Lucene search
K
Bdu FstecRecent

90279 matches found

BDU FSTEC
BDU FSTEC
added 5 hours ago12 views

The vulnerability of the Directum HR Pro system, which exists due to insufficient verification of input data, allows a perpetrator to disclose protected information.

The vulnerability of the Directum HR Pro system exists due to insufficient verification of input data. Exploiting this vulnerability can allow a malicious actor to disclose protected information by sending a specially crafted POST request...

7.7CVSS5.7AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 5 hours ago9 views

The vulnerability of the software for calculating positions of individual RTLS transponders in the SIMATIC RTLS Locating Manager lies in the lack of a mechanism for verifying input data during backup scenarios. This allows a malicious actor to execute arbitrary code with SYSTEM privileges.

The vulnerability of the software for calculating positions of individual RTLS transponders in the SIMATIC RTLS Locating Manager is related to deficiencies in the mechanism for verifying input data during backup scenario execution. Exploiting this vulnerability could allow an attacker, operating...

9.1CVSS6.1AI score0.00625EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 5 hours ago9 views

The vulnerability of the Directum Web Agent component of the Directum RX system, which arises due to insufficient validation of input data, allows a perpetrator to execute arbitrary code.

The vulnerability of the Directum Web Agent component of the Directum RX system exists due to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code using a specially crafted file...

8.5CVSS6.1AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 5 hours ago11 views

The vulnerability of Microsoft Office packages and 365 Apps for Enterprise lies in the use of memory after it is freed, allowing an attacker to execute arbitrary code.

The vulnerability of Microsoft Office packages and 365 Apps for Enterprise lies in the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

8.4CVSS6AI score0.00425EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 5 hours ago8 views

Blitz Identity Provider (Authentication server)

...

5.8AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 5 hours ago7 views

The vulnerability of the MmMapIoSpace() function in the ThrottleBlood.sys driver allows a hacker to escalate their privileges, execute arbitrary code, or cause a service failure.

The vulnerability of the MmMapIoSpace function in the ThrottleBlood.sys driver, as part of the ThrottleStop utility, is related to open IOCTLs with insufficient access control. Exploiting this vulnerability could allow an attacker to enhance their privileges, execute arbitrary code, or cause...

7.5CVSS6AI score0.08963EPSS
Exploits8References3Affected Software1
BDU FSTEC
BDU FSTEC
added 5 hours ago14 views

The vulnerability of the pg_dump utility in the PostgreSQL database management system allows a hacker to execute arbitrary code.

The vulnerability of the pgdump utility in the PostgreSQL database management system is related to the inclusion of functions from an unverified and uncontrolled area. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

10CVSS7.2AI score0.00709EPSS
Exploits1References11Affected Software9
BDU FSTEC
BDU FSTEC
added 5 hours ago9 views

The vulnerability of the Directum RX ECM system, related to deficiencies in access control, allows a perpetrator to compromise data integrity.

The vulnerability of the Directum RX ECM system is related to deficiencies in access control. Exploiting this vulnerability could allow a remote attacker to compromise data integrity...

5CVSS5.8AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 5 hours ago16 views

The vulnerability of the pg_dump utility in the PostgreSQL database management system allows a hacker to execute arbitrary code.

The vulnerability of the pgdump utility in the PostgreSQL database management system is related to the lack of security measures for SQL query structures. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

10CVSS7AI score0.00385EPSS
Exploits0References11Affected Software9
BDU FSTEC
BDU FSTEC
added 5 hours ago8 views

The vulnerability of the Kerberos protocol for Windows operating systems allows attackers to increase their privileges.

The vulnerability of the Kerberos protocol for Windows operating systems is related to errors in the mechanism for handling relative pathnames to the directory. Exploiting this vulnerability can allow a malicious actor to increase their privileges remotely...

9CVSS6.1AI score0.02593EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 5 hours ago6 views

The vulnerability in the drivers/bluetooth/btnxpuart.c module of Linux operating systems allows a hacker to cause a service failure.

The vulnerability in the drivers/bluetooth/btnxpuart.c module of Linux operating systems is related to incorrect resource management. Exploiting this vulnerability can allow an attacker to cause service failures...

5.5CVSS6AI score0.00119EPSS
Exploits0References6Affected Software4
BDU FSTEC
BDU FSTEC
added 5 hours ago8 views

The vulnerabilities in the net/bluetooth/eir.c and net/bluetooth/mgmt.c modules of Linux kernel allow a hacker to cause a service failure.

The vulnerability in the net/bluetooth/eir.c and net/bluetooth/mgmt.c modules of Linux kernel systems relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a system failure...

7CVSS6.1AI score0.00121EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 17 hours ago3 views

The vulnerability of the PESpin-file processing mechanism in the ClamAV antivirus program allows a hacker to induce a service failure.

The vulnerability of the PESpin-file processing mechanism in the ClamAV antivirus program lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a malicious actor to cause service failure by sending a specially crafted file...

7.8CVSS5.9AI score0.00389EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 17 hours ago3 views

The vulnerability of the processing mechanism for DMG files in the ClamAV antivirus program allows a hacker to induce a service failure.

The vulnerability of the DMG-file processing mechanism in the ClamAV antivirus program lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a malicious actor, operating remotely, to cause service interruptions by sending a specially...

7.8CVSS5.9AI score0.00389EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 17 hours ago3 views

The vulnerability of the FSG-file processing mechanism in the ClamAV antivirus program allows a hacker to induce a service failure.

The vulnerability of the FSG-file processing mechanism in the ClamAV antivirus program lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a malicious actor, operating remotely, to cause service interruptions by sending a specially...

7.8CVSS5.9AI score0.00463EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 17 hours ago3 views

The vulnerability of the 7z-file processing mechanism of the ClamAV antivirus program allows a hacker to trigger a service failure.

The vulnerability of the 7z-file processing mechanism of the ClamAV antivirus program lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a malicious actor to cause service failure by sending a specially crafted file...

7.8CVSS5.9AI score0.00389EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 17 hours ago3 views

The vulnerability of the `move_normal_pmd()` and `move_normal_pud()` functions in the `mm/mremap.c` module of the Linux kernel’s memory management subsystem allows an attacker to compromise the accessibility of protected information.

The vulnerability of the movenormalpmd and movenormalpud functions in the mm/mremap.c module of the Linux kernel’s memory management subsystem is related to state management errors. Exploiting this vulnerability could allow an attacker to compromise the accessibility of protected information...

5.5CVSS6.2AI score0.00119EPSS
Exploits0References7Affected Software2
BDU FSTEC
BDU FSTEC
added 17 hours ago3 views

The vulnerability of the ulpi_register() function in the drivers/usb/common/ulpi.c module of the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the ulpiregister function in the drivers/usb/common/ulpi.c module of the Linux kernel involves the disclosure of confidential information. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00222EPSS
Exploits0References21Affected Software9
BDU FSTEC
BDU FSTEC
added 17 hours ago4 views

The vulnerability of the Trust Protection Foundation’s key and certificate management mechanism lies in the insufficient checking of unusual or exceptional states. This allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the Trust Protection Foundation’s key management and certificate management mechanisms is related to insufficient checks for unusual or exceptional states. Exploiting this vulnerability can allow a malicious actor to compromise the confidentiality, integrity, and accessibilit...

9CVSS6AI score0.00277EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 17 hours ago3 views

The vulnerability of the ALZ-file processing mechanism in the ClamAV antivirus program allows a hacker to induce a service failure.

The vulnerability of the ALZ-file processing mechanism in the ClamAV antivirus program lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a malicious actor, operating remotely, to cause service failure by sending a specially crafted fi...

7.8CVSS5.9AI score0.00389EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 17 hours ago3 views

The vulnerability of the `dc_get_det_buffer_size_from_state()` function in the `drivers/gpu/drm/amd/display/dc/core/dc.c` file of the Direct Rendering Infrastructure (DRI) driver for AMD graphics cards in Linux operating systems allows a malicious actor to cause a service failure.

The vulnerability of the dcgetdetbuffersizefromstate function in the drivers/gpu/drm/amd/display/dc/core/dc.c file of the Direct Rendering Infrastructure DRI driver for AMD graphics cards in Linux operating systems is related to pointer manipulation. Exploiting this vulnerability could allow an...

5.5CVSS6AI score0.00143EPSS
Exploits0References8Affected Software1
BDU FSTEC
BDU FSTEC
added 17 hours ago3 views

The vulnerability of the xe_migrate_access_memory() function in the drivers/gpu/drm/xe/xe_migrate.c module of the Direct Rendering Infrastructure (DRI) kernel driver of the Linux operating system allows a attacker to cause a service failure.

The vulnerability of the xemigrateaccessmemory function in the drivers/gpu/drm/xe/xemigrate.c module of the Direct Rendering Infrastructure DRI kernel of the Linux operating system is related to the reutilization of previously released memory. Exploiting this vulnerability can allow an attacker t...

5.5CVSS7AI score0.00143EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 17 hours ago3 views

The vulnerability of the mlx5hws_bwc_matcherMoveAllComplex() function in the drivers/net/ethernet/mellanox/mlx5/core/steering/hws/bwc_complex.c file of the Mellanox Ethernet network adapter driver for the Linux operating system allows a attacker to cause a service failure.

The vulnerability of the mlx5hwsbwcmatcherMoveAllComplex function in the drivers/net/ethernet/mellanox/mlx5/core/steering/hws/bwccomplex.c file of the Mellanox Ethernet network adapter driver for the Linux operating system is related to state management errors. Exploiting this vulnerability could...

5.5CVSS6.2AI score0.00119EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 17 hours ago3 views

The vulnerability of the msm_ioctl_gem_info_set_metadata() function in the drivers/gpu/drm/msm/msm_drv.c file of the Direct Rendering Infrastructure (DRI) driver module in the Linux operating system allows a attacker to cause a service failure.

The vulnerability of the msmioctlgeminfosetmetadata function in the drivers/gpu/drm/msm/msmdrv.c file of the Direct Rendering Infrastructure DRI driver in the Linux operating system is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failur...

5.5CVSS6.2AI score0.00145EPSS
Exploits0References13Affected Software6
BDU FSTEC
BDU FSTEC
added 17 hours ago3 views

The vulnerability of the ti_csi2rx_buffer_queue() function in the drivers/media/platform/ti/j721e-csi2rx/j721e-csi2rx.c driver module of the Linux kernel’s multimedia device support driver allows a attacker to cause a service failure.

The vulnerability of the ticsi2rxbufferqueue function in the drivers/media/platform/ti/j721e-csi2rx/j721e-csi2rx.c driver module of the Linux multimedia device support driver is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to...

4.7CVSS6AI score0.00138EPSS
Exploits0References13Affected Software1
BDU FSTEC
BDU FSTEC
added 17 hours ago3 views

The vulnerability of the io_region_allocate_pages() function in the io_uring/memmap.c module, a synchronous I/O interface for the Linux kernel, allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the ioregionallocatepages function in the iouring/memmap.c module, a component of the Linux kernel’s asynchronous I/O interface, involves the allocation of resources without any restrictions or regulation. Exploiting this vulnerability could allow an attacker to compromise th...

7.8CVSS7AI score0.00141EPSS
Exploits0References9Affected Software2
BDU FSTEC
BDU FSTEC
added 17 hours ago3 views

The vulnerability of the nxchmod.sh component of the NoMachine remote desktop access system allows a hacker to escalate their privileges.

The vulnerability of the nxchmod.sh component of the NoMachine remote desktop access system is related to the implementation or modification of arguments. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.8CVSS6AI score0.00131EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added 17 hours ago3 views

The vulnerability of the Cisco Catalyst Center (formerly Cisco DNA Center) network infrastructure management system, related to incorrect path name restrictions, allows attackers to gain unauthorized access to protected information.

The vulnerability of the Cisco Catalyst Center formerly Cisco DNA Center network infrastructure management system is related to incorrect restrictions on path names in the catalog. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected...

7.8CVSS6AI score0.00756EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 17 hours ago3 views

The vulnerability of the module_emit_plt_entry() function in the module arch/loongarch/kernel/module-sections.c, which is part of the LoongArch architecture support in the Linux operating system, allows a hacker to trigger a service failure.

The vulnerability of the moduleemitpltentry function in the module arch/loongarch/kernel/module-sections.c, which is part of the LoongArch architecture support for the Linux operating system, is related to the occurrence of mutual locking. Exploiting this vulnerability could allow an attacker to...

5.5CVSS6.2AI score0.00106EPSS
Exploits0References11Affected Software2
BDU FSTEC
BDU FSTEC
added 17 hours ago3 views

The vulnerability of the Adobe Campaign Classic software platform, related to authentication errors, allows a perpetrator to execute arbitrary code.

The vulnerability of the Adobe Campaign Classic software platform for managing marketing campaigns is related to authentication errors. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code...

10CVSS6.3AI score0.00712EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 17 hours ago3 views

The vulnerability in the web interface for managing micro-program software on NetComm NF20MESH allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the web interface for managing micro-program software on NetComm NF20MESH routers is related to the use of a rigidly encrypted cryptographic key. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information...

8.1CVSS6AI score0.00431EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 17 hours ago3 views

The vulnerability of the `btrfs_subpage_set_writeback()` function in the `fs/btrfs/subpage.c` file of the btrfs file system in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the btrfssubpagesetwriteback function in the fs/btrfs/subpage.c file of the btrfs file system in Linux kernels involves an uncontrolled and exploitable condition. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.2AI score0.00134EPSS
Exploits0References11Affected Software6
BDU FSTEC
BDU FSTEC
added 17 hours ago4 views

The vulnerability of the PE-file processing mechanism of the ClamAV antivirus program allows a hacker to induce a service failure.

The vulnerability of the PE-file processing mechanism in the ClamAV antivirus program lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a malicious actor to cause service failure by sending a specially crafted file...

7.8CVSS5.9AI score0.00463EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 17 hours ago3 views

The vulnerability of the amdgpu_device_suspend() function in the drivers/gpu/drm/amd/amdgpu/amdgpu_device.c driver code allows a hacker to cause a service failure in AMD GPU cores supporting Direct Rendering Infrastructure (DRI) in Linux operating systems.

The vulnerability of the amdgpudevicesuspend function in the drivers/gpu/drm/amd/amdgpu/amdgpudevice.c driver, which is part of the DRI support module for AMD GPU cores in Linux operating systems, leads to a mutual locking condition. Exploiting this vulnerability can allow an attacker to cause a...

5.5CVSS6.5AI score0.00171EPSS
Exploits0References27Affected Software7
BDU FSTEC
BDU FSTEC
added 17 hours ago3 views

The vulnerability of the InstallShield file processing mechanism used by the ClamAV antivirus software allows a hacker to trigger a service failure.

The vulnerability of the InstallShield file processing mechanism used by the ClamAV antivirus software is related to the unlimited distribution of resources. Exploiting this vulnerability allows a malicious actor, operating remotely, to cause service interruptions by sending a specially crafted...

7.8CVSS5.9AI score0.00389EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 17 hours ago3 views

The vulnerability of the SETUID file in VMware Fusion allows a perpetrator to elevate their privileges to the root level.

The vulnerability of the SETUID file in VMware Fusion is related to state management errors. Exploiting this vulnerability can allow an attacker to elevate their privileges to the root level...

7.8CVSS6.1AI score0.00122EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 17 hours ago3 views

The vulnerability of the smaps_hugetlb_range() function in the fs/proc/task_mmu.c module of the Linux kernel’s file system allows a hacker to cause a service failure.

The vulnerability of the smapshugetlbrange function in the fs/proc/taskmmu.c module of the Linux kernel’s file system is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

4.7CVSS6AI score0.00105EPSS
Exploits0References13Affected Software7
BDU FSTEC
BDU FSTEC
added 17 hours ago3 views

The vulnerability of the grab_extent_buffer() function in the fs/btrfs/extent_io.c module of the Btrfs file system support in the Linux operating system allows a attacker to cause a service failure.

The vulnerability of the grabextentbuffer function in the fs/btrfs/extentio.c module of the btrfs file system support in the Linux operating system is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

4.7CVSS6.1AI score0.00138EPSS
Exploits0References13Affected Software1
BDU FSTEC
BDU FSTEC
added 17 hours ago3 views

The vulnerability of the `eventinterrupt_wq_v10()` function in the `drivers/gpu/drm/amd/amdkfd/kfd_int_process_v10.c` driver file, a driver for supporting AMD Linux kernel-based graphics devices with Direct Rendering Infrastructure (DRI), allows a attacker to cause a service failure.

The vulnerability of the eventinterruptwqv10 function in the drivers/gpu/drm/amd/amdkfd/kfdintprocessv10.c driver, a driver for supporting Direct Rendering Infrastructure DRI in AMD graphics cards for Linux operating systems, is related to improper control of resource identifiers “resource...

5.5CVSS6.7AI score0.00222EPSS
Exploits0References15Affected Software4
BDU FSTEC
BDU FSTEC
added 17 hours ago3 views

The vulnerability of the deflate_compress() function in the crypto/deflate.c module of the Linux kernel’s cryptographic subsystem allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the deflatecompress function in the crypto/deflate.c module of the Linux kernel’s cryptographic subsystem is related to the improper implementation of the control flow. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

7CVSS6.2AI score0.00119EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 17 hours ago3 views

The vulnerability of the `alloc_event_waiters()` function in the `drivers/gpu/drm/amd/amdkfd/kfd_events.c` file of the Direct Rendering Infrastructure (DRI) driver for AMD graphics cards in the Linux operating system allows a malicious actor to trigger a service failure.

The vulnerability of the alloceventwaiters function in the drivers/gpu/drm/amd/amdkfd/kfdevents.c file of the Direct Rendering Infrastructure DRI driver for AMD graphics cards in Linux operating systems is related to improper initialization. Exploiting this vulnerability could allow an attacker t...

7.1CVSS6.7AI score0.0017EPSS
Exploits0References19Affected Software6
BDU FSTEC
BDU FSTEC
added 17 hours ago3 views

The vulnerability of the xe_migrate_access_memory() function in the drivers/gpu/drm/xe/xe_migrate.c module of the Direct Rendering Infrastructure (DRI) kernel driver of the Linux operating system allows a attacker to cause a service failure.

The vulnerability of the xemigrateaccessmemory function in the drivers/gpu/drm/xe/xemigrate.c module of the Direct Rendering Infrastructure DRI driver for the Linux kernel is related to an uncontrolled, exploitable condition. Exploiting this vulnerability could allow a attacker to cause a service...

5.5CVSS6.2AI score0.00128EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added yesterday3 views

The vulnerability of the programming platform’s analytics panel based on Git, which is used for collaborative code development in GitLab EE, allows a perpetrator to execute arbitrary code.

The vulnerability of the programming platform’s analytics panel based on Git for collaborative code development in GitLab EE is related to the lack of protective measures for the website structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

8.7CVSS6.3AI score0.00231EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added yesterday2 views

The vulnerability of KACO Blueplanet GridSave storage systems’ inverters, related to the use of a hard-crypted cryptographic key, allows a intruder to gain unauthorized access to the protected information.

The vulnerability of KACO Blueplanet GridSave energy storage systems lies in the use of a rigidly encrypted cryptographic key. Exploiting this vulnerability could allow an unauthorized actor to gain unauthorized access to the protected information...

8.3CVSS7.2AI score0.00186EPSS
Exploits0References2Affected Software11
BDU FSTEC
BDU FSTEC
added yesterday2 views

The vulnerability of the sub_400E40() function in the setconf.cgi script of the D-Link DCS-935L wireless HD camera software allows a intruder to execute arbitrary commands.

The vulnerability of the sub400E40 function in the setconf.cgi script of the D-Link DCS-935L wireless HD camera software is related to the failure to eliminate special elements during the processing of the UID parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrary...

9CVSS7.5AI score0.02706EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added yesterday2 views

The vulnerability of the importExternalTexture method in the Web page rendering module of the Safari browser for iOS operating systems, iPadOS, and macOS allows attackers to bypass security restrictions and gain unauthorized access to protected information.

The vulnerability of the importExternalTexture method in the WebPageRendering module of the WebKit browser engine for Safari operating systems, iPadOS, and macOS is related to deficiencies in the mechanism for verifying data sources when processing web content. Exploiting this vulnerability can...

7.8CVSS6AI score0.0015EPSS
Exploits1References5Affected Software3
BDU FSTEC
BDU FSTEC
added yesterday3 views

The vulnerability of Google Chrome’s Autofill function allows attackers to bypass the sandboxing protection mechanism.

The vulnerability of Google Chrome’s Autofill function relates to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to bypass the sandboxing mechanism by using a specially created HTML page...

10CVSS5.9AI score0.00304EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added yesterday4 views

The vulnerability of the Dawn component in the Google Chrome browser allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Dawn component in the Google Chrome browser is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a remote attacker to gain unauthorized access to protected information through a specially created HTML page...

7.8CVSS6.3AI score0.00308EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added yesterday3 views

The vulnerability of the WebView component of the Google Chrome browser on Android operating systems allows a hacker to gain access to confidential information.

The vulnerability of the WebView component in Google Chrome’s Android operating system is related to insufficient validation of input data. Exploiting this vulnerability can allow a remote attacker to gain access to confidential information through a specially created HTML page...

7.8CVSS6AI score0.00308EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added yesterday3 views

The vulnerability of the AI assistant Gemini (formerly GLIC (Gemini Live in Chrome)) of the Google Chrome browser allows a hacker to gain unauthorized access to protected information.

The vulnerability of the AI assistant Gemini previously known as GLIC Gemini Live in Chrome of the Google Chrome browser is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected informati...

7.8CVSS6AI score0.00285EPSS
Exploits0References3Affected Software1
Total number of security vulnerabilities90279