Lucene search
K
Bdu FstecRecent

90709 matches found

BDU FSTEC
BDU FSTEC
added 2026/01/16 12:0 a.m.4 views

The vulnerability of the Windows operating system’s kernel, which allows a hacker to disclose protected information

The vulnerability of the Windows operating system’s kernel is related to insufficient protection of registration data. Exploiting this vulnerability can allow an attacker to disclose the protected information...

6.2CVSS5.7AI score0.00692EPSS
Exploits0References2Affected Software9
BDU FSTEC
BDU FSTEC
added 2026/01/16 12:0 a.m.3 views

The vulnerability of the Windows Ancillary Function Driver for WinSock operating system allows attackers to increase their privileges.

The vulnerability of the Windows Ancillary Function Driver for WinSock operating system is related to synchronization errors when using shared resources „Race Conditions“. Exploiting this vulnerability can allow an attacker to gain increased privileges...

7.8CVSS5.8AI score0.00295EPSS
Exploits0References2Affected Software24
BDU FSTEC
BDU FSTEC
added 2026/01/16 12:0 a.m.2 views

The vulnerability of software for online simulation and optimization of AVEVA Process Optimization processes, related to the lack of authentication, allows a perpetrator to execute arbitrary code, gain read, modify, and delete file privileges, and increase their privileged status.

The vulnerability of software for online simulation and optimization of AVEVA Process Optimization processes is related to the lack of authentication. Exploiting this vulnerability allows a perpetrator to execute arbitrary code, gain read, modify, and delete file privileges, thereby enhancing the...

6.8CVSS6AI score0.00171EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/16 12:0 a.m.3 views

The vulnerability of software for online modeling and optimization of AVEVA Process Optimization processes, related to improper code generation management, allows attackers to execute arbitrary code, increase their privileges, and gain full control over the system.

The vulnerability of software for online simulation and optimization of AVEVA Process Optimization processes is related to improper code generation management. Exploiting this vulnerability allows attackers to execute arbitrary code, enhance their privileges, and gain full control over the system...

7.1CVSS6.4AI score0.00293EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/16 12:0 a.m.3 views

The vulnerability of the Tablet Windows User Interface (TWINUI) in Windows operating systems allows a hacker to disclose protected information.

The vulnerability of the Tablet Windows User Interface TWINUI in Windows operating systems is related to the disclosure of information. Exploiting this vulnerability can allow an attacker to disclose protected information...

5.5CVSS5.7AI score0.00633EPSS
Exploits0References3Affected Software16
BDU FSTEC
BDU FSTEC
added 2026/01/16 12:0 a.m.5 views

The vulnerability of the SMB Server component in Windows operating systems allows attackers to increase their privileges.

The vulnerability of the SMB Server component in Windows operating systems is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow a remote attacker to gain increased privileges...

7.5CVSS5.8AI score0.00784EPSS
Exploits0References3Affected Software20
BDU FSTEC
BDU FSTEC
added 2026/01/16 12:0 a.m.2 views

The vulnerability of the Graphics component in Windows operating systems allows attackers to exploit their privileges.

The vulnerability of the Graphics component in Windows operating systems is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.8CVSS5.8AI score0.00288EPSS
Exploits0References3Affected Software16
BDU FSTEC
BDU FSTEC
added 2026/01/16 12:0 a.m.3 views

The vulnerability of the Fortinet FortiClient Enterprise Management Server (EMS) server lies in the lack of security measures for the SQL query structure, allowing attackers to execute arbitrary code.

The vulnerability of the Fortinet FortiClient Enterprise Management Server EMS server relates to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending a specially crafted SQL query remotely...

9CVSS6.1AI score0.06992EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/16 12:0 a.m.3 views

The vulnerability of Google Chrome’s web service allows a hacker to bypass existing security restrictions.

The vulnerability of Google Chrome’s web service is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to bypass existing security restrictions remotely...

7.5CVSS7.2AI score0.00221EPSS
Exploits0References7Affected Software4
BDU FSTEC
BDU FSTEC
added 2026/01/16 12:0 a.m.4 views

The vulnerability of Google Chrome’s user interface allows a hacker to bypass existing security restrictions.

The vulnerability of Google Chrome’s user interface is related to the lack of warnings to users about unsafe actions. Exploiting this vulnerability allows a remote attacker to bypass existing security restrictions...

3.1CVSS5.8AI score0.00315EPSS
Exploits0References5Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/01/16 12:0 a.m.2 views

The vulnerability of Google Chrome’s Split View component, which allows attackers to perform spoofing attacks

The vulnerability of Google Chrome’s Split View component is related to information representation errors in the user interface. Exploiting this vulnerability allows a malicious actor to perform spoofing attacks remotely...

6.4CVSS7.2AI score0.00246EPSS
Exploits0References8Affected Software4
BDU FSTEC
BDU FSTEC
added 2026/01/16 12:0 a.m.4 views

The vulnerability of Adobe InDesign’s computer layout automation software, related to reading data beyond the permitted range in memory, allows attackers to gain unauthorized access to protected information.

The vulnerability of Adobe InDesign’s computer layout automation tool is related to reading data beyond the allowable range in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

5.5CVSS5.8AI score0.0019EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/16 12:0 a.m.2 views

The vulnerability of Adobe InDesign’s computer layout automation tool, related to writing beyond the buffer limit, allows a hacker to execute arbitrary code.

The vulnerability of Adobe InDesign’s computer layout automation tool is related to writing beyond the buffer limit. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.8CVSS6.2AI score0.00238EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/16 12:0 a.m.3 views

The vulnerability of the LDAP service protocol implementation in Microsoft Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the LDAP service protocol implementation in Microsoft Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by transmitting specially crafted data...

6.8CVSS6.1AI score0.01116EPSS
Exploits0References3Affected Software16
BDU FSTEC
BDU FSTEC
added 2026/01/16 12:0 a.m.2 views

The vulnerability of the object-oriented application programming interface PDO interpreter for the PHP programming language allows a attacker to trigger a service failure.

The vulnerability of the object-oriented application programming interface PDO of the PHP language interpreter is related to pointer dereferencing errors. Exploiting this vulnerability can allow an attacker to cause service failures remotely...

3.7CVSS7.1AI score0.00573EPSS
Exploits2References11Affected Software8
BDU FSTEC
BDU FSTEC
added 2026/01/16 12:0 a.m.2 views

The vulnerability of the Android operating system’s kernel, which allows a hacker to disclose protected information

The vulnerability of Android operating system kernels is related to key management errors. Exploiting this vulnerability can allow a remote attacker to disclose sensitive information that is protected by the system...

7.1CVSS7.5AI score0.06942EPSS
Exploits14References4
BDU FSTEC
BDU FSTEC
added 2026/01/16 12:0 a.m.3 views

The vulnerability of the createHook() function in the async_hooks module of the Node.js software platform allows a hacker to trigger a denial-of-service attack.

The vulnerability of the createHook function in the asynchooks module of the Node.js software platform is related to an uncontrolled recursion. Exploiting this vulnerability could allow a malicious actor to trigger a service failure remotely...

7.8CVSS7.1AI score0.00624EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/16 12:0 a.m.3 views

The vulnerability of the EXT/STANDART extension in the PHP programming language allows a hacker to cause a service failure.

The vulnerability of the EXT/STANDART extension in the PHP programming language is related to improper cleaning or release of resources. Exploiting this vulnerability can allow an attacker, operating remotely, to cause service failures...

5.3CVSS5.8AI score
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/16 12:0 a.m.2 views

The vulnerability of the Structurizr chart creation tool lies in insufficient validation of requests on the server side, allowing attackers to gain unauthorized access to protected information.

The vulnerability of the Structurizr diagramming tool is related to insufficient validation of requests on the server side. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected information...

8.5CVSS5.8AI score
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2026/01/15 12:0 a.m.5 views

The vulnerability of the Git-based software platform for collaborative code development on GitLab, related to unlimited resource distribution, allows a hacker to cause a service failure.

The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to the unlimited distribution of resources. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause service failures...

6.8CVSS5.8AI score0.00479EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/15 12:0 a.m.3 views

The vulnerability of the GraphQL query execution environment of the Git-based software platform for collaborative code development on GitLab allows a perpetrator to compromise the integrity and accessibility of protected information.

The vulnerability of the GraphQL query execution environment of a Git-based software platform for collaborative code development on GitLab is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to compromise the integrity and...

5.5CVSS6AI score0.00391EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/15 12:0 a.m.4 views

The vulnerability of Inbox COM objects in Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of Inbox COM objects in Windows operating systems relates to the use of memory after deallocation. Exploiting this vulnerability allows an attacker to execute arbitrary code by sending a specially created malicious file...

7CVSS6.1AI score0.0034EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/15 12:0 a.m.3 views

The vulnerability of the trusted execution environment allows for attacks on the Virtualization-Based Security (VBS) Enclave of Windows operating systems, enabling attackers to increase their privileges.

The vulnerability of the trusted execution environment for Virtualization-Based Security VBS in Windows operating systems is related to unreliable pointer aliasing. Exploiting this vulnerability can allow attackers to enhance their privileges...

7.8CVSS5.9AI score0.00483EPSS
Exploits0References2Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/01/15 12:0 a.m.3 views

The vulnerability of the Frappe framework lies in its lack of mechanisms to neutralize special elements in the template creation mechanism. This allows attackers to execute arbitrary code.

The vulnerability of the Frappe framework is related to the lack of measures taken to neutralize special elements in the template creation mechanism. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9CVSS6.1AI score0.00419EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/15 12:0 a.m.4 views

The vulnerability of the access controller service allows attackers to exploit the Capability Access Management Service (camsvc) of Windows operating systems, thereby enabling them to increase their privileges.

The vulnerability of the access controller service related to the Capability Access Management Service camsvc of Windows operating systems is associated with synchronization errors when using a shared resource “Race Conditions”. Exploiting this vulnerability can allow an attacker to increase thei...

7CVSS5.8AI score0.00297EPSS
Exploits0References2Affected Software4
BDU FSTEC
BDU FSTEC
added 2026/01/15 12:0 a.m.3 views

The vulnerability of the Windows operating system’s Management Services service allows attackers to escalate their privileges.

The vulnerability of the Windows operating system’s Management Services function is related to the possibility of exploiting memory after it is freed. Exploiting this vulnerability could allow an attacker to increase their privileges...

7.8CVSS5.8AI score0.00297EPSS
Exploits0References2Affected Software13
BDU FSTEC
BDU FSTEC
added 2026/01/15 12:0 a.m.2 views

The vulnerability of the Full Calendar Macro extension of the XWiki collaborative web application lies in the insufficient protection of operational data, allowing attackers to gain unauthorized access to protected information.

The vulnerability of the Full Calendar Macro extension of the XWiki collaborative web application platform is related to insufficient protection of operational data during the processing of the JSONService.xml page. Exploiting this vulnerability could allow an attacker to gain unauthorized access...

5.3CVSS5.8AI score0.00236EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/15 12:0 a.m.3 views

The vulnerability of the Full Calendar Macro extension of the XWiki collaborative web application lies in the lack of protective measures for the SQL query structure. This allows attackers to gain unauthorized access to protected information, execute arbitrary code, or cause a denial-of-service attack.

The vulnerability of the Full Calendar Macro extension of the XWiki platform relates to the lack of measures taken to protect the SQL query structure during the processing of the JSONService.xml page. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized acce...

10CVSS6.1AI score0.00282EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/15 12:0 a.m.2 views

The vulnerability of NagiosXI software lies in the lack of protective measures for the SQL query structure, allowing attackers to execute arbitrary code.

The vulnerability of NagiosXI software is related to the lack of measures taken to protect the SQL query structure during the processing of monitoring panel parameters. Exploiting this vulnerability allows a malicious actor to execute arbitrary code...

9CVSS6.1AI score0.00929EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2026/01/15 12:0 a.m.2 views

The vulnerability in the NagiosXI software’s /admin/coreconfigsnapshots.php script allows a attacker to compromise the confidentiality of protected information.

The vulnerability of NagiosXI software’s /admin/coreconfigsnapshots.php script is related to an incorrect restriction on the path to the restricted directory. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality of the protected information...

7.8CVSS5.8AI score0.01718EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2026/01/15 12:0 a.m.2 views

The vulnerability of the SSH server of TP-Link’s microprogrammed router TL-WR820N allows a hacker to disclose protected information.

The vulnerability of the SSH server of TP-Link’s microprogrammed router TL-WR820N is related to the use of cryptographic algorithms that contain vulnerabilities. Exploiting this vulnerability can allow a remote attacker to disclose the protected information...

6.5CVSS5.8AI score0.00307EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2026/01/15 12:0 a.m.3 views

The vulnerability of the application agent for automatic updating of Docker containers, Tugtainer, allows a malicious actor to execute arbitrary commands.

The vulnerability of the Docker container automation application Tugtainer relates to the lack of data cleaning at the management level. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands by sending a specially crafted POST request...

10CVSS6.1AI score0.00395EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/01/15 12:0 a.m.3 views

The vulnerability of the Windows Installer component on Windows operating systems, which allows a hacker to increase their privileges

The vulnerability of the Windows Installer component in Windows operating systems is related to synchronization errors when using a common resource “Race Condition”. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.8CVSS5.8AI score0.02392EPSS
Exploits0References2Affected Software24
BDU FSTEC
BDU FSTEC
added 2026/01/15 12:0 a.m.2 views

The vulnerability of the Windows Ancillary Function Driver for WinSock on Windows operating systems allows attackers to exploit their privileges.

The vulnerability of the Windows Ancillary Function Driver for WinSock operating systems is related to the release of previously unallocated memory. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.8CVSS5.8AI score0.00475EPSS
Exploits0References2Affected Software5
BDU FSTEC
BDU FSTEC
added 2026/01/15 12:0 a.m.2 views

The vulnerability of the DWM Core Library in Windows operating systems allows attackers to elevate their privileges.

The vulnerability of the DWM Core Library in Windows operating systems is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to gain elevated privileges...

7CVSS5.8AI score0.00375EPSS
Exploits0References2Affected Software10
BDU FSTEC
BDU FSTEC
added 2026/01/15 12:0 a.m.4 views

The vulnerability of the NTLM protocol implemented by the Windows operating system allows attackers to perform spoofing attacks.

The vulnerability of the NTLM protocol implemented by the Windows operating system is related to incorrect external management of file names or paths. Exploiting this vulnerability allows a malicious actor to perform spoofing attacks remotely...

7.8CVSS5.7AI score0.17312EPSS
Exploits0References2Affected Software24
BDU FSTEC
BDU FSTEC
added 2026/01/15 12:0 a.m.3 views

The vulnerability of the Windows Ancillary Function Driver for WinSock on Windows operating systems allows attackers to exploit their privileges.

The vulnerability of the Windows Ancillary Function Driver for WinSock operating systems is related to data type mixing errors. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.8CVSS5.8AI score0.07983EPSS
Exploits0References2Affected Software24
BDU FSTEC
BDU FSTEC
added 2026/01/15 12:0 a.m.3 views

The vulnerability of the Windows operating system’s Management Services service allows attackers to escalate their privileges.

The vulnerability of the Windows operating system’s Management Services function is related to the possibility of exploiting memory after it is freed. Exploiting this vulnerability could allow an attacker to increase their privileges...

7.8CVSS5.8AI score0.00375EPSS
Exploits0References2Affected Software13
BDU FSTEC
BDU FSTEC
added 2026/01/15 12:0 a.m.3 views

The vulnerability of the Windows operating system’s Management Services service allows attackers to escalate their privileges.

The vulnerability of the Windows operating system’s Management Services function is related to the possibility of exploiting memory after it is freed. Exploiting this vulnerability could allow an attacker to increase their privileges...

7.8CVSS5.8AI score0.00297EPSS
Exploits0References2Affected Software13
BDU FSTEC
BDU FSTEC
added 2026/01/15 12:0 a.m.3 views

The vulnerability of the Win32k.sys component of the Windows operating system, which allows a hacker to increase their privileges

The vulnerability of the Win32k.sys component of the Windows operating system relates to the possibility of exploiting memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.8CVSS5.8AI score0.00475EPSS
Exploits0References2Affected Software4
BDU FSTEC
BDU FSTEC
added 2026/01/15 12:0 a.m.4 views

The vulnerability of the Click-to-Run package services for Microsoft Office and Microsoft SharePoint Server allows a hacker to enhance their privileges.

The vulnerability of the Click-to-Run package services for Microsoft Office and Microsoft SharePoint Server is related to the use of an insecure search path. Exploiting this vulnerability can allow attackers to enhance their privileges by sending specially crafted malicious files...

7CVSS5.8AI score0.0063EPSS
Exploits0References2Affected Software5
BDU FSTEC
BDU FSTEC
added 2026/01/15 12:0 a.m.3 views

The vulnerability of the Windows operating system’s kernel allows a perpetrator to exploit the protected information.

The vulnerability of Windows operating system kernels is related to deficiencies in the mechanism for generating error reports. Exploiting this vulnerability can allow an attacker to disclose information...

5.5CVSS5.7AI score0.00633EPSS
Exploits0References2Affected Software8
BDU FSTEC
BDU FSTEC
added 2026/01/15 12:0 a.m.3 views

The vulnerability of the CSC (Client-Side Caching) service in Windows operating systems allows attackers to disclose sensitive information.

The vulnerability of the CSC Client-Side Caching service in Windows operating systems is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to disclose protected information...

5.5CVSS5.7AI score0.00463EPSS
Exploits0References2Affected Software21
BDU FSTEC
BDU FSTEC
added 2026/01/15 12:0 a.m.3 views

The vulnerability of the DirectX Graphics Kernel component of the Windows operating system, which allows attackers to exploit their privileges

The vulnerability of the DirectX Graphics Kernel component of the Windows operating system is related to synchronization errors when using a shared resource „Race Condition“. Exploiting this vulnerability can allow an attacker to gain increased privileges...

7CVSS5.8AI score0.00297EPSS
Exploits0References2Affected Software16
BDU FSTEC
BDU FSTEC
added 2026/01/15 12:0 a.m.4 views

The vulnerability of the Win32k.sys component of the Windows operating system, which allows a hacker to increase their privileges

The vulnerability of the Win32k.sys component of the Windows operating system is related to access to resources through incompatible types. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.8CVSS5.8AI score0.00485EPSS
Exploits0References2Affected Software8
BDU FSTEC
BDU FSTEC
added 2026/01/15 12:0 a.m.4 views

The vulnerability of the Windows operating system’s Management Services service allows attackers to escalate their privileges.

The vulnerability of the Windows operating system’s Management Services function is related to the possibility of exploiting memory after it is freed. Exploiting this vulnerability could allow an attacker to increase their privileges...

7.8CVSS5.8AI score0.00387EPSS
Exploits0References2Affected Software13
BDU FSTEC
BDU FSTEC
added 2026/01/15 12:0 a.m.4 views

The vulnerability of the biometric authentication function in Windows Hello on Windows operating systems allows a perpetrator to compromise the confidentiality and integrity of the protected information.

The vulnerability of the biometric authentication function in Windows Hello on Windows operating systems is related to deficiencies in access control. Exploiting this vulnerability could allow attackers to compromise the confidentiality and integrity of the protected information...

7.7CVSS5.8AI score0.00482EPSS
Exploits0References2Affected Software16
BDU FSTEC
BDU FSTEC
added 2026/01/15 12:0 a.m.6 views

The vulnerability of the Windows Cloud Files Mini Filter Driver for operating systems, which allows attackers to escalate their privileges.

The vulnerability of the Windows Cloud Files Mini Filter Driver for operating systems lies in its unreliable pointer reclamation mechanism. Exploiting this vulnerability can allow attackers to gain increased privileges...

7.8CVSS5.8AI score0.0046EPSS
Exploits0References2Affected Software13
BDU FSTEC
BDU FSTEC
added 2026/01/15 12:0 a.m.3 views

The vulnerability of the Local Security Authority Subsystem Service (LSASS) in Windows operating systems allows a perpetrator to trigger a service failure.

The vulnerability of the Local Security Authority Subsystem Service LSASS in Windows operating systems is related to pointer aliasing. Exploiting this vulnerability can allow a remote attacker to cause a service failure...

7.8CVSS5.8AI score0.01532EPSS
Exploits0References2Affected Software24
BDU FSTEC
BDU FSTEC
added 2026/01/15 12:0 a.m.9 views

The vulnerability of the Windows Server Update Services (WSUS) server allows a hacker to execute arbitrary code.

The vulnerability of the Windows Server Update Services WSUS for Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

8.1CVSS6AI score0.01075EPSS
Exploits0References2Affected Software20
Total number of security vulnerabilities90709