The vulnerability of the Demon Routing Protocol Daemon (RPD) in Juniper Networks’ Junos OS and Junos OS Evolved operating systems allows a attacker to cause a service failure.

The vulnerability of the Demon Routing Protocol Daemon RPD in Juniper Networks’ Junos OS and Junos OS Evolved operating systems is related to the use of the assert function. Exploiting this vulnerability allows a remote attacker to cause service interruptions...

The vulnerability of the fromTraceroutGet() function (/goform/getTraceroute) in the Tenda O3 wireless access point software allows a intruder to execute arbitrary commands.

The vulnerability of the fromTraceroutGet function /goform/getTraceroute in the Tenda O3 wireless access point software exists because measures are not taken to neutralize special elements when processing the dest parameter. Exploiting this vulnerability allows a remote attacker to execute...

The vulnerability of the Demon Routing Protocol Daemon (RPD) in Juniper Networks’ Junos OS and Junos OS Evolved operating systems allows a attacker to compromise the availability of the device.

The vulnerability of the Demon Routing Protocol Daemon RPD in Juniper Networks’ Junos OS and Junos OS Evolved operating systems is related to the lack of memory release after the effective lifespan of the protocol. Exploiting this vulnerability can allow an attacker to compromise the availability...

The vulnerability of the Demon Routing Protocol Daemon (RPD) in Juniper Networks’ Junos OS and Junos OS Evolved operating systems allows a attacker to cause a service failure.

The vulnerability of the Daemon Routing Protocol rpd in Junos OS and Junos OS Evolved systems is related to the use of memory after it is freed. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

The vulnerability of Palo Alto Networks Cortex, a cloud-based security platform, allows attackers to elevate their privileges to the root level.

The vulnerability of the virtual machine on Palo Alto Networks Cortex XDR Broker VM in cloud security platforms is related to improper privilege assignment. Exploiting this vulnerability can allow attackers to elevate their privileges to a root level...

The vulnerability of the formWifiMacFilterSet() function (/goform/setWrlFilterList) in the Tenda O3 wireless access point software allows a intruder to execute arbitrary code or cause a service failure.

The vulnerability of the formWifiMacFilterSet function /goform/setWrlFilterList in the Tenda O3 wireless access point software lies in the issue where the operation exceeds the buffer limit in memory when processing the macList parameter. Exploiting this vulnerability could allow a malicious acto...

The vulnerability of the Wing FTP server, related to improper checking of the value of the session cookie file UID, allows a hacker to disclose protected information.

The vulnerability of the Wing FTP server is related to improper checking of the value of the session cookie file UID at the /loginok.html endpoint. Exploiting this vulnerability can allow an attacker, operating remotely, to disclose sensitive information...

The vulnerability of the enable-cuda-compat function in software for creating and running NVIDIA Container Toolkit containers and NVIDIA GPU Operator resource management software allows a malicious actor to execute arbitrary code, gain elevated privileges, unauthorizedly access and modify protected information, or cause service failures.

The vulnerability of the enable-cuda-compat function in software for creating and running NVIDIA Container Toolkit containers, as well as in software for managing NVIDIA GPU resources, is related to the use of an unreliable search path. Exploiting this vulnerability allows a remote attacker to...

Vulnerability of the Server component: The Optimizer component of the MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the MySQL Server component involves an uncontrolled consumption of resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions using the MySQL network protocol...

Vulnerability of the Server component: The Optimizer component of the MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the MySQL Server component involves an uncontrolled consumption of resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions using the MySQL network protocol...

The vulnerability of Oracle Java SE’s 2D software platform and the Oracle GraalVM virtual machine allows a hacker to gain full control over the application.

The vulnerability of the Oracle Java SE 2D software platform and the Oracle GraalVM Enterprise Edition virtual machine is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain full control over the application...

The vulnerability of the LSILogic software module in Oracle VM VirtualBox allows a hacker to gain unauthorized access to protected information.

The vulnerability of the LSILogic software module in Oracle VM VirtualBox relates to the insecure management of privileges due to improper memory release. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...

The vulnerability of the Adobe Substance 3D Viewer application, which allows for the viewing and editing of 3D files, stems from a pointer manipulation issue. This vulnerability allows an attacker to trigger a service failure.

The vulnerability of the Adobe Substance 3D Viewer application for viewing and editing 3D files is related to the handling of a null pointer. Exploiting this vulnerability could allow an attacker to cause a service failure by sending a specially crafted malicious file...

The vulnerability of Juniper Networks’ Junos OS operating systems arises from a flaw in the data protection mechanism, allowing attackers to circumvent existing security restrictions.

The vulnerability of Juniper Networks’ Junos OS lies in the compromised data protection mechanism. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions remotely...

The vulnerability of Juniper Networks’ Junos OS, related to insufficient handling of exceptional states, allows a attacker to trigger a service failure.

The vulnerability of Juniper Networks’ Junos OS lies in its insufficient handling of exceptional states. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of the Microsoft Visual Studio Code Python Extension, related to breach of confidentiality boundaries, allows the attacker to execute arbitrary code.

The vulnerability of the Microsoft Visual Studio Code Python Extension is related to a breach of trust boundaries. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of the Windows Routing and Remote Access Service (RRAS) on Windows operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Windows Routing and Remote Access Service RRAS on Windows operating systems is related to memory-walking attacks. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the mod_ssl function in the Apache HTTP Server’s web server allows a hacker to cause a service failure.

The vulnerability of the modssl function in the Apache HTTP Server is related to deficiencies in the authentication process when processing the SSLEngine option. Exploiting this vulnerability allows a malicious actor to cause service failures using the TLS protocol...

Vulnerability of the Server component: The Optimizer component of the MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the MySQL Server component involves an uncontrolled consumption of resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions using the MySQL network protocol...

The vulnerability of the automated system for emulating intruder actions in Caldera, related to an incorrect restriction on the path name to the restricted catalog, allows an intruder to execute arbitrary code.

The vulnerability of the automated system for emulating intruder actions in Caldera is related to an incorrect restriction on the path name to the restricted catalog. Exploiting this vulnerability allows an intruder operating remotely to execute arbitrary code by sending a specially crafted HTTP...

The vulnerability of the Substance 3D Viewer application, which allows the execution of arbitrary code, arises from the possibility of operations going beyond the buffer in memory. This vulnerability allows an attacker to execute arbitrary code.

The vulnerability of the Adobe Substance 3D Viewer application for viewing and editing 3D files is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code by sending a specially crafted maliciou...

The vulnerability of the Demon Routing Protocol Daemon (RPD) in Juniper Networks’ Junos OS and Junos OS Evolved operating systems allows a attacker to cause a service failure.

The vulnerability of the Demon Routing Protocol Daemon RPD in Juniper Networks’ Junos OS and Junos OS Evolved operating systems is related to the use of the assert function. Exploiting this vulnerability allows a remote attacker to cause service interruptions...

The vulnerability of the SIP ALG module of the Packet Forwarding Engine (PFE) in the Junos OS router series, SRX Series and MX Series, allows a attacker to cause service interruptions.

The vulnerability of the SIP ALG module of the Packet Forwarding Engine PFE in Junos OS routers of the SRX Series and MX Series is related to improper handling of an additional special element. Exploiting this vulnerability allows a malicious actor to trigger a service failure by sending speciall...

The vulnerability of the Adobe InCopy text creation and editing software lies in buffer overflows in dynamic memory, allowing an attacker to execute arbitrary code.

The vulnerability of the Adobe InCopy text creation and editing software is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code by sending a specially created malicious file...

The vulnerability of the ColdFusion software platform lies in the improper limitation of XML references to external objects. This allows attackers to gain unauthorized access to protected information or circumvent existing security restrictions, thereby causing service failures.

The vulnerability of the ColdFusion software platform is related to incorrect restrictions on XML references to external objects. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information or circumvent existing security...

The vulnerability of the formWifiBasicSet() function (/goform/setWrlBasicInfo) in the Tenda O3 wireless access point software allows a hacker to execute arbitrary code or cause service failure.

The vulnerability of the formWifiBasicSet function /goform/setWrlBasicInfo in the Tenda O3 wireless access point software lies in the issue of the operation exceeding the buffer in memory when processing the extChannel parameter. Exploiting this vulnerability allows a remote attacker to execute...

The vulnerability of the command-line interface (CLI) of Juniper Networks’ Junos OS and Junos OS Evolved operating systems allows attackers to increase their privileges.

The vulnerability of the command-line interface CLI of Juniper Networks’ Junos OS and Junos OS Evolved operating systems is related to the lack of measures taken to neutralize specific elements. Exploiting this vulnerability can allow attackers to enhance their privileges...

Vulnerability of the MySQL Server component: This component is part of the Database Management System, allowing attackers to cause service failures.

The vulnerability of the MySQL Server component involves deficiencies in the authentication mechanism. Exploiting this vulnerability can allow an attacker to cause service interruptions using the MySQL network protocol...

The vulnerability of the InnoDB component in the MySQL Database Management System allows a attacker to cause service failures or gain unauthorized access for data modification, addition, and deletion.

The vulnerability of the InnoDB component in the MySQL Database Management System is related to deficiencies in the authentication mechanism. Exploiting this vulnerability allows an attacker to cause service failures or gain unauthorized access for data modification, addition, and deletion...

The vulnerability of the PIA Core Technology component of the Oracle PeopleSoft Enterprise PeopleTools business application suite allows a hacker to gain unauthorized access to protected information.

The vulnerability of the PIA Core Technology component in the Oracle PeopleSoft Enterprise PeopleTools business application suite is related to deficiencies in the authentication process. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

The vulnerability of the user interface of Juniper Networks Junos OS allows a hacker to gain access to the device.

The vulnerability of the user interface of Juniper Networks Junos OS is related to discrepancies in the data of the user interface. Exploiting this vulnerability can allow a malicious actor to gain access to the device remotely...

The vulnerability of the user interface of Juniper Networks’ Junos OS and Junos OS Evolved systems allows a hacker to gain access and modify system configurations.

The vulnerability of the user interface of Juniper Networks Junos OS and Junos OS Evolved lies in improper neutralization of separators. Exploiting this vulnerability can allow an attacker to modify system configurations...

The vulnerability of the software for providing secure remote access to data in the Palo Alto Networks GlobalProtect App lies in the lack of measures to neutralize substitution characters or identical symbols. This allows attackers to elevate their privileges to the root level.

The vulnerability of the software for providing secure remote access to data in the Palo Alto Networks GlobalProtect App is related to the lack of measures taken to neutralize substitution characters or identical symbols. Exploiting this vulnerability can allow attackers to elevate their privileg...

The vulnerability of the distributed version control system Git used by Microsoft Visual Studio allows a perpetrator to execute arbitrary code.

The vulnerability of the distributed version control system Git used by Microsoft Visual Studio is related to the occurrence of interpretation conflicts. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of the Microsoft SharePoint Server software, related to deserialization mechanism flaws, allows attackers to execute arbitrary code.

The vulnerability of the Microsoft SharePoint Server software is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of the Endpoint Manager Mobile app for managing the lifecycle of mobile devices and applications (formerly known as MobileIron Core) arises from the lack of measures taken to neutralize specific elements. This allows a perpetrator to execute arbitrary code.

The vulnerability of the Ivanti Endpoint Manager Mobile EPMM application for managing the lifecycle of mobile devices and mobile applications formerly known as MobileIron Core is related to the lack of measures taken to neutralize special elements used in the operating system. Exploiting this...

The vulnerability of the Siebel CRM End User component of the Oracle Siebel CRM system allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Siebel CRM End User component of the Oracle Siebel CRM system is related to insufficient protection of administrative functions. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the ClamAV software component, which is used for protecting against malicious programs on Cisco Secure Endpoint Connectors, allows a hacker to trigger a service failure.

The vulnerability of the ClamAV software component for protecting against malicious programs in Cisco Secure Endpoint Connectors is related to reading data beyond the buffer boundaries of memory. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

The vulnerability of the fromNetToolGet() function (/goform/setPingInfo) in the Tenda O3 wireless access point software allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the fromNetToolGet function /goform/setPingInfo in the Tenda O3 wireless access point software arises due to buffer overflows during the processing of the ip parameter. Exploiting this vulnerability allows an attacker to execute arbitrary code or cause service failures...

The vulnerability of Juniper Networks Junos OS web server allows a hacker to gain access to device command interfaces.

The vulnerability of Juniper Networks Junos OS web servers is related to deficiencies in the authentication mechanism. Exploiting this vulnerability can allow a malicious actor to gain access to device command interfaces remotely...

The vulnerability of the network traffic analysis, network detection, and response tool Palo Alto Networks Cortex XDR Agent lies in the insufficient checking of unusual or exceptional states. This allows attackers to trigger service failures.

The vulnerability of the Palo Alto Networks Cortex XDR Agent, which is used for network traffic analysis, network detection, and response, stems from insufficient checking of unusual or exceptional states. Exploiting this vulnerability could allow attackers to trigger service failures...

The vulnerability of the distributed version control system Git used by Microsoft Visual Studio allows a perpetrator to cause a service failure.

The vulnerability of the distributed version control system in Microsoft Visual Studio for software development involves copying buffers without checking the size of the input data. Exploiting this vulnerability could allow a malicious actor to cause service interruptions remotely...

Vulnerability of the Server component: The Optimizer component of the Oracle MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the Oracle MySQL Server component of the database management system’s optimizer is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service interruptions using the MySQL protocol...

Vulnerability of the Server component: The Optimizer component of the MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the MySQL Server component of the database management system involves uncontrolled resource consumption. Exploiting this vulnerability can allow an attacker to cause service interruptions...

The vulnerability of the JDBC component of the Oracle Database Server database management system allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the JDBC component of the Oracle Database Server management database system is related to access control errors. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

Vulnerability of the main and fileman modules of the 1C-Bitrix website management system: Website management that allows attackers to gain unauthorized access to configuration and executable files

Vulnerability of the main and fileman modules of the 1C-Bitrix website management system: Website management involves insecure handling of privileges. Exploiting this vulnerability can allow an attacker to gain unauthorized access to configuration and executable files...

The vulnerability in the web interface of the Cisco Unified Contact Center Express software’s operator management tool allows a attacker to carry out an XSS attack.

The vulnerability in the web interface for controlling the software used to automate operations in Cisco Unified Contact Center Express Unified CCX is related to the lack of protective measures taken for the web page structure. Exploiting this vulnerability allows a malicious actor to carry out X...

Vulnerability of the Server component: The MySQL Server database management system, which allows a hacker to cause service interruptions.

Vulnerability of the MySQL Server component: The DDL system for database management of MySQL Server is vulnerable to uncontrolled resource consumption. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

Vulnerability of the Server component: The Optimizer component of the MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the MySQL Server component of the database management system involves an uncontrolled consumption of resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

The vulnerability of the Native Image component in the Oracle GraalVM for JDK virtual machine allows a hacker to trigger a service failure.

The vulnerability of the Native Image component in the Oracle GraalVM for JDK lies in the insecure management of privileges. Exploiting this vulnerability allows a malicious actor to trigger a service failure using the HTTP protocol...