The vulnerability in the command-line interface of the microprogramming software for digital optical network systems Infinera G42 allows a intruder to gain unauthorized access to protected information.

The vulnerability of the command-line interface of the microprogramming software for digital optical network systems Infinera G42 is related to insufficient validation of input data. Exploiting this vulnerability may allow a remote attacker to gain unauthorized access to protected information...

Vulnerability of the Server component: The MySQL Server database management system’s Optimizer component allows a hacker to gain unauthorized access for creating, deleting, and modifying data.

The vulnerability of the MySQL Server component, which is part of the database management system, is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to gain unauthorized access to create, delete, and modify data...

The vulnerability of the Endpoint Manager Mobile app for managing the lifecycle of mobile devices and mobile applications (formerly known as MobileIron Core) arises from the lack of measures taken to neutralize specific elements. This allows a perpetrator to execute arbitrary code.

The vulnerability of the Ivanti Endpoint Manager Mobile EPMM application for managing the lifecycle of mobile devices and mobile applications formerly known as MobileIron Core is related to the lack of measures taken to neutralize special elements used in the operating system. Exploiting this...

The vulnerability of the Platform Security component of the Oracle Business Intelligence Enterprise Edition software platform allows a perpetrator to gain access to read, modify, and delete data.

The vulnerability of the Platform Security component of the Oracle Business Intelligence Enterprise Edition software is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to gain read, modify, and delete privileges on data...

The vulnerability of the Shopping Cart component of the Oracle iStore system, which is used for creating, managing, and personalizing online stores. This vulnerability exists in the Oracle E-Business Suite, a software solution for automating business operations. This vulnerability allows attackers to gain access to read, modify, and delete information.

The vulnerability of the Shopping Cart component in the Oracle iStore system, which is used for creating, managing, and personalizing online stores, as well as the Oracle E-Business Suite system for automating business operations, is related to insufficient validation of input data. Exploiting th...

The vulnerability of the HPE Networking Instant On configuration and access point management tool lies in its use of strictly encrypted credentials. This allows attackers to circumvent security restrictions and gain increased privileges.

The vulnerability of the HPE Networking Instant On configuration and access point management tool is related to the use of strictly encrypted credentials. Exploiting this vulnerability allows a malicious actor to bypass security restrictions and gain increased privileges...

The vulnerability of the corporate platform for creating, managing, and processing electronic forms, documents, and business processes within Adobe Experience Manager AEM Forms on JEE lies in its deserialization mechanism’s flaws, allowing attackers to execute arbitrary code.

The vulnerability of the corporate platform for creating, managing, and processing electronic forms, documents, and business processes within Adobe Experience Manager AEM Forms on JEE is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability could allow a maliciou...

The vulnerability of Adobe Dimension’s 3D design software relates to the execution of operations beyond the buffer boundaries in memory, allowing an attacker to execute arbitrary code.

The vulnerability of Adobe Dimension’s 3D design software relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code by sending a specially crafted malicious file...

The vulnerability of the application-level SIP ALG operating system Juniper Networks Junos OS allows a attacker to trigger a service failure.

The vulnerability of the SIP ALG layer application-level firewall on Juniper Networks Junos OS is related to improper cleaning or release of resources. Exploiting this vulnerability can allow a malicious actor to cause service failures...

The vulnerability of the fromSysToolTime() function (/goform/setSysTimeInfo) in the Tenda O3 wireless access point software allows a attacker to execute arbitrary code or cause a service failure.

The vulnerability of the fromSysToolTime function /goform/setSysTimeInfo in the Tenda O3 wireless access point software lies in the fact that the operation may escape out of the buffer in memory when processing the Time parameter. Exploiting this vulnerability could allow a malicious actor to...

The vulnerability of the fromMacFilterModify() function (/goform/operateMacFilter) in the Tenda O3 wireless access point software allows a intruder to execute arbitrary code or cause a service failure.

The vulnerability of the fromMacFilterModify function /goform/operateMacFilter in the Tenda O3 wireless access point software lies in the issue of the operation exceeding the buffer in memory when processing the mac parameter. Exploiting this vulnerability allows a remote attacker to execute...

The vulnerability of the setAutoReboot() function (/goform/setNetworkService) in the Tenda O3 wireless access point software allows a intruder to execute arbitrary code or cause a service failure.

The vulnerability of the setAutoReboot function /goform/setNetworkService in the Tenda O3 wireless access point software is related to the issue of the operation going out of the buffer in memory when processing the week parameter. Exploiting this vulnerability could allow a malicious actor to...

The vulnerability of the Universal Plug and Play (UPnP) service in Windows operating systems allows attackers to enhance their privileges.

The vulnerability of the Universal Plug and Play UPnP service in Windows operating systems is related to the use of insecure mechanisms for processing authentication data in the operating system’s memory. Exploiting this vulnerability can allow a remote attacker to increase their privileges...

The vulnerability of the mod_proxy_http2 function in the Apache HTTP Server allows a hacker to cause a service failure.

The vulnerability of the modproxyhttp2 function in the Apache HTTP Server is related to the use of the assert function or similar operators. Exploiting this vulnerability can allow a remote attacker to cause a service failure...

The vulnerability of the InnoDB component of the MySQL Database Server, which allows a hacker to cause a service failure

The vulnerability of the InnoDB component in the MySQL Database Management System is related to an uncontrolled consumption of resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions using the MySQL network protocol...

Vulnerability of the Server component: The Optimizer component of the MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the MySQL Server component of the database management system’s optimizer is related to deficiencies in the authentication mechanism. Exploiting this vulnerability can allow an attacker to cause service interruptions using the MySQL network protocol...

The vulnerability of the 3D model texturing program Adobe Substance 3D Designer, related to writing beyond buffer boundaries in memory, allows a hacker to execute arbitrary code.

The vulnerability of the 3D model texturing program Adobe Substance 3D Designer lies in the writing of code beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file...

The vulnerability of the Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) management platforms exists due to the lack of measures to neutralize special elements, allowing attackers to execute arbitrary commands with root privileges.

The vulnerability of the Cisco Identity Services Engine ISE and Cisco ISE Passive Identity Connector ISE-PIC platforms exists due to the lack of measures taken to neutralize specific elements. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands with root privilege...

The vulnerability of the Adobe InCopy text creation and editing software lies in its access to an uninitialized pointer, allowing an attacker to execute arbitrary code.

The vulnerability of the Adobe InCopy text creation and editing software relates to access to an uninitialized pointer. Exploiting this vulnerability could allow an attacker to execute arbitrary code by sending a specially crafted malicious file...

The vulnerability of the fromSpeedTestSet() function (/goform/setRateTest) in the Tenda O3 wireless access point software allows a hacker to execute arbitrary code or cause service interruptions.

The vulnerability of the fromSpeedTestSet function /goform/setRateTest in the Tenda O3 wireless access point software is related to the operation that goes beyond the buffer in memory when processing the destIP parameter. Exploiting this vulnerability could allow an attacker to execute arbitrary...

The vulnerability of the fromTraceroutGet() function (/goform/getTraceroute) in the Tenda O3 wireless access point software allows a intruder to execute arbitrary commands.

The vulnerability of the fromNetToolGet function in the file /goform/setPingInfo function of the Tenda O3 wireless access point software is related to the lack of measures to sanitize input data during the processing of the domain parameter. Exploiting this vulnerability allows a remote attacker ...

The vulnerability of the graphical interface of Git, a distributed version control system for software development by Microsoft Visual Studio, allows a hacker to execute arbitrary commands.

The vulnerability of the graphical interface of Git, a distributed version control system for software development by Microsoft Visual Studio, exists due to the failure to address the issues related to special elements used in operating system commands. Exploiting this vulnerability could allow a...

The vulnerability of the web interface of the cross-platform FTP server CrushFTP allows a hacker to execute arbitrary code with elevated privileges.

The vulnerability of the cross-platform FTP server CrushFTP lies in the use of an unprotected alternative channel. Exploiting this vulnerability allows a malicious actor to execute arbitrary code with elevated privileges by replacing the administrative user with the default user...

The vulnerability of the SQL Server relational database management system, related to the use of an uninitialized resource, allows a hacker to disclose protected information.

The vulnerability of the Microsoft SQL Server relational database management system is related to the use of an uninitialized resource. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information...

The vulnerability of the `in_gnutls_figure_common_ciphersuite()` function in the GnuTLS library allows a attacker to corrupt memory and cause a service failure.

The vulnerability of the ingnutlsfigurecommonciphersuite function in the GnuTLS library is related to pointer arithmetic errors. Exploiting this vulnerability could allow a remote attacker to corrupt memory and cause service failures...

The vulnerability of the Device Integration component of the Oracle MES for Process Manufacturing software solution, which is part of the Oracle E-Business Suite. This component allows a malicious individual to gain access to read, modify, and delete data.

The vulnerability of the Device Integration component in the Oracle MES for Process Manufacturing software solution is related to the manipulation of inter-site requests. Exploiting this vulnerability can allow an attacker to gain read, modify, and delete access to data...

The vulnerability of the Demon Routing Protocol Daemon (RPD) in Juniper Networks’ Junos OS and Junos OS Evolved operating systems allows a attacker to cause a service failure.

The vulnerability of the Demon Routing Protocol Daemon RPD in Juniper Networks’ Junos OS and Junos OS Evolved operating systems is related to incorrect buffer size calculations when processing incoming packets. Exploiting this vulnerability can allow a remote attacker to cause service interruptio...

The vulnerability of the Demon Routing Protocol Daemon (RPD) in Juniper Networks’ Junos OS and Junos OS Evolved operating systems allows a attacker to compromise the availability of the device.

The vulnerability of the Demon Routing Protocol Daemon RPD in Juniper Networks’ Junos OS and Junos OS Evolved operating systems is related to the assignment of the zero pointer. Exploiting this vulnerability can allow a malicious actor to compromise the availability of the device...

The vulnerability of PFE Management in Juniper Networks’ Junos OS Evolved operating systems allows a attacker to cause a service failure.

The vulnerability of PFE Management for Juniper Networks’ Junos OS Evolved lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

The vulnerability of the SFTP service in the microsoftware for digital optical network systems Infinera G42 allows a hacker to gain read and write access to arbitrary files.

The vulnerability of the SFTP service in the microsoftware for Digital Optical Networking Systems Infinera G42 is related to improper handling of insufficient permissions or privileges. Exploiting this vulnerability can allow a malicious actor to gain read and write access to arbitrary files...

The vulnerability of the IP Access Restriction function of the Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) allows a perpetrator to circumvent existing IP access restrictions.

The vulnerability of the IP Access Restriction function of the Cisco Identity Services Engine ISE and Cisco ISE Passive Identity Connector ISE-PIC relates to bypassing authentication using data that is assumed to be unchangeable. Exploiting this vulnerability could allow a malicious actor to...

The vulnerability of Adobe Illustrator’s graphic editor lies in its numerical loss of significance, allowing a hacker to execute arbitrary code.

The vulnerability of Adobe Illustrator’s graphic editor is related to a countable loss of significance. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file...

The vulnerability in the software web interface for Juniper Networks Security Director allows a hacker to disclose protected information.

The vulnerability of the Juniper Networks Security Director software’s web interface for security policy management is related to the lack of authentication. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information...

The vulnerability of Juniper Networks’ Junos OS lies in the improper assignment of permissions to critical resources, allowing attackers to increase their privileges.

The vulnerability of Juniper Networks’ Junos OS is related to the improper assignment of permissions for critical resources. Exploiting this vulnerability can allow attackers to increase their privileges...

The vulnerability of Adobe Illustrator’s graphic editor lies in the possibility of an operation going beyond the buffer boundaries in memory, allowing a hacker to execute arbitrary code.

The vulnerability of Adobe Illustrator’s graphic editor is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code by sending a specially created malicious file...

The vulnerability of the fromPingResultGet() function (/goform/setPing) in the Tenda O3 wireless access point software allows a hacker to execute arbitrary code or cause service failure.

The vulnerability of the fromPingResultGet /goform/setPing function in the Tenda O3 wireless access point software lies in the issue of the operation going beyond the buffer in memory when processing the destIP parameter. Exploiting this vulnerability allows an attacker to execute arbitrary code ...

The vulnerability of the “demon flowd” in Juniper Networks’ Junos OS, which allows a hacker to trigger a service failure.

The vulnerability of the “demon flowd” in Juniper Networks’ Junos OS is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

The vulnerability of the 3D model texturing program Adobe Substance 3D Designer, related to writing beyond the buffer boundaries in memory, allows a hacker to execute arbitrary code.

The vulnerability of the 3D model texturing program Adobe Substance 3D Designer lies in the writing of code beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file...

The vulnerability of Adobe InCopy, a text creation and editing software, relates to a countable loss of significance, allowing an attacker to execute arbitrary code.

The vulnerability of the Adobe InCopy text creation and editing software is related to a countable amount of data loss. Exploiting this vulnerability allows an attacker to execute arbitrary code by sending a specially created malicious file...

The vulnerability of the Virtual Routing and Forwarding component in Juniper Networks’ Junos OS Evolved operating systems allows attackers to enhance their privileges.

The vulnerability of the Virtual Routing and Forwarding component in Juniper Networks’ Junos OS Evolved operating system is related to the lack of authentication. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of the Routing Engine module in Juniper Networks’ Junos OS Evolved operating systems allows attackers to circumvent existing security restrictions.

The vulnerability of the Routing Engine module in Juniper Networks’ Junos OS Evolved operating systems is related to the use of incorrect operators. Exploiting this vulnerability allows a malicious actor to circumvent existing security restrictions remotely...

The vulnerability of Juniper Networks’ Junos OS, related to insufficient handling of exceptional states, allows a attacker to trigger a service failure.

The vulnerability of Juniper Networks’ Junos OS lies in its insufficient handling of exceptional states. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of the Demon Routing Protocol Daemon (RPD) in Juniper Networks’ Junos OS and Junos OS Evolved operating systems allows a attacker to cause a service failure.

The vulnerability of the Daemon Routing Protocol rpd in Junos OS and Junos OS Evolved operating systems is related to improper handling of parameter length discrepancies. Exploiting this vulnerability can allow a malicious actor to cause service failures...

The vulnerability of the distributed version control system Git used by Microsoft Visual Studio allows a perpetrator to execute arbitrary code.

The vulnerability of the distributed version control system Git used by Microsoft Visual Studio is related to the use of an unreliable path for checking orthography of cloned repositories. Exploiting this vulnerability allows a perpetrator to execute arbitrary code during the cloning of unreliabl...

Vulnerability of the Server component: The Optimizer component of the MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the MySQL Server component involves an uncontrolled consumption of resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions using the MySQL network protocol...

The vulnerability of the Internal Operations component of the Oracle Lease and Finance Management system, a business automation solution, allows a perpetrator to gain access to read, modify, and delete information.

The vulnerability of the Internal Operations component of the Oracle Lease and Finance Management system, a part of the Oracle E-Business Suite, relates to deficiencies in the authorization process. Exploiting this vulnerability could allow an attacker to gain access to read, modify, and delete...

The vulnerability in the web interface for managing software tools used to create reports for Cisco Unified Intelligence Center, as well as for multimedia and distributed contact centers like Cisco Unified Contact Center Enterprise, allows attackers to perform SRF attacks.

The vulnerability in the web interface for managing software tools used to create reports for Cisco Unified Intelligence Center, as well as for multimedia and distributed contact centers like Cisco Unified Contact Center Enterprise, stems from forged requests at the server side, resulting from...

The vulnerability of Juniper Networks Junos OS’s Connectivity Fault Management (CFM) system allows a attacker to cause a service failure.

The vulnerability of Connectivity Fault Management CFM in Juniper Networks’ Junos OS operating systems is related to buffer overflow attacks. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

The vulnerability of the user interface of Juniper Networks Junos OS allows a attacker to trigger a service failure.

The vulnerability of the user interface of Juniper Networks Junos OS is related to access control errors. Exploiting this vulnerability can allow a perpetrator to cause service interruptions...

The vulnerability of the Demon Routing Protocol Daemon (RPD) in Juniper Networks’ Junos OS and Junos OS Evolved operating systems allows a attacker to cause a service failure.

The vulnerability of the Demon Routing Protocol Daemon RPD in Juniper Networks’ Junos OS and Junos OS Evolved operating systems is related to discrepancies in functionality according to the specifications. Exploiting this vulnerability can allow a malicious actor to cause service failures...