90709 matches found
The vulnerability of the Windows Error Reporting Service’s error reporting mechanism allows a perpetrator to escalate their privileges.
The vulnerability of the Windows Error Reporting Service’s error reporting mechanism is related to improper handling of insufficient permissions or privileges. Exploiting this vulnerability can allow an attacker to enhance their privileges...
The vulnerability of the DirectX Graphics Kernel component in Windows operating systems allows attackers to exploit their privileges.
The vulnerability of the DirectX Graphics Kernel component in Windows operating systems is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow attackers to gain increased privileges...
The vulnerability of software for online simulation and optimization of AVEVA Process Optimization processes, due to an uncontrolled element in the search process, allows a perpetrator to enhance their privileges, execute arbitrary code, and gain full control over the system.
The vulnerability of software for online simulation and optimization of AVEVA Process Optimization processes is related to an uncontrollable element in the search process. Exploiting this vulnerability can allow attackers to enhance their privileges, execute arbitrary code, and gain full control...
The vulnerability of the Windows File Explorer driver on Windows operating systems, allowing attackers to disclose protected information
The vulnerability of the Windows File Explorer in Windows operating systems is related to the disclosure of information. Exploiting this vulnerability can allow a remote attacker to disclose protected information...
The vulnerability of the SMB Server component in Windows operating systems allows attackers to increase their privileges.
The vulnerability of the SMB Server component in Windows operating systems is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow a remote attacker to gain increased privileges...
The vulnerability of the Android operating system’s kernel, which allows a hacker to disclose protected information
The vulnerability of Android operating system kernels is related to key management errors. Exploiting this vulnerability can allow a remote attacker to disclose sensitive information that is protected by the system...
The vulnerability of Adobe InDesign’s computer layout automation tool, related to writing beyond the buffer limit, allows a hacker to execute arbitrary code.
The vulnerability of Adobe InDesign’s computer layout automation tool is related to writing beyond the buffer limit. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
The vulnerability of Adobe InDesign’s computer layout automation tool, related to access to an uninitialized pointer, allows a hacker to execute arbitrary code.
The vulnerability of Adobe InDesign’s computer layout automation tool is related to access to an uninitialized pointer. Exploiting this vulnerability could allow an attacker to execute arbitrary code...
The vulnerability of the LDAP service protocol implementation in Microsoft Windows operating systems allows a hacker to execute arbitrary code.
The vulnerability of the LDAP service protocol implementation in Microsoft Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by transmitting specially crafted data...
The vulnerability of the Windows Ancillary Function Driver for WinSock operating system allows attackers to increase their privileges.
The vulnerability of the Windows Ancillary Function Driver for WinSock operating system is related to synchronization errors when using shared resources „Race Conditions“. Exploiting this vulnerability can allow an attacker to gain increased privileges...
The vulnerability of the Management Services tool for Windows operating systems allows a perpetrator to increase their privileges.
The vulnerability of the Management Services tool for Windows operating systems stems from the reutilization of previously released memory due to competitive access to resources „Race Conditions“. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of the TAO software service for online modeling and optimization of AVEVA Process Optimization processes allows a hacker to execute arbitrary code and gain full control over the system.
The vulnerability of the TAO software service for online modeling and process optimization in AVEVA Process Optimization is related to improper code generation management. Exploiting this vulnerability allows a remote attacker to execute arbitrary code and gain full control over the system...
The vulnerability of software for online simulation and optimization of AVEVA Process Optimization processes, related to the use of potentially dangerous functions, allows a hacker to enhance their privileges.
The vulnerability of software for online simulation and optimization of AVEVA Process Optimization processes is related to the use of potentially dangerous functions. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of Fortinet FortiFone IP phones’ microprogramming software, related to information disclosure, allows attackers to gain access to the device’s system settings.
The vulnerability of Fortinet FortiFone IP phones’ microprogramming software is related to information disclosure. Exploiting this vulnerability can allow a malicious actor to gain access to device system settings by sending specially crafted HTTP requests...
The vulnerability of the FortiSandbox threat detection and mitigation system lies in its insufficient validation of requests on the server side. This allows attackers to redirect users to arbitrary URL addresses.
The vulnerability of the FortiSandbox threat detection and mitigation system is related to insufficient validation of requests on the server side. Exploiting this vulnerability allows a malicious actor to redirect users to arbitrary URL addresses...
The vulnerability of Adobe InDesign’s computer layout automation software, related to reading data beyond the permitted range in memory, allows attackers to gain unauthorized access to protected information.
The vulnerability of Adobe InDesign’s computer layout automation tool is related to reading data beyond the allowable range in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...
The vulnerability of Adobe InDesign’s computer layout automation tool, related to writing beyond the buffer limit, allows a hacker to execute arbitrary code.
The vulnerability of Adobe InDesign’s computer layout automation tool is related to writing beyond the buffer limit. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
The vulnerability of the msp_info_htm() function in the msp_info.htm file of the D-Link DI-7400G+ router microprogramming software allows a hacker to execute arbitrary commands.
The vulnerability of the mspinfohtm function in the mspinfo.htm file of the D-Link DI-7400G+ router microprogramming system is related to the lack of measures taken to neutralize special elements during the processing of the cmd parameter. Exploiting this vulnerability allows a remote attacker to...
The vulnerability of the Windows operating system’s kernel, which allows a hacker to disclose protected information
The vulnerability of the Windows operating system’s kernel is related to insufficient protection of registration data. Exploiting this vulnerability can allow an attacker to disclose the protected information...
The vulnerability of the security function based on virtualization in Windows operating systems allows attackers to access confidential information.
The vulnerability of the security function based on virtualization, known as Virtualization-Based Security VBS in Windows operating systems, is related to the use of a non-trusted pointer. Exploiting this vulnerability can allow attackers to circumvent existing security restrictions...
The vulnerability of the Graphics component in Windows operating systems allows attackers to exploit their privileges.
The vulnerability of the Graphics component in Windows operating systems is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the access controller service allows attackers to exploit the Capability Access Management Service (camsvc) of Windows operating systems, enabling them to disclose protected information.
The vulnerability of the access controller service related to the Capability Access Management Service camsvc of Windows operating systems stems from the operation of data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to disclose protected information...
The vulnerability of the Tablet Windows User Interface (TWINUI) in Windows operating systems allows attackers to escalate their privileges.
The vulnerability of the Tablet Windows User Interface TWINUI in Windows operating systems is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow attackers to gain increased privileges...
The vulnerability of software for online simulation and optimization of AVEVA Process Optimization processes, related to the lack of authentication, allows a perpetrator to execute arbitrary code, gain read, modify, and delete file privileges, and increase their privileged status.
The vulnerability of software for online simulation and optimization of AVEVA Process Optimization processes is related to the lack of authentication. Exploiting this vulnerability allows a perpetrator to execute arbitrary code, gain read, modify, and delete file privileges, thereby enhancing the...
The vulnerability of the Tablet Windows User Interface (TWINUI) in Windows operating systems allows a hacker to disclose protected information.
The vulnerability of the Tablet Windows User Interface TWINUI in Windows operating systems is related to the disclosure of information. Exploiting this vulnerability can allow an attacker to disclose protected information...
The vulnerability of software for online modeling and optimization of AVEVA Process Optimization processes, related to the lack of measures to protect the SQL query structure, allows attackers to execute arbitrary code, increase their privileges, and gain full control over the system.
The vulnerability of software for online modeling and optimization of AVEVA Process Optimization processes is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows attackers to execute arbitrary code, increase their privileges, and gain ful...
The vulnerability of the access controller service allows attackers to exploit the Capability Access Management Service (camsvc) of Windows operating systems, enabling them to disclose protected information.
The vulnerability of the access controller service related to the Capability Access Management Service camsvc of Windows operating systems stems from the operation of data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to disclose protected information...
The vulnerability of the Graphics component in Windows operating systems allows attackers to exploit their privileges.
The vulnerability of the Graphics component in Windows operating systems is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the Kernel-mode operating system driver in Windows allows a hacker to increase their privileges.
The vulnerability of the Kernel-mode operating system drivers for Windows is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the Windows Local Session Manager (LSM) component of the Windows operating system, which allows a hacker to increase their privileges
The vulnerability of the Windows Local Session Manager LSM component of the Windows operating system is related to synchronization errors when using a shared resource “Race Condition”. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the Fortinet FortiClient Enterprise Management Server (EMS) server lies in the lack of security measures for the SQL query structure, allowing attackers to execute arbitrary code.
The vulnerability of the Fortinet FortiClient Enterprise Management Server EMS server relates to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending a specially crafted SQL query remotely...
The vulnerability of the SMB Server component in Windows operating systems allows attackers to increase their privileges.
The vulnerability of the SMB Server component in Windows operating systems is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow a remote attacker to gain increased privileges...
The vulnerability of Google Chrome’s Split View component, which allows attackers to perform spoofing attacks
The vulnerability of Google Chrome’s Split View component is related to information representation errors in the user interface. Exploiting this vulnerability allows a malicious actor to perform spoofing attacks remotely...
The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine allows a hacker to gain access to and delete data.
The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine is related to errors in the implementation of security checks for standard elements. Exploiting this vulnerability can allow a malicious actor to gain access to and delete data through a specially created HTML page...
The vulnerability of the Structurizr chart creation tool lies in insufficient validation of requests on the server side, allowing attackers to gain unauthorized access to protected information.
The vulnerability of the Structurizr diagramming tool is related to insufficient validation of requests on the server side. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected information...
The vulnerability of the ANGLE library in Google Chrome browser allows a hacker to induce a service failure.
The vulnerability of the ANGLE library in Google Chrome browsers relates to the ability to utilize memory after it is freed. Exploiting this vulnerability could allow a malicious actor to cause service interruptions remotely...
The vulnerability of Juniper Networks Junos OS, a flow processing demon for operating systems, in network interfaces of the SRX series and MX routers, allowing attackers to cause service interruptions.
The vulnerability of Juniper Networks Junos OS for network interface cards of the SRX series and routers of the MX series in processing flow data in operating systems allows for a memory reclamation error to occur. Exploiting this vulnerability can enable a malicious actor to cause service...
The vulnerability of Adobe Illustrator’s graphic editor, related to pointer assignment errors, allows a hacker to trigger a service failure.
The vulnerability of the Adobe Illustrator graphic editor is related to pointer assignment errors. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the Adobe InCopy text creation and editing software lies in the occurrence of out-of-buffer operations in memory, which allows an attacker to execute arbitrary code.
The vulnerability of the Adobe InCopy text creation and editing software relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code by sending a specially crafted malicious file...
The vulnerability of the Adobe Substance 3D Modeler software for 3D modeling lies in pointer assignment errors, which can allow attackers to trigger a service failure.
The vulnerability of the Adobe Substance 3D Modeler software for 3D modeling is related to pointer assignment errors. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the Adobe Substance 3D Modeler software, related to reading beyond the buffer limit of memory, allows attackers to exploit this flaw to disclose protected information.
The vulnerability of the Adobe Substance 3D Modeler software for 3D modeling is related to reading data beyond the buffer limit of memory. Exploiting this vulnerability can allow an attacker to disclose confidential information...
The vulnerability of Windows Admin Center, related to errors in verifying cryptographic signatures, allows a perpetrator to escalate their privileges.
The vulnerability of Windows Admin Center relates to errors in verifying the cryptographic signature. Exploiting this vulnerability could allow an attacker to increase their privileges by sending a specially crafted HTTPS request...
The vulnerability of the EXT/STANDART extension in the PHP programming language allows a hacker to cause a service failure.
The vulnerability of the EXT/STANDART extension in the PHP programming language is related to improper cleaning or release of resources. Exploiting this vulnerability can allow an attacker, operating remotely, to cause service failures...
The vulnerability of the createHook() function in the async_hooks module of the Node.js software platform allows a hacker to trigger a denial-of-service attack.
The vulnerability of the createHook function in the asynchooks module of the Node.js software platform is related to an uncontrolled recursion. Exploiting this vulnerability could allow a malicious actor to trigger a service failure remotely...
The vulnerability of the Downloads component in the Google Chrome browser allows a hacker to disclose protected information.
The vulnerability of the Downloads component in the Google Chrome browser is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information through a specially created HTML page...
The vulnerability of the Adobe Substance 3D Modeler software lies in the ability to write beyond the buffer boundaries in memory, allowing an attacker to execute arbitrary code.
The vulnerability of the Adobe Substance 3D Modeler software for 3D modeling is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
The vulnerability of the Adobe Substance 3D Modeler software, related to reading beyond the buffer limit of memory, allows attackers to exploit this flaw to disclose protected information.
The vulnerability of the Adobe Substance 3D Modeler software for 3D modeling is related to reading data beyond the buffer limit of memory. Exploiting this vulnerability can allow an attacker to disclose confidential information...
The vulnerability of the Windows Kernel Memory component in operating systems allows attackers to enhance their privileges.
The vulnerability of the Windows Kernel Memory component in operating systems involves synchronization errors when using shared resources „Race Conditions“. Exploiting this vulnerability can allow an attacker to gain increased privileges...
The vulnerability of the Microsoft SQL Server database management system, related to deficiencies in authentication procedures, allows attackers to escalate their privileges.
The vulnerability of the Microsoft SQL Server database management system is related to deficiencies in authentication procedures. Exploiting this vulnerability can allow attackers to enhance their privileges remotely...
The vulnerability of the object-oriented application programming interface PDO interpreter for the PHP programming language allows a attacker to trigger a service failure.
The vulnerability of the object-oriented application programming interface PDO of the PHP language interpreter is related to pointer dereferencing errors. Exploiting this vulnerability can allow an attacker to cause service failures remotely...