The vulnerability of the Udisks component in the Linux-PAM authentication module allows a hacker to elevate their privileges to the level of root.

The vulnerability of the Udisks component in the Linux-PAM authentication module is related to configuration errors. Exploiting this vulnerability could allow an attacker to elevate their privileges to the root level using the SSH protocol...

The vulnerability of Intel microprogramming software, related to information disclosure, allows attackers to gain unauthorized access to protected information.

The vulnerability of Intel microprogramming software is related to the disclosure of information. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...

Vulnerability of the betopff_init() function in the drivers/hid/hid-betopff.c module – The driver for the input device subsystem of the Linux kernel, which allows a hacker to cause a service failure.

Vulnerability of the betopffinit function in the drivers/hid/hid-betopff.c module – The driver for the user interface devices in the Linux kernel is vulnerable due to buffer overflow attacks. Exploiting this vulnerability could allow an attacker to cause a system failure...

The vulnerability of the WinRAR file archiver, related to incorrect restrictions on the path name of the restricted directory, allows a hacker to execute arbitrary code.

The vulnerability of the WinRAR file archiver is related to incorrect restrictions on the path name of the restricted directory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code upon opening a specially crafted file...

The vulnerability of the __poke_user() function in the arch/s390/kernel/ptrace.c module of the Linux operating system allows a hacker to gain access to protected information or cause a service failure.

The vulnerability of the pokeuser function in the arch/s390/kernel/ptrace.c module of the Linux operating system is related to reading beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to access protected information or cause service interruptions...

The vulnerability of the blkTraceRemoveQueue() function in the kernel/trace/blktrace.c module, which supports kernel tracing in Linux operating systems, allows a hacker to gain access to protected information.

The vulnerability of the blkTraceRemoveQueue function in the kernel/trace/blktrace.c module, which supports kernel tracing in Linux operating systems, is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to gain access to protected...

The vulnerability in the `udf_symlink()` function of the `fs/udf/namei.c` module in the Linux kernel file system allows a attacker to cause a service failure.

The vulnerability of the udfsymlink function in the fs/udf/namei.c module of the Linux file system’s support for the file system is related to the dereferencing of the NULL pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerabilities in the software platforms for developing and managing online stores such as Magento Open Source, Adobe Commerce, and Adobe Commerce B2B allow attackers to bypass security restrictions.

The vulnerabilities of the software platforms for developing and managing online stores such as Magento Open Source, Adobe Commerce, and Adobe Commerce B2B are related to deficiencies in authentication procedures. Exploiting these vulnerabilities can allow attackers to bypass security restriction...

The vulnerability of the Adobe Experience Manager content and media data management system lies in the insufficient protection of the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

Vulnerability of the dpu_encoder_phys_init() function in the drivers/gpu/drm/msm/disp/dpu1/dpu_encoder.c module – This driver for supporting the Direct Rendering Infrastructure (DRI) of the Linux operating system allows a hacker to compromise the confidentiality, integrity, and accessibility of protected information.

Vulnerability of the dpuencoderphysinit function in the drivers/gpu/drm/msm/disp/dpu1/dpuencoder.c module – The driver for supporting Direct Rendering Infrastructure DRI in Linux kernel is vulnerable to synchronization errors when using shared resources. Exploiting this vulnerability could allow...

Vulnerability of the mcb_alloc_bus() function in the drivers/mcb/mcb-core.c module – The driver for supporting the MEN Chameleon Bus in the Linux operating system allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

Vulnerability of the mcballocbus function in the drivers/mcb/mcb-core.c module – The Linux kernel’s MEN Chameleon Bus driver relies on the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibilit...

The vulnerability of the cfg80211gen_new_ie() function in the net/wireless/scan.c module, which supports wireless communication in Linux kernels, allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the cfg80211gennewie function in the net/wireless/scan.c module, which supports wireless communication in Linux kernels, stems from the copying of buffers without checking the size of the input data a classic buffer overflow attack. Exploiting this vulnerability could allow a...

Vulnerability of the ath9k_htc_txstatus() function in the drivers/net/wireless/ath/ath9k/htc_drv_txrx.c file – This driver provides support for Atheros/Qualcomm wireless adapter devices in the Linux operating system. It can be exploited by attackers to cause service failures.

Vulnerability of the ath9khtctxstatus function in the drivers/net/wireless/ath/ath9k/htcdrvtxrx.c file – The Atheros/Qualcomm wireless adapter support driver for Linux operating systems has a vulnerability related to unvalidated array indexing. Exploiting this vulnerability could allow an attacke...

Vulnerability of the tcpm_pd_set() function in the drivers/usb/typec/tcpm/tcpm.c module – The driver for handling Type-C controller devices in Linux kernel, which allows a hacker to cause service failure.

Vulnerability of the tcpmpdset function in the drivers/usb/typec/tcpm/tcpm.c module – The driver that supports the Type-C controller interface in Linux kernel is vulnerable to a single-shift error. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the _GLOBAL_TOC function in the arch/powerpc/kvm/book3s_hv_rmhandlers.S module of the virtualization subsystem on the PowerPC platform in the Linux operating system allows a attacker to execute arbitrary code with elevated privileges or cause a service failure.

The vulnerability of the GLOBALTOC function in the arch/powerpc/kvm/book3shvrmhandlers.S module of the virtualization subsystem on the PowerPC platform in the Linux operating system is related to a buffer overflow based on a stack. Exploiting this vulnerability could allow an attacker to execute...

Vulnerability of the si_dpm_enable() function in the drivers/gpu/drm/amd/pm/powerplay/si_dpm.c module – A driver for supporting Direct Rendering Infrastructure (DRI) in AMD graphics cards for Linux operating systems, which allows a hacker to cause a service failure

Vulnerability of the sidpmenable function in the drivers/gpu/drm/amd/pm/powerplay/sidpm.c module – The driver for supporting Direct Rendering Infrastructure DRI in AMD graphics cards for Linux operating systems is vulnerable due to a buffer overflow vulnerability related to the assignment of the...

The vulnerability of the microchip-core component of the Linux operating system’s kernel, which allows a hacker to cause a service failure

The vulnerability of the microchip-core component of the Linux operating system’s kernel is related to the copying of buffers without checking the input data. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the Apache Druid analytical database lies in the redirection of URLs to an unreliable website. This allows attackers to redirect users to arbitrary URL addresses, execute XSS attacks, or perform SSRF attacks.

The vulnerability of the Apache Druid analytical database is related to the redirection of URLs to an unreliable website. Exploiting this vulnerability allows a malicious actor to redirect users to arbitrary URL addresses, perform XSS attacks, or carry out SSRF attacks...

The vulnerability of the bpf_jit_build_prologue() function in the arch/powerpc/net/bpf_jit_comp32.c network support module on the PowerPC platform of the Linux operating system allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the bpfjitbuildprologue function in the arch/powerpc/net/bpfjitcomp32.c file, a network support module for the PowerPC platform of the Linux operating system, relates to buffer overflow attacks. Exploiting this vulnerability could allow an attacker to compromise the...

The vulnerability of the reiserfs_rename() function in the fs/reiserfs/namei.c module of the Linux file system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the reiserfsrename function in the fs/reiserfs/namei.c module of the Linux file system support module is related to improper locking of resources. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of protecte...

The vulnerability of the dtSplitRoot() function in the fs/jfs/jfs_dtree.c module of the JFS file system support in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the dtSplitRoot function in the fs/jfs/jfsdtree.c module of the Linux operating system’s file system support module is related to unvalidated array indexing. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility ...

Vulnerability of the page_to_skb() function in the drivers/net/virtio_net.c module – The Linux kernel network adapter driver support mechanism, which allows an attacker to gain access to protected information

Vulnerability of the pagetoskb function in the drivers/net/virtionet.c module – The Linux kernel’s network adapter driver has a memory leak issue. Exploiting this vulnerability could allow an attacker to access protected information...

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of Microprogrammed Software in Modicon Controllers arises from improper external control of the name or file path during data loading, allowing attackers to compromise the confidentiality of protected information.

The vulnerability of Microprogrammed Software in Modicon Controllers arises from incorrect external control via name or file during data loading. Exploiting this vulnerability allows an attacker to compromise the confidentiality of protected information...

Vulnerability of the nicstar_cleanup() function in the drivers/atm/nicstar.c module – The Linux kernel’s ATM network adapter support driver allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

Vulnerability of the nicstarcleanup function in the drivers/atm/nicstar.c module – The Linux kernel’s ATM network adapter support driver is vulnerable due to the repeated use of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...

The vulnerability of the __kmem_cache_create() function in the mm/slub.c module of the Linux kernel’s memory management subsystem allows a hacker to induce a service failure.

The vulnerability of the kmemcachecreate function in the mm/slub.c module of the Linux kernel’s memory management subsystem is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

Vulnerability of the mlxsw_thermal_set_cur_state() function in the drivers/net/ethernet/mellanox/mlxsw/core_thermal.c module – The Mellanox Ethernet network adapter support driver for Linux operating systems, which allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

Vulnerability of the mlxswthermalsetcurstate function in the drivers/net/ethernet/mellanox/mlxsw/corethermal.c module – The Mellanox Ethernet network adapter driver for Linux operating systems is vulnerable due to buffer overflow attacks. Exploiting this vulnerability could allow attackers to...

The vulnerabilities of PDF viewing and editing programs such as Acrobat DC, Acrobat Reader DC, Acrobat 2024, Acrobat 2020, and Acrobat Reader 2020 are related to insufficient protection of operational data. This allows attackers to gain unauthorized access to protected information.

The vulnerabilities of PDF viewing and editing programs such as Acrobat DC, Acrobat Reader DC, Acrobat 2024, Acrobat 2020, and Acrobat Reader 2020 are related to insufficient protection of sensitive data. Exploiting these vulnerabilities can allow attackers to gain unauthorized access to protecte...

The vulnerabilities in the software platforms for developing and managing online stores such as Magento Open Source, Adobe Commerce, and Adobe Commerce B2B allow attackers to execute arbitrary JavaScript code.

The vulnerability of software platforms for developing and managing online stores such as Magento Open Source, Adobe Commerce, and Adobe Commerce B2B is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to execute...

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the distribution and transaction performance-enhancement software in the Apache Seata microservice architecture arises from incorrect processing of highly compressed input data. This allows attackers to cause service failures.

The vulnerability of distribution software and the inability to improve transaction performance in the Apache Seata microservices architecture is related to incorrect processing of highly compressed input data. Exploiting this vulnerability can allow an attacker to cause service failures remotely...

The vulnerability of the Xiaomi Mi Connect Service device’s software, related to deficiencies in authentication procedures, allows a perpetrator to gain unauthorized access to the device.

The vulnerability of the Xiaomi Mi Connect Service device management software is related to deficiencies in the authentication process. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to the device...

The vulnerabilities of PDF viewing and editing programs such as Acrobat DC, Acrobat Reader DC, Acrobat 2024, Acrobat 2020, and Acrobat Reader 2020 are related to the use of memory after it is freed. This allows attackers to execute arbitrary code.

The vulnerability of PDF viewing and editing programs such as Acrobat DC, Acrobat Reader DC, Acrobat 2024, Acrobat 2020, and Acrobat Reader 2020 is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to execute arbitrary code in the context of the...

Vulnerability of the macbremove() function in the drivers/net/ethernet/cadence/macbpci.c module – a driver for supporting Ethernet adapter support in Cadence’s Linux-based operating system, which allows a hacker to cause a service failure.

Vulnerability of the macbremove function in the drivers/net/ethernet/cadence/macbpci.c module – The Cadence Ethernet adapter driver for Linux operating systems is vulnerable due to the repeated use of previously freed memory. Exploiting this vulnerability could allow an attacker to cause a servic...

Vulnerability of the w83791d_detect_subclients() function in the drivers/hwmon/w83791d.c module – This driver for monitoring hardware in Linux operating systems allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

Vulnerability of the w83791ddetectsubclients function in the drivers/hwmon/w83791d.c module – The Linux kernel monitoring driver is vulnerable due to a NULL pointer dereferencing issue. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

The vulnerability of the j1939_netdev_start() function in the net/can/j1939/main.c module allows a hacker to cause a service failure for Linux kernel-based CAN bus interfaces.

The vulnerability of the j1939netdevstart function in the net/can/j1939/main.c module, which supports J1939 CAN interfaces in Linux kernels, is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

Vulnerability of the amdgpu_discovery_reg_base_init() function in the drivers/gpu/drm/amd/amdgpu/amdgpu_discovery.c file – This driver provides support for AMD GPU cores in Linux operating systems’ Direct Rendering Infrastructure (DRI) components. This vulnerability allows attackers to cause system failures.

Vulnerability of the amdgpudiscoveryregbaseinit function in the drivers/gpu/drm/amd/amdgpu/amdgpudiscovery.c file – The drivers for AMD GPU cores in Linux operating systems are vulnerable due to unvalidated array indexing. Exploiting this vulnerability could allow an attacker to cause a system...

The vulnerability of the set_cluster_dirty() function in the fs/f2fs/compress.c module of the F2FS file system support in Linux kernel allows a malicious actor to gain access to protected information or cause service failures.

The vulnerability of the setclusterdirty function in the fs/f2fs/compress.c module of the F2FS file system support in Linux kernel relates to incorrect input validation. Exploiting this vulnerability may allow an attacker to access protected information or cause service failures...

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to carry out cross-site scripting attacks.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to perform cross-site scripting attacks remotely...

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to carry out cross-site scripting attacks.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to perform cross-site scripting attacks remotely...

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to carry out cross-site scripting attacks.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to perform cross-site scripting attacks remotely...

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to carry out cross-site scripting attacks.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to perform cross-site scripting attacks remotely...