The vulnerability of the Ivanti EPM endpoint management software lies in the improper restriction of path names in the catalog, which allows a malicious actor to gain unauthorized access to protected information.

The vulnerability of the Ivanti EPM endpoint management software is related to incorrect restrictions on path names in the catalog. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected information...

The vulnerability of the blkcg_unpin_online() function in the block/blk-cgroup.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the blkcgunpinonline function in the block/blk-cgroup.c module of the Linux kernel is related to the reutilization of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of protected...

The vulnerability of the Print Anything module in the Drupal CMS system, related to insufficient validation of input data, allows a hacker to execute arbitrary code.

The vulnerability of the Print Anything module in the Drupal CMS system is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code...

The vulnerability of the Ivanti EPM endpoint management software lies in its ability to download files of a malicious nature without limitation, allowing a hacker to execute remote code.

The vulnerability of the Ivanti EPM endpoint management software is related to the unlimited loading of dangerous files. Exploiting this vulnerability can allow a hacker to execute remote code...

The vulnerability of the Ivanti EPM endpoint management software, related to reading data beyond the buffer in memory, allows a hacker to trigger a service failure.

The vulnerability of the Ivanti EPM endpoint management software is related to reading data beyond the buffer in memory. Exploiting this vulnerability can allow a remote attacker to cause service failures...

The vulnerability of the Ivanti EPM endpoint management software, related to reading data beyond the buffer in memory, allows a hacker to trigger a service failure.

The vulnerability of the Ivanti EPM endpoint management software is related to reading data beyond the buffer in memory. Exploiting this vulnerability can allow a remote attacker to cause service failures...

The vulnerability of the rsyncd utility for transferring and synchronizing Rsync files allows a attacker to execute arbitrary code or cause a service failure.

The vulnerability of the rsyncd utility for transferring and synchronizing Rsync files involves a buffer overflow when processing the length of the checksum. Exploiting this vulnerability allows an attacker to execute arbitrary code or cause service interruptions remotely...

The vulnerability of the Windows operating system’s kernel allows attackers to disclose sensitive information that is protected by security measures.

The vulnerability of the Windows operating system’s kernel is related to insufficient protection of registration data. Exploiting this vulnerability can allow an attacker to disclose the protected information...

The vulnerability of the REST Views module in the Drupal CMS system, related to insufficient protection of operational data, allows attackers to gain unauthorized access to protected information.

The vulnerability of the REST Views module in the Drupal CMS system is related to insufficient protection of operational data. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the Ivanti EPM endpoint management software, related to errors in verifying the cryptographic signature, allows a hacker to execute remote code.

The vulnerability of the Ivanti EPM endpoint management software is related to errors in checking the cryptographic signature. Exploiting this vulnerability could allow a perpetrator to execute remote code...

The vulnerability of the Ivanti EPM endpoint management software, related to defects in the deserialization mechanism, allows a hacker to execute remote code.

The vulnerability of the Ivanti EPM endpoint management software is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability allows an attacker to execute remote code...

The vulnerability of the Coffee CMS system’s Drupal module, related to the lack of protective measures for website structures, allows attackers to carry out cross-site scripting attacks.

The vulnerability of the Coffee CMS system’s Drupal module is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to carry out cross-site scripting attacks...

The vulnerability of the TacJS module in the Drupal CMS system, related to the lack of protective measures for website structures, allows attackers to execute cross-site scripting attacks.

The vulnerability of the TacJS CMS system in Drupal is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks...

The vulnerability of the Ivanti EPM endpoint management software, related to reading data beyond the buffer in memory, allows a hacker to trigger a service failure.

The vulnerability of the Ivanti EPM endpoint management software is related to reading data beyond the buffer in memory. Exploiting this vulnerability can allow a remote attacker to cause service failures...

The vulnerability of the Dell VxRail hyper-converged infrastructure, related to the unencrypted storage of critical information, allows a intruder to disclose protected data.

The vulnerability of the Dell VxRail hyper-converged infrastructure is related to the unencrypted storage of critical information. Exploiting this vulnerability could allow an attacker to disclose the protected data...

The vulnerability of the Demon Routing Protocol Daemon (RPD) in Juniper Networks’ Junos OS and Junos OS Evolved operating systems allows a attacker to trigger a Denial-of-Service Attack (DoS).

The vulnerability of the Demon Routing Protocol Daemon RPD in Juniper Networks’ Junos OS and Junos OS Evolved operating systems is related to insufficient handling of exceptional states. Exploiting this vulnerability allows a malicious actor to trigger a Denial-of-Service attack by sending...

The vulnerability of Dell PowerScale InsightIQ software for performance monitoring and reporting lies in its insufficient attempt-limiting mechanism for authentication. This allows a malicious actor to trigger a service failure.

The vulnerability of the software for performance monitoring and report generation in Dell PowerScale InsightIQ is related to insufficient restrictions on authentication attempts. Exploiting this vulnerability allows a malicious actor to trigger service interruptions remotely...

The vulnerability of the Demon Routing Protocol Daemon (RPD) in Juniper Networks’ Junos OS and Junos OS Evolved operating systems allows a attacker to trigger a Denial-of-Service Attack (DoS).

The vulnerability of the Demon Routing Protocol Daemon RPD in Juniper Networks’ Junos OS and Junos OS Evolved operating systems is related to reading data beyond the allowed range in memory. Exploiting this vulnerability can allow a malicious actor to trigger a Denial-of-Service attack by sending...

The vulnerability of the command-line interface (CLI) of Juniper Networks Junos OS, which allows a hacker to gain unauthorized access to protected information

The vulnerability of the command-line interface CLI of Juniper Networks Junos OS is related to insufficient protection of operational data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the Demon Routing Protocol Daemon (RPD) in Juniper Networks’ Junos OS and Junos OS Evolved operating systems allows a attacker to trigger a Denial-of-Service Attack (DoS).

The vulnerability of the Demon Routing Protocol Daemon RPD in Juniper Networks’ Junos OS and Junos OS Evolved operating systems is related to insufficient resource control during its existence. Exploiting this vulnerability can allow a malicious actor to trigger a Denial-of-Service attack by...

The vulnerability of the Telephony Service in Microsoft Windows operating systems allows a perpetrator to execute arbitrary code.

The vulnerability of the Telephony Service in Microsoft Windows operating systems is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the rsync repository of the FORT verifier, related to uncontrolled resource consumption, allows attackers to increase their privileges.

The vulnerability of the rsync repository in the FORT verifier is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to enhance their privileges remotely...

The vulnerability of the MapUrlToZone method in the IInternetSecurityManager interface on Microsoft Windows operating systems allows a attacker to cause a service failure.

The vulnerability of the MapUrlToZone method in the IInternetSecurityManager interface of Microsoft Windows operating systems is related to security flaws resulting from a full overflow condition. Exploiting this vulnerability could allow an attacker to cause service interruptions remotely...

The vulnerability of the Exiv2 metadata management library, related to buffer overflow in dynamic memory, allows a attacker to cause a service failure.

The vulnerability of the Exiv2 metadata management library is related to overflow in the dynamic memory buffer. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the command line of Juniper Networks Junos OS models SRX1500, SRX4100, and SRX4200, related to insufficient handling of exceptional states, allows a attacker to trigger a service failure.

The vulnerability of the command line interface of Juniper Networks Junos OS models SRX1500, SRX4100, and SRX4200 is related to insufficient handling of exceptional states. Exploiting this vulnerability can allow a malicious actor to trigger service failures remotely...

The vulnerability of the GLPI system’s request, incident, and asset inventory management processes, related to the lack of measures taken to protect the website structure, allows a malicious attacker to carry out XSS attacks.

The vulnerability of the GLPI system’s request, incident, and computer equipment inventory management functions is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks...

The vulnerability of the Zabbix universal monitoring system lies in insufficient validation of input data, which allows attackers to escalate their privileges.

The vulnerability of the Zabbix universal monitoring system is related to insufficient verification of input data. Exploiting this vulnerability can allow a malicious actor to increase their privileges remotely...

The vulnerability of the Virtual Trusted Platform Module module in Microsoft Windows operating systems allows a perpetrator to trigger a service failure.

The vulnerability of the Virtual Trusted Platform Module in Microsoft Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service failures...

The vulnerability of the App Package Installer installation program for Microsoft Windows operating systems allows a perpetrator to increase their privileges.

The vulnerability of the App Package Installer installation program for Microsoft Windows operating systems is related to deficiencies in the authentication process. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of the Cloud Files Mini Filter Driver for Microsoft Windows operating systems allows a hacker to increase their privileges.

The vulnerability of the Cloud Files Mini Filter Driver for Microsoft Windows operating systems is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to gain increased privileges...

The vulnerability of the EditorConfig core library in the C programming language, related to buffer overflow in the stack, allows a malicious actor to trigger a service failure.

The vulnerability of the EditorConfig core library in the C programming language is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the Palo Alto Networks Expedition configuration migration tool lies in its inability to remove special elements used in the basic operating system, allowing attackers to execute arbitrary commands.

The vulnerability of the Palo Alto Networks Expedition configuration migration tool lies in the lack of measures taken to neutralize special elements used in the basic operating system. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

The vulnerability of the Microsoft Message Queuing (MSMQ) service on Microsoft Windows operating systems allows a perpetrator to cause a service failure.

The vulnerability of the Microsoft Message Queuing MSMQ service on Microsoft Windows operating systems is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...

The vulnerability of Windows COM Server servers allows attackers to gain unauthorized access to protected information.

The vulnerability of Windows COM Server operating system servers is related to the use of uninitialized resources. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the Digital Media component of Microsoft Windows operating systems, which allows attackers to enhance their privileges

The vulnerability of the Digital Media component of Microsoft Windows operating systems relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to enhance their privileges...

The vulnerability of the Git-based software platform for collaborative code development on GitLab EE/CE arises from improper handling of user actions, allowing unauthorized access to protected information by attackers.

The vulnerability of the Git-based software platform for collaborative code development in GitLab EE/CE is related to improper management of user actions. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the MSHTML platform in Microsoft Windows operating systems allows attackers to circumvent security restrictions.

The vulnerability of the MSHTML platform in Microsoft Windows operating systems is related to improper handling of path equivalence. Exploiting this vulnerability can allow a remote attacker to bypass security restrictions...

The vulnerability of the GLPI system’s request, incident, and asset inventory management processes, related to the lack of measures taken to protect the website structure, allows a malicious attacker to carry out XSS attacks.

The vulnerability of the GLPI system’s request, incident, and computer equipment inventory management functions is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks...

The vulnerability of the GLPI system’s request, incident, and asset inventory management processes, related to the lack of measures taken to protect the website structure, allows a malicious attacker to carry out XSS attacks.

The vulnerability of the GLPI system’s request, incident, and computer equipment inventory management systems lies in the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks...

The vulnerability of the GLPI system’s request, incident, and computer equipment inventory management processes, related to the failure to protect the SQL request structure, allows attackers to execute SQL injections.

The vulnerability of the GLPI system’s request, incident, and computer equipment inventory management processes is related to the lack of measures taken to protect the SQL request structure. Exploiting this vulnerability allows a malicious actor to execute SQL injections remotely...

The vulnerability of Mozilla Firefox, Firefox ESR, and the email client Thunderbird, related to improper storage of permissions, allows attackers to carry out clickjacking attacks.

The vulnerability of Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to improper storage of permissions. Exploiting this vulnerability can allow a remote attacker to carry out a clickjacking attack...

The vulnerability of the software implementations of TLS and SSL protocols for automating the creation, publication, and distribution of reports and documents in IBM Engineering Lifecycle Optimization – Publishing (PUB) allows a perpetrator to cause service failures.

The vulnerability of software implementations of TLS and SSL protocols for automating the creation, publication, and distribution of reports and documents in IBM Engineering Lifecycle Optimization – Publishing PUB involves deficiencies in access control. Exploiting this vulnerability could allow ...

The vulnerability of the Windows Event Tracing service in Microsoft Windows operating systems allows a perpetrator to cause a service failure.

The vulnerability of Windows Event Tracing in Microsoft Windows systems is related to incorrect handling of symbolic links before accessing the file. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the Windows operating system’s IP Helper service allows a perpetrator to trigger a service failure.

The vulnerability of the Windows operating system’s IP Helper service is related to an uncontrolled consumption of resources. Exploiting this vulnerability can allow a remote attacker to cause service failures...

The vulnerability of the Microsoft Visual Studio software, related to reading data beyond the allowed range in memory, allows a hacker to execute arbitrary code.

The vulnerability of the Microsoft Visual Studio software development tool is related to reading data beyond the allowed range in memory. Exploiting this vulnerability can allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the SecureAge Security Suite’s comprehensive protection software lies in the improper storage of permissions, allowing attackers to enhance their privileges.

The vulnerability of the SecureAge Security Suite software-related comprehensive protection lies in the improper storage of permissions. Exploiting this vulnerability can allow remote attackers to enhance their privileges...

The vulnerability of the text converter in an XML file format, XFPT, arises from copying buffers without checking the size of the input data. This allows a malicious actor to execute arbitrary code.

The vulnerability of the text converter in an XML file format, XFPT, is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows an attacker to execute arbitrary code by processing a specially created file...

The vulnerability of the Palo Alto Networks Expedition configuration migration tool lies in its failure to eliminate substitution characters or characters that match each other. This allows attackers to influence the integrity of the protected information.

The vulnerability of the Palo Alto Networks Expedition configuration migration tool lies in the lack of measures to neutralize substitutional or matching symbols. Exploiting this vulnerability allows a remote attacker to influence the integrity of the protected information...

The vulnerability of the Telephony Service in Microsoft Windows operating systems allows a perpetrator to execute arbitrary code.

The vulnerability of the Telephony Service in Microsoft Windows operating systems is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the Microsoft Message Queuing (MSMQ) service on Microsoft Windows operating systems allows a perpetrator to cause a service failure.

The vulnerability of the Microsoft Message Queuing MSMQ service on Microsoft Windows operating systems is related to pointer swapping errors. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...