Lucene search
K
Bdu FstecRecent

90709 matches found

BDU FSTEC
BDU FSTEC
added 2025/12/22 12:0 a.m.3 views

The vulnerability of the extractSlice() function in the software for analyzing network traffic via tcpdump allows a hacker to induce a service failure.

The vulnerability of the extractSlice function in the tcpdump network traffic analysis software relates to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.3AI score0.0087EPSS
Exploits1References4Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/12/22 12:0 a.m.4 views

The vulnerability in the implementation of the AVRCP protocol of the Bluetooth protocol stack for the Linux BlueZ operating system allows a hacker to circumvent existing security restrictions.

The vulnerability of the AVRCP protocol implementation in the Bluetooth protocol stack for the Linux BlueZ operating system is related to reading data beyond the buffer limits of memory. Exploiting this vulnerability can allow a malicious actor to circumvent existing security restrictions using a...

5.4CVSS6.8AI score0.00956EPSS
Exploits0References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/12/22 12:0 a.m.2 views

The vulnerability in the implementation of the AVRCP protocol of the Bluetooth protocol stack for the Linux BlueZ operating system allows a hacker to circumvent existing security restrictions.

The vulnerability of the AVRCP protocol implementation in the Bluetooth protocol stack for the Linux BlueZ operating system is related to reading data beyond the buffer limits of memory. Exploiting this vulnerability can allow a malicious actor to circumvent existing security restrictions using a...

5.4CVSS6.8AI score0.00808EPSS
Exploits0References6Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/12/22 12:0 a.m.28 views

The vulnerability in the implementation of the OBEX protocol for Bluetooth on the Linux BlueZ operating system allows a hacker to cause a service failure.

The vulnerability of the OBEX protocol implementation in the Bluetooth protocol stack for the Linux BlueZ operating system is related to reading data outside of the allowed range. Exploiting this vulnerability could allow a malicious actor to gain access to protected information remotely...

2.6CVSS6.5AI score0.00949EPSS
Exploits0References6Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/12/22 12:0 a.m.2 views

The vulnerability of the tpm2_checkquote component in the Trusted Platform Module tools allows a perpetrator to access protected information.

The vulnerability of the tpm2checkquote component in the Trusted Platform Module tools repository is related to incorrect data regarding changes. Exploiting this vulnerability can allow an attacker to gain access to protected information through specially crafted queries...

3.3CVSS6.5AI score0.0037EPSS
Exploits1References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/12/22 12:0 a.m.3 views

The vulnerability of the EMACS text editor’s MIME protocol implementation allows a hacker to induce a service failure.

The vulnerability of the EMACS text editor’s MIME protocol implementation lies in the inclusion of functions from an unverified and uncontrolled area. Exploiting this vulnerability could allow a perpetrator to cause service failures...

5.5CVSS6.6AI score0.00579EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/12/22 12:0 a.m.2 views

The vulnerability of the EMACS text editor’s Org mode implementation allows attackers to influence the integrity and accessibility of the protected information.

The vulnerability of the EMACS text editor’s Org mode implementation lies in the loading of code without checking its integrity. Exploiting this vulnerability could allow an attacker to influence the integrity and accessibility of the protected information...

7.1CVSS7.2AI score0.00482EPSS
Exploits0References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/12/22 12:0 a.m.4 views

The vulnerability of the remote access function for the DesktopDirect desktop environment on the ArrayOS operating system’s AG series network gateways allows a hacker to execute arbitrary commands.

The vulnerability of the remote access function of the DesktopDirect desktop environment for the ArrayOS operating system’s AG series network switches involves a lack of measures to neutralize specific elements. Exploiting this vulnerability allows an attacker to execute arbitrary commands remote...

10CVSS6.3AI score0.031EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/12/22 12:0 a.m.6 views

The vulnerability of the SafeUrlFilter() function in the Tenda WH450 router software allows a hacker to execute arbitrary code and cause service interruptions.

The vulnerability of the SafeUrlFilter function in the Tenda WH450 router software lies in the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code and cause service interruptions...

10CVSS8AI score0.0086EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/12/22 12:0 a.m.4 views

The vulnerability of the N8n automation platform, related to insufficient control over resources with dynamic management, allows a perpetrator to gain unauthorized access to the platform.

The vulnerability of the N8n automation platform lies in the insufficient control over resources with dynamic management. Exploiting this vulnerability can allow a remote attacker to gain unauthorized access to the platform...

9.9CVSS7.6AI score0.97875EPSS
Exploits29References8Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/12/22 12:0 a.m.4 views

The vulnerability of the TEE SOC microprogramming software driver for AMD processors allows a hacker to trigger a service failure.

The vulnerability of the TEE SOC microprogramming software driver for AMD processors is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a system failure...

4.7CVSS5.9AI score0.00118EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.3 views

The vulnerability of the containerd execution environment, related to the lack of memory release after the effective lifespan, allows a malicious actor to trigger a service failure.

The vulnerability of the containerd execution environment is related to the lack of memory release after the effective lifespan of the component. Exploiting this vulnerability can allow an attacker to trigger a service failure...

6.2CVSS6.2AI score0.00162EPSS
Exploits1References10Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.8 views

The vulnerability of the Apache Guacamole software for remote management of client machines, related to unvalidated array indexing, allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of Apache Guacamole, a software for remote administration of client machines, is related to unvalidated array indexing. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of protected information...

7.5CVSS7.1AI score0.00424EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.15 views

The vulnerability of the prepare_update() function in the vio.cpp module of the “Red Database” database management system allows a perpetrator to cause a service failure.

The vulnerability of the prepareupdate function in the vio.cpp module of the “Red Database” database management system is related to improper initialization of resources when processing queries with the WITH LOCK construct and the creation of a delta version of the record. Exploiting this...

4.8CVSS5.8AI score
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.4 views

The vulnerability of the qt/qtbase library in Qt, which allows a hacker to trigger a service failure

The vulnerability of the Qt library’s qt/qtbase package is related to its algorithmic complexity. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

5.3CVSS5.8AI score0.00343EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.5 views

The vulnerability of the ParamsCalculator::getTextUTF8() function in the ParamsCalculator.cpp module of the “Red Database” database management system allows a hacker to cause a service failure.

The vulnerability of the ParamsCalculator::getTextUTF8 function in the ParamsCalculator.cpp module of the “Red Database” database management system is related to insufficient validation of input data when processing the length of string parameters. Exploiting this vulnerability could allow an...

4.8CVSS5.8AI score
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.3 views

The vulnerability of the Gimp image processing library, related to buffer overflow in the stack, allows a hacker to execute arbitrary code.

The vulnerability of the Gimp image processing library is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

8.4CVSS7.6AI score0.02751EPSS
Exploits0References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.3 views

The vulnerability of the Gimp image processing library, related to integer overflow, allows a hacker to cause a service failure.

The vulnerability of the Gimp image processing library is related to a numerical overflow condition. Exploiting this vulnerability could allow an attacker to cause a service failure...

8.4CVSS7.1AI score0.00371EPSS
Exploits0References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.4 views

The vulnerability of GNUPlot’s plotting software, related to the manipulation of the null pointer, allows a hacker to trigger a service failure.

The vulnerability of GNUPlot’s graph creation software relates to the handling of the null pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

6.2CVSS6.5AI score0.00184EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.4 views

The vulnerability of the GraphicsMagick graphic editor, related to reading beyond the buffer in memory, allows a hacker to cause a service failure.

The vulnerability of the GraphicsMagick graphic editor is related to reading beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a system failure...

4CVSS5.9AI score0.00339EPSS
Exploits1References8Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.6 views

The vulnerability of the container management system and the virtual machine manager Incus, related to insecure privilege management, allows attackers to escalate their privileges.

The vulnerability of the container management system and the Incus virtual machine manager is related to insecure management of privileges. Exploiting this vulnerability can allow attackers to increase their privileges...

8.4CVSS5.8AI score0.00164EPSS
Exploits1References7Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.4 views

The vulnerability of the data copying management software for IBM Copy Services Manager lies in the lack of measures to sanitize input data. This allows attackers to execute cross-site scripting (XSS) attacks.

The vulnerability of the IBM Copy Services Manager software for data storage systems lies in the lack of measures to sanitize input data. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks XSS remotely...

5.5CVSS5.6AI score0.00197EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.4 views

The vulnerability of the dcn201_acquire_free_pipe_for_layer() function in the drivers/gpu/drm/amd/display/dc/dcn201/dcn201_resource.c driver module allows a hacker to trigger a service failure. This vulnerability is related to the Direct Rendering Infrastructure (DRI) support for AMD graphics cards in Linux operating systems.

The vulnerability of the dcn201acquirefreepipeforlayer function in the drivers/gpu/drm/amd/display/dc/dcn201/dcn201resource.c driver module relates to the pointer manipulation in the Direct Rendering Infrastructure DRI support for AMD graphics cards in Linux operating systems. Exploiting this...

5.5CVSS6.7AI score0.00235EPSS
Exploits0References10Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.4 views

The vulnerability of the guc_submit_wedged_fini() function in the drivers/gpu/drm/xe/xe_guc_submit.c driver module allows a hacker to cause a service failure. This vulnerability is related to the Direct Rendering Infrastructure (DRI) support in the Linux kernel.

The vulnerability of the gucsubmitwedgedfini function in the drivers/gpu/drm/xe/xegucsubmit.c driver module is related to improper locking of resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6AI score0.00152EPSS
Exploits0References7Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.4 views

The vulnerability of the ext4_feature_set_ok() function in the fs/ext4/super.c module of the Ext4 file system support module in Linux’s operating system allows a hacker to cause a service failure.

The vulnerability of the ext4featuresetok function in the fs/ext4/super.c module of the Linux file system support module is related to incorrect validation of input data. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00244EPSS
Exploits0References7Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.15 views

The vulnerability of the `ParamsCalculator::makeFromValues()` function in the `ParamsCalculator.cpp` module of the “Red Database” database management system allows a perpetrator to cause a service failure.

The vulnerability of the ParamsCalculator::makeFromValues function in the ParamsCalculator.cpp module of the “Red Database” database management system is related to mutual locking of execution threads. Exploiting this vulnerability could allow an attacker to cause service interruptions...

5.5CVSS5.9AI score
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.9 views

The vulnerability of the Elasticsearch search engine, related to uncontrolled resource consumption, allows a hacker to cause a service failure.

The vulnerability of the Elasticsearch search engine is related to an uncontrolled consumption of resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

7.8CVSS5.8AI score0.00549EPSS
Exploits0References8Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.3 views

The vulnerability of the Varnish cache server, related to deficiencies in HTTP request processing, allows attackers to send arbitrary HTTP requests.

The vulnerability of the Varnish cache server is related to deficiencies in HTTP request processing. Exploiting this vulnerability allows a malicious actor to send arbitrary HTTP requests remotely...

4.8CVSS6.7AI score0.00289EPSS
Exploits0References6Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.2 views

The vulnerability of the Gimp image processing library, related to integer overflow, allows a hacker to cause a service failure.

The vulnerability of the Gimp image processing library is related to a numerical overflow condition. Exploiting this vulnerability could allow an attacker to cause a service failure...

8.4CVSS7.1AI score0.00371EPSS
Exploits0References7Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.3 views

The vulnerability of GNUPlot’s plotting software, related to the manipulation of the null pointer, allows a hacker to trigger a service failure.

The vulnerability of GNUPlot’s graph creation software relates to the handling of the null pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

6.2CVSS6.5AI score0.00184EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.4 views

The vulnerability of the HPE OneView IT infrastructure management system, related to improper code generation, allows a attacker to execute arbitrary code.

The vulnerability of the HPE OneView IT infrastructure management system is related to incorrect code generation. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS6.5AI score0.89733EPSS
Exploits8References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.4 views

The vulnerability of the Spam Quarantine function in the Cisco AsyncOS operating system, within the tools of Cisco Secure Email and Web Manager, as well as Cisco Secure Email Gateway, allows a malicious user to execute arbitrary code with root privileges.

The vulnerability of the Spam Quarantine function in the Cisco AsyncOS operating system, as well as in products like Cisco Secure Email and Web Manager, and Cisco Secure Email Gateway, is related to deficiencies in the mechanism for verifying input data. Exploiting this vulnerability could allow ...

10CVSS6.5AI score0.2906EPSS
Exploits2References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.4 views

The vulnerability of the relocate_one_folio() function in the fs/btrfs/relocation.c module of the Btrfs file system support in the Linux operating system allows a malicious actor to cause a service failure.

The vulnerability of the relocateonefolio function in the fs/btrfs/relocation.c module of the Btrfs file system support in the Linux operating system is related to an unauthorized call to a validation function. Exploiting this vulnerability could allow an attacker to trigger a service failure...

5.5CVSS6AI score0.00201EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.6 views

The vulnerability of the ncsi_unregister_dev() function in the net/ncsi/ncsi-manage.c module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the ncsiunregisterdev function in the net/ncsi/ncsi-manage.c module of the Linux operating system is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00228EPSS
Exploits0References8Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.4 views

Vulnerability in the driver/gpu/drm/amd/display/dc/dml2/dml2_core/dml2_core_shared_types.h file of the Linux operating system’s kernel, which allows a hacker to trigger a service failure. This vulnerability relates to the driver that supports AMD graphics cards’ Direct Rendering Infrastructure (DRI) in Linux.

The vulnerability in the drivers/gpu/drm/amd/display/dc/dml2/dml2core/dml2coresharedtypes.h file relates to the driver that supports AMD’s Linux operating system graphics cards’ Direct Rendering Infrastructure DRI. This vulnerability stems from allowing an operation to go beyond the buffer...

5.5CVSS5.9AI score0.00206EPSS
Exploits0References8Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.4 views

The vulnerability of the DPM_scanPages() function in the dpm.epp module of the “Red Database” database management system allows a hacker to cause a service failure.

The vulnerability of the DPMscanPages function in the dpm.epp module of the “Red Database” database management system is related to the improper release of page pointer vectors before the database stops functioning. Exploiting this vulnerability could allow a remote attacker to cause service...

5.3CVSS5.8AI score
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.5 views

The vulnerability of the AdvanceCOMP archive packaging tool, related to insufficient validation of input data, allows a perpetrator to trigger a service failure.

The vulnerability of the AdvanceCOMP archive packaging tool is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause a service failure...

3.3CVSS5.8AI score0.0019EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.5 views

The vulnerability of GNUPlot’s software for creating graphs lies in the insufficient checking of unusual or exceptional states, allowing a perpetrator to trigger a service failure.

The vulnerability of GNUPlot’s plotting software lies in the insufficient testing of unusual or exceptional states. Exploiting this vulnerability can allow an attacker to cause a service failure...

6.2CVSS6.5AI score0.00196EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.4 views

The vulnerability of the qt/qtbase package from the Qt library, which allows a hacker to execute arbitrary code.

The vulnerability of the qt/qtbase library in Qt is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

4CVSS6.3AI score0.00225EPSS
Exploits0References9Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.5 views

The vulnerability of the GraphicsMagick graphic editor, related to the use of uninitialized resources, allows attackers to cause a service failure.

The vulnerability of the GraphicsMagick graphic editor is related to the use of an uninitialized resource. Exploiting this vulnerability could allow a attacker to cause a service failure...

4.5CVSS6.1AI score0.00356EPSS
Exploits0References7Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.2 views

The vulnerability of the SSH-server library for the Go programming language is related to the implementation of an incorrect control flow, allowing a hacker to trigger a service failure.

The vulnerability of the SSH-server library for the Go programming language is related to the implementation of an incorrect control flow. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

7.8CVSS6.8AI score0.00632EPSS
Exploits1References7Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.4 views

The vulnerability of the console-based graphic editor ImageMagick, related to integer overflow, allows a hacker to trigger a service failure.

The vulnerability of the console-based graphic editor ImageMagick is related to a potential overflow condition. Exploiting this vulnerability could allow an attacker to cause a service failure...

7.8CVSS6.3AI score0.00755EPSS
Exploits1References14Affected Software6
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.5 views

The vulnerability of IBM OpenPages, a risk management platform for enterprises, relates to the lack of measures taken to protect the structure of the web page. This allows attackers to execute arbitrary HTML code.

The vulnerability of IBM OpenPages, a risk management platform for enterprises, is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability could allow an attacker operating remotely to execute arbitrary HTML code...

5.5CVSS6AI score0.00162EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.3 views

The vulnerability of the function dce11_pplib_apply_display_requirements() in the driver drivers/gpu/drm/amd/display/dc/clk_mgr/dce110/dce110_clk_mgr.c file, a driver for supporting AMD Linux operating system-based graphics cards’ Direct Rendering Infrastructure (DRI), allows a malicious actor to trigger a service failure.

The vulnerability of the dce11pplibapplydisplayrequirements function in the drivers/gpu/drm/amd/display/dc/clkmgr/dce110/dce110clkmgr.c file, a driver for AMD Direct Rendering Infrastructure DRI graphics cards for Linux operating systems, is related to the use of pointer manipulation. Exploiting...

5.5CVSS6.8AI score0.00211EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.4 views

The vulnerability of the memfd_pin_folios() function in the mm/gup.c module of the Linux kernel’s memory management subsystem allows a hacker to cause a service failure.

The vulnerability of the memfdpinfolios function in the mm/gup.c module of the Linux kernel’s memory management subsystem leads to uncontrolled resource consumption. Exploiting this vulnerability could allow an attacker to cause a system failure...

5.5CVSS6.9AI score0.002EPSS
Exploits0References7Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.4 views

The vulnerability of the ksmbd_conn_free() function in the fs/smb/server/connection.c module of the SMB subsystem of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the ksmbdconnfree function in the fs/smb/server/connection.c module of the SMB subsystem of the Linux operating system is related to the reutilization of previously freed memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00233EPSS
Exploits0References11Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.3 views

The vulnerability of the gpiod_get_label() function in the drivers/gpio/gpiolib.c module of the Linux kernel’s GPIO support driver allows a attacker to cause a service failure.

The vulnerability of the gpiodgetlabel function in the drivers/gpio/gpiolib.c file of the Linux kernel’s GPIO support driver relates to pointer aliasing. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6AI score0.00201EPSS
Exploits0References7Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.5 views

The vulnerabilities of the functions find_user_groups(), get_user_info(), and find_user() in the AuthLdap.cpp module of the “Red Database” database management system allow a perpetrator to cause service interruptions.

The vulnerabilities of the functions findusergroups, getuserinfo, and finduser in the AuthLdap.cpp module of the “Red Database” database management system are related to the overflow of the database event log due to an unlimited stream of alerts indicating that it is impossible to read attributes...

5CVSS5.9AI score
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.3 views

The vulnerability of the web administration tool LDAP phpLDAPadmin, which allows a hacker to execute arbitrary code.

The vulnerability of the LDAP administration web tool phpLDAPadmin is related to the lack of security measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

5.8CVSS6AI score0.00475EPSS
Exploits0References9Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/12/19 12:0 a.m.3 views

The vulnerability of the MongoDB database management system, related to improper locking of resources, allows a hacker to cause a service failure.

The vulnerability of the MongoDB database management system is related to improper locking of resources. Exploiting this vulnerability can allow an attacker, operating remotely, to cause service interruptions...

4.2CVSS5.8AI score0.002EPSS
Exploits0References4Affected Software2
Total number of security vulnerabilities90709