The vulnerability of the Windows Telephony Service in Windows operating systems allows a perpetrator to execute arbitrary code.

The vulnerability of the Windows Telephony Service in Windows operating systems is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows an attacker to execute arbitrary code by sending a request to the server...

The vulnerability of the Digital Media component of Windows operating systems, which allows a perpetrator to elevate their privileges to a system-level level

The vulnerability of the Digital Media component of Windows operating systems relates to reading data beyond the allowed range in memory. Exploiting this vulnerability can allow an attacker to elevate their privileges to a system-level level...

The vulnerability of the Digital Media component of Windows operating systems allows attackers to elevate their privileges to a system-level level.

The vulnerability of the Digital Media component of Windows operating systems relates to reading data beyond the allowed range in memory. Exploiting this vulnerability can allow an attacker to elevate their privileges to a system-level level...

The vulnerability of the Windows Telephony Service in Windows operating systems allows a perpetrator to execute arbitrary code.

The vulnerability of the Windows Telephony Service in Windows operating systems is related to a potential overflow condition. Exploiting this vulnerability allows an attacker to execute arbitrary code by sending a request to the server...

The vulnerability of the Kerberos protocol for Windows operating systems allows attackers to disclose sensitive information that is protected by this mechanism.

The vulnerability of the Kerberos protocol for Windows operating systems is related to insufficient protection of service data. Exploiting this vulnerability can allow a malicious actor to disclose the protected information...

The vulnerability of the SPNEGO security mechanism for Windows operating systems allows a perpetrator to execute arbitrary code.

The vulnerability of the SPNEGO security mechanism for Windows operating systems is related to the possibility of using memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the Wiki History Diff component of the Git-based software platform for collaborative code development on GitLab allows a hacker to gain unauthorized access to protected information.

The vulnerability of the Wiki History Diff component in the Git-based software platform for collaborative code development on GitLab is related to deficiencies in the authentication mechanism. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access t...

The vulnerability of embedded software developed by Qualcomm, related to the possibility of using memory after release, allows a hacker to execute arbitrary code.

The vulnerability of embedded software developed for Qualcomm chips lies in the possibility of exploiting memory after it is freed. Exploiting this vulnerability could allow a hacker to execute arbitrary code...

Vulnerability of the Accounting.php script (/phpoffice/phpspreadsheet/samples/Wizards/NumberFormat/Accounting.php) in the PhpSpreadsheet library, which allows attackers to perform cross-site scripting attacks.

The vulnerability in the Accounting.php script /phpoffice/phpspreadsheet/samples/Wizards/NumberFormat/Accounting.php of the PhpSpreadsheet library is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows an attacker to perform cross-site...

The vulnerability of the iptraf-ng monitoring tool, related to copying buffers without checking the size of input data, allows a hacker to execute arbitrary code.

The vulnerability of the iptraf-ng network monitoring utility lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the administrator’s user interface function “Configuration XML” of the Continuous Integration and Delivery (CI/CD) GoCD system allows a perpetrator to increase their privileges.

The vulnerability of the “Configuration XML” user interface function in the Continuous Integration and Delivery CI/CD GoCD system is related to improper authentication. Exploiting this vulnerability allows a malicious actor to increase their privileges remotely...

The vulnerability of the DWM Core Library in Windows operating systems allows attackers to enhance their privileges.

The vulnerability of the DWM Core Library in Windows operating systems is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the Digital Media component of Windows operating systems allows attackers to elevate their privileges to a system-level level.

The vulnerability of the Digital Media component of Windows operating systems relates to reading data beyond the allowed range in memory. Exploiting this vulnerability can allow an attacker to elevate their privileges to a system-level level...

The vulnerability of the Line Printer Daemon (LPD) service on Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Line Printer Daemon LPD on Windows operating systems relates to the possibility of using memory after it is freed. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

The vulnerability of the Digital Media component of Windows operating systems allows attackers to elevate their privileges to a system-level level.

The vulnerability of the Digital Media component of Windows operating systems relates to reading data beyond the allowed range in memory. Exploiting this vulnerability can allow an attacker to elevate their privileges to a system-level level...

The vulnerability of the QuTS operating systems and QTS network devices involves an improper definition of symbolic links before accessing files. This allows attackers to execute arbitrary code and elevate their privileges to the root level.

The vulnerability of the QuTS operating systems and QTS network devices involves an improper definition of symbolic links before accessing files. Exploiting this vulnerability allows a remote attacker to execute arbitrary code and elevate their privileges to the root level...

The vulnerability of the Substance 3D Designer’s texture and material creation software lies in the overflow of buffers in dynamic memory, allowing attackers to execute arbitrary code.

The vulnerability of the Substance 3D Designer’s texture and material creation software is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a hacker to execute arbitrary code in the context of the current user, using a specially created malicious file...

The vulnerability of the Substance 3D Designer’s texture and material creation software lies in the possibility of an operation going beyond the buffer boundaries in memory, allowing a hacker to execute arbitrary code.

The vulnerability of the Substance 3D Designer’s texture and material creation software relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a hacker to execute arbitrary code in the context of the current user, using a specially...

The vulnerability of the software for developing and executing applications in the ABAP language of SAP NetWeaver Application Server ABAP lies in the lack of authentication mechanisms. This allows attackers to disclose sensitive information that should be protected.

The vulnerability of the software used for developing and executing applications in the ABAP language of SAP NetWeaver Application Server is related to the lack of authentication. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information...

The vulnerability of SAP NetWeaver AS Java software integration platforms lies in the unlimited loading of dangerous files, which allows attackers to execute cross-site scripting attacks.

The vulnerability of SAP NetWeaver AS Java software integration platforms is related to the unlimited loading of dangerous files. Exploiting this vulnerability allows a remote attacker to perform cross-site scripting attacks...

The vulnerability of the IPsec IKE service in the FortiOS operating system and the scalable cloud security system FortiSASE allows a attacker to induce a service failure.

The vulnerability of the IPsec IKE service in the FortiOS operating system and the scalable cloud security system FortiSASE is related to reading data beyond the allowed range in memory. Exploiting this vulnerability can allow a malicious actor to cause service failures through specially crafted...

The vulnerability of Fortinet’s CSFD software products allows a perpetrator to execute arbitrary code or commands.

The vulnerability of Fortinet’s CSFD software products relates to the bypassing of authentication processes. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or commands using brute-force attacks...

The vulnerability of Fortinet’s CSFD software products allows a perpetrator to execute arbitrary code or commands.

The vulnerability of Fortinet’s CSFD software products relates to the bypassing of authentication processes. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or commands using brute-force attacks...

The vulnerability of the command-line interface of microprogrammed Ethernet switch FortiSwitch allows a hacker to execute arbitrary code.

The vulnerability of the command-line interface of microprogrammed Ethernet switch FortiSwitch exists due to the lack of measures taken to neutralize special elements. Exploiting this vulnerability allows an attacker to execute arbitrary code...

The vulnerability of the enable function in Mullvad’s VPN client allows a hacker to trigger a service failure.

The vulnerability of the enable function in Mullvad’s VPN client involves an escape from the buffer boundaries in memory. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

The vulnerability of the Git-based software platform for collaborative code development on GitLab, related to the manipulation of inter-site requests, allows a perpetrator to carry out a CSRF attack.

The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to the manipulation of inter-site requests. Exploiting this vulnerability allows a malicious actor to perform a CSRF attack remotely...

The vulnerability of the Git-based software platform for collaborative code development on GitLab stems from the lack of protective measures for website structures, allowing attackers to trigger service interruptions.

The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

The vulnerability of the GraphQL Mutation Handler component of the software platform based on git for collaborative code development on GitLab allows a hacker to gain unauthorized access to protected information.

The vulnerability of the GraphQL Mutation Handler component in the software platform based on Git, which is used for collaborative code development in GitLab, involves the disclosure of information through registration files. Exploiting this vulnerability can allow attackers to gain unauthorized...

The vulnerability of the GLPI system’s request, incident, and computer equipment inventory management, related to improper access control, allows a intruder to gain unauthorized access to the account.

The vulnerability of the GLPI system for requests, incidents, and inventory management is related to improper access control. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to the user account...

The vulnerability of the CyberPanel web hosting control panel, related to the lack of protective measures for the website structure, allows attackers to carry out cross-site scripting attacks.

The vulnerability of the CyberPanel web hosting panel is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

The vulnerability of the QNAP License Center software lies in its failure to take measures to neutralize special elements used in the operating system’s command set, allowing a violator to execute arbitrary commands.

The vulnerability of the QNAP License Center software management tool is related to the failure to take measures to neutralize special elements used in the operating system command set. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

The vulnerability of the graphical interface of the Fortinet FortiManager software, a centralized device management system, allows a malicious individual to gain unauthorized access to protected information.

The vulnerability of the graphical interface of the Fortinet FortiManager device management software is related to the lack of authentication for a critical function. Exploiting this vulnerability allows an attacker operating remotely to gain unauthorized access to protected information...

The vulnerability of the CSFD software of the Fortinet FortiManager device allows a intruder to execute arbitrary commands.

The vulnerability of the Fortinet FortiManager device management software allows for arbitrary commands to be executed by a malicious actor who operates remotely. This vulnerability is related to the lack of measures taken to neutralize special elements used within the operating system...

The vulnerability of the SPNEGO security mechanism for Windows operating systems allows a perpetrator to disclose protected information.

The vulnerability of the SPNEGO security mechanism for Windows operating systems is related to reading data beyond the allowed range in memory. Exploiting this vulnerability can allow an attacker to disclose protected information...

The vulnerability of the Digital Media component of Windows operating systems allows attackers to elevate their privileges to a system-level level.

The vulnerability of the Digital Media component of Windows operating systems relates to reading data beyond the allowed range in memory. Exploiting this vulnerability can allow an attacker to elevate their privileges to a system-level level...

The vulnerability of the Digital Media component of Windows operating systems allows attackers to elevate their privileges to a system-level level.

The vulnerability of the Digital Media component of Windows operating systems relates to reading data beyond the allowed range in memory. Exploiting this vulnerability can allow an attacker to elevate their privileges to a system-level level...

The vulnerability of the graphical interface of the FortiSandbox system allows a perpetrator to execute arbitrary commands.

The vulnerability of the FortiSandbox threat detection and mitigation graphical interface exists due to the failure to take measures to neutralize specific elements. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands using specially created requests...

The vulnerabilities of the QuTS operating systems and QTS network devices from Qnap are related to deficiencies in authentication procedures, allowing attackers to compromise the target system.

The vulnerability of the QuTS operating systems and QTS network devices involves deficiencies in authentication procedures. Exploiting this vulnerability allows a malicious actor to compromise the target system remotely...

The vulnerability of the QuTS operating systems and QTS network devices from Qnap, related to the failure to eliminate CRLF sequences, allows attackers to execute arbitrary code.

The vulnerability of the QuTS operating systems and QTS network devices involves a lack of measures to neutralize CRLF sequences. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

The vulnerability of the Red Hat OpenShift Container Platform corporate platform, related to uncontrolled resource consumption, allows a hacker to trigger a service failure.

The vulnerability of the Red Hat OpenShift Container Platform is related to an uncontrolled resource consumption. Exploiting this vulnerability can allow a malicious actor to cause service failures...

The vulnerability of the authentication mechanism for microprogramming software on the Tenda AC1200 Smart router allows a intruder to gain unauthorized access to the device.

The vulnerability of the authentication mechanism for Tenda AC1200 Smart microprogramming software is related to the lack of necessary checks during password changes. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to the device by sending a...

The vulnerability of the SmartCardReader class in the Smart Cards for Windows service (formerly known as Smart Card Resource Manager) on Windows operating systems allows a malicious individual to disclose protected information.

The vulnerability of the SmartCardReader class in the Smart Cards for Windows service previously known as Smart Card Resource Manager in Windows operating systems is related to the use of an uninitialized resource. Exploiting this vulnerability could allow an attacker to disclose sensitive...

The vulnerability of the server for the Continuous Integration and Delivery system (CI/CD) of GoCD arises from incorrect restrictions on XML references to external objects. This allows attackers to perform XXE attacks.

The vulnerability of the CI/CD server of GoCD is related to an incorrect restriction on XML references to external objects. Exploiting this vulnerability allows a malicious actor to perform XXE attacks remotely...

The vulnerability of the Microsoft .NET software platform and the Microsoft Visual Studio development tools is related to buffer overflows in dynamic memory, allowing an attacker to execute arbitrary code.

The vulnerability of the Microsoft .NET software platform and the Microsoft Visual Studio development environment is related to buffer overflows in dynamic memory. Exploiting this vulnerability can allow a remote attacker to execute arbitrary code...

The vulnerability of the Digital Media component of Windows operating systems allows attackers to elevate their privileges to a system-level level.

The vulnerability of the Digital Media component of Windows operating systems relates to reading data beyond the allowed range in memory. Exploiting this vulnerability can allow an attacker to elevate their privileges to a system-level level...

The vulnerability of the Substance 3D Designer’s texture and material creation software lies in the possibility of an operation going beyond the buffer boundaries in memory, allowing a hacker to execute arbitrary code.

The vulnerability of the Substance 3D Designer’s texture and material creation software relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a hacker to execute arbitrary code in the context of the current user, using a specially...

The vulnerability of the Substance 3D Designer’s texture and material creation software lies in the overflow of buffers in dynamic memory, allowing attackers to execute arbitrary code.

The vulnerability of the Substance 3D Designer’s texture and material creation software is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a hacker to execute arbitrary code in the context of the current user, using a specially created malicious file...

The vulnerability of the Git-based software platform for collaborative code development on GitLab arises from the lack of protective measures for website structures, allowing attackers to execute arbitrary code.

The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of the Git-based software platform for collaborative code development on GitLab stems from the redirection of the URL to an unreliable website, allowing attackers to carry out phishing attacks.

The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to the redirection of the URL to an unreliable website. Exploiting this vulnerability allows a malicious actor to carry out phishing attacks remotely...

The vulnerability of the Gstreamer multimedia framework, related to buffer overflows in the stack, allows attackers to cause a service failure.

The vulnerability of the Gstreamer multimedia framework is related to buffer overflow in the stack. Exploiting this vulnerability can allow a remote attacker to cause a service failure...