90709 matches found
The vulnerability of the extractSlice() function in the software for analyzing network traffic via tcpdump allows a hacker to induce a service failure.
The vulnerability of the extractSlice function in the tcpdump network traffic analysis software relates to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability in the implementation of the AVRCP protocol of the Bluetooth protocol stack for the Linux BlueZ operating system allows a hacker to circumvent existing security restrictions.
The vulnerability of the AVRCP protocol implementation in the Bluetooth protocol stack for the Linux BlueZ operating system is related to reading data beyond the buffer limits of memory. Exploiting this vulnerability can allow a malicious actor to circumvent existing security restrictions using a...
The vulnerability in the implementation of the AVRCP protocol of the Bluetooth protocol stack for the Linux BlueZ operating system allows a hacker to circumvent existing security restrictions.
The vulnerability of the AVRCP protocol implementation in the Bluetooth protocol stack for the Linux BlueZ operating system is related to reading data beyond the buffer limits of memory. Exploiting this vulnerability can allow a malicious actor to circumvent existing security restrictions using a...
The vulnerability in the implementation of the OBEX protocol for Bluetooth on the Linux BlueZ operating system allows a hacker to cause a service failure.
The vulnerability of the OBEX protocol implementation in the Bluetooth protocol stack for the Linux BlueZ operating system is related to reading data outside of the allowed range. Exploiting this vulnerability could allow a malicious actor to gain access to protected information remotely...
The vulnerability of the tpm2_checkquote component in the Trusted Platform Module tools allows a perpetrator to access protected information.
The vulnerability of the tpm2checkquote component in the Trusted Platform Module tools repository is related to incorrect data regarding changes. Exploiting this vulnerability can allow an attacker to gain access to protected information through specially crafted queries...
The vulnerability of the EMACS text editor’s MIME protocol implementation allows a hacker to induce a service failure.
The vulnerability of the EMACS text editor’s MIME protocol implementation lies in the inclusion of functions from an unverified and uncontrolled area. Exploiting this vulnerability could allow a perpetrator to cause service failures...
The vulnerability of the EMACS text editor’s Org mode implementation allows attackers to influence the integrity and accessibility of the protected information.
The vulnerability of the EMACS text editor’s Org mode implementation lies in the loading of code without checking its integrity. Exploiting this vulnerability could allow an attacker to influence the integrity and accessibility of the protected information...
The vulnerability of the remote access function for the DesktopDirect desktop environment on the ArrayOS operating system’s AG series network gateways allows a hacker to execute arbitrary commands.
The vulnerability of the remote access function of the DesktopDirect desktop environment for the ArrayOS operating system’s AG series network switches involves a lack of measures to neutralize specific elements. Exploiting this vulnerability allows an attacker to execute arbitrary commands remote...
The vulnerability of the SafeUrlFilter() function in the Tenda WH450 router software allows a hacker to execute arbitrary code and cause service interruptions.
The vulnerability of the SafeUrlFilter function in the Tenda WH450 router software lies in the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code and cause service interruptions...
The vulnerability of the N8n automation platform, related to insufficient control over resources with dynamic management, allows a perpetrator to gain unauthorized access to the platform.
The vulnerability of the N8n automation platform lies in the insufficient control over resources with dynamic management. Exploiting this vulnerability can allow a remote attacker to gain unauthorized access to the platform...
The vulnerability of the TEE SOC microprogramming software driver for AMD processors allows a hacker to trigger a service failure.
The vulnerability of the TEE SOC microprogramming software driver for AMD processors is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a system failure...
The vulnerability of the containerd execution environment, related to the lack of memory release after the effective lifespan, allows a malicious actor to trigger a service failure.
The vulnerability of the containerd execution environment is related to the lack of memory release after the effective lifespan of the component. Exploiting this vulnerability can allow an attacker to trigger a service failure...
The vulnerability of the Apache Guacamole software for remote management of client machines, related to unvalidated array indexing, allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of Apache Guacamole, a software for remote administration of client machines, is related to unvalidated array indexing. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of protected information...
The vulnerability of the prepare_update() function in the vio.cpp module of the “Red Database” database management system allows a perpetrator to cause a service failure.
The vulnerability of the prepareupdate function in the vio.cpp module of the “Red Database” database management system is related to improper initialization of resources when processing queries with the WITH LOCK construct and the creation of a delta version of the record. Exploiting this...
The vulnerability of the qt/qtbase library in Qt, which allows a hacker to trigger a service failure
The vulnerability of the Qt library’s qt/qtbase package is related to its algorithmic complexity. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...
The vulnerability of the ParamsCalculator::getTextUTF8() function in the ParamsCalculator.cpp module of the “Red Database” database management system allows a hacker to cause a service failure.
The vulnerability of the ParamsCalculator::getTextUTF8 function in the ParamsCalculator.cpp module of the “Red Database” database management system is related to insufficient validation of input data when processing the length of string parameters. Exploiting this vulnerability could allow an...
The vulnerability of the Gimp image processing library, related to buffer overflow in the stack, allows a hacker to execute arbitrary code.
The vulnerability of the Gimp image processing library is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
The vulnerability of the Gimp image processing library, related to integer overflow, allows a hacker to cause a service failure.
The vulnerability of the Gimp image processing library is related to a numerical overflow condition. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of GNUPlot’s plotting software, related to the manipulation of the null pointer, allows a hacker to trigger a service failure.
The vulnerability of GNUPlot’s graph creation software relates to the handling of the null pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the GraphicsMagick graphic editor, related to reading beyond the buffer in memory, allows a hacker to cause a service failure.
The vulnerability of the GraphicsMagick graphic editor is related to reading beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a system failure...
The vulnerability of the container management system and the virtual machine manager Incus, related to insecure privilege management, allows attackers to escalate their privileges.
The vulnerability of the container management system and the Incus virtual machine manager is related to insecure management of privileges. Exploiting this vulnerability can allow attackers to increase their privileges...
The vulnerability of the data copying management software for IBM Copy Services Manager lies in the lack of measures to sanitize input data. This allows attackers to execute cross-site scripting (XSS) attacks.
The vulnerability of the IBM Copy Services Manager software for data storage systems lies in the lack of measures to sanitize input data. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks XSS remotely...
The vulnerability of the dcn201_acquire_free_pipe_for_layer() function in the drivers/gpu/drm/amd/display/dc/dcn201/dcn201_resource.c driver module allows a hacker to trigger a service failure. This vulnerability is related to the Direct Rendering Infrastructure (DRI) support for AMD graphics cards in Linux operating systems.
The vulnerability of the dcn201acquirefreepipeforlayer function in the drivers/gpu/drm/amd/display/dc/dcn201/dcn201resource.c driver module relates to the pointer manipulation in the Direct Rendering Infrastructure DRI support for AMD graphics cards in Linux operating systems. Exploiting this...
The vulnerability of the guc_submit_wedged_fini() function in the drivers/gpu/drm/xe/xe_guc_submit.c driver module allows a hacker to cause a service failure. This vulnerability is related to the Direct Rendering Infrastructure (DRI) support in the Linux kernel.
The vulnerability of the gucsubmitwedgedfini function in the drivers/gpu/drm/xe/xegucsubmit.c driver module is related to improper locking of resources. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the ext4_feature_set_ok() function in the fs/ext4/super.c module of the Ext4 file system support module in Linux’s operating system allows a hacker to cause a service failure.
The vulnerability of the ext4featuresetok function in the fs/ext4/super.c module of the Linux file system support module is related to incorrect validation of input data. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the `ParamsCalculator::makeFromValues()` function in the `ParamsCalculator.cpp` module of the “Red Database” database management system allows a perpetrator to cause a service failure.
The vulnerability of the ParamsCalculator::makeFromValues function in the ParamsCalculator.cpp module of the “Red Database” database management system is related to mutual locking of execution threads. Exploiting this vulnerability could allow an attacker to cause service interruptions...
The vulnerability of the Elasticsearch search engine, related to uncontrolled resource consumption, allows a hacker to cause a service failure.
The vulnerability of the Elasticsearch search engine is related to an uncontrolled consumption of resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...
The vulnerability of the Varnish cache server, related to deficiencies in HTTP request processing, allows attackers to send arbitrary HTTP requests.
The vulnerability of the Varnish cache server is related to deficiencies in HTTP request processing. Exploiting this vulnerability allows a malicious actor to send arbitrary HTTP requests remotely...
The vulnerability of the Gimp image processing library, related to integer overflow, allows a hacker to cause a service failure.
The vulnerability of the Gimp image processing library is related to a numerical overflow condition. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of GNUPlot’s plotting software, related to the manipulation of the null pointer, allows a hacker to trigger a service failure.
The vulnerability of GNUPlot’s graph creation software relates to the handling of the null pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the HPE OneView IT infrastructure management system, related to improper code generation, allows a attacker to execute arbitrary code.
The vulnerability of the HPE OneView IT infrastructure management system is related to incorrect code generation. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the Spam Quarantine function in the Cisco AsyncOS operating system, within the tools of Cisco Secure Email and Web Manager, as well as Cisco Secure Email Gateway, allows a malicious user to execute arbitrary code with root privileges.
The vulnerability of the Spam Quarantine function in the Cisco AsyncOS operating system, as well as in products like Cisco Secure Email and Web Manager, and Cisco Secure Email Gateway, is related to deficiencies in the mechanism for verifying input data. Exploiting this vulnerability could allow ...
The vulnerability of the relocate_one_folio() function in the fs/btrfs/relocation.c module of the Btrfs file system support in the Linux operating system allows a malicious actor to cause a service failure.
The vulnerability of the relocateonefolio function in the fs/btrfs/relocation.c module of the Btrfs file system support in the Linux operating system is related to an unauthorized call to a validation function. Exploiting this vulnerability could allow an attacker to trigger a service failure...
The vulnerability of the ncsi_unregister_dev() function in the net/ncsi/ncsi-manage.c module of the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the ncsiunregisterdev function in the net/ncsi/ncsi-manage.c module of the Linux operating system is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to cause a service failure...
Vulnerability in the driver/gpu/drm/amd/display/dc/dml2/dml2_core/dml2_core_shared_types.h file of the Linux operating system’s kernel, which allows a hacker to trigger a service failure. This vulnerability relates to the driver that supports AMD graphics cards’ Direct Rendering Infrastructure (DRI) in Linux.
The vulnerability in the drivers/gpu/drm/amd/display/dc/dml2/dml2core/dml2coresharedtypes.h file relates to the driver that supports AMD’s Linux operating system graphics cards’ Direct Rendering Infrastructure DRI. This vulnerability stems from allowing an operation to go beyond the buffer...
The vulnerability of the DPM_scanPages() function in the dpm.epp module of the “Red Database” database management system allows a hacker to cause a service failure.
The vulnerability of the DPMscanPages function in the dpm.epp module of the “Red Database” database management system is related to the improper release of page pointer vectors before the database stops functioning. Exploiting this vulnerability could allow a remote attacker to cause service...
The vulnerability of the AdvanceCOMP archive packaging tool, related to insufficient validation of input data, allows a perpetrator to trigger a service failure.
The vulnerability of the AdvanceCOMP archive packaging tool is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of GNUPlot’s software for creating graphs lies in the insufficient checking of unusual or exceptional states, allowing a perpetrator to trigger a service failure.
The vulnerability of GNUPlot’s plotting software lies in the insufficient testing of unusual or exceptional states. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the qt/qtbase package from the Qt library, which allows a hacker to execute arbitrary code.
The vulnerability of the qt/qtbase library in Qt is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
The vulnerability of the GraphicsMagick graphic editor, related to the use of uninitialized resources, allows attackers to cause a service failure.
The vulnerability of the GraphicsMagick graphic editor is related to the use of an uninitialized resource. Exploiting this vulnerability could allow a attacker to cause a service failure...
The vulnerability of the SSH-server library for the Go programming language is related to the implementation of an incorrect control flow, allowing a hacker to trigger a service failure.
The vulnerability of the SSH-server library for the Go programming language is related to the implementation of an incorrect control flow. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...
The vulnerability of the console-based graphic editor ImageMagick, related to integer overflow, allows a hacker to trigger a service failure.
The vulnerability of the console-based graphic editor ImageMagick is related to a potential overflow condition. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of IBM OpenPages, a risk management platform for enterprises, relates to the lack of measures taken to protect the structure of the web page. This allows attackers to execute arbitrary HTML code.
The vulnerability of IBM OpenPages, a risk management platform for enterprises, is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability could allow an attacker operating remotely to execute arbitrary HTML code...
The vulnerability of the function dce11_pplib_apply_display_requirements() in the driver drivers/gpu/drm/amd/display/dc/clk_mgr/dce110/dce110_clk_mgr.c file, a driver for supporting AMD Linux operating system-based graphics cards’ Direct Rendering Infrastructure (DRI), allows a malicious actor to trigger a service failure.
The vulnerability of the dce11pplibapplydisplayrequirements function in the drivers/gpu/drm/amd/display/dc/clkmgr/dce110/dce110clkmgr.c file, a driver for AMD Direct Rendering Infrastructure DRI graphics cards for Linux operating systems, is related to the use of pointer manipulation. Exploiting...
The vulnerability of the memfd_pin_folios() function in the mm/gup.c module of the Linux kernel’s memory management subsystem allows a hacker to cause a service failure.
The vulnerability of the memfdpinfolios function in the mm/gup.c module of the Linux kernel’s memory management subsystem leads to uncontrolled resource consumption. Exploiting this vulnerability could allow an attacker to cause a system failure...
The vulnerability of the ksmbd_conn_free() function in the fs/smb/server/connection.c module of the SMB subsystem of the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the ksmbdconnfree function in the fs/smb/server/connection.c module of the SMB subsystem of the Linux operating system is related to the reutilization of previously freed memory. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the gpiod_get_label() function in the drivers/gpio/gpiolib.c module of the Linux kernel’s GPIO support driver allows a attacker to cause a service failure.
The vulnerability of the gpiodgetlabel function in the drivers/gpio/gpiolib.c file of the Linux kernel’s GPIO support driver relates to pointer aliasing. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerabilities of the functions find_user_groups(), get_user_info(), and find_user() in the AuthLdap.cpp module of the “Red Database” database management system allow a perpetrator to cause service interruptions.
The vulnerabilities of the functions findusergroups, getuserinfo, and finduser in the AuthLdap.cpp module of the “Red Database” database management system are related to the overflow of the database event log due to an unlimited stream of alerts indicating that it is impossible to read attributes...
The vulnerability of the web administration tool LDAP phpLDAPadmin, which allows a hacker to execute arbitrary code.
The vulnerability of the LDAP administration web tool phpLDAPadmin is related to the lack of security measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
The vulnerability of the MongoDB database management system, related to improper locking of resources, allows a hacker to cause a service failure.
The vulnerability of the MongoDB database management system is related to improper locking of resources. Exploiting this vulnerability can allow an attacker, operating remotely, to cause service interruptions...