The vulnerability of the access controller service allows attackers to exploit the Capability Access Management Service (camsvc) of Windows operating systems, thereby enabling them to increase their privileges.

The vulnerability of the access controller service related to the Capability Access Management Service camsvc on Windows operating systems is associated with competitive access to resources during a “race condition”. Exploiting this vulnerability can allow an attacker to enhance their privileges...

The vulnerability of the fromSafeUrlFilter() function (/goform/fromSafeUrlFilter) in the Tenda FH1201 router software allows a perpetrator to execute arbitrary code or cause service failures.

The vulnerability of the fromSafeUrlFilter function /goform/fromSafeUrlFilter in the Tenda FH1201 router software is related to the operation that goes beyond the buffer in memory when processing the page parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrary code ...

The vulnerability of the ath11k_core_halt() function in the drivers/net/wireless/ath/ath11k/core.c kernel module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the ath11kcorehalt function in the drivers/net/wireless/ath/ath11k/core.c kernel module of the Linux operating system is related to damage to a node in the arvifs list due to incorrect initialization of resources. Exploiting this vulnerability can allow an attacker to cause a...

The vulnerability of the Microsoft Visual Studio software development tool lies in the improper definition of symbolic links before accessing a file, which allows an attacker to exploit their privileges.

The vulnerability of the Microsoft Visual Studio software relates to the improper definition of symbolic links before accessing a file. Exploiting this vulnerability can allow an attacker, operating remotely, to increase their privileges...

The vulnerability of the “Tekon” SCADA system, related to the failure to implement protective measures for the SQL query structure, allows attackers to gain unauthorized access to protected information.

The vulnerability of the SCADA system “Tekon” is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected information...

The vulnerability of the Windows Media component in Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Windows Media component in Windows operating systems is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the “Tekon” SCADA system, which stems from the use of strictly encrypted account data, allows a intruder to enhance their privileges and execute arbitrary codes.

The vulnerability of the “Tekon” SCADA system is related to the use of strictly encrypted account data. Exploiting this vulnerability can allow a malicious actor to increase their privileges and execute arbitrary codes remotely...

The vulnerability of the fromRouteStatic() function (/goform/fromRouteStatic) in the Tenda FH1201 router software allows a attacker to execute arbitrary code or cause service failures.

The vulnerability of the fromRouteStatic function /goform/fromRouteStatic in the Tenda FH1201 router software lies in the fact that the operation escapes the buffer boundaries and is stored in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause servic...

The vulnerability of the NetMRI network monitoring program, related to the failure to take measures for data cleaning at the management level, allows a perpetrator to execute arbitrary commands.

The vulnerability of the NetMRI network monitoring program lies in the lack of measures taken to clean data at the management level. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

The vulnerability of the NetMRI network monitoring program lies in its failure to protect the SQL query structure, allowing attackers to execute arbitrary code.

The vulnerability of the NetMRI network monitoring program lies in the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the setTracerouteCfg() function in the cstecgi.cgi script of the mesh-system TOTOLink T6 software allows a intruder to execute arbitrary code.

The vulnerability of the setTracerouteCfg function in the cstecgi.cgi script of the mesh-system TOTOLink T6 software is related to the failure to eliminate special elements during the processing of the command parameter. Exploiting this vulnerability allows a malicious actor to execute arbitrary...

The vulnerability of the IBM Storage Scale cluster file system, related to the lack of data cleaning measures at the management level, allows attackers to escalate their privileges and execute arbitrary commands.

The vulnerability of the IBM Storage Scale cluster file system is related to the lack of measures taken at the management level to clean up data. Exploiting this vulnerability can allow a malicious actor to enhance their privileges and execute arbitrary commands remotely...

The vulnerability in the `drivers/net/wireless/ath/ath12k/mhi.c` module of the Linux operating system allows a hacker to execute arbitrary commands.

The vulnerability in the drivers/net/wireless/ath/ath12k/mhi.c module of the Linux operating system is related to the insertion of commands into the firmware during its recovery process. Exploiting this vulnerability allows an attacker to execute arbitrary commands...

The vulnerability of the Azure Service Fabric distributed system, related to incorrect definition of the link before accessing the file, allows attackers to escalate their privileges.

The vulnerability of the Azure Service Fabric distributed system is related to an incorrect definition of the link before accessing the file. Exploiting this vulnerability can allow attackers to increase their privileges...

The vulnerability of the dev_loss_tmo_callbk() function in the drivers/scsi/lpfc/lpfc_hbadisc.c module of the Linux kernel allows a hacker to trigger a service failure.

The vulnerability of the devlosstmocallbk function in the drivers/scsi/lpfc/lpfchbadisc.c module of the Linux kernel is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the “Tekon” SCADA system, related to the lack of authentication for critical functions, allows attackers to execute arbitrary codes and increase their privileges.

The vulnerability of the “Tekon” SCADA system is related to the lack of authentication for critical functions. Exploiting this vulnerability allows an intruder to execute arbitrary commands and increase their privileges...

The vulnerability of the “Tekon” SCADA system, related to the transmission of accounting data in unencrypted form, allows a perpetrator to carry out a MITM attack.

The vulnerability of the SCADA system “Tekon” is related to the transmission of accounting data in unencrypted form. Exploiting this vulnerability could allow a malicious actor to carry out a MITM attack...

The vulnerability of the parse.ParseUnverified() function in the golang-jwt library for handling web tokens allows attackers to disclose sensitive information that should be protected.

The vulnerability of the parse.ParseUnverified function in the golang-jwt library for handling web tokens in the Go programming language is related to uncontrolled resource consumption. Exploiting this vulnerability allows an attacker to disclose protected information...

The vulnerability of Adobe Audition, related to access to a memory cell located beyond the end of the buffer, allows a hacker to trigger a service failure.

The vulnerability of Adobe Audition relates to access to a memory cell located beyond the end of the buffer. Exploiting this vulnerability can allow an attacker to trigger a service failure using a specially created malicious file...

The vulnerability of the Windows Routing and Remote Access service (RRAS) on Microsoft Windows operating systems allows a perpetrator to execute arbitrary code.

The vulnerability of the Windows Routing and Access Service RRAS on Microsoft Windows operating systems is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the Microsoft Office suite relates to buffer overflows in dynamic memory, allowing an attacker to execute arbitrary code.

The vulnerability of the Microsoft Office suite is related to overflowing buffers in dynamic memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of the sub_410DDC() function in the web interface of the D-Link DIR-825 router’s microprogramming software allows a hacker to execute arbitrary code.

The vulnerability of the sub410DDC function in the web interface of the D-Link DIR-825 router’s microprogramming software is related to the reading of data beyond the buffer boundaries in memory during the processing of the language parameter. Exploiting this vulnerability allows a remote attacke...

The vulnerability in the FTP server’s web interface of Wing allows a hacker to elevate their privileges and execute arbitrary code.

The vulnerability of the FTP server’s web interface in Wing involves the insertion of a zero byte %00 into the user’s username string during the processing of the loginok.html endpoint. Exploiting this vulnerability allows an attacker to enhance their privileges and execute arbitrary code...

The vulnerability of Microsoft Office packages, Word, and 365 Apps for Enterprise lies in the possibility of exploiting memory after it is freed, allowing an attacker to execute arbitrary code.

The vulnerability of Microsoft Office packages, Word, and 365 Apps for Enterprise lies in the ability to exploit memory after it is freed. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of Microsoft Office packages, Word, and 365 Apps for Enterprise lies in the possibility of exploiting memory after it is freed, allowing an attacker to execute arbitrary code.

The vulnerability of Microsoft Office packages, Word, and 365 Apps for Enterprise lies in the ability to exploit memory after it is freed. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the Input Method Editor (IME) component of Microsoft Windows, which allows a hacker to gain elevated privileges

The vulnerability of the Input Method Editor IME component in Microsoft Windows is related to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker to gain increased privileges remotely...

The vulnerability of the Laravel Translation Manager PHP framework allows attackers to perform cross-site scripting attacks.

The vulnerability of the Laravel Translation Manager PHP framework is related to the lack of security measures for handling web page structures. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

The vulnerability of Adobe Illustrator, related to buffer overflow in the stack, allows a hacker to execute arbitrary code.

The vulnerability of Adobe Illustrator’s graphic editor is related to buffer overflow in the stack. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file...

The vulnerability of the Adobe Illustrator graphic editor, related to access to an uninitialized pointer, allows a hacker to execute arbitrary code.

The vulnerability of Adobe Illustrator’s graphic editor is related to access to an uninitialized pointer. Exploiting this vulnerability could allow a hacker to execute arbitrary code using a specially created file...

The vulnerability of the Fast FAT File System Driver for the Windows operating system allows a hacker to gain increased privileges.

The vulnerability of the Fast FAT File System Driver for the Windows operating system is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain increased privileges...

The vulnerability of the BitLocker data protection function in Microsoft Windows operating systems allows attackers to circumvent existing security restrictions.

The vulnerability of the BitLocker data protection function in Microsoft Windows operating systems is related to a breach of the data protection mechanism. Exploiting this vulnerability can allow attackers to circumvent existing security restrictions...

The vulnerability of the PHP library TCPDF, related to deficiencies in the deserialization mechanism, allows attackers to compromise the integrity and accessibility of the protected information.

The vulnerability of the PHP library TCPDF is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability could allow an attacker to compromise the integrity and accessibility of the protected information...

The vulnerability of the Windows Hyper-V hardware virtualization system of Microsoft Windows operating systems allows a perpetrator to trigger a service failure.

The vulnerability of the Windows Hyper-V hardware virtualization technology in Microsoft Windows operating systems is related to synchronization errors. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of the Setup and Boot Event Collection function in Microsoft Windows systems allows a perpetrator to execute arbitrary code.

The vulnerability of the Setup and Boot Event Collection function in Microsoft Windows systems is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

The vulnerability of the PHP Snappy library relates to incorrect restrictions on the path to the restricted directory. This allows attackers to gain unauthorized access to local files and directories.

The vulnerability of the PHP Snappy library is related to an incorrect limitation on the path name for the restricted access directory. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to local files and directories on the server when...

The vulnerability of the graphical SFTP and SCP client for the Windows operating system, WinSCP, arises from incorrect path name restrictions for access-controlled directories. This allows attackers to create a special file and control its path on a remote server.

The vulnerability of the graphical SFTP and SCP client programs for the Windows operating system is related to incorrect path name restrictions for access to restricted directories. Exploiting this vulnerability allows an attacker to create a special file and control its path on a remote server...

The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in its ability to read data beyond the buffer in memory, allowing attackers to exploit this to disclose protected information.

The vulnerability of Adobe After Effects’ video and dynamic image editing software relates to reading data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to disclose protected information using a specially created file...

The vulnerability of the Adobe Substance 3D Viewer application, which allows for the reading beyond the buffer in memory, enables attackers to disclose protected information.

The vulnerability of the Adobe Substance 3D Viewer application for viewing and editing 3D files is related to reading beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to disclose protected information using a specially created file...

The vulnerability of the Shell command shell in Windows operating systems, which allows attackers to exploit their privileges

The vulnerability of the Shell command shell in Windows operating systems is related to a numerical truncation error. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the Storage Port Driver driver for the Microsoft Windows operating system, which allows a hacker to disclose protected information

The vulnerability of the Microsoft Windows operating system’s Storage Port Driver relates to operations that exceed the buffer limits in memory. Exploiting this vulnerability can allow an attacker to disclose sensitive information that is protected by security measures...

The vulnerability of software for discrete event simulation and automation in Rockwell Automation Arena lies in insufficient validation of input data, allowing a perpetrator to execute arbitrary code.

The vulnerability of software for discrete event simulation and automation in Rockwell Automation Arena is related to insufficient verification of input data. Exploiting this vulnerability can allow attackers to execute arbitrary code using a specially created DOE file...

Vulnerability of Cryptographic Services in Windows operating systems, allowing attackers to disclose protected information

The vulnerability of Cryptographic Services in Windows operating systems is related to insufficiently secure data encryption. Exploiting this vulnerability can allow a malicious actor to disclose protected information remotely...

The vulnerability of the `addImage` method in the library for creating PDF files (jsPDF) allows a hacker to induce a service failure.

The vulnerability of the addImage method in the library used for creating PDF files by jsPDF is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service interruptions by uploading a payload to the server...

The vulnerability of the corporate VPN software Pritunl Client, related to insecure management of privileges, allows a hacker to elevate their privileges to the root level.

The vulnerability of the corporate VPN software Pritunl Client is related to insecure management of privileges. Exploiting this vulnerability can allow an attacker to elevate their privileges to the root level...

The vulnerability of Adobe Illustrator’s graphic editor, related to reading data beyond the buffer in memory, allows attackers to exploit this to disclose protected information.

The vulnerability of Adobe Illustrator graphic editor is related to reading beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to disclose protected information using a specially created file...

The vulnerability of Adobe Illustrator’s graphic editor, related to reading data beyond the buffer in memory, allows attackers to exploit this to disclose protected information.

The vulnerability of Adobe Illustrator graphic editor is related to reading beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to disclose protected information using a specially created file...

The vulnerability of Adobe Illustrator, related to writing beyond the buffer boundaries, allows a hacker to execute arbitrary code.

The vulnerability of Adobe Illustrator graphic editor is related to writing beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to execute arbitrary code using a specially created file...

The vulnerability of the Input Method Editor (IME) component of Microsoft Windows, which allows a hacker to gain elevated privileges

The vulnerability of the Input Method Editor IME component in Microsoft Windows lies in the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow attackers to gain increased privileges...

The vulnerability of Microsoft Edge browsers, related to deficiencies in access control, allows attackers to disclose protected information.

The vulnerability of Microsoft Edge relates to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor to disclose protected information...

The vulnerability of the Windows SSDP service on Microsoft Windows operating systems allows attackers to escalate their privileges.

The vulnerability of the Windows SSDP service on Microsoft Windows operating systems is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...