90509 matches found
The vulnerability of the DICOM image processing tool Grassroots DiCoM allows a malicious individual to access confidential data or cause service interruptions.
The vulnerability of the DICOM image processing tool Grassroots DiCoM lies in its ability to read data beyond the acceptable buffer limits. Exploiting this vulnerability could allow a malicious actor to gain access to confidential data or cause service failures by using a specially created DICOM...
The vulnerability of the DICOM image processing tool Grassroots DiCoM, which allows a malicious actor to trigger a service failure.
The vulnerability of the DICOM image processing tool Grassroots DiCoM lies in the ability to perform recording beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to trigger a service failure by using a corrupted DICOM file...
The vulnerability of the WPE WebKit and WebKitGTK web page rendering modules allows attackers to induce a service failure.
The vulnerability of the WPE WebKit and WebKitGTK page rendering modules is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...
The vulnerability of the qicnshandler.cpp component of the cross-platform framework for developing Qt software. This component is a plugin for Qt6, designed to support various Qt6 image formats. This vulnerability allows attackers to trigger a service failure.
The vulnerability of the qicnshandler.cpp component in the cross-platform framework for developing Qt software, a plugin set for Qt6 to support various Qt6 image formats, is related to the allocation of unlimited memory. Exploiting this vulnerability could allow an attacker to cause a service...
Vulnerabilities in Firefox ESR and Firefox web browsers, as well as the Thunderbird email client, allow attackers to gain access to confidential data and cause service interruptions.
The vulnerabilities in the Firefox ESR and Firefox web browsers, as well as in the Thunderbird email client, are related to the use of memory after it is freed. Exploiting these vulnerabilities can allow a remote attacker to gain access to confidential data, as well as cause service interruptions...
The vulnerability of the SubtableUnicodesCache::create() function in the src/hb-ot-cmap-table.hh file of the HarfBuzz text conversion library allows a hacker to trigger a service failure.
The vulnerability of the SubtableUnicodesCache::create function in the src/hb-ot-cmap-table.hh file of the HarfBuzz text conversion library is related to pointer dereferencing errors. Exploiting this vulnerability could allow an attacker to cause service failures...
The vulnerability of the tplgdecode_control_mixer1 function in the library for interacting with kernel audio drivers from Alsa-lib, which allows a hacker to cause a service failure.
The vulnerability of the tplgDecodeControlmixer1 function in the library for interacting with kernel audio drivers is related to unvalidated array indexing. Exploiting this vulnerability could allow a malicious actor to cause service failures through a specially created file...
The vulnerability of the Ceph storage system allows a attacker to gain access to confidential data or cause service failures.
The vulnerability of the Ceph storage system is related to errors in the certificate validation process. Exploiting this vulnerability can allow an attacker to gain access to confidential data or cause service failures...
Vulnerabilities in web browsers Firefox and Firefox ESR, as well as the Thunderbird email client, allow attackers to gain access to confidential data and compromise its integrity.
The vulnerabilities in web browsers Firefox and Firefox ESR, as well as the email client Thunderbird, are related to insufficient input data validation. Exploiting these vulnerabilities can allow an attacker to gain access to confidential data and compromise its integrity...
The vulnerability in the file-pnm.c component of the GIMP graphic editor allows a hacker to cause a service failure.
The vulnerability of the file-pnm.c component of the GIMP graphic editor is related to the use of an uninitialized resource. Exploiting this vulnerability could allow a attacker to cause a service failure using the malicious file...
The vulnerability of the file-xwd.c component of the GIMP graphic editor allows a hacker to cause a service failure.
The vulnerability of the file-xwd.c component of the GIMP graphic editor is related to writing beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to cause a service failure using the malicious file...
Vulnerabilities in the web browsers Firefox ESR and Firefox, as well as the email client Thunderbird, allow attackers to gain access to confidential data.
The vulnerabilities in the web browsers Firefox ESR and Firefox, as well as the email client Thunderbird, are related to authentication process flaws. Exploiting these vulnerabilities can allow an attacker to gain access to confidential data remotely...
Vulnerabilities in Firefox ESR and Firefox web browsers, as well as the Thunderbird email client, allow attackers to gain access to confidential data or cause service interruptions.
The vulnerabilities in the Firefox ESR and Firefox web browsers, as well as the Thunderbird email client, involve exploiting authentication vulnerabilities through phising techniques. Exploiting these vulnerabilities can allow a malicious actor to gain access to confidential data or cause service...
The vulnerability of the Ruby programming language’s URI module, the RubyGems package manager, allows attackers to gain access to confidential data.
The vulnerability of the Ruby language’s URI module, as well as the RubyGems package manager system, relates to the exposure of information. Exploiting this vulnerability can allow an attacker to gain access to confidential data remotely...
The vulnerability of the TagSection.keys() function in the tag.cc component allows for the execution of Python APT exploits, enabling an attacker to cause a denial-of-service attack.
The vulnerability of the TagSection.keys function in the tag.cc component, which is used to install Python APT packages, is related to pointer dereferencing errors. Exploiting this vulnerability could allow an attacker to trigger a service failure using a specially created deb822 file...
The vulnerability of the Thunderbird email client, allowing a hacker to gain access to confidential data
The vulnerability of the Thunderbird email client is related to the lack of mechanisms for encoding or shielding output data. Exploiting this vulnerability can allow a remote attacker to gain access to confidential data...
The vulnerability in the Firefox web browser, specifically the Firefox ESR web browser, allows a perpetrator to gain access to confidential data.
The vulnerability in the Firefox web browser, as well as the Firefox ESR browser, is related to the disclosure of information. Exploiting this vulnerability can allow a malicious actor to gain access to confidential data...
Vulnerabilities in web browsers Firefox and Firefox ESR, as well as the Thunderbird email client, allow attackers to trigger a service failure.
The vulnerabilities in web browsers Firefox and Firefox ESR, as well as the Thunderbird email client, are related to the use of memory after it is freed. Exploiting these vulnerabilities can allow an attacker to cause service interruptions remotely...
The vulnerability of the sch_teql component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the schteql component in the Linux operating system’s kernel is related to the dereferencing of a pointer whose validity has expired. Exploiting this vulnerability can allow an attacker to trigger a service failure...
The vulnerability of the ReadYUVImage function in the coders/yuv.c file of the ImageMagick console graphics editor allows a hacker to cause a service failure.
The vulnerability of the ReadYUVImage function in the coders/yuv.c file of the ImageMagick console graphics editor is related to the lack of checks for division by zero. Exploiting this vulnerability could allow a remote attacker to cause a service failure...
The vulnerability of the msl.c component in the console-based image editing tool ImageMagick allows a hacker to gain access to confidential data or cause a service failure.
The vulnerability of the msl.c component in the console-based image editing tool ImageMagick is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to gain access to confidential data or cause service interruptions...
The vulnerability of the ClonePixelCacheRepository() function in the magick/cache.c component of the ImageMagick console graphics editor allows a hacker to cause a service failure.
The vulnerability of the ClonePixelCacheRepository function in the magick/cache.c component of the ImageMagick console graphics editor is related to pointer dereferencing errors. Exploiting this vulnerability could allow an attacker to cause a service failure through the use of a specially create...
The vulnerability of the `tt_var_load_item_variation_store` function in the 2D component of the Oracle Java SE software platform, as well as in the Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines, allows a malicious actor to cause a service failure.
The vulnerability of the ttvarloaditemvariationstore function in the 2D component of the Oracle Java SE software platform, as well as in the Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines, relates to reading data beyond the allowed range of memory. Exploitation of...
The vulnerability of the Networking component of the Oracle Java SE software platform, as well as the Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines, allows attackers to cause service failures.
The vulnerability of the Networking component of the Oracle Java SE software platform, as well as of the Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines, is related to insufficient protection of operational data. Exploiting this vulnerability can allow a malicious...
The vulnerability of the Security component of the Oracle Java SE software platform, as well as the Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines, allows attackers to gain access to read, modify, and delete data.
The vulnerability of the Security component of the Oracle Java SE software platform, as well as of the Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines, is related to insufficient protection of operational data. Exploiting this vulnerability can allow an attacker to...
The vulnerability of the h.265 Libde265 codec implementation allows a hacker to trigger a service failure.
The vulnerability of the h.265 Libde265 implementation lies in the copying of buffers without checking the input data. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the rtpqdm2depay component in the GStreamer multimedia framework allows a attacker to execute arbitrary code.
The vulnerability of the rtpqdm2depay component in the GStreamer multimedia framework is related to incorrect checking of the length of input data during the processing of the X-QDM RTP payload. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the library that accesses HTTP servers via LibSoup allows a perpetrator to gain access to confidential data or cause service failures.
The vulnerability of the LibSoup library for HTTP servers is related to a countable loss of significance. Exploiting this vulnerability could allow an attacker to gain access to confidential data or cause service failures...
The vulnerability of the MSLEndElement() function in the coders/msl.c component of the ImageMagick console graphics editor allows a hacker to cause a service failure.
The vulnerability of the MSLEndElement function in the ImageMagick console graphics editor’s coders/msl.c component is related to pointer dereferencing errors. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerabilities of the functions crc32_combine64 and crc32_combine_gen64 in the open-source data compression library zlib allow a hacker to cause a service failure.
The vulnerability of the crc32combine64 and crc32combinegen64 functions in the open-source data compression library zlib relates to the fact that the x2nmodp function may perform right shifts within a loop without a termination condition. Exploiting this vulnerability could allow an attacker to...
The vulnerability of the data protection software through backup using PowerProtect Data Domain for Dell EMC Data Domain Operating Systems allows a intruder to gain unauthorized access to protected information.
The vulnerability of the data protection software through backup using PowerProtect Data Domain for Dell EMC Data Domain Operating Systems is related to deficiencies in authentication procedures. Exploiting this vulnerability could allow an intruder to gain unauthorized access to protected...
The vulnerability of the library for working with TagLib audio metadata allows a intruder to trigger a service failure.
The vulnerability of the library for working with TagLib audio metadata is related to pointer assignment errors. Exploiting this vulnerability can allow an attacker to trigger a service failure using a specially created WAV file...
The vulnerability of the Win32K component – GRFX in Windows operating systems – allows attackers to enhance their privileges.
The vulnerability of the Win32K component in Windows operating systems is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the JAXP component of the Oracle Java SE software platform, as well as of the Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines, allows attackers to gain unauthorized access to devices.
The vulnerability of the JAXP component in the Oracle Java SE software platform and the Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines is related to the lack of protection for service data. Exploiting this vulnerability can allow an attacker, operating remotely, to...
The vulnerability of the JGSS component of the Oracle Java SE software platform, as well as of the Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines, allows attackers to gain unauthorized access to protected information.
The vulnerability of the JGSS component of the Oracle Java SE software platform, as well as of the Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines, is related to a breach of data protection mechanisms. Exploiting this vulnerability can allow an attacker, operating...
The vulnerability of the JSE component of Oracle Java SE software, as well as of the Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines, allows attackers to trigger a service failure.
The vulnerability of the JSE component of Oracle Java SE software, as well as of the Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines, is related to a breach of data protection mechanisms. Exploiting this vulnerability can allow an attacker, operating remotely, to cau...
The vulnerability of the rtpqdm2depay component in the Gstreamer multimedia framework allows a hacker to execute arbitrary code.
The vulnerability of the rtpqdm2depay component in the Gstreamer multimedia framework is related to the lack of proper data validation when processing elements of the X-QDM RTP user interface. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the JPEG Parser component in the Gstreamer multimedia framework allows a hacker to execute arbitrary code.
The vulnerability of the JPEG Parser component in the Gstreamer multimedia framework is related to the lack of proper checks on the data length. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the RIFF component in the Gstreamer multimedia framework allows a hacker to execute arbitrary code.
The vulnerability of the RIFF component in the Gstreamer multimedia framework is related to insufficient validation of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the Libraries component of the Oracle Java SE software platform, as well as the Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines, allows attackers to trigger a service failure.
The vulnerability of the Libraries component of the Oracle Java SE software platform, as well as the Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines, is related to unlimited resource allocation. Exploiting this vulnerability can allow a malicious actor to cause servi...
The vulnerability of the Security component of the Oracle Java SE software platform, as well as the Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines, allows attackers to gain access to read, modify, and delete data.
The vulnerability of the Security component of the Oracle Java SE software platform, as well as of the Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines, is related to insufficient protection of operational data. Exploiting this vulnerability can allow an attacker to...
The vulnerability of the console-based graphic editor ImageMagick, related to deficiencies in pathname restrictions for directories, allows attackers to gain access to confidential data.
The vulnerability of the console-based graphic editor ImageMagick is related to deficiencies in pathname restrictions for the directory. Exploiting this vulnerability can allow a malicious actor to gain access to confidential data...
The vulnerability of the console-based graphic editor ImageMagick, which allows a hacker to access confidential data or cause a service failure
The vulnerability of the console-based graphic editor ImageMagick is related to the execution of operations beyond the buffer boundaries. Exploiting this vulnerability can allow a remote attacker to access confidential data or cause service interruptions...
The vulnerability of the Mattermost instant messaging application, related to uncontrolled resource consumption, allows a hacker to cause a service failure.
The vulnerability of the Mattermost instant messaging application is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service failures...
The vulnerability of the Mattermost instant messaging application, related to deficiencies in authentication procedures, allows a perpetrator to execute arbitrary codes and gain unauthorized access to protected information.
The vulnerability of the Mattermost instant messaging application is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code and gain unauthorized access to protected information...
The vulnerability of the Mattermost instant messaging application, related to uncontrolled resource consumption, allows a hacker to cause a service failure.
The vulnerability of the Mattermost instant messaging application is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service failures...
The vulnerability of the Mattermost instant messaging application, related to deficiencies in authentication procedures, allows a hacker to gain access to and upload arbitrary files.
The vulnerability of the Mattermost instant messaging application is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor to gain access to and upload arbitrary files...
The vulnerability of the Mattermost instant messaging application, related to incorrect validation of the specified data type, allows a hacker to trigger a service failure.
The vulnerability of the Mattermost instant messaging application is related to improper validation of the specified data type. Exploiting this vulnerability could allow a malicious actor to cause service failures...
The vulnerability in the `ProgramData\iTop VPN\Downloader\vpn6` component’s `DLL Handler` of the free iTop VPN software allows a hacker to escalate their privileges and execute arbitrary code.
The vulnerability of the “ProgramData\iTop VPN\Downloader\vpn6” directory’s DLL Handler component in the free iTop VPN software is related to an uncontrolled search path element. Exploiting this vulnerability could allow a hacker to gain increased privileges and cause service interruptions...
The software for email security from SonicWall has a vulnerability related to incorrect input validation. This allows attackers to gain unauthorized access to protected information.
The vulnerability of SonicWall Email Security’s email security software lies in the improper validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...