The vulnerability in the drivers/acpi/platform_profile.c module of the Linux kernel allows a hacker to trigger a service failure.

The vulnerability in the drivers/acpi/platformprofile.c module of the Linux kernel is related to the use of an uninitialized resource. Exploiting this vulnerability can allow an attacker to cause a system failure...

The vulnerability of the gf_ac4parser_bs function in the MP4Box multimedia platform of GPAC allows a hacker to cause a service failure or execute arbitrary code.

The vulnerability of the gfac4parserbs function in the MP4Box utility of the GPAC multimedia platform is related to the assignment of a zero pointer. Exploiting this vulnerability can allow an attacker to cause a service failure or execute arbitrary code...

The vulnerability of Microsoft Excel, Microsoft Office, and Microsoft 365 Apps for Enterprise applications relates to reading beyond the buffer limit in memory, allowing an intruder to gain unauthorized access to protected information.

The vulnerability of Microsoft Excel, Microsoft Office, and Microsoft 365 Apps for Enterprise applications is related to reading data beyond the buffer limit of memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the gf_ac4_presentation_ch_mode function in the MP4Box utility of the GPAC multimedia platform allows a perpetrator to cause a service failure.

The vulnerability of the gfac4presentationchmode function in the MP4Box utility of the GPAC multimedia platform is related to the handling of the zero pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the Input Method Editor (IME) component in Windows operating systems, which allows attackers to exploit their privileges

The vulnerability of the Input Method Editor IME component in Windows operating systems is related to the possibility of using memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the Multiplatform Sync Errors component of the Oracle Mobile Field Service management platform, a system for automating business operations within the Oracle E-Business Suite. This component allows attackers to gain access to read, modify, and delete information.

The vulnerability of the Multiplatform Sync Errors component in the Oracle Mobile Field Service management platform, part of the Oracle E-Business Suite enterprise automation system, is related to deficiencies in the authentication process. Exploiting this vulnerability could allow an attacker to...

The vulnerability of Eclipse Jetty servlet containers relates to improper cleaning or release of resources, allowing attackers to circumvent established security restrictions.

The vulnerability of Eclipse Jetty servlet containers is related to improper cleaning or release of resources. Exploiting this vulnerability can allow a malicious actor to bypass established security restrictions remotely...

The vulnerability of the gf_odf_ac4_cfg_clean_list function in the MP4Box multimedia platform of GPAC allows a hacker to cause a service failure or execute arbitrary code.

The vulnerability of the gfodfac4cfgcleanlist function in the MP4Box utility of the GPAC multimedia platform is related to the use of memory after deallocation. Exploiting this vulnerability could allow an attacker to cause service failures or execute arbitrary code...

The vulnerability of the gf_ac4parser_bs function in the MP4Box multimedia platform of GPAC allows a hacker to cause a service failure or disclose protected information.

The vulnerability of the gfac4parserbs function in the MP4Box utility of the GPAC multimedia platform is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause system failures or disclose protected information...

The vulnerability of the smp_processor_id() function in the drivers/vfio/pci/hisilicon/hisi_acc_vfio_pci.c kernel of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the smpprocessorid function in the drivers/vfio/pci/hisilicon/hisiaccvfiopci.c module of the Linux operating system is related to the assignment of the NUL address value due to incorrect loading of drivers in the guest operating system. Exploiting this vulnerability can allow...

The vulnerability of the Consul and Consul Enterprise service configuration tool, related to unvalidated returned values, allows attackers to circumvent established security restrictions.

The vulnerability of the Consul and Consul Enterprise service configuration tool is related to an unvalidated returned value. Exploiting this vulnerability allows a malicious actor to bypass established security restrictions from a remote location...

The vulnerability of HashiCorp’s Vault and Vault Enterprise storage platforms, which involve improper configuration of permissions for critical resources, allows attackers to bypass authentication processes.

The vulnerability of the HashiCorp Vault and Vault Enterprise archiving platforms relates to the improper assignment of permissions for critical resources. Exploiting this vulnerability could allow a malicious actor to bypass authentication processes...

The vulnerability of the redis-check-aof command in the Redis database management system allows a hacker to execute arbitrary code.

The vulnerability of the redis-check-aof command in the Redis database management system is related to buffer overflow in the stack. Exploiting this vulnerability allows an attacker to execute arbitrary code...

The vulnerability of the smp_processor_id() function in the drivers/perf/amlogic/meson_dr_pmu_core.c kernel of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the smpprocessorid function in the drivers/perf/amlogic/mesondrpmucore.c kernel of the Linux operating system is related to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the smp_processor_id() function in the drivers/scsi/smartpqi/smartpqi_init.c module of the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the smpprocessorid function in the drivers/scsi/smartpqi/smartpqiinit.c module of the Linux kernel is related to improper release of resources. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the ath12k_dp_rx_msdu_coalesce() function in the drivers/net/wireless/ath/ath12k/dp_rx.c module of the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the ath12kdprxmsducoalesce function in the drivers/net/wireless/ath/ath12k/dprx.c module of the Linux kernel is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the Preferences component of the Oracle CRM system’s customer relationship management module. The Oracle E-Business Suite technical foundation for automating business processes, allowing attackers to gain access to read, modify, and delete information.

The vulnerability of the Preferences component of the Oracle CRM system’s customer relationship management module is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to gain read, modify, and delete access to information...

The vulnerability of the Ruby on Rails software platform, related to the manipulation of cross-site requests, allows attackers to send CSRF tokens to incorrect domains.

The vulnerability of the Ruby on Rails software platform is related to the manipulation of cross-site requests. Exploiting this vulnerability allows a malicious actor to remotely send CSRF tokens to incorrect domains...

The vulnerability of the Perl JSON data structure transformation module Cpanel::JSON::XS, related to reading beyond the buffer boundary in memory, allows an attacker to obtain confidential information or cause service failures.

The vulnerability of the Perl Data Structure Transformation Module in JSON Cpanel::JSON::XS relates to reading beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to obtain confidential information or cause service failures...

The vulnerability of the implementation package for the JWE, JWS, and JWT go-jose standards in the Go programming language lies in its uncontrolled resource consumption, allowing attackers to cause service failures.

The vulnerability of the implementation package for the JWE, JWS, and JWT go-jose standards in the Go programming language is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service failures...

The vulnerability of the Consul and Consul Enterprise service configuration tool, related to the disclosure of information, allows a perpetrator to access potentially confidential information.

The vulnerability of the Consul and Consul Enterprise service configuration tool is related to the disclosure of information. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain access to potentially confidential information...

The vulnerability of the Web Access component of the Oracle Primavera P6 Enterprise Project Portfolio Management application allows a hacker to gain access to read, modify, and delete information.

The vulnerability of the Web Access component of the Oracle Primavera P6 Enterprise Project Portfolio Management application relates to deficiencies in security segmentation. Exploiting this vulnerability could allow an attacker to gain read, modify, and delete access to data...

The vulnerability of the netdev_lock() function in the iavf component of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the netdevlock function in the iavf component of the Linux operating system is related to mutual locking of execution threads. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of the Golang programming language, related to insufficient protection of sensitive data, allows attackers to gain access to potentially confidential information.

The vulnerability of the Golang programming language is related to the insufficient protection of sensitive data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to potentially confidential information...

The vulnerability of the Microsoft Office suite is related to deficiencies in the deserialization mechanism, which allows attackers to exploit their privileges.

The vulnerability of the Microsoft Office suite is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of the Unified Audit component of the Oracle Database Server system allows a perpetrator to gain access to read, modify, and delete information.

The vulnerability of the Unified Audit component of the Oracle Database Server management system is related to deficiencies in the authentication process. Exploiting this vulnerability could allow an attacker to gain access to read, modify, and delete data...

The vulnerability of the Windows Microsoft PC Manager software for maintenance, cleaning, and security operations is related to access control errors, which allow attackers to escalate their privileges.

The vulnerability of the Windows Microsoft PC Manager software for maintenance, cleaning, and security operations is related to access control errors. Exploiting this vulnerability can allow attackers to increase their privileges...

The vulnerability of the Mercurial version control software lies in the lack of measures taken to protect website structures, allowing attackers to carry out attacks using cross-site scripting (XSS).

The vulnerability of the Mercurial version control software is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to carry out attacks using cross-site scripting XSS...

The vulnerability of the `rand()` function in the Perl programming language, which allows attackers to circumvent existing security restrictions

The vulnerability of the rand function in the Perl programming language is related to the use of a insecure program for generating random numbers. Exploiting this vulnerability could allow an attacker to circumvent existing security restrictions...

The vulnerability of the gf_odf_ac4_cfg_clean_list function in the MP4Box multimedia platform of GPAC allows a hacker to cause a service failure or execute arbitrary code.

The vulnerability of the gfodfac4cfgcleanlist function in the MP4Box utility of the GPAC multimedia platform is related to the use of memory after deallocation. Exploiting this vulnerability could allow an attacker to cause service failures or execute arbitrary code...

The vulnerability of the application software interface of the Cisco Identity Services Engine (ISE) management platform, related to the failure to neutralize certain elements, allows a perpetrator to execute arbitrary code with root privileges.

The vulnerability of the application software interface of the Cisco Identity Services Engine ISE management platform relates to the failure to take measures to neutralize specific elements. Exploiting this vulnerability allows a malicious actor, operating remotely, to execute arbitrary code with...

The vulnerability of the virtiopciadmin_devparts_get() function in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the virtiopciadmindevpartsget function in the Linux operating system is related to the unlimited distribution of resources. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the gf_odf_ac4_cfg_alternative_info function in the MP4Box utility of the GPAC multimedia platform allows a perpetrator to cause a service failure or execute arbitrary code.

The vulnerability of the gfodfac4cfgalternativeinfo function in the MP4Box utility of the GPAC multimedia platform is related to buffer overflow attacks. Exploiting this vulnerability can allow an attacker to cause service failures or execute arbitrary code...

The vulnerability of the PIA Core Technology component of the Oracle PeopleSoft Enterprise PeopleTools business application suite allows a hacker to gain read, modify, and delete access to data.

The vulnerability of the PIA Core Technology component in the Oracle PeopleSoft Enterprise PeopleTools business application suite is related to deficiencies in the authentication process. Exploiting this vulnerability could allow an attacker to gain read, modify, and delete access to data...

The vulnerability of the Golang programming language lies in the incorrect definition of symbolic references before accessing files. This allows attackers to elevate their privileges within the system.

The vulnerability of the Golang programming language is related to the incorrect definition of symbolic references before accessing a file. Exploiting this vulnerability can allow an attacker to gain elevated privileges within the system...

The vulnerability of the close_notify() function in the Apache MINA network Java framework allows a attacker to gain unauthorized access to protected information.

The vulnerability of the closenotify function in the Apache MINA network-oriented Java framework is related to the transmission of data in an open manner. Exploiting this vulnerability can allow a remote attacker to gain unauthorized access to protected information...

The vulnerability of the ath12k_mac_assign_vif_to_vdev() function in the drivers/net/wireless/ath/ath12k/mac.c kernel module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the ath12kmacassignviftovdev function in the drivers/net/wireless/ath/ath12k/mac.c file of the Linux kernel is related to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the em_compute_costs() function in the kernel/power/energy_model.c module of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the emcomputecosts function in the kernel/power/energymodel.c module of the Linux operating system is related to the lack of checks for division by zero. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of HashiCorp’s Vault Community Edition and Vault Enterprise storage platforms, related to resource management errors, allows attackers to trigger service interruptions.

The vulnerability of the HashiCorp Vault Community Edition and Vault Enterprise storage platforms relates to resource management errors. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

The vulnerability in the virtual controller OHCI USB programming interface of Oracle VM VirtualBox allows a attacker to escalate their privileges and execute arbitrary code.

The vulnerability of the virtual controller OHCI USB programming interface in Oracle VM VirtualBox is related to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker to gain increased privileges and execute arbitrary code...

The vulnerability of BitLocker’s data protection function in the Microsoft Windows operating system allows attackers to circumvent existing security restrictions.

The vulnerability of BitLocker’s data protection function in the Microsoft Windows operating system is related to synchronization errors when using shared resources “Race Conditions”. Exploiting this vulnerability can allow attackers to circumvent existing security restrictions...

The vulnerability of the Windows Routing and Remote Access service (RRAS) on Microsoft Windows operating systems allows a perpetrator to execute arbitrary code.

The vulnerability of the Windows Routing and Access Service RRAS on Microsoft Windows operating systems is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

The vulnerability of the Linux operating system’s kernel, related to errors in resource release, allows a hacker to cause a service failure.

The vulnerability of the Linux operating system’s kernel is related to errors during resource release. Exploiting this vulnerability can allow an attacker to cause service failures...

The vulnerability of the Simple Search and Discovery Protocol (SSDP) service in Microsoft Windows operating systems allows a perpetrator to increase their privileges or cause a service failure.

The vulnerability of the Simple Search and Discovery Protocol SSDP service in Microsoft Windows operating systems is related to data type mixing errors. Exploiting this vulnerability can allow attackers to increase their privileges or cause service failures...

The vulnerability of the Wlan AP Driver software driver of MediaTek’s microprogramming chips allows a hacker to execute arbitrary code.

The vulnerability of the Wlan AP Driver software driver from MediaTek is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

The vulnerability of the SICAM TOOLBOX II engineering software, related to incorrect verification of certificates, allows a perpetrator to execute a “man-in-the-middle” type attack.

The vulnerability of the SICAM TOOLBOX II engineering software is related to improper verification of the TLS certificate. Exploiting this vulnerability could allow a remote attacker to execute a “man-in-the-middle” type attack...

The vulnerability of the Thunderbird email client, related to insufficient protection of administrative data, allows attackers to gain unauthorized access to protected information.

The vulnerability of the Thunderbird email client is related to insufficient protection for administrative data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the django.utils.html.strip_tags() function in the Django web application framework allows a attacker to cause a denial-of-service attack.

The vulnerability of the django.utils.html.striptags function in the Django web application framework is related to memory leaks caused by the improper use of this function for releasing resources. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the gf_filter_pid_inst_swap function in the MP4Box multimedia platform GPAC allows a intruder to cause a service failure or execute arbitrary code.

The vulnerability of the gffilterpidinstswap function in the MP4Box multimedia platform of GPAC relates to the use of memory after deallocation. Exploiting this vulnerability could allow an attacker to cause a service failure or execute arbitrary code...

The vulnerability of the gf_filter_pid_inst_swap_delete_task function in the MP4Box multimedia platform GPAC allows a intruder to cause a service failure.

The vulnerability of the gffilterpidinstswapdeletetask function in the MP4Box multimedia platform GPAC utility is related to the use of memory after deallocation. Exploiting this vulnerability could allow an attacker to cause a service failure...