74701 matches found
The vulnerability of the copy_page_from_iter_atomic() function in the lib/iov_iter.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the copypagefromiteratomic function in the lib/ioviter.c module of the Linux kernel is related to dependencies that are undefined for each implementation type. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibilit...
The vulnerability of the vangogh_tables_init() function in the drivers/gpu/drm/amd/pm/swsmu/smu11/vangogh_ppt.c kernel of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the vangoghtablesinit function in the drivers/gpu/drm/amd/pm/swsmu/smu11/vangoghppt.c module of the Linux kernel is related to writing beyond buffer boundaries. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibili...
Vulnerability of the __vmbus_establish_gpadl() function in the drivers/hv/channel.c module – Microsoft Hyper-V guest mode support driver for Linux operating systems. This driver allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.
Vulnerability of the vmbusestablishgpadl function in the drivers/hv/channel.c module – The Microsoft Hyper-V guest mode support driver for Linux operating systems is vulnerable because it exposes confidential system information due to uncleaned debugging information. Exploitation of this...
The vulnerability of the `vfiopci_dev_in_denylist()` function in the Linux operating system allows a attacker to compromise the integrity and accessibility of protected information.
The vulnerability of the vfiopcidevindenylist function in the Linux operating system is related to uncontrolled resource consumption. Exploiting this vulnerability could allow an attacker to compromise the integrity and accessibility of protected information...
The vulnerability of the xbc_init() function in the include/linux/bootconfig.h module of the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the xbcinit function in the include/linux/bootconfig.h module of the Linux operating system is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to cause a system failure...
The vulnerability of the ath12k_dp_rx_process() function in the Wi-Fi driver’s code, located at drivers/net/wireless/ath/ath12k/dp_rx.c, in the Linux kernel, allows a hacker to compromise privacy.
The vulnerability of the ath12kdprxprocess function in the Wi-Fi driver’s code, located at drivers/net/wireless/ath/ath12k/dprx.c, in the Linux kernel, relates to reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to compromise confidentiality...
The vulnerability of the amdkfd_free_gtt_mem() function in the driver /drivers/gpu/drm/amd/amdgpu/amdgpu_amdkfd.c of the Linux operating system allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the amdkfdfreegttmem function in the driver /drivers/gpu/drm/amd/amdgpu/amdgpuamdkfd.c of the Linux kernel lies in the reuse of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of...
The vulnerability of the bearer_name_validate() function in the net/tipc/bearer.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the bearernamevalidate function in the net/tipc/bearer.c module of the Linux kernel lies in the copying of buffers without checking the size of the input data a classic buffer overflow attack. Exploiting this vulnerability could allow an attacker to compromise the...
The vulnerability of the mac802154_scan_worker() function in the /net/mac802154/scan.c module of the Linux operating system allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the mac802154scanworker function in the /net/mac802154/scan.c module of the Linux kernel is related to the repeated use of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...
The vulnerability of the HPIMSGX__init() function in the sound/pci/asihpi/hpimsgx.c module of the asihpi component of the /sound/pci/asihpi/hpimsgx.c kernel of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the HPIMSGXinit function in the sound/pci/asihpi/hpimsgx.c module of the asihpi component of the /sound/pci/asihpi/hpimsgx.c kernel of the Linux operating system is related to unvalidated array indexing. Exploiting this vulnerability could allow an attacker to compromise the...
The vulnerability of the check_func_arg() function in the kernel/bpf/verifier.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the checkfuncarg function in the kernel/bpf/verifier.c module of the Linux operating system is related to improper control of resource identifiers “resource injection”. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...
The vulnerability of the skb_put_padto() function in the Ethernet Frame Handler driver’s kernel code (/drivers/net/ethernet/lantiq_etop.c) allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the skbputpadto function in the Ethernet Frame Handler driver’s source code at /drivers/net/ethernet/lantiqetop.c in the Linux kernel involves copying buffers without checking their size. This constitutes a classic buffer overflow attack. Exploiting this vulnerability could...
The vulnerability of the ModeSupportAndSystemConfiguration() function in the driver drivers/gpu/drm/amd/display/dc/dml/display_mode_vba.c of the Linux operating system allows a attacker to compromise the integrity and accessibility of the protected information.
The vulnerability of the ModeSupportAndSystemConfiguration function in the drivers/gpu/drm/amd/display/dc/dml/displaymodevba.c kernel of the Linux operating system is related to the occurrence of operations outside the buffer boundaries in memory. Exploiting this vulnerability could allow an...
The vulnerability of the kvm_arch_vcpu_ioctl() function in the arch/x86/kvm/x86.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the kvmarchvcpuioctl function in the arch/x86/kvm/x86.c module of the Linux operating system is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility o...
The vulnerability of the ip_vs_protocol_init function in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the ipvsprotocolinit function in Linux kernel relates to the use of an uninitialized pointer. Exploiting this vulnerability can allow a remote attacker to cause service failures...
The vulnerability of the Malformed File Handler component in the cross-platform import library for 3D models, Assimp (Open Asset Import Library), allows a hacker to trigger a service failure.
The vulnerability of the Malformed File Handler component in the cross-platform 3D model import library Assimp Open Asset Import Library is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the CallbackToLogRedirector() function in the cross-platform Assimp 3D model import library (Open Asset Import Library) allows a hacker to execute arbitrary code.
The vulnerability of the CallbackToLogRedirector function in the cross-platform Assimp 3D model import library Open Asset Import Library is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to execute arbitrary code...
The vulnerability of the FileHandler component of the cross-platform 3D model import library Assimp (Open Asset Import Library) allows a hacker to trigger a service failure.
The vulnerability of the FileHandler component in the cross-platform Assimp 3D model import library Open Asset Import Library is related to buffer overflow in dynamic memory. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...
The vulnerability of the FileHandler component of the cross-platform 3D model import library Assimp (Open Asset Import Library) allows a attacker to trigger a service failure.
The vulnerability of the FileHandler component in the cross-platform import library for 3D models, Assimp Open Asset Import Library, is related to buffer overflow in the stack. Exploiting this vulnerability can allow a malicious actor to cause service failures...
The vulnerability of the ASE File Handler component of the cross-platform library for importing 3D models, Assimp (Open Asset Import Library), allows a hacker to trigger a service failure.
The vulnerability of the ASE File Handler component of the cross-platform 3D model import library Assimp Open Asset Import Library is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the built-in boa server (/boafrm/formMultiAP) of the TOTOLINK EX1200T router’s microprogramming software allows a intruder to cause a service failure.
The vulnerability of the built-in boa server /boafrm/formMultiAP of the TOTOLINK EX1200T router’s microprogramming system is related to the issue of the operation exceeding the buffer boundaries in memory when processing the submit-url parameter. Exploiting this vulnerability allows a malicious...
The vulnerability of the built-in boa server (/boafrm/formSysLog) of TOTOLINK X15 router microprogramming software allows a intruder to cause a service failure.
The vulnerability of the built-in boa server /boafrm/formSysLog of TOTOLINK X15 router microprogramming software is related to the issue where the operation data is written outside the buffer in memory when processing the submit-url parameter. Exploiting this vulnerability allows a malicious acto...
The vulnerability of the built-in boa server (/boafrm/formMultiAP) of TOTOLINK X15 router microprogramming software allows a intruder to cause a service failure.
The vulnerability of the built-in boa server /boafrm/formMultiAP of the TOTOLINK X15 router software lies in the issue of the operation exceeding the buffer in memory when processing the submit-url parameter. Exploiting this vulnerability allows a malicious actor to cause service failures by...
The vulnerability of the built-in boa server (/boafrm/formTmultiAP) of the TOTOLINK X15 router’s microprogramming software allows a intruder to cause a service failure.
The vulnerability of the built-in boa server /boafrm/formTmultiAP of the TOTOLINK X15 router microprogramming system is related to the issue of the operation exceeding the buffer boundaries in memory when processing the submit-url parameter. Exploiting this vulnerability allows a malicious actor ...
The vulnerability of the built-in boa server (/boafrm/formMultiAP) of the TOTOLINK A3002RU router’s microprogramming software allows a intruder to cause a service failure.
The vulnerability of the built-in boa server /boafrm/formMultiAP of the TOTOLINK A3002RU router’s microprogramming software is related to the issue of the operation exceeding the buffer boundaries in memory when processing the submit-url parameter. Exploiting this vulnerability allows a malicious...
The vulnerability of the built-in boa server (/boafrm/formSysLog) of the TOTOLINK A3002R router’s microprogramming software allows a intruder to cause a service failure.
The vulnerability of the built-in server boa /boafrm/formSysLog of the TOTOLINK A3002R router’s microprogramming software is related to the issue of the operation exceeding the buffer boundaries in memory when processing the submit-url parameter. Exploiting this vulnerability allows a malicious...
The vulnerability of the sub_AC78() function in D-Link DIR-665 router software allows a hacker to induce a service failure.
The vulnerability of the subAC78 function in D-Link DIR-665 router microprogramming software is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow a malicious actor to cause a service failure by sending a specially crafted POST request...
The vulnerability of the httpGetEnv() function in TP-Link TL-WR940N router software allows a hacker to cause a service failure.
The vulnerability of the httpGetEnv function in TP-Link TL-WR940N router software lies in the fact that the operation is executed outside the buffer in memory when processing the dnsserver1 parameter. Exploiting this vulnerability allows a malicious actor to cause service failure by sending a...
The vulnerability of the built-in boa server (/boafrm/formSysLog) of the TOTOLINK A3002RU router’s microprogramming software allows a intruder to cause a service failure.
The vulnerability of the built-in server boa /boafrm/formSysLog of the TOTOLINK A3002RU router’s microprogramming software is related to the issue of the operation exceeding the buffer boundaries in memory when processing the submit-url parameter. Exploiting this vulnerability allows a malicious...
The vulnerability of the built-in boa server (/boafrm/formSysLog) of the TOTOLINK A702R router’s microprogramming software allows a intruder to cause a service failure.
The vulnerability of the built-in boa server /boafrm/formSysLog of the TOTOLINK A702R router’s microprogramming software is related to the issue of the operation exceeding the buffer limits in memory when processing the submit-url parameter. Exploiting this vulnerability allows a malicious actor ...
The vulnerability of the RecordSanityCheckRegisterClients() function on the X Window System Xorg-server allows a hacker to trigger a service failure.
The vulnerability of the RecordSanityCheckRegisterClients function in the X Window System Xorg-server is related to integer overflow. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the FileHandler component of the cross-platform 3D model import library Assimp (Open Asset Import Library) allows a hacker to trigger a service failure.
The vulnerability of the FileHandler component of the cross-platform 3D model import library Assimp Open Asset Import Library is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
The vulnerability of the Ruby interpreter’s Rack module’s interface allows a hacker to gain unauthorized access and modify protected information.
The vulnerability of the Ruby interpreter’s Rack module interface is related to the failure to handle CRLF sequences properly. Exploiting this vulnerability can allow an unauthorized attacker to gain unauthorized access and modify protected information...
The vulnerability of the RRChangeProviderProperty() function on the X Window System Xorg-server allows a hacker to cause a service failure.
The vulnerability of the RRChangeProviderProperty function in the X Window System Xorg-server server is related to integer overflow. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine allows attackers to execute arbitrary code or cause service interruptions.
The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine is related to a numerical overflow condition. Exploiting this vulnerability allows an attacker to execute arbitrary code or cause a service failure by loading a specially created web page...
The vulnerability of Adobe Experience Manager’s content and media data management system lies in the insufficient protection of website structures, which allows attackers to carry out XSS attacks.
The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to carry out XSS attacks...
The vulnerability of the SolarWinds Serv-U File Server file server arises from incorrect path name restrictions for the restricted access directory, allowing a hacker to execute arbitrary code.
The vulnerability of the SolarWinds Serv-U File Server file server is related to an incorrect limitation on the path name for the restricted access directory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by connecting to port 21...
The vulnerability in the ZendTo web application for transferring files involves an incorrect restriction on the path to the restricted directory. This allows a malicious actor to gain read and write access to data, or cause a service failure.
The vulnerability in the web application for transferring files via ZendTo is related to an incorrect restriction on the path to the restricted directory during the processing of the tmpname parameter. Exploiting this vulnerability can allow an attacker to gain read and modify access to data, or...
The vulnerability of Adobe Experience Manager’s content and media data management system lies in the insufficient protection of website structures, which allows attackers to carry out XSS attacks.
The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to carry out XSS attacks...
The vulnerability of Adobe Experience Manager’s content and media data management system lies in the insufficient protection of website structures, which allows attackers to carry out XSS attacks.
The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to carry out XSS attacks...
The vulnerability of Adobe Experience Manager’s content and media data management system lies in the insufficient protection of website structures, which allows attackers to carry out XSS attacks.
The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to carry out XSS attacks...
The vulnerability of Adobe Experience Manager’s content and media data management system lies in the insufficient protection of website structures, which allows attackers to carry out XSS attacks.
The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to carry out XSS attacks...
The vulnerability of the WAGO Device Manager software in terms of controller configuration and parameter setting lies in the lack of authentication for critical functions. This allows attackers to gain unauthorized access to the file system.
The vulnerability of the WAGO Device Manager software for configuring and parameterizing controllers is related to the lack of authentication for critical functions. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to the file system by sending...
The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.
The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of the website structure, allowing attackers to execute arbitrary code.
The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.
The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
The vulnerability of the Windows Installer component on Windows operating systems allows a perpetrator to elevate their privileges to a system-level level.
The vulnerability of the Windows Installer component in Windows operating systems is related to the incorrect handling of symbolic links before accessing the file. Exploiting this vulnerability can allow an attacker to elevate their privileges to a system level...
The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.
The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.
The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.
The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...