74701 matches found
The vulnerability of the Git-based software platform for collaborative code development in GitLab Enterprise Edition, related to deficiencies in access control, allows attackers to circumvent security restrictions.
The vulnerability of the Git-based software platform for collaborative code development in GitLab Enterprise Edition is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to bypass security restrictions remotely...
The vulnerability of Mozilla Firefox’s Content Security Policy mechanism allows attackers to circumvent security restrictions and gain unauthorized access to protected information.
The vulnerability of Mozilla Firefox’s Content Security Policy mechanism is related to insufficient protection of service data. Exploiting this vulnerability can allow an attacker to bypass security restrictions and gain unauthorized access to protected information...
The vulnerability of the chacha20_poly1305_set_key() function in the libssh library, which allows a hacker to disclose sensitive information
The vulnerability of the chacha20poly1305setkey function in the libssh library is related to the lack of checking for the returned value. Exploiting this vulnerability could allow a malicious actor to disclose the protected information...
The vulnerability in the implementation of the TLS protocol by Mozilla Firefox allows a perpetrator to circumvent existing security restrictions and gain unauthorized access to protected information.
The vulnerability in the TLS protocol implementation of Mozilla Firefox is related to errors in the certificate validation process. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions and gain unauthorized access to protected information...
The vulnerability of the pki_key_to_blob() function in the libssh library allows a hacker to disclose sensitive information or cause service failures.
The vulnerability of the pkikeytoblob function in the libssh library is related to a memory reclamation error. Exploiting this vulnerability could allow an attacker to disclose sensitive information or cause service failures...
The vulnerability of the Git-based software platform for collaborative code development on GitLab stems from the lack of protective measures for website structures. This allows attackers to circumvent security restrictions and perform cross-site scripting attacks.
The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to bypass security restrictions and perform cross-site scripting...
The vulnerability of the microprogrammed software of Edimax EW-7438RPn Mini wireless signal amplifiers arises from the lack of measures taken to neutralize the special elements used in the operating system’s command structure. This allows a hacker to execute arbitrary commands.
The vulnerability of the microprogrammed software of Edimax EW-7438RPn Mini wireless signal amplifiers is related to the lack of measures taken to neutralize special elements used in the operating system’s command processing for handling the sysCmd parameter. Exploiting this vulnerability allows ...
The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.
The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.
The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, which allows attackers to execute XSS attacks.
The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to carry out XSS attacks remotely...
The vulnerability of the multimedia platform GPAC, related to the assignment of the NULL pointer, allows a perpetrator to trigger a service failure.
The vulnerability of the multimedia platform GPAC is related to the assignment of the NULL pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.
The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
The vulnerability of the multimedia platform GPAC, related to writing outside of memory boundaries, allows a hacker to cause a service failure.
The vulnerability of the multimedia platform GPAC is related to writing beyond the memory boundaries. Exploiting this vulnerability can allow a hacker to cause a service failure...
The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.
The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
The vulnerability of the CI/CD application integration and delivery system provided by JetBrains TeamCity lies in the lack of security measures for website structure protection. This allows attackers to perform cross-site scripting attacks.
The vulnerability of the CI/CD application integration and delivery system of JetBrains TeamCity is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...
The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.
The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
The vulnerability of the GraphQL API interface of the software platform based on git for collaborative code development on GitLab allows a hacker to perform a CSRF attack.
The vulnerability of the GraphQL API interface of a software platform based on Git for collaborative code development on GitLab is related to the manipulation of inter-site requests. Exploiting this vulnerability allows an attacker operating remotely to perform a CSRF attack...
The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.
The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, which allows attackers to execute XSS attacks.
The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to carry out XSS attacks remotely...
The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, which allows attackers to execute XSS attacks.
The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability can allow a malicious actor to carry out XSS attacks remotely...
The vulnerability of the CI/CD application integration and delivery system provided by JetBrains TeamCity, which stems from the lack of authentication, allows attackers to compromise the confidentiality of protected information.
The vulnerability of the CI/CD application integration and delivery system of JetBrains TeamCity is related to the absence of authentication. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality of the protected information...
The vulnerability of the sub_4091AC() function in D-Link DIR-825 router microprogramming software allows a hacker to induce a service failure.
The vulnerability of the sub4091AC function in D-Link DIR-825 router microprogramming software is related to the output of operations that go beyond the buffer in memory. Exploiting this vulnerability can allow a malicious actor to cause a service failure by sending a specially crafted POST reque...
The vulnerability of the IBM InfoSphere Information Server software platform, related to the unlimited distribution of resources, allows a hacker to cause service failures.
The vulnerability of the IBM InfoSphere Information Server software platform is related to the unlimited distribution of resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...
The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.
The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, which allows attackers to execute XSS attacks.
The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to carry out XSS attacks remotely...
The vulnerability of the cv_close() function in the Dell ControlVault3 security driver package allows a attacker to execute arbitrary code or cause a service failure.
The vulnerability of the cvclose function in the Dell ControlVault3 security driver suite is related to the release of an incorrect pointer. Exploiting this vulnerability could allow an attacker to execute arbitrary code or cause service failures...
The vulnerability of the Performance Monitor function in the Continuous Integration and Delivery applications of JetBrains TeamCity allows attackers to perform cross-site scripting attacks.
The vulnerability of the Performance Monitor function in the Continuous Integration and Delivery applications of JetBrains TeamCity is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability could allow a malicious actor to perform cross-site scriptin...
The vulnerability of the IBM InfoSphere Information Server software platform’s data integration module lies in the incorrect limitation of the path name for the restricted access catalog, allowing attackers to read arbitrary files.
The vulnerability of the IBM InfoSphere Information Server software integration platform is related to incorrect restrictions on the path name to the restricted-access catalog. Exploiting this vulnerability allows a malicious actor to remotely read arbitrary files by sending a specially crafted...
The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.
The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, which allows attackers to execute XSS attacks.
The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to carry out XSS attacks remotely...
The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, which allows attackers to execute XSS attacks.
The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability can allow a malicious actor to carry out XSS attacks remotely...
The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.
The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
The vulnerability of hybrid cloud solutions for managing thin clients in the Dell Wyse Management Suite stems from deficiencies in authentication mechanisms, allowing unauthorized access to protected information.
The vulnerability of the hybrid cloud solution for managing thin clients in the Dell Wyse Management Suite is related to deficiencies in the authentication mechanism. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected...
The vulnerability of the multimedia platform GPAC, related to the swapping of the zero pointer, allows a perpetrator to trigger a service failure.
The vulnerability of the multimedia platform GPAC is related to the swapping of the zero pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the IBM InfoSphere Information Server software platform, related to deficiencies in access control, allows a perpetrator to gain access to delete data.
The vulnerability of the IBM InfoSphere Information Server software platform is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access and delete data...
The vulnerability of hybrid cloud solutions for managing thin clients in the Dell Wyse Management Suite lies in the lack of measures taken to protect the website structure. This allows attackers to perform cross-site scripting attacks (XSS).
The vulnerability of the hybrid cloud solution for managing thin clients in the Dell Wyse Management Suite is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks XSS remotely...
The vulnerability of the sub_403794() function in the hedwig.cgi scenario of D-Link DIR-815 router software allows a hacker to execute arbitrary code or cause a service failure.
The vulnerability of the sub403794 function in the hedwig.cgi script of the D-Link DIR-815 router software is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause a service failure...
The vulnerability of the built-in web server boa (/boa/formWSC) in TOTOLINK N150RT router’s microprogramming software allows a intruder to execute arbitrary commands.
The vulnerability of the built-in web server boa /boa/formWSC of TOTOLINK N150RT routers is related to the failure to take measures to neutralize special elements used in the operating system’s commands when processing the targetAPSsid parameter. Exploiting this vulnerability allows a remote...
The vulnerability of the Mattermost instant messaging application, related to deficiencies in authentication procedures, allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the Mattermost instant messaging application is related to deficiencies in authentication procedures. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...
The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.
The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
The vulnerability of hybrid cloud solutions for managing thin clients in the Dell Wyse Management Suite arises from incorrect restrictions on path names to the catalog. This allows attackers to gain unauthorized access to protected information.
The vulnerability of the hybrid cloud solution for managing thin clients in the Dell Wyse Management Suite is related to an incorrect limitation on the path name to the catalog. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protect...
The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.
The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
The vulnerability of the microprogrammed software of Edimax EW-7438RPn Mini wireless signal amplifiers is related to insufficient verification of input data. This allows attackers to enhance their privileges and execute arbitrary commands.
The vulnerability of the microprogramming software of Edimax EW-7438RPn Mini wireless signal amplifiers is related to insufficient checking of input data during the processing of the final command /goform/mp. Exploiting this vulnerability can allow a remote attacker to enhance their privileges an...
The vulnerability of the yasm_section_bcs_append() function in the YASM assembler allows a hacker to cause a service failure.
The vulnerability of the yasmsectionbcsappend function in the YASM assembler is related to the assignment of a NULL pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability in the prog.fcgi script of D-Link DIR-867 router software allows a hacker to cause a service failure.
The vulnerability of the prog.fcgi script in D-Link DIR-867 router microprogramming software is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow a malicious actor to cause service failures...
The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.
The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
The vulnerability of the cv_send_blockdata() function in the Dell ControlVault3 security driver package allows a attacker to disclose protected information.
The vulnerability of the cvsendblockdata function in the Dell ControlVault3 security driver suite relates to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to disclose protected information...
The vulnerability of the CI/CD application integration and delivery system provided by JetBrains TeamCity lies in the lack of security measures for website structure protection. This allows attackers to perform cross-site scripting attacks.
The vulnerability of the CI/CD application integration and delivery system of JetBrains TeamCity is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...
The vulnerability of the Thunderbird email client, related to errors in information representation by the user interface, allows attackers to perform spoofing attacks.
The vulnerability of the Thunderbird email client is related to errors in information representation by the user interface. Exploiting this vulnerability can allow a remote attacker to carry out spoofing attacks...
The vulnerability of the software deployment plugin and the GLPI Inventory network is related to incorrect restrictions on the path to the restricted-access catalog, allowing attackers to gain access to protected information.
The vulnerability of the software deployment and GLPI Inventory network component relates to incorrect restrictions on the path name to the restricted access catalog. Exploiting this vulnerability could allow an attacker to gain access to protected information...