 a.m.•3 views

The vulnerability of the strcpy() function in the /goform/ConfigAdvideo file of the UTT 520W router’s microprogramming system, which allows a hacker to cause a service failure.

The vulnerability of the strcpy function in the /goform/ConfigAdvideo file of the UTT 520W router microprogramming system is related to the operation of writing data beyond the buffer boundaries when processing the timestart parameter. Exploiting this vulnerability could allow a remote attacker t...

9CVSS7.5AI score0.00855EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/20 12:0 a.m.•2 views

Vulnerability of the smartcard_unpack_set_attrib_call() function in the RDP client FreeRDP, allowing a intruder to execute arbitrary code or cause a service failure

The vulnerability of the smartcardunpacksetattribcall function in the RDP client FreeRDP is related to the execution of operations outside the buffer in memory, resulting from an incorrect validation of input data. Exploiting this vulnerability could allow a remote attacker to execute arbitrary...

7.1CVSS8AI score0.00756EPSS
Exploits1References6Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/20 12:0 a.m.•1 views

The vulnerability of the SDL3 RDP-client to the FreeRDP client allows a perpetrator to compromise the accessibility of protected information.

The vulnerability of the SDL3 RDP client for FreeRDP is related to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker to compromise the accessibility of protected information...

5.9CVSS6.2AI score0.00247EPSS
Exploits1References4Affected Software2
BDU FSTEC
BDU FSTEC
•added 2026/01/20 12:0 a.m.•2 views

The vulnerability of the create_irp_thread() function in the RDP client of FreeRDP, which allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the createirpthread function in the RDP client of FreeRDP is related to synchronization errors when using a shared resource. Exploiting this vulnerability allows an attacker to execute arbitrary code or cause service failures...

7.6CVSS7.6AI score0.00286EPSS
Exploits1References6Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/20 12:0 a.m.•5 views

The vulnerability of the software installer for Samsung Magician SSD disks allows a hacker to increase their privileges and execute a DLL Hijacking attack.

The vulnerability of the software installer for Samsung Magician SSD drives is related to an uncontrolled search path element. Exploiting this vulnerability can allow a hacker to enhance their privileges and execute a DLL Hijacking attack...

7.8CVSS5.8AI score0.00114EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/20 12:0 a.m.•3 views

The vulnerability of the client for USB devices in the URBDRC RDP-client FreeRDP system allows a perpetrator to execute arbitrary code or trigger a service failure.

The vulnerability of the URBDRC RDP-client-freeRDP device lies in unvalidated array indexing. Exploiting this vulnerability could allow an attacker to execute arbitrary code or cause service failures...

7.1CVSS7.6AI score0.00756EPSS
Exploits1References5Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/20 12:0 a.m.•2 views

The vulnerability of the setWiFiEasyGuestCfg() function in the cgi-bin/cstecgi.cgi script of the TOTOLINK LR350 router’s microprogramming software allows a hacker to induce a service failure.

The vulnerability of the setWiFiEasyGuestCfg function in the cgi-bin/cstecgi.cgi script of the TOTOLINK LR350 router’s microprogramming system is related to the issue of data leaving the buffer and being stored in memory when processing the ssid parameter. Exploiting this vulnerability could allo...

9CVSS7.4AI score0.00794EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/20 12:0 a.m.•3 views

The vulnerability of the strcpy() function in the /goform/formTaskEdit file of the UTT 520W router microprogramming system, which allows a attacker to cause a service failure.

The vulnerability of the strcpy function in the /goform/formTaskEdit file of the UTT 520W microprogramming router software is related to the escape of the operation beyond the buffer in memory when processing the selDateType parameter. Exploiting this vulnerability could allow a remote attacker t...

9CVSS7.5AI score0.00811EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/19 12:0 a.m.•5 views

The vulnerability of the GlobalProtect secure remote access function of the PAN-OS operating system allows a attacker to trigger a service failure.

The vulnerability of the GlobalProtect secure remote access function of the PAN-OS operating system is related to improper handling of unusual or exceptional states. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

7.8CVSS6.2AI score0.00674EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
•added 2026/01/19 12:0 a.m.•4 views

The vulnerability of the sub_4CA50() function in the microprogramming software for Tenda AX1806 allows a hacker to induce a service failure.

The vulnerability of the sub4CA50 function in the microprogramming software of the Tenda AX1806 router lies in the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow a malicious actor to cause service failure...

7.8CVSS6.1AI score0.00384EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/19 12:0 a.m.•2 views

The vulnerability of the fromAdvSetMacMtuWan() function in the Tenda AX3 Wi-Fi router software allows a hacker to trigger a service failure.

The vulnerability of the fromAdvSetMacMtuWan function in the Tenda AX3 Wi-Fi router software lies in the fact that the operation’s output goes beyond the buffer in memory when processing the parameter serviceName2. Exploiting this vulnerability allows a remote attacker to cause a service failure...

7.8CVSS6AI score0.00384EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/19 12:0 a.m.•4 views

The vulnerability of the strcpy() function in the microprogrammed software for UTT 520W routers allows a hacker to cause a service failure.

The vulnerability of the strcpy function in the UTT 520W router software lies in the fact that the operation’s output escapes the buffer boundaries when processing the GroupName parameter. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

9CVSS7.5AI score0.03409EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/19 12:0 a.m.•3 views

The vulnerability of the Incoming Goods Suite registration method, related to lack of access control, allows attackers to compromise the integrity and accessibility of the protected information.

The vulnerability of the Incoming Goods Suite registration and delivery method is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker operating remotely to compromise the integrity and accessibility of the protected information...

7.5CVSS5.8AI score0.0006EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/19 12:0 a.m.•3 views

The vulnerability of the Incoming Goods Suite registration method, related to improper authorization, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Incoming Goods Suite registration and delivery method is related to improper authorization. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

5CVSS5.8AI score0.00027EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/19 12:0 a.m.•3 views

The vulnerability of the Incoming Goods Suite registration method lies in the redirection of the URL to an unreliable website, allowing attackers to compromise the confidentiality and integrity of the protected information.

The vulnerability of the Incoming Goods Suite registration tool is related to the redirection of the URL to an unreliable website. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality and integrity of the protected information...

4.2CVSS5.8AI score0.00036EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/19 12:0 a.m.•6 views

The vulnerability of the Incoming Goods Suite registration method, related to insufficient validation of input data, allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the Incoming Goods Suite registration tool is related to insufficient verification of input data. Exploiting this vulnerability could allow an attacker operating remotely to compromise the confidentiality, integrity, and accessibility of the protected information...

8.7CVSS5.8AI score0.00079EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
•added 2026/01/19 12:0 a.m.•3 views

The vulnerability of the HTTP Request Handler component in the Tenda WH450 microprogramming-based router software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the HTTP Request Handler component in the Tenda WH450 microprogramming-based router software lies in the issue of data being written outside of the buffer during the processing of the page parameter. Exploiting this vulnerability allows an attacker to compromise the...

10CVSS7.2AI score0.0046EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/19 12:0 a.m.•4 views

The vulnerability of Junos OS router series SRX, related to incorrect resource blocking, allows a hacker to trigger a service failure.

The vulnerability of Junos OS routers of the SRX series lies in improper resource locking. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

7.8CVSS5.7AI score0.00299EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/19 12:0 a.m.•4 views

The vulnerability of Junos OS router series SRX lies in improper syntax validation during input processing, which allows attackers to trigger service failures.

The vulnerability of Junos OS routers of the SRX series lies in improper validation of syntax correctness during input processing. Exploiting this vulnerability can allow an attacker to cause service interruptions remotely...

7.8CVSS5.7AI score0.00375EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/19 12:0 a.m.•4 views

The vulnerability of the PDF, EPUB, MOBI, FB2, CHM, XPS, and DjVu viewing program SumatraPDF lies in the use of an insecure search path, allowing attackers to execute arbitrary code.

The vulnerability of the PDF, EPUB, MOBI, FB2, CHM, XPS, and DjVu viewing program SumatraPDF lies in the use of an unreliable search path during the processing of Advanced Options. Exploiting this vulnerability allows a attacker to execute arbitrary code by sending a specially created malicious...

8.6CVSS6.1AI score0.00191EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/19 12:0 a.m.•2 views

The vulnerability of the TeamViewer Remote Full Client software lies in the improper assignment of permissions for files, allowing a hacker to delete any files they desire.

The vulnerability of the TeamViewer Remote Full Client software is related to the improper assignment of permissions for files. Exploiting this vulnerability could allow a hacker to delete any files they desire...

7CVSS7.1AI score0.00158EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
•added 2026/01/19 12:0 a.m.•3 views

The vulnerability of the fromSetSysTime() function in Tenda AX1806 router software allows a hacker to cause a service failure.

The vulnerability of the fromSetSysTime function in Tenda AX1806 router microprogramming software is related to buffer overflow when processing the timeZone parameter. Exploiting this vulnerability can allow an attacker to cause a service failure by sending a specially crafted request...

7.8CVSS6.1AI score0.00401EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/19 12:0 a.m.•2 views

The vulnerability of the Solar appScreener platform, related to inconsistencies in responses to incoming requests, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Solar appScreener platform is related to inconsistencies in responses to incoming requests. Exploiting this vulnerability could allow an unauthorized actor to gain unauthorized access to protected information...

5.3CVSS5.8AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/19 12:0 a.m.•1 views

The vulnerability of the node-tar library on the Node.js software platform allows attackers to bypass existing security mechanisms and execute arbitrary code.

The vulnerability of the node-tar library in the Node.js software platform is related to an incorrect path name limitation when processing the preservePaths parameter. Exploiting this vulnerability allows a attacker to bypass existing security mechanisms and execute arbitrary code during the...

8.6CVSS6.8AI score0.00334EPSS
Exploits2References3Affected Software3
BDU FSTEC
BDU FSTEC
•added 2026/01/19 12:0 a.m.•5 views

The system’s vulnerability for data collection and automation process control in Delta Electronics DIAView, which is related to the use of a rigidly encrypted cryptographic key, allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the Delta Electronics DIAView system for data collection and automation process control is related to the use of a rigidly encrypted cryptographic key. Exploiting this vulnerability could allow an attacker operating remotely to compromise the confidentiality, integrity, and...

10CVSS5.8AI score0.00525EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/19 12:0 a.m.•3 views

The vulnerability of the Mozilla Firefox browser and the Thunderbird email client relates to the execution of operations beyond the buffer in memory, allowing an attacker to execute arbitrary code.

The vulnerability of the Mozilla Firefox browser and the Thunderbird email client is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS7.9AI score0.00404EPSS
Exploits0References11Affected Software3
BDU FSTEC
BDU FSTEC
•added 2026/01/19 12:0 a.m.•4 views

The vulnerability of the built-in web server for Kyocera Command Center RX devices stems from an incorrect path name limitation for the catalog directory, allowing unauthorized access to protected information.

The vulnerability of the built-in web server for Kyocera Command Center RX devices is related to an incorrect limitation on the path name to the directory. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information...

7.8CVSS7.3AI score0.03534EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
•added 2026/01/19 12:0 a.m.•3 views

The vulnerability of the Windows Media component in Windows operating systems allows a perpetrator to execute arbitrary code.

The vulnerability of the Windows Media component in Windows operating systems is related to overflowing buffers in dynamic memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.8CVSS6AI score0.0066EPSS
Exploits0References2Affected Software13
BDU FSTEC
BDU FSTEC
•added 2026/01/19 12:0 a.m.•4 views

The vulnerability of the Kerberos authentication method for Windows operating systems allows attackers to compromise the protected information.

The vulnerability of the Kerberos authentication method for Windows operating systems relates to the use of cryptographic algorithms that contain vulnerabilities. Exploiting this vulnerability can allow attackers to disclose protected information...

5.5CVSS5.7AI score0.00363EPSS
Exploits0References2Affected Software17
BDU FSTEC
BDU FSTEC
•added 2026/01/19 12:0 a.m.•2 views

The vulnerability of the Windows Hyper-V hardware virtualization system allows attackers to disclose protected information.

The vulnerability of the Windows Hyper-V hardware virtualization system is related to operations that occur outside the buffer boundaries. Exploiting this vulnerability can allow an attacker to disclose protected information...

4.6CVSS5.9AI score0.00513EPSS
Exploits0References2Affected Software13
BDU FSTEC
BDU FSTEC
•added 2026/01/19 12:0 a.m.•4 views

The vulnerability of NETGEAR Nighthawk router microprogramming software, related to insufficient validation of input data, allows a hacker to execute arbitrary code.

The vulnerability of NETGEAR Nighthawk microprogrammed software lies in insufficient validation of input data. Exploiting this vulnerability can allow a remote attacker to execute arbitrary code...

8.8CVSS6.1AI score0.00221EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/19 12:0 a.m.•2 views

The vulnerability of the Node.js software platform, related to incorrect restrictions on path names for directories with restricted access, allows attackers to compromise the system.

The vulnerability of the Node.js software platform is related to incorrect restrictions on path names for directories with restricted access. Exploiting this vulnerability can allow an attacker to compromise the system...

7.7CVSS7.4AI score0.01633EPSS
Exploits2References3
BDU FSTEC
BDU FSTEC
•added 2026/01/19 12:0 a.m.•4 views

The vulnerability of the GSF demuxer filter (gsfdmx) component of the GPAC multimedia platform, which allows a hacker to cause a service failure.

The vulnerability of the GSF demuxer filter gsfdmx in the GPAC multimedia platform involves reading beyond the buffer boundaries in memory during GSF file processing. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

7.8CVSS6AI score0.00323EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/19 12:0 a.m.•3 views

The vulnerability of the oggdmx_parse_tags() function on the GPAC multimedia platform allows a perpetrator to trigger a service failure.

The vulnerability of the oggdmxparsetags function on the GPAC multimedia platform is related to the reading of data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

8.5CVSS5.9AI score0.00394EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/19 12:0 a.m.•2 views

The vulnerability of the NVIDIA Nsight Graphics debugging tool lies in the lack of measures to neutralize special elements. This allows a malicious actor to execute arbitrary code, gain elevated privileges, modify data, and trigger service failures.

The vulnerability of the NVIDIA Nsight Graphics debugging tool relates to the failure to take measures to neutralize special elements. Exploiting this vulnerability allows a perpetrator to execute arbitrary code, increase their privileges, modify data, and cause service failures...

7.8CVSS6.3AI score0.00895EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/19 12:0 a.m.•4 views

The vulnerability of the sub_65B5C() function in the microprogramming software for Tenda AX1806 allows a hacker to cause a service failure.

The vulnerability of the sub65B5C function in the Tenda AX1806 router’s microprogramming system is related to the operation of writing data outside the buffer in memory when processing the wanSpeed parameter. Exploiting this vulnerability can allow a remote attacker to cause service failures...

7.8CVSS6AI score0.00311EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/01/19 12:0 a.m.•2 views

The vulnerability of the Windows File Explorer driver on Windows operating systems, allowing attackers to disclose protected information

The vulnerability of the Windows File Explorer in Windows operating systems is related to the lack of protection for service data. Exploiting this vulnerability can allow an attacker to disclose protected information...

5.5CVSS5.7AI score0.00654EPSS
Exploits0References2Affected Software16
BDU FSTEC
BDU FSTEC
•added 2026/01/19 12:0 a.m.•4 views

The vulnerability of the Windows Common Log File System Driver in the Windows operating system allows a hacker to gain increased privileges.

The vulnerability of the Windows Common Log File System Driver in the operating system is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow an attacker to gain increased privileges...

7.8CVSS6AI score0.02521EPSS
Exploits0References2Affected Software24
BDU FSTEC
BDU FSTEC
•added 2026/01/19 12:0 a.m.•3 views

The vulnerability of the Remote Procedure Call component in the Windows operating system, which allows a hacker to disclose protected information

The vulnerability of the Remote Procedure Call component in the Windows operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow an attacker to disclose protected information...

6.2CVSS5.7AI score0.00692EPSS
Exploits0References2Affected Software24
BDU FSTEC
BDU FSTEC
•added 2026/01/19 12:0 a.m.•3 views

The vulnerability of the Grafana monitoring and observation platform lies in the redirection of the URL to an unreliable website, allowing attackers to perform cross-site scripting attacks (XSS).

The vulnerability of the Grafana monitoring and observation platform is related to the redirection of the URL to an unreliable website. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks XSS remotely...

9CVSS5.6AI score0.00046EPSS
Exploits0References3Affected Software1
Total number of security vulnerabilities90709