The vulnerability of the Node Access Rebuild component in Drupal-based CMS systems, related to deficiencies in access control, allows attackers to bypass access restrictions.

The vulnerability of the Node Access Rebuild component in Drupal CMS systems is related to deficiencies in access control. Exploiting this vulnerability allows an attacker to bypass security restrictions remotely...

The vulnerability of the Commerce View Receipt module in the Drupal CMS system, related to deficiencies in the authentication process, allows attackers to circumvent security restrictions and execute a Forceful Browsing attack.

The vulnerability of the Commerce View Receipt module in the Drupal CMS system is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to bypass security restrictions and execute a Forceful Browsing attack...

The vulnerabilities of the functions blkFlushCompleteSeq() and flushEndIo() in the block component (block/blk-flush.c) of the Linux operating system allow a hacker to trigger a service failure.

The vulnerabilities of the functions blkFlushCompleteSeq and flushEndIo in the block component block/blk-flush.c of the Linux kernel are related to improper initialization. Exploiting these vulnerabilities can allow an attacker to cause a service failure...

The vulnerability of the gst_matroska_demux_parse_blockgroup_or_simpleblock function in the Gstreamer multimedia framework allows a hacker to cause a service failure.

The vulnerability of the gstmatroskademuxparseblockgrouporsimpleblock function in the Gstreamer multimedia framework is related to errors in pointer dereferencing of NULL pointers. Exploiting this vulnerability can allow an attacker to cause service failures remotely...

The vulnerability of the fsl_asoc_card_probe() function (sound/soc/fsl/fsl-asoc-card.c) in the AsoC component of Linux kernel, which allows a hacker to cause a service failure.

The vulnerability of the fslasoccardprobe function sound/soc/fsl/fsl-asoc-card.c in the AsoC component of Linux operating systems is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the gst_jpeg_dec_negotiate function in the Gstreamer multimedia framework allows a attacker to cause a service failure.

The vulnerability of the gstjpegdecnegotiate function in the Gstreamer multimedia framework is related to errors in pointer dereferencing of NULL pointers. Exploiting this vulnerability can allow an attacker to cause service failures remotely...

The vulnerability of the btrfs_quota_disable() function in the btrfs component of Linux kernel-based operating systems allows a malicious actor to trigger a service failure.

The vulnerability of the btrfsquotadisable function in the btrfs component of Linux kernel-based operating systems is related to the lack of memory release after the effective lifespan of the function has ended. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the `ksmbd_vfs_stream_read()` function in the KSMBD daemon of the Linux operating system allows a hacker to disclose protected information and cause service failures.

The vulnerability of the ksmbdvfsstreamread function in the KSMBD daemon of the Linux operating system is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow a remote attacker to disclose sensitive information and cause service failures by...

The vulnerability in the web interface of TP-Link Archer A20 micro-programming software allows a hacker to execute arbitrary code.

The vulnerability of the web interface for managing TP-Link Archer A20 wireless routers involves a lack of measures taken to protect the website structure. Exploiting this vulnerability allows an attacker to execute arbitrary code, provided that the user specifically submits a specially crafted G...

The vulnerability in the module/loaders/loader_ico.c component of the Imlib2 image processing library allows a attacker to cause a service failure.

The vulnerability in the modules/loaders/loaderico.c component of the Imlib2 image processing library is related to reading data beyond the allowable buffer size. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

The vulnerability of the Email Contact module in the Drupal CMS system allows attackers to bypass security restrictions and execute a forced browsing attack.

The vulnerability of the Email Contact module in the Drupal CMS system is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to bypass security restrictions and execute a Forceful Browsing attack...

The vulnerability of the Responsive and off-canvas menu module in the Drupal CMS system, related to improper authentication, allows attackers to bypass security restrictions and execute a Forceful Browsing attack.

The vulnerability of the Responsive and off-canvas menu module in the Drupal CMS system is related to improper authentication. Exploiting this vulnerability allows a malicious actor to bypass security restrictions and execute a Forceful Browsing attack...

The vulnerability of the functions ss_net_snmp_disk_io() and ss_net_snmp_disk_bytes() in the Cacti network monitoring software allows a attacker to execute arbitrary code.

The vulnerability of the ssnetsnmpdiskio and ssnetsnmpdiskbytes functions of the Cacti network monitoring software is related to the failure to take measures to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to execute...

The vulnerability of the CoreMedia component in operating systems such as visionOS, iOS, iPadOS, macOS, watchOS, and tvOS allows attackers to gain increased privileges.

The vulnerability of the CoreMedia component in visionOS, iOS, iPadOS, macOS, watchOS, and tvOS systems is related to the use of memory after it is released. Exploiting this vulnerability can allow an attacker to increase their privileges through a specially crafted application...

The vulnerability of the Migrate Tools module in the Drupal CMS system, related to the manipulation of cross-site requests, allows a hacker to perform a CSRF attack.

The vulnerability of the Migrate Tools module in the Drupal CMS system is related to the manipulation of cross-site requests. Exploiting this vulnerability allows a malicious actor to perform a CSRF attack remotely...

The vulnerability of Acquia DAM CMS system’s Drupal module, related to the manipulation of cross-site requests, allows attackers to perform CSRF attacks or cause service failures.

The vulnerability of Acquia DAM CMS system’s Drupal module is related to the manipulation of cross-site requests. Exploiting this vulnerability allows a malicious actor to perform a CSRF attack or cause service failures...

The vulnerability of the qtdemux_parse_theora_extension function in the Gstreamer multimedia framework allows a hacker to execute arbitrary code.

The vulnerability of the qtdemuxparsetheoraextension function in the Gstreamer multimedia framework is related to integer overflow. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the qtdemux_parse_trak function in the Gstreamer multimedia framework allows a hacker to execute arbitrary code.

The vulnerability of the qtdemuxparsetrak function in the Gstreamer multimedia framework is related to integer overflow. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the ila_output() function in the ila component of Linux kernel components, which allows a hacker to cause a service failure

The vulnerability of the ilaoutput function in the ila component of Linux kernel components is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

Vulnerability of components fs/ext4/inode.c and fs/ext4/super.c in the Linux operating system’s kernel, which allows a hacker to cause a service failure

The vulnerability in the fs/ext4/inode.c and fs/ext4/super.c components of the Linux operating system’s kernel relates to the use of memory after it is freed. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of the Opigno Learning path CMS system’s Drupal module lies in errors during the processing of input data during syntax analysis of code. This allows attackers to execute arbitrary code.

The vulnerability of the Opigno Learning path CMS system’s Drupal component is related to errors in data processing during syntax analysis of code. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability in the driver/s390/crypto/pkey_api.c component of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability in the drivers/s390/crypto/pkeyapi.c component of the Linux operating system’s kernel is related to incomplete cleanup of temporary or auxiliary resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of Opigno’s Drupal CMS system lies in errors during the processing of input data during syntax analysis, allowing attackers to execute arbitrary code.

The vulnerability of Opigno’s Drupal CMS system is related to errors in data processing during syntax analysis of code. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the Migrate queue importer in Drupal CMS systems, related to the manipulation of cross-site requests, allows a hacker to perform a CSRF attack.

The vulnerability of the Migrate queue importer in Drupal CMS systems is related to the manipulation of cross-site requests. Exploiting this vulnerability allows a malicious actor to perform a CSRF attack remotely...

The vulnerabilities of the functions tcp_remove_empty_skb(), tcp_mark_push(), and min_t() in the net/ipv4/tcp.c module of Linux kernel allow a attacker to cause a service failure.

The vulnerabilities of the functions tcpremoveemptyskb, tcpmarkpush, and mint in the net/ipv4/tcp.c module of the Linux operating system’s kernel are related to improper control of resource identifiers. Exploiting these vulnerabilities could allow an attacker to cause service failures...

The vulnerability of the extract_cc_from_data function in the Gstreamer multimedia framework, which allows a hacker to gain access to confidential information

The vulnerability of the extractccfromdata function in the Gstreamer multimedia framework is related to reading beyond the allowed range. Exploiting this vulnerability can allow an attacker to gain access to confidential information...

The vulnerability of the davinci_gpio_probe() function in the gpio component of the Linux operating system’s kernel allows a hacker to induce a service failure.

The vulnerability of the davincigpioprobe function in the gpio component of Linux operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow attackers to cause system failures...

The vulnerability of the smb2_write() function in the fs/ksmbd/smb2pdu.c module allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the smb2write function in the fs/ksmbd/smb2pdu.c module is related to writing beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of the View Password module in Drupal CMS systems, related to the lack of protective measures for website structures, allows attackers to execute cross-site scripting (XSS) attacks.

The vulnerability of the View Password module in the Drupal CMS system is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks XSS remotely...

The vulnerability of the Open Social CMS system’s Drupal module, related to access control deficiencies, allows attackers to bypass security restrictions.

The vulnerability of the Open Social CMS system, Drupal, is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to bypass security restrictions remotely...

The vulnerability of the social_group_flexible_group configuration in the Drupal Open Social CMS system allows a hacker to gain unauthorized access to protected information.

The vulnerability of the socialgroupflexiblegroup configuration in the Drupal Open Social CMS system is related to deficiencies in the authentication process. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the gst_matroska_demux_add_wvpk_header function in the Gstreamer multimedia framework allows a hacker to cause a service failure.

The vulnerability of the gstmatroskademuxaddwvpkheader function in the Gstreamer multimedia framework is related to errors in pointer dereferencing of NULL pointers. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the id3v2_read_synch_uint function in the Gstreamer multimedia framework allows a hacker to bypass service denial.

The vulnerability of the id3v2readsynchuint function in the Gstreamer multimedia framework is related to errors in pointer dereferencing of NULL. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of the binder_release_work function in the binder.c component of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the binderreleasework function in the binder.c component of the Linux operating system’s kernel is related to the use of memory after it has been freed. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability in the driver/gpu/drm/amd/amdkfd/kfd InterruptInterrupt.c component of the Linux operating system allows a attacker to cause a service failure.

The vulnerability of the drivers/gpu/drm/amd/amdkfd/kfd InterruptInterrupt.c component in the Linux operating system is related to pointer arithmetic errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the IBM Robotic Process Automation software lies in its improper security checks at the client side, which allows attackers to exploit their privileges.

The vulnerability of the IBM Robotic Process Automation software lies in improper security checks at the client side. Exploiting this vulnerability can allow a malicious actor to gain increased privileges...

The vulnerabilities in the mm/madvise.c and mm/msync.c components of the Linux kernel allow a hacker to trigger a service failure.

The vulnerability in the mm/madvise.c and mm/msync.c components of the Linux kernel involves the simultaneous execution using shared resources with incorrect synchronization. Exploiting this vulnerability can allow an attacker to cause service failures...

The vulnerability in the driver/s390/crypto/pkey_api.c component of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability in the drivers/s390/crypto/pkeyapi.c component of the Linux operating system’s kernel is related to incomplete cleanup of temporary or auxiliary resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the Open Social CMS system’s Drupal module, related to the lack of protective measures for website structures, allows attackers to carry out cross-site scripting attacks.

The vulnerability of the Open Social CMS system, Drupal, is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

The vulnerability of the Paragraphs module in the Drupal CMS system, related to deficiencies in access control, allows attackers to bypass security restrictions and gain unauthorized access to protected information.

The vulnerability of the Paragraphs module in the Drupal CMS system is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to bypass security restrictions and gain unauthorized access to protected information...

The vulnerability of the Entity Delete Log module in the Drupal CMS system, related to improper authentication, allows attackers to bypass security restrictions and execute a forced browsing attack.

The vulnerability of the Entity Delete Log module in the Drupal CMS system is related to improper authentication. Exploiting this vulnerability allows a malicious actor to bypass security restrictions and execute a Forceful Browsing attack...

The vulnerability of the qtdemux_parse_svq3_stsd_data function in the Gstreamer multimedia framework allows a hacker to execute arbitrary code.

The vulnerability of the qtdemuxparsesvq3stsddata function in the Gstreamer multimedia framework is related to integer overflow. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the nv17_tv_get_hd_modes() function in the Linux kernel’s DRM driver allows a hacker to trigger a service failure.

The vulnerability of the nv17tvgethdmodes function in the Linux kernel’s DRM driver is related to pointer arithmetic errors. Exploiting this vulnerability could allow a hacker to trigger a service failure...

The vulnerability of the web interface for managing microprogramming software-based network storage devices STEALTHONE D220 and D340 allows a intruder to gain unauthorized access to protected information.

The vulnerability of the web interface for managing microprogramming software-based network storage devices STEALTHONE D220 and D340 is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability can allow an attacker, operating remotely, to gain...

The vulnerability of the `renderToString()` function in the JavaScript library for rendering mathematical expressions in KaTeX allows a hacker to execute arbitrary code.

The vulnerability of the renderToString function in the JavaScript library for rendering mathematical expressions in KaTeX is related to incorrect encoding or escaping of output data when processing the \htmlData parameter. Exploiting this vulnerability may allow a remote attacker to execute...

The vulnerability of the netkit component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the netkit component in the Linux operating system’s kernel is related to pointer arithmetic errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the devm_kzalloc function in the pcmdevice_i2c_probe component of the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the devmkzalloc function in the pcmdevicei2cprobe component of the Linux kernel is related to pointer arithmetic errors. Exploiting this vulnerability could allow an attacker to cause a system failure...

Microsoft Edge’s browser vulnerability, related to access control deficiencies, allows attackers to escalate their privileges.

The vulnerability of Microsoft Edge is related to access control deficiencies. Exploiting this vulnerability can allow a remote attacker to increase their privileges...

The vulnerability of the cppc_cpufreq_cpu_init component in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the cppccpufreqcpuinit component in the Linux operating system is related to uncontrolled resource consumption. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the Linux operating system’s kernel, related to errors in thread locking, allows a hacker to trigger a service failure.

The vulnerability of the Linux operating system’s kernel is related to errors during thread blocking. Exploiting this vulnerability can allow an attacker to cause a service failure...