The vulnerability of the Find My function in macOS and iPadOS systems allows a perpetrator to disclose protected information.

The vulnerability of the Find My function in macOS and iPadOS is related to insufficient protection of service data. Exploiting this vulnerability can allow attackers to disclose sensitive information...

The vulnerability of the DDSH CLI interface for Dell EMC Data Domain Operating Systems allows a perpetrator to execute arbitrary commands.

The vulnerability of the DDSH CLI interface for Dell EMC Data Domain Operating Systems is related to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability can allow attackers to execute arbitrary commands...

The vulnerability of the Adobe Experience Manager content and media data management system, related to configuration errors, allows a hacker to bypass existing security restrictions and execute arbitrary code.

The vulnerability of the Adobe Experience Manager content and media data management system is related to configuration errors. Exploiting this vulnerability can allow a malicious actor to bypass existing security restrictions and execute arbitrary code...

The vulnerability of Android operating systems, related to deficiencies in access control, allows attackers to execute arbitrary code.

The vulnerability of Android operating systems is related to deficiencies in access control. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the Site Survey web interface of the Intelbras RX 1500 and RX 3000 software allows attackers to perform cross-site scripting attacks.

The vulnerability of the Site Survey web interface of the Intelbras RX 1500 and RX 3000 software lies in the lack of measures taken to neutralize special elements during the processing of ESSID identifiers. Exploiting this vulnerability allows a remote attacker to perform domain-external attacks ...

The vulnerability in the tmUnblock.cgi script of the wireless router software from Linksys WRT120N allows a intruder to gain unauthorized access to the control web interface.

The vulnerability of the tmUnblock.cgi microprogramming software for wireless routers like Linksys WRT120N is related to buffer overflows in the stack when processing the TMBlockURL parameter. Exploiting this vulnerability allows an attacker to gain unauthorized access to the web-based control...

The vulnerability in the web interface for managing Microprogramming Software on Intelbras RX 1500 and RX 3000 allows attackers to carry out cross-site scripting attacks.

The vulnerability of the web interface for managing Microprogramming Software on Intelbras RX 1500 and RX 3000 is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks by sendi...

The vulnerability of the Framework component in Android operating systems, which allows a hacker to increase their privileges

The vulnerability of the Framework component in Android operating systems is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of the wiki system’s function in the Atlassian Confluence platform allows attackers to carry out phishing attacks.

The vulnerability of the wiki system’s function for creating a unified knowledge base in Atlassian Confluence is related to the redirection of URLs to an unreliable website. Exploiting this vulnerability allows a malicious actor, operating remotely, to carry out phishing attacks by sending GET...

The vulnerability of the NVIDIA Virtual GPU Manager driver, which allows a hacker to gain unauthorized access to protected information.

The vulnerability of the NVIDIA Virtual GPU Manager driver relates to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the console-based graphic editor ImageMagick, related to reading beyond the buffer limit of memory, allows a hacker to gain unauthorized access to information.

The vulnerability of the console-based graphic editor ImageMagick is related to reading data beyond the buffer limit of memory. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to information...

The vulnerability of the Django web application software, related to deficiencies in the error reporting mechanism, allows attackers to compromise the confidentiality of protected information.

The vulnerability of the Django web application framework is related to shortcomings in the error reporting mechanism. Exploiting this vulnerability allows an attacker to compromise the confidentiality of the information being protected...

The vulnerability of NVIDIA GeForce, Quadro, NVS, and Tesla graphics processors’ microprogramming software relates to the execution of operations beyond buffer boundaries in memory, allowing attackers to gain unauthorized access to protected information.

The vulnerability of NVIDIA GeForce, Quadro, NVS, and Tesla graphics processors’ microprogramming software relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected information...

The vulnerability of the /html/atendido/Profile_Atendido.php script of the WeGIA web manager allows a perpetrator to disclose confidential information or cause service denial.

The vulnerability of the WeGIA web manager’s /html/atendido/ProfileAtendido.php script is related to the failure to protect the SQL query structure when processing the idatendido parameter. Exploiting this vulnerability can allow an attacker to disclose confidential information or cause service...

The vulnerability in the WeGIA web manager’s script /html/funcionario/dependente_editarDoc.php allows a perpetrator to disclose confidential information, increase their privileges, or execute arbitrary code.

The vulnerability of the /html/funcionario/dependenteeditarDoc.php web manager of WeGIA is related to the failure to protect the SQL query structure when processing the parameter idatendidofamiliares. Exploiting this vulnerability can allow an attacker to disclose confidential information, enhanc...

The vulnerability of the Zimbra Collaboration Suite’s corporate email management system, related to the lack of measures taken to protect the website structure, allows attackers to perform cross-site scripting attacks.

The vulnerability of the Zimbra Collaboration Suite email management system is related to the lack of measures taken to protect the website structure when importing files into the portfolio. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

The vulnerability in the WeGIA web manager’s /html/funcionario/profile_dependente.php script allows a perpetrator to disclose confidential information, increase their privileges, or execute arbitrary code.

The vulnerability in the WeGIA web manager’s /html/funcionario/profiledependente.php script relates to the failure to protect the SQL query structure when processing the iddependente parameter. Exploiting this vulnerability can allow an attacker to disclose confidential information, enhance their...

The vulnerability of the Notes component in operating systems iPadOS and macOS, which allows a hacker to disclose sensitive information

The vulnerability of the Notes component in iPadOS and macOS systems relates to the disclosure of information through registration files. Exploiting this vulnerability can allow attackers to disclose protected information...

The vulnerability of the Firewall software for creating containerized systems like Moby allows a intruder to gain unauthorized access to protected information.

The vulnerability of the Moby containerization system’s firewall software relates to improper initialization of resources. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the personalizacao.php script of the WeGIA web manager allows attackers to perform cross-site scripting attacks.

The vulnerability of the personalizacao.php script of the WeGIA web manager is related to the failure to protect the structure of the web page when processing the err parameter. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks XSS remotely...

The vulnerability of the WeGIA web manager’s script /html/saude/profile_paciente.php, which allows a hacker to disclose confidential information

The vulnerability of the WeGIA web manager’s script /html/saude/profilepaciente.php is related to the failure to protect the SQL query structure when processing the parameter idfuncionario. Exploiting this vulnerability can allow an attacker, operating remotely, to disclose confidential informati...

The vulnerability of the CFNetwork framework in iPadOS and macOS systems, which allows a hacker to trigger a service failure.

The vulnerability of the CFNetwork framework in iPadOS and macOS relates to the use of memory after it is released. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of the StyleElement class in the SVG image processing library canvg allows an attacker to execute a “ prototype pollution ” attack.

The vulnerability of the StyleElement class in the SVG image processing library is related to uncontrolled changes to prototype attributes of objects. Exploiting this vulnerability could allow a malicious actor to execute a “prototype pollution” attack...

The vulnerability in the WeGIA web manager’s script pre_cadastro_atendido.php allows a violator to perform cross-site scripting attacks.

The vulnerability in the WeGIA web manager’s script precadastroatendido.php is related to insufficient protection of the website structure when processing the msge parameter. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks XSS remotely...

The vulnerability of the WeGIA web manager’s personalizacao_imagem.php script allows attackers to perform cross-site scripting (XSS) attacks.

The vulnerability of the personalizacaoimagem.php web handler of the WeGIA browser is related to the failure to protect the website structure when processing the err parameter. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks XSS remotely...

The vulnerability in the WeGIA web manager’s script /html/funcionario/dependente_editarInfoPessoal.php allows a perpetrator to disclose confidential information, increase their privileges, or execute arbitrary code.

The vulnerability of the WeGIA web manager’s script /html/funcionario/dependenteeditarInfoPessoal.php is related to the lack of protection for the SQL query structure during the processing of the parameter idatendidofamiliares. Exploiting this vulnerability can allow an attacker to disclose...

The vulnerability in the WeGIA web manager’s script /html/funcionario/dependente_editarEndereco.php allows a perpetrator to disclose confidential information, increase their privileges, or execute arbitrary code.

The vulnerability in the WeGIA web manager’s script /html/funcionario/dependenteeditarEndereco.php relates to the failure to protect the SQL query structure when processing the parameter idatendidofamiliares. Exploiting this vulnerability can allow an attacker to disclose confidential information...

The vulnerability of the XtremIO Management Server (XMS) on the Dell XtremIO storage platform allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the XtremIO Management Server XMS on the Dell XtremIO storage platform involves the disclosure of information through log files. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of NVIDIA GeForce, Quadro, NVS, and Tesla graphics processors’ microprogramming software relates to the use of memory after it is freed. This allows attackers to gain unauthorized access to protected information, elevate their privileges, execute arbitrary code, or cause service interruptions.

The vulnerability of NVIDIA GeForce, Quadro, NVS, and Tesla graphics processors’ microprogramming software relates to the use of memory after it is freed. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected information, enhance their privileges, execute...

The vulnerability of the Dell Encryption endpoint protection software (previously known as Dell Data Protection) and the Dell Security Management Server, related to improper handling of symbolic links before accessing files, allows attackers to exploit their privileges.

The vulnerability of the Dell Encryption endpoint protection software previously known as Dell Data Protection and the Dell Security Management Server security management server lies in the improper handling of symbolic links before accessing files. Exploiting this vulnerability can allow attacke...

The software of the centralized backup and disaster recovery management system of Dell PowerProtect Data Manager is vulnerable due to insufficient validation of input data. This allows attackers to read arbitrary files.

The vulnerability of the software for centralized backup and disaster recovery management in Dell PowerProtect Data Manager is related to insufficient validation of input data. Exploiting this vulnerability could allow an attacker, operating remotely, to read arbitrary files...

The vulnerability of NVIDIA GeForce, Quadro, NVS, and Tesla graphics processors’ microprogramming software relates to the disclosure of system data by unauthorized individuals, allowing attackers to gain unauthorized access to protected information.

The vulnerability of NVIDIA GeForce, Quadro, NVS, and Tesla graphics processors’ microprogramming software relates to the disclosure of system data by unauthorized individuals. Exploiting this vulnerability can allow a hacker to gain unauthorized access to protected information...

The vulnerability of the ELMED MIS platform, due to deficiencies in access control mechanisms, allows unauthorized access by attackers, thereby compromising the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the ELMED MIS platform is related to deficiencies in access control mechanisms. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information and compromise its confidentiality, integrity, and accessibility...

The vulnerability of the software for programming operator panels of the VT series, such as VT-Designer, arises from writing beyond buffer boundaries, allowing a hacker to execute arbitrary code.

The vulnerability of the software for programming operator panels of the VT series, such as VT-Designer, lies in the writing beyond buffer boundaries when processing PM3 files. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the formSetEnableWizard() function in the /goform/formSetEnableWizard file of the D-Link DIR-619L router’s microprogramming software allows a hacker to trigger a service failure.

The vulnerability of the formSetEnableWizard function in the /goform/formSetEnableWizard file of the D-Link DIR-619L router’s microprogramming software is related to the issue of the operation exceeding the buffer boundaries in memory when processing the curTime parameter. Exploiting this...

The vulnerability of the Squid proxy server, related to buffer overflows in the dynamic memory when processing URN headers, allows attackers to execute arbitrary code.

The vulnerability of the Squid proxy server is related to the overflow of buffers in the dynamic memory during the processing of URN headers. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by sending specially crafted HTTP requests...

The vulnerability of the formSetWAN_Wizard51() function (/goform/formSetWAN_Wizard51) in the D-Link DIR-619L router microprogramming software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the formSetWANWizard51 function /goform/formSetWANWizard51 in the D-Link DIR-619L router microprogramming software is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to compromise the...

The vulnerability of the WeGIA web manager for charitable organizations stems from the failure to implement measures to protect the SQL query structure, allowing attackers to gain unauthorized access to protected information.

The vulnerability of the WeGIA web manager for charitable organizations is related to the failure to implement measures to protect the SQL query structure when processing the id parameter. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to...

The vulnerability of microprogrammed software in HP Color LaserJet MFP multifunctional printers, related to insufficient protection of operational data, allows attackers to gain unauthorized access to protected information.

The vulnerability of microprogrammed software in HP Color LaserJet MFP multifunctional printers is related to insufficient protection for the local address book’s service data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the mcp-remote proxy server lies in its failure to eliminate special elements used in the operating system command, allowing attackers to execute arbitrary commands.

The vulnerability of the mcp-remote proxy server is related to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

The vulnerability of the Wlan AP Driver software driver in MediaTek microprogramming chips allows attackers to enhance their privileges and disclose protected information.

The vulnerability of the Wlan AP Driver software driver from MediaTek relates to reading data beyond the buffer in memory. Exploiting this vulnerability can allow attackers to enhance their privileges and disclose sensitive information...

The vulnerability of the Wlan AP Driver software driver in MediaTek microprogramming chips allows attackers to enhance their privileges and disclose protected information.

The vulnerability of the Wlan AP Driver software driver from MediaTek relates to reading data beyond the buffer in memory. Exploiting this vulnerability can allow attackers to enhance their privileges and disclose sensitive information...

The vulnerability of the Wlan AP Driver software driver from MediaTek’s microprogramming chips allows attackers to enhance their privileges.

The vulnerability of the Wlan AP Driver software driver from MediaTek is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability can allow a remote attacker to gain increased privileges...

The vulnerability of the OpenSynergy BlueSDK Bluetooth protocol stack, which allows a hacker to disclose protected information

The vulnerability of the OpenSynergy BlueSDK Bluetooth protocol lies in the improper handling of exceptional states. Exploiting this vulnerability can allow a remote attacker to disclose protected information...

The vulnerability of the Sandbox component in macOS operating systems allows a intruder to gain unauthorized access to protected information.

The vulnerability of the Sandbox component in macOS operating systems is related to deficiencies in access control. Exploiting this vulnerability can allow a perpetrator to gain unauthorized access to protected information...

The vulnerability of the software for programming operator panels of the VT series, such as VT-Designer, arises from writing beyond buffer boundaries, allowing a hacker to execute arbitrary code.

The vulnerability of the software for programming operator panels of the VT series, such as VT-Designer, lies in the writing beyond buffer boundaries when processing PM3 files. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the microprogrammed software of D-Link DIR-823-Pro wireless routers allows a intruder to gain unauthorized access to Telnet services.

The vulnerability of D-Link DIR-823-Pro wireless routers’ microprogramming software is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to gain unauthorized access to Telnet services...

The vulnerability of the generate_pass_from_mac function in D-Link DCS-6517 and DCS-7517 microprogrammed camera software allows a intruder to compromise the confidentiality of the protected information.

The vulnerability of the generatepassfrommac function in D-Link DCS-6517 and DCS-7517 microprogrammed camera software is related to insufficient entropy. Exploiting this vulnerability allows a remote attacker to compromise the confidentiality of the protected information...

The vulnerability of the entry_delete UploadFiles() function in the Forminator plugin of the WordPress content management system allows a hacker to execute arbitrary code.

The vulnerability of the entrydelete UploadFiles function in the Forminator plugin of the WordPress content management system is related to improper external manipulation of file names or file paths. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...