The vulnerability of the Kryptowire Jenkins automation server’s plugin, related to the storage of keys in an unencrypted form, allows a malicious individual to gain unauthorized access to protected information.

The vulnerability of the Kryptowire Jenkins automation server plugin relates to the storage of keys in an unencrypted form in the file org.aerogear.kryptowire.GlobalConfigurationImpl.xml. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected...

The vulnerability of the Django web application software, related to insufficient validation of input data, allows attackers to trigger service failures.

The vulnerability of the Django web application framework is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures...

The vulnerability of the Graphics component in Windows operating systems allows attackers to exploit their privileges.

The vulnerability of the Graphics component in Windows operating systems is related to buffer overflows in dynamic memory. Exploiting this vulnerability can allow an attacker to gain increased privileges...

The vulnerability of the Windows Notification Service (WNS), a notification service for Windows operating systems, allows a perpetrator to escalate their privileges.

The vulnerability of the Windows Notification Service WNS on Windows operating systems relates to the possibility of memory exploitation after deallocation. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the Windows SmartScreen security function in Microsoft Windows operating systems allows a hacker to circumvent existing security restrictions.

The vulnerability of the Windows SmartScreen security function in Microsoft Windows systems relates to a breach of data protection mechanisms. Exploiting this vulnerability can allow an attacker, operating remotely, to circumvent existing security restrictions...

The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Server Subscription Edition, and the Microsoft SharePoint Foundation software for electronic document management lies in authentication procedures that allow attackers to carry out spoofing attacks.

The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Server Subscription Edition, and the Microsoft SharePoint Foundation software relates to deficiencies in authentication procedures. Exploiting this vulnerability can allow attackers to carry out spear-phishing attacks remotely...

The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Server Subscription Edition, and Microsoft SharePoint Enterprise Server relates to improper authorization, allowing a perpetrator to execute arbitrary code.

The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Server Subscription Edition, and Microsoft SharePoint Enterprise Server is related to improper authentication. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of the Remote Desktop Client for Windows operating systems, related to access control deficiencies, allows a perpetrator to execute arbitrary code.

The vulnerability of the Remote Desktop Client on Windows operating systems is related to lack of access control mechanisms. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of the corporate platform Microsoft Teams, related to synchronization errors when using a shared resource, allows a perpetrator to increase their privileges.

The vulnerability of the corporate platform Microsoft Teams is related to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the Sensedia API Platform Tools for Jenkins servers, related to the storage of tokens in unencrypted form, allows attackers to gain unauthorized access to protected information.

The vulnerability of the Sensedia Api Platform tools for Jenkins servers relates to the storage of tokens in an unencrypted form within the file com.sensedia.configuration.SensediaApiConfiguration.xml. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to...

The vulnerability of the gf_filter_pid_reconfigure_task_discard() function in the src/filter_core/filter_pid.c file of the GPAC multimedia platform allows a intruder to cause a service failure by terminating the application abnormally or executing arbitrary code.

The vulnerability of the gffilterpidreconfiguretaskdiscard function in the src/filtercore/filterpid.c file of the multimedia platform GPAC is related to the issue where the output of the operation goes beyond the buffer boundaries in memory, due to a pointer that has reached its expiration time...

The vulnerability of the Python Requests HTTP request library allows a hacker to gain unauthorized access to protected information.

The vulnerability of the Python Requests HTTP request library is related to insufficient protection of registration data. Exploiting this vulnerability allows a malicious actor to gain unauthorized access to protected information from a remote location...

The vulnerability of the User1st uTester plugin in the Jenkins automation server, related to the storage of tokens in unencrypted form, allows a malicious actor to gain unauthorized access to protected information.

The vulnerability of the User1st uTester plugin for the Jenkins automation server lies in the fact that tokens are stored in an unencrypted form in the file io.jenkins.plugins.user1st.utester.UTesterPlugin.xml. Exploiting this vulnerability could allow a malicious actor to gain unauthorized acces...

The vulnerability of the MPEG-2 Video Extension codec in Microsoft Windows operating systems allows a perpetrator to execute arbitrary code.

The vulnerability of the MPEG-2 Video Extension codec in Microsoft Windows operating systems relates to the possibility of exploiting memory after it is freed. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of the Dead Man’s Snitch plugin in Jenkins servers, related to the storage of tokens in unencrypted form, allows attackers to gain unauthorized access to protected information.

The vulnerability of the Dead Man’s Snitch plugin in the Jenkins automation server lies in the fact that tokens are stored in an unencrypted form in the config.xml file. Exploiting this vulnerability allows a malicious actor to gain unauthorized access to protected information...

The vulnerability of the gf-media-import function in the MP4Box utility of the GPAC multimedia platform allows a hacker to cause a service failure or execute arbitrary code.

The vulnerability of the gf-media-import function in the MP4Box utility of the GPAC multimedia platform is related to a buffer overflow attack. Exploiting this vulnerability can allow an attacker to cause a service failure or execute arbitrary code...

The vulnerability of the cross-platform software development framework Qt, related to a predictable initial number in the pseudorandom number generator, allows a hacker to bypass authentication.

The vulnerability of the cross-platform software development framework Qt is related to a predictable initial number in the pseudorandom number generator. Exploiting this vulnerability can allow an attacker to bypass authentication...

The vulnerability of the Animation component in the Google Chrome browser allows a hacker to execute arbitrary code.

The vulnerability of the Animation component in Google Chrome browser relates to the use of memory after deallocation. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

The vulnerability of the SICAM TOOLBOX II engineering software, related to incorrect verification of certificates, allows a perpetrator to execute a “man-in-the-middle” type attack.

The vulnerability of the SICAM TOOLBOX II engineering software is related to improper verification of the TLS certificate. Exploiting this vulnerability could allow a remote attacker to execute a “man-in-the-middle” type attack...

The vulnerability of the Wlan AP Driver software driver of MediaTek’s microprogramming chips allows a hacker to execute arbitrary code.

The vulnerability of the Wlan AP Driver software driver from MediaTek is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

The vulnerability of the DumpScreen2RGB() function (gif2rgb.c) in the GIFLIB library allows a hacker to trigger a service denial.

The vulnerability of the DumpScreen2RGB function gif2rgb.c in the GIFLIB library is related to buffer overflow in the queue. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability in the virtual graphics adapter VMSVGA of the Oracle VM VirtualBox software allows a hacker to escalate their privileges and execute arbitrary code.

The vulnerability of the Virtual Graphics Adapter VMSVGA in the Oracle VM VirtualBox virtualization software is related to deficiencies in access control. This vulnerability allows a malicious actor to enhance their privileges and execute arbitrary code...

The vulnerability of the gf_filter_pid_get_packet function in the MP4Box utility of the GPAC multimedia platform allows a intruder to cause a service failure or execute arbitrary code.

The vulnerability of the gffilterpidgetpacket function in the MP4Box utility of the GPAC multimedia platform is related to the pointer being set to an expired value. Exploiting this vulnerability could allow a attacker to cause service failures or execute arbitrary code...

The vulnerability of the pgAdmin 4 database management tool lies in the redirection of the URL to an unreliable website, allowing a hacker to redirect users to any given URL address.

The vulnerability of the pgAdmin 4 database management tool is related to the redirection of the URL to an unreliable website. Exploiting this vulnerability allows a malicious actor to redirect users to an arbitrary URL address...

The vulnerability of the Sherpa Orchestrator component of the Sherpa RPA process automation platform allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the Sherpa Orchestrator component of the Sherpa RPA process automation platform is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of...

The vulnerability of the Windows Routing and Remote Access Service (RRAS) component in operating systems allows attackers to execute arbitrary code.

The vulnerability of the Windows Routing and Remote Access Service RRAS component in operating systems is related to a memory reclamation error. Exploiting this vulnerability could allow an attacker to execute arbitrary code remotely...

The vulnerability of the fromGstDhcpSetSer() function (/goform/GstDhcpSetSer) in the software for Tenda FH1201 routers allows a attacker to execute arbitrary code or cause a service failure.

The vulnerability of the fromGstDhcpSetSer function /goform/GstDhcpSetSer in the Tenda FH1201 router software is related to the operation that goes beyond the buffer in memory when processing the dips parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or...

The vulnerability of the fromNatlimit() function (/goform/Natlimit) in the Tenda FH451 router software allows a hacker to execute arbitrary code or cause service failures.

The vulnerability of the fromNatlimit function /goform/Natlimit in the Tenda FH451 router’s microprogramming software is related to the operation that goes beyond the buffer boundaries in memory when processing the page parameter. Exploiting this vulnerability allows a remote attacker to execute...

The vulnerability of the NetMRI network monitoring program lies in the improper restriction of the path name to the restricted access directory, allowing attackers to read arbitrary files.

The vulnerability of the NetMRI network monitoring program lies in the improper restriction of the path name to the restricted-access directory. Exploiting this vulnerability allows a malicious actor to read arbitrary files...

The vulnerability of the SMB protocol implementation of the IBM Storage Scale cluster file system allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the SMB protocol implementation in the IBM Storage Scale cluster file system is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the NetMRI network monitoring program lies in its failure to protect the SQL query structure, allowing attackers to execute arbitrary code.

The vulnerability of the NetMRI network monitoring program lies in the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the sun8i-ce_cipher_prepare() function in the drivers/crypto/allwinner/sun8i-ce/sun8i-ce-cipher.c module of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the sun8i-cecipherprepare function in the drivers/crypto/allwinner/sun8i-ce/sun8i-ce-cipher.c module of the Linux operating system is related to improper release of resources. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the Win32 Kernel Subsystem in Windows operating systems, which allows attackers to increase their privileges

The vulnerability of the Win32 Kernel Subsystem in Windows operating systems is related to a memory reclamation error. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the fromwebExcptypemanFilter() function (/goform/webExcptypemanFilter) in the Tenda FH1202 router software allows a hacker to execute arbitrary code or cause service failures.

The vulnerability of the fromwebExcptypemanFilter function /goform/webExcptypemanFilter of the Tenda FH1202 router software is related to the execution of operations outside the buffer in memory when processing the page parameter. Exploiting this vulnerability could allow a malicious actor to...

The vulnerability of the frmL7ProtForm()/goform/L7Prot function in the microprogramming software for Tenda FH1201 allows a hacker to execute arbitrary code or cause service failures.

The vulnerability of the frmL7ProtForm/goform/L7Prot function in the Tenda FH1201 router’s microprogramming software is related to the execution of operations outside the buffer in memory when processing the page parameter. Exploiting this vulnerability allows a remote attacker to execute arbitra...

The vulnerability of the “Tekon” SCADA system, which exists due to the lack of measures to neutralize specific elements, allows for the execution of arbitrary codes.

The vulnerability of the “Tekon” SCADA system exists due to the lack of measures taken to neutralize its special elements. Exploiting this vulnerability allows a remote attacker to execute arbitrary codes...

The vulnerability of the pdf_ferror() function (devices/vector/gdevpdf.c) in the GhostPDL framework, which allows a attacker to trigger a service failure.

The vulnerability of the pdfferror function devices/vector/gdevpdf.c in the GhostPDL framework is related to pointer manipulation. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

The vulnerability of Microsoft Configuration Manager software for managing IT infrastructure lies in the lack of protective measures for the SQL query structure, allowing attackers to execute arbitrary code.

The vulnerability of Microsoft Configuration Manager software for managing IT infrastructure is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of the setDiagnosisCfg() function in the cstecgi.cgi script of the mesh-system TOTOLink T6 software allows a intruder to execute arbitrary code.

The vulnerability of the setDiagnosisCfg function in the cstecgi.cgi script of the mesh-system TOTOLink T6 software is related to the failure to take measures to neutralize special elements during the processing of the ip parameter. Exploiting this vulnerability allows a remote attacker to execut...

The vulnerability of the “Tekon” SCADA system, related to errors in access control, allows a intruder to gain unauthorized access to protected information.

The vulnerability of the “Tekon” SCADA system, related to access control errors. Exploiting this vulnerability could allow an intruder operating remotely to gain unauthorized access to protected information...

The vulnerability of the Golang programming language, related to improper validation of input data, allows attackers to execute arbitrary code.

The vulnerability of the Golang programming language is related to incorrect validation of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the fromAdvSetWan() function (/goform/AdvSetWan) in the Tenda FH1201 router software allows a attacker to execute arbitrary code or cause service interruptions.

The vulnerability of the fromAdvSetWan function /goform/AdvSetWan of the Tenda FH1201 router software is related to the operation that goes beyond the buffer in memory when processing the PPPOepassword parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or...

The vulnerability of the fromPptpUserSetting() function (/goform/PPTPUserSetting) in the Tenda FH1202 router software allows a attacker to execute arbitrary code or cause service interruptions.

The vulnerability of the fromPptpUserSetting function /goform/PPTPUserSetting in the Tenda FH1202 router microprogramming system is related to the issue of the operation going beyond the buffer in memory when processing the delno parameter. Exploiting this vulnerability allows a malicious actor t...

Vulnerability of Windows operating systems, related to synchronization errors when using shared resources, allows attackers to escalate their privileges.

The vulnerability of Windows operating systems is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the formWrlsafeset() function (/goform/AdvSetWrlsafeset) in the Tenda FH1201 router software allows a attacker to execute arbitrary code or cause service interruptions.

The vulnerability of the formWrlsafeset function /goform/AdvSetWrlsafeset of the Tenda FH1201 router’s software lies in the fact that the operation may escape out of the buffer and into memory when processing the mitssid parameter. Exploiting this vulnerability could allow a remote attacker to...

The vulnerability of the COMP_DUMMY() function in the sound module/soc/mediatek/mt8195/mt8195-mt6359.c kernel of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the COMPDUMMY function in the sound/soc/mediatek/mt8195/mt8195-mt6359.c file of the Linux operating system’s kernel is related to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the corporate platform Microsoft Teams, which arises from the improper handling of insufficient permissions or privileges, allows a perpetrator to elevate their privileges.

The vulnerability of the corporate platform Microsoft Teams is related to the improper handling of insufficient permissions or privileges. Exploiting this vulnerability can allow a malicious actor to enhance their privileges remotely...

The vulnerability of the Windows Search service on Windows operating systems allows attackers to exploit their privileges.

The vulnerability of the Windows Search service in Microsoft Windows operating systems relates to the possibility of exploiting memory after it is freed. Exploiting this vulnerability could allow an attacker to increase their privileges...

Vulnerability of Microsoft Excel, Microsoft Office, Microsoft 365 Apps for Enterprise, and Microsoft Office Online Server packages, which allows a perpetrator to execute arbitrary code.

The vulnerability of Microsoft Excel, Microsoft Office, Microsoft 365 Apps for Enterprise, and Microsoft Office Online Server programs is related to the use of memory after it is released. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the formSetMacFilterCfg() function (/goform/setMacFilterCfg) in the Tenda AC1206 router software allows a attacker to execute arbitrary code or cause service interruptions.

The vulnerability of the formSetMacFilterCfg function /goform/setMacFilterCfg of the Tenda AC1206 router’s microprogramming software is related to the issue where the operation’s output escapes the buffer and enters memory when processing the deviceList parameter. Exploiting this vulnerability...