The vulnerability of the NotificationDisplayerClass class in the XWiki platform, a platform for creating collaborative web applications. The XWiki platform allows attackers to perform XSS attacks.

The vulnerability of the NotificationDisplayerClass class in the XWiki platform, a platform for creating collaborative web applications, is related to the absence of warnings about dangerous actions when loading edited objects. Exploiting this vulnerability could allow attackers to perform XSS...

The vulnerabilities of the macros CacheMacroRequiredRightsAnalyzer.java, ContentMacroRequiredRightsAnalyzer.java, DefaultMacroBlockRequiredRightAnalyzer.java, and ContextMacroRequiredRightsAnalyzer.java in the XWiki Platform for creating collaborative web applications allow a perpetrator to execute arbitrary code.

The vulnerabilities of the macros CacheMacroRequiredRightsAnalyzer.java, ContentMacroRequiredRightsAnalyzer.java, DefaultMacroBlockRequiredRightAnalyzer.java, and ContextMacroRequiredRightsAnalyzer.java in the XWiki Platform for creating collaborative web applications are related to the absence o...

The vulnerability of the security_sb_delete() function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the securitysbdelete function in the Linux operating system’s kernel is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability in the driver/usb/gadget/function/u_audio.c module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability in the drivers/usb/gadget/function/uaudio.c module of the Linux operating system is related to the exhaustion of file descriptors. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability in the `drivers/usb/dwc2/platform.c` module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability in the drivers/usb/dwc2/platform.c module of the Linux operating system is related to a memory leak. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability in the driver/usb/typec/tcpm/tcpm.c module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability in the drivers/usb/typec/tcpm/tcpm.c module of the Linux operating system is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause service failures...

The vulnerability in the `drivers/scsi/qla2xxx/qla_isr.c` module of the Linux kernel allows a hacker to trigger a service failure.

The vulnerability in the drivers/scsi/qla2xxx/qlaisr.c module of the Linux kernel relates to pointer manipulation. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of Dell Storage Manager’s cluster management software lies in its authentication procedures, which allow attackers to escalate their privileges.

The vulnerability of Dell Storage Manager’s cluster management software is related to deficiencies in its authentication procedures. Exploiting this vulnerability could allow a malicious actor to gain increased privileges remotely...

The vulnerability of the hci_init_stage_sync() function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the hciinitstagesync function in the Linux operating system is related to read misses beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the Dell Storage Manager (DSM) cluster management software lies in the incorrect path name limitation for the restricted access directory, allowing a hacker to execute arbitrary code.

The vulnerability of the Dell Storage Manager DSM cluster management software is related to incorrect path name restrictions for access to restricted directories. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of Dell Storage Manager’s cluster management software lies in its lack of measures to protect the website structure, allowing attackers to carry out XSS attacks.

The vulnerability of Dell Storage Manager’s cluster management software is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

The vulnerability of Dell Storage Manager’s cluster management software lies in the improper limitation of XML references to external objects, which allows attackers to exploit this flaw to disclose protected information.

The vulnerability of Dell Storage Manager’s cluster management software relates to incorrect restrictions on XML references to external objects. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information...

The vulnerability in the web interface for managing Tenda FH1202 micro-program software routers allows a hacker to escalate their privileges.

The vulnerability of the web-based management interface for Tenda FH1202 micro-programmed routing software is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to enhance their privileges by sending specially crafted POST requests...

The vulnerability of Juniper Networks Junos OS network devices of the MX series, related to improper memory release, allows a attacker to trigger a service failure.

The vulnerability of Juniper Networks Junos OS network devices of the MX series is related to improper memory release. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of Dell Storage Manager’s cluster management software lies in its failure to eliminate special elements used in the operating system command. This allows a hacker to execute arbitrary code.

The vulnerability of Dell Storage Manager’s cluster management software lies in the lack of measures taken to neutralize special elements used in the operating system command set. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability in the web interface for managing Tenda FH1202 micro-program software routers allows a hacker to escalate their privileges.

The vulnerability of the web-based management interface for Tenda FH1202 micro-programmed router software is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to enhance their privileges by sending a specially crafted POST request...

The vulnerability of the Demon Routing Protocol Daemon (RPD) in Juniper Networks’ Junos OS and Junos OS Evolved operating systems allows a attacker to cause a service failure.

The vulnerability of the Demon Routing Protocol Daemon RPD in Juniper Networks’ Junos OS and Junos OS Evolved operating systems is related to insufficient handling of exceptional states. Exploiting this vulnerability can allow a malicious actor to cause service failures...

The vulnerability of the IBM Security ReaQta information protection tool lies in its ability to download unlimited files of a malicious nature, allowing attackers to upload any type of files they desire.

The vulnerability of the IBM Security ReaQta security tool lies in its ability to download unlimited files of a malicious nature. Exploiting this vulnerability allows a malicious actor to download any desired files remotely...

The vulnerability of the IBM Hardware Management Console, related to improper management of processes, allows a malicious individual to escalate their privileges and execute arbitrary code.

The vulnerability of the IBM Hardware Management Console is related to improper management of processes. Exploiting this vulnerability can allow attackers to enhance their privileges and execute arbitrary code...

The vulnerability of the IBM Aspera Shares software lies in the incorrect limitation on XML references to external objects, which allows a hacker to expose confidential information.

The vulnerability of the IBM Aspera Shares software relates to incorrect restrictions on XML references to external objects. Exploiting this vulnerability could allow a malicious actor, operating remotely, to expose confidential information...

The vulnerability of the IBM i operating system is related to deficiencies in access control, which allow an attacker to gain root access to the host’s basic operating system.

The vulnerability of the IBM i operating system is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to gain root access to the host’s basic operating system...

The vulnerability of the IBM Storage Protect data protection software platform for virtual environments lies in its authentication mechanisms’ deficiencies, which allow attackers to circumvent existing security restrictions.

The vulnerability of the IBM Storage Protect data protection software for virtual environments is related to deficiencies in the authentication mechanism. Exploiting this vulnerability allows a malicious actor to circumvent existing security restrictions from a remote location...

The vulnerability of the IBM InfoSphere Information Server software platform, related to deficiencies in the error reporting mechanism, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the IBM InfoSphere Information Server software platform is related to deficiencies in the error reporting mechanism. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the Windows RRAS operating system’s routing and remote access services allows a hacker to execute arbitrary code.

The vulnerability of the Windows RRAS routing and remote access service is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of the Standards-Based Storage Management Service for Windows operating systems allows a perpetrator to trigger a service failure.

The vulnerability of the Standards-Based Storage Management Service for Windows operating systems is related to an uncontrolled consumption of resources. Exploiting this vulnerability can allow a remote attacker to cause service failures...

The vulnerability of the Local Security Authority (LSA) service on Windows operating systems allows a perpetrator to trigger a service failure.

The vulnerability of the Local Security Authority LSA service on Windows operating systems is related to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor to cause a service failure...

The vulnerability of the Windows RRAS operating system’s routing and remote access services allows a hacker to execute arbitrary code.

The vulnerability of the Windows RRAS routing and remote access service is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of Adobe InDesign’s computer layout automation tool, related to the execution of operations beyond the buffer in memory, allows attackers to execute arbitrary code.

The vulnerability of Adobe InDesign’s computer layout automation tool is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of Windows operating system installers allows a hacker to increase their privileges.

The vulnerability of Windows operating system installers is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of the Win32K component – GRFX in Windows operating systems – allows attackers to enhance their privileges.

The vulnerability of the Win32K component in Windows operating systems is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the web interface of the risk management platforms IBM OpenPages and IBM OpenPages with Watson allows attackers to compromise the integrity of protected information.

The vulnerability of the web interface of IBM OpenPages and IBM OpenPages with Watson relates to the lack of traceability in the trust chain during certificate verification. Exploitation of this vulnerability could allow a malicious actor, operating remotely, to compromise the integrity of the...

The vulnerability of the web interface of IBM OpenPages and IBM OpenPages with Watson allows a hacker to inject any command they desire.

The vulnerability of the IBM OpenPages and IBM OpenPages with Watson web interfaces relates to improper processing of output data for registration logs. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely...

The vulnerability in the visual integrated development environment for creating Mendix Studio Pro applications arises from incorrect restrictions on the path to the restricted access catalog. This allows attackers to write arbitrary files.

The vulnerability in the visual integrated development environment for creating Mendix Studio Pro applications is related to incorrect restrictions on the path to the restricted catalog during module installation. Exploiting this vulnerability allows a malicious actor to write arbitrary files...

The vulnerability of the Local Security Authority Subsystem Service (LSASS) in Windows operating systems allows a perpetrator to trigger a service failure.

The vulnerability of the Local Security Authority Subsystem Service LSASS in Windows operating systems is related to an uncontrolled consumption of resources. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

The vulnerability of the graphics processor in microprogrammed software embedded in Qualcomm chips allows attackers to execute arbitrary commands.

The vulnerability of the graphics processor in embedded Qualcomm software systems is related to deficiencies in the authentication mechanism. Exploiting this vulnerability allows an attacker to execute arbitrary commands...

The vulnerability of the HTTP-server of the microprogramming software for integrated media servers Sangoma IMG 2020 allows a perpetrator to execute arbitrary code.

The vulnerability of the HTTP-server of the microprogramming software integrated with Sangoma IMG 2020 relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerabilities of MobileHMI and IoTWorX Visualizer SCADA systems from GENESIS64 allow a intruder to gain unauthorized access to protected information.

The vulnerability of MobileHMI and IoTWorX Visualizer SCADA systems from GENESIS64 is related to incorrect restrictions on the path name to the restricted-access catalog. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information...

The vulnerability of the smb2_open() function in the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the smb2open function in the Linux operating system’s kernel is related to improper manipulation of the link counter for resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability in the driver module/md/dm-crypt.c of the Linux operating system allows a hacker to cause a service failure.

The vulnerability in the drivers/md/dm-crypt.c module of the Linux operating system is related to improper locking of resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the refresh_cache_worker() function in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the refreshcacheworker function in the Linux operating system’s kernel is related to errors that occur after deallocation. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerabilities in the modules net/ipv4/ip_gre.c and net/ipv6/ip6_gre.c of the Linux kernel allow a hacker to cause a service failure.

The vulnerability in the net/ipv4/ipgre.c and net/ipv6/ip6gre.c modules of the Linux kernel is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause service failures...

The vulnerability in the drivers/thunderbolt/debugfs.c module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability in the drivers/thunderbolt/debugfs.c module of the Linux operating system is related to a memory leak. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the “Termide Virtual Desktops Connection Manager” software server arises from incorrect restrictions on the path to the restricted access catalog. This allows attackers to execute attacks by bypassing the specified path.

The vulnerability of the "Termide Virtual Desktops Connection Manager" software server is related to an incorrect limitation on the path to the restricted access catalog. Exploitation of this vulnerability allows a malicious actor to perform attacks by bypassing the specified path...

The vulnerability of the “Termide Virtual Desktops Connection Manager” software server arises from an improper limitation on the path name to the restricted access catalog, allowing a perpetrator to gain access to any file in the file system.

The vulnerability of the “Termide Virtual Desktops Connection Manager” software complex is related to an incorrect limitation on the path name to the restricted directory. Exploiting this vulnerability allows a malicious actor, operating remotely, to gain access to any file in the file system by...

The vulnerability of the “Termide Virtual Desktops Connection Manager” software server, related to an authentication error, allows unauthorized access to user domain accounts.

The vulnerability of the “Termide Virtual Desktops Connection Manager” software server is related to an authentication error based on the Kerberos protocol. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to user account credentials...

The vulnerability of the “Termide Virtual Desktops Connection Monitor” software agent arises from the lack of protective measures for the request structure, allowing a perpetrator to execute arbitrary code.

The vulnerability of the “Termide Virtual Desktops Connection Monitor” software agent is related to the lack of protective measures for the request structure. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the “Termide Virtual Desktops Connection Monitor” software agent, which stems from the failure to implement protective measures for the request structure, allows attackers to enhance their privileges.

The vulnerability of the “Termide Virtual Desktops Connection Monitor” software agent is related to the lack of protective measures for the request structure. Exploiting this vulnerability can allow attackers to enhance their privileges by using specially crafted authorized HTTP requests...

The vulnerability of the “Termide Virtual Desktops Connection Monitor” software agent arises from the lack of protective measures for the request structure, allowing attackers to enhance their privileges.

The vulnerability of the “Termide Virtual Desktops Connection Monitor” software agent is related to the lack of protective measures for the request structure. Exploiting this vulnerability allows a malicious actor to enhance their privileges by using specially crafted authorized HTTP requests...

The vulnerability of the “Termide Virtual Desktops Connection Monitor” software agent stems from the lack of protective measures for the request structure, allowing a hacker to intercept the IPC socket.

The vulnerability of the “Termide Virtual Desktops Connection Monitor” software agent is related to the lack of protective measures for the request structure. Exploiting this vulnerability allows a remote attacker to intercept the IPC socket...

The vulnerability of the “Termide Virtual Desktops Connection Manager” software server, related to errors in user permission separation, allows a perpetrator to execute arbitrary commands.

The vulnerability of the “Termide Virtual Desktops Connection Manager” software suite is related to errors in user permission allocation. Exploiting this vulnerability allows a malicious actor to remotely execute commands like qemu-monitor...