90509 matches found
The vulnerability of the Azure DevOps software development tool, related to information disclosure, allows attackers to gain unauthorized access to protected information.
The vulnerability of the Azure DevOps software development tool is related to the exposure of information. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...
The vulnerability of Google Chrome browser’s Blink rendering module allows a hacker to execute arbitrary code.
The vulnerability of Google Chrome’s Blink rendering module is related to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially created HTML page...
The vulnerability of the Aura component in Google Chrome browser allows a hacker to execute arbitrary code.
The vulnerability of the Aura component in Google Chrome browsers relates to the ability to utilize memory after it is freed. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code with system privileges from outside the browser, through a specially created HTML pag...
The vulnerability of the Fullscreen component in the Google Chrome browser allows a hacker to bypass existing security restrictions.
The vulnerability of the Fullscreen component in Google Chrome browser relates to the ability to utilize memory after it is freed. Exploiting this vulnerability could allow a malicious actor to bypass existing security restrictions through a specially created HTML page...
The vulnerability of the Skia component in Google Chrome browser allows a hacker to escape from an isolated software environment.
The vulnerability of the Skia component in Google Chrome browser relates to writing beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to escape from a isolated software environment through a specially created HTML page...
The vulnerability of the cross-platform framework for developing software in the Qt family allows a perpetrator to trigger a service failure.
The vulnerability of the cross-platform software development framework for Qt is related to the copying of buffers without checking the input data. Exploiting this vulnerability can allow an attacker, operating remotely, to cause a service failure using a specially created MNG file...
The vulnerability of the Skia component in Google Chrome browser allows a hacker to execute arbitrary code.
The vulnerability of the Skia component in Google Chrome’s browser is related to the ability to utilize memory after it is freed. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...
The vulnerability of the user interface of the universal monitoring system Zabbix allows a intruder to execute arbitrary code.
The vulnerability of the user interface of the Zabbix monitoring system is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to execute arbitrary code, provided that the user opens a specially crafted link...
The vulnerability of the /etc/skel component in Demon allows for triggering of a service failure by other applications called Oddjob. This enables a hacker to cause a service failure.
The vulnerability of the /etc/skel component in the demon is related to the simultaneous execution using a shared resource with incorrect synchronization. Exploiting this vulnerability can allow an attacker to cause service failures...
The vulnerability of the Python programming language interpreter, which allows attackers to compromise data integrity
The vulnerability of the Python interpreter is related to the failure to take measures to neutralize CRLF sequences. Exploiting this vulnerability allows a remote attacker to compromise data integrity...
The vulnerability of the software platform based on Git for collaborative code development in GitLab Enterprise Edition (EE) arises from the lack of measures taken to protect the structure of web pages. This allows attackers to add email addresses to target accounts.
The vulnerability of the Git-based software platform for collaborative code development in GitLab Enterprise Edition is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to remotely add email addresses to target...
The vulnerability of the Git-based software platform for collaborative code development in GitLab Enterprise Edition (EE) stems from the lack of authentication for a critical function, allowing attackers to gain unauthorized access to protected information.
The vulnerability of the Git-based software platform for collaborative code development in GitLab Enterprise Edition is related to the lack of authentication for a critical function. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protecte...
The vulnerability of the GNW protocol analyzer, a traffic analysis tool for computer networks developed by Wireshark, allows attackers to cause service interruptions.
The vulnerability of the GNW protocol analyzer, a component of the Wireshark computer network traffic analyzer, lies in the execution of a loop with an unavailable exit condition. Exploiting this vulnerability can allow attackers to cause service failures...
The vulnerability of the DLMS/COSEM protocol analyzer of the Wireshark computer network traffic analyzer allows a hacker to cause a service failure.
The vulnerability of the DLMS/COSEM protocol implementation in the Wireshark network traffic analyzer involves executing a loop with an unavailable exit condition. Exploiting this vulnerability can allow attackers to cause service failures...
The vulnerability of the spotlight_dissect_query_loop() function in the AFP Spotlight protocol analyzer for computer network traffic analysis tools by Wireshark allows a hacker to induce a service failure.
The vulnerability of the spotlightdissectqueryloop function in the AFP protocol analyzer Spotlight, a traffic analysis tool for computer networks developed by Wireshark, is related to an uncontrolled recursion. Exploiting this vulnerability could allow attackers to cause service failures...
The vulnerabilities of the functions dissect_smb2_notify_data_out() and dissect_smb2_file_full_ea_info() in the SMB2 protocol analyzer tool Wireshark allow a hacker to cause service failures.
The vulnerabilities of the functions dissectsmb2notifydataout and dissectsmb2filefulleainfo in the SMB2 protocol analyzer tool Wireshark involve executing a loop with an unreachable exit condition. Exploiting these vulnerabilities can allow attackers to cause service failures...
The vulnerability of the rdp8_decompress_segment() function in the RDP protocol allows a hacker to cause a service failure. This vulnerability exists in the Wireshark network traffic analyzer software.
The vulnerability of the rdp8decompresssegment function in the RDP protocol analysis tool for computer network traffic analysis in Wireshark is related to the execution of operations outside the buffer boundaries in memory. Exploiting this vulnerability can allow attackers to cause service failur...
The vulnerability of the dissect_swils_zone_obj() function in the FC-SWILS protocol of the Wireshark network traffic analyzer allows a hacker to cause a service failure.
The vulnerability of the dissectswilszoneobj function in the FC-SWILS protocol of the Wireshark network traffic analyzer is related to uncontrolled recursion. Exploiting this vulnerability can allow attackers to cause service failures...
The vulnerability of the fromP2pListFilter() function (/goform/P2pListFilter) in the Tenda F456 router software allows a hacker to execute arbitrary code or cause service failures.
The vulnerability of the fromP2pListFilter function /goform/P2pListFilter of the Tenda F456 router’s software lies in the copying of buffers without checking the size of the input data when processing parameters for manufacturer and Go. Exploiting this vulnerability could allow an attacker to...
The vulnerability of the Git-based software platform for collaborative code development on GitLab arises from the ability to bypass authentication by using an alternative path or channel. This allows attackers to gain unauthorized access to protected information.
The vulnerability of the Git-based software platform for collaborative code development on GitLab relates to bypassing the authentication process by using an alternative path or channel. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to...
The vulnerability of the fromSafeMacFilter() function (/goform/SafeMacFilter) in the Tenda F456 router software allows a hacker to execute arbitrary code or cause service failures.
The vulnerability of the fromSafeMacFilter function /goform/SafeMacFilter of the Tenda F456 router microprogramming system is related to the copying of buffers without checking the size of the input data when processing the page parameter. Exploiting this vulnerability can allow an attacker to...
The vulnerability of the Git-based software platform for collaborative code development on GitLab, related to authentication errors, allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to authentication errors. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...
The vulnerability of SMB2 protocol discoverer, the Wireshark network traffic analyzer, allows a hacker to cause a service failure.
The vulnerability of SMB2 protocol analyzer in Wireshark is related to improper management of sequential memory allocation. Exploiting this vulnerability can allow attackers to cause service failures...
The vulnerability of the dissect_beep_tree() function in the BEEP protocol analyzer of Wireshark allows a hacker to cause a service failure.
The vulnerability of the dissectbeeptree function in the BEEP protocol analyzer for computer network traffic analysis tool Wireshark is related to the execution of a loop with a potentially overflowing buffer in the stack. Exploiting this vulnerability can allow attackers to cause service failure...
The vulnerability of the Git-based software platform for collaborative code development on GitLab, related to the manipulation of inter-site requests, allows a hacker to execute arbitrary commands.
The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to the manipulation of inter-site requests. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely...
The vulnerability of the Git-based software platform for collaborative code development in GitLab Enterprise Edition (EE) involves authentication errors, allowing attackers to gain unauthorized access to protected information.
The vulnerability of the Git-based software platform for collaborative code development in GitLab Enterprise Edition is related to authentication errors. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...
The vulnerability in the packet-kismet.c script of the Kismet protocol allows a hacker to cause a service failure. This vulnerability is exploited by hackers to disrupt the functioning of Kismet, a network traffic analyzer tool used in Wireshark.
The vulnerability in the packet-kismet.c script of the Kismet protocol, a traffic analyzer for computer networks developed by Wireshark, involves allowing the operation to escape out of the buffer and into memory. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the USB HID protocol analyzer, a network traffic analyzer for computer networks, allows a hacker to cause a service failure.
The vulnerability of the USB HID protocol analyzer, a network traffic analyzer for computer networks, Wireshark, is related to the execution of a loop with an unavailable exit condition. Exploiting this vulnerability can allow attackers to cause service failures...
The vulnerability in the packet-gsm_a_rp.c script of the GSM RP protocol analyzer for computer network traffic analysis tool Wireshark allows a hacker to cause a service failure.
The vulnerability in the packet-gsmarp.c script of the GSM RP protocol analyzer for computer network traffic analysis tool Wireshark relates to access to an uninitialized pointer. Exploiting this vulnerability can allow attackers to cause service failures...
The vulnerability of the decrypt_data() function in the ZigBee protocol analyzer of Wireshark allows a hacker to cause a service failure.
The vulnerability of the decryptdata function in the Kismet protocol of the Wireshark network traffic analyzer involves buffer overflow in the stack. Exploiting this vulnerability can allow attackers to cause service failures...
The vulnerability of the WiresharkZipHelper::unzip() function in the configuration profile of the computer network traffic analyzer Wireshark allows a hacker to trigger a service failure or execute arbitrary code.
The vulnerability of the WiresharkZipHelper::unzip function in the configuration profile of the computer network analysis device Wireshark is related to an incorrect restriction on the path name to the restricted directory. Exploiting this vulnerability could allow a attacker to cause service...
The vulnerability of the zlib compression library in Wireshark, a network traffic analyzer, allows attackers to cause service interruptions.
The vulnerability of the zlib compression library, the traffic analyzer for computer networks like Wireshark, is related to the execution of a loop with improper memory management, leading to sequential memory allocation issues. Exploiting this vulnerability can allow attackers to cause service...
The vulnerability of the dissect_bencoded_list() function in the BT-DHT protocol analyzer of Wireshark allows a hacker to cause a service failure.
The vulnerability of the dissectbencodedlist function in the BT-DHT protocol analyzer of Wireshark, a computer network traffic analyzer, is related to uncontrolled recursion. Exploiting this vulnerability can allow attackers to cause service failures...
The vulnerability of the fromP2pListFilter() function (/goform/P2pListFilter) in the HTTP server software for Tenda F456 routers allows a hacker to execute arbitrary commands.
The vulnerability of the FromWriteFacMac function /goform/WriteFacMac in the httpd microprogramming software for Tenda F456 routers is related to the lack of measures to sanitize input data when processing the mac parameter. Exploiting this vulnerability allows a remote attacker to execute...
The vulnerability of the dissect_rpkirtr_pdu() function in the Wireshark network traffic analyzer allows a hacker to cause a service failure.
The vulnerability of the dissectrpkirtrpdu function in the Wireshark network traffic analyzer is related to the execution of a loop with an unreachable exit condition. Exploiting this vulnerability can allow attackers to cause service failures...
The vulnerability of the MySQL protocol discroller, a traffic analyzer for computer networks by Wireshark, allows a hacker to cause a service failure.
The vulnerability of the MySQL protocol analyzer and traffic analyzer for computer networks by Wireshark is related to access to an uninitialized pointer. Exploiting this vulnerability can allow attackers to cause service failures...
The vulnerability of the WebSocket protocol analyzer, a traffic analysis tool for computer networks developed by Wireshark, allows a hacker to cause a service failure.
The vulnerability of the WebSocket protocol analyzer, a traffic analysis tool for computer networks developed by Wireshark, is related to improper management of sequential memory allocation. Exploiting this vulnerability can allow attackers to cause service failures...
The vulnerability of the dissect_icmpv6_nd_opt() function in the ICMPv6 protocol analyzer for computer network traffic analysis tool Wireshark allows a hacker to cause a service failure.
The vulnerability of the dissecticmpv6ndopt function in the ICMPv6 packet analyzer of Wireshark, a tool for analyzing computer network traffic, is related to an uncontrolled recursion. Exploiting this vulnerability could allow attackers to cause service failures...
The vulnerability of the fromSafeClientFilter() function (/goform/SafeClientFilter) in the Tenda F456 router software allows a attacker to execute arbitrary code or cause service failures.
The vulnerability of the fromSafeClientFilter function /goform/SafeClientFilter in the Tenda F456 router microprogramming system is related to the copying of buffers without checking the size of the input data when processing parameters menufacturer and Go. Exploiting this vulnerability allows a...
The vulnerability of the SafeEmailFilter() function (/goform/SafeEmailFilter) in the Tenda F456 router software allows a hacker to execute arbitrary code or cause service failures.
The vulnerability of the SafeEmailFilter function /goform/SafeEmailFilter of the Tenda F456 router software lies in the copying of buffers without checking the size of the input data when processing the page parameter. Exploiting this vulnerability allows an attacker to execute arbitrary code or...
The vulnerability of the fromSetIpBind() function (/goform/SetIpBind) in the httpd microprogramming software for Tenda F456 routers allows a attacker to execute arbitrary code or cause a service failure.
The vulnerability of the fromSetIpBind function /goform/SetIpBind in the HTTPD microprogramming software for Tenda F456 routers is related to the copying of buffers without checking the size of the input data when processing the page parameter. Exploiting this vulnerability could allow an attacke...
The vulnerability of the Git-based software platform for collaborative code development on GitLab arises from the lack of protective measures for website structures, allowing attackers to execute arbitrary code.
The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
The vulnerability of the codec_sbcdecode() function in the SBC analyzer of the Wireshark computer network analysis tool allows a hacker to cause a service failure or execute arbitrary code.
The vulnerability of the codecsbcdecode function in the SBC analyzer of Wireshark, a computer network analysis tool, is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow attackers to cause service failures or execute arbitrary code...
The vulnerability of the dissect_controloption_value() function in the SANE protocol analyzer of Wireshark allows a hacker to cause a service failure.
The vulnerability of the dissectcontroloptionvalue function in the SANE protocol analyzer, Wireshark, for analyzing computer network traffic, is related to the execution of a loop with an unreachable exit condition. Exploiting this vulnerability can allow attackers to cause service failures...
The vulnerability of the k12_dump_src_setting() function in the K12 file parser and RF5 traffic analyzer software from Wireshark allows a hacker to cause service interruptions.
The vulnerability of the k12dumpsrcsetting function in the K12 file parser and the RF5 traffic analyzer of Wireshark allows for buffer copying without checking input data. Exploiting this vulnerability can enable a hacker to cause service failures...
The vulnerability of the VoIP gateway software Telecom MG, related to improper code generation, allows a hacker to execute arbitrary commands with root privileges.
The vulnerability of the VoIP gateway software of Telecom MG is related to incorrect code generation. Exploiting this vulnerability allows a remote attacker to execute arbitrary code with root privileges...
The vulnerability of the mod_authn_socache module in the Apache HTTP Server allows a hacker to trigger a service failure.
The vulnerability of the modauthn Socache module in the Apache HTTP Server is related to pointer dereferencing. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...
The vulnerability of the loginauth() function in the cgi-bin/cstecgi.cgi script of the TOTOLINK N300RH router’s microprogramming system allows a intruder to execute arbitrary code or cause a service failure.
The vulnerability of the loginauth function in the cgi-bin/cstecgi.cgi script of the TOTOLINK N300RH router’s microprogramming system is related to the issue of the operation going beyond the buffer in memory when processing the password parameter stored in variable v10. Exploiting this...
The vulnerability of the Apache Kafka message broker, related to the use of memory after it is freed, allows attackers to compromise the confidentiality and integrity of the protected information.
The vulnerability of the Apache Kafka message dispatcher is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to compromise the confidentiality and integrity of the protected information...
The vulnerability of the Apache HTTP Server web server, related to deficiencies in access control, allows attackers to escalate their privileges.
The vulnerability of the Apache HTTP Server is related to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor to enhance their privileges remotely...