90509 matches found
The vulnerability of the TLS Dissector component of the Wireshark computer network traffic analyzer allows a hacker to execute arbitrary code or cause a service failure.
The vulnerability of the TLS Dissector component of the Wireshark computer network traffic analyzer is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause a service failure...
The vulnerability of the decompress_files() function on the platform for security monitoring and threat detection by Wazuh allows a perpetrator to execute arbitrary code.
The vulnerability of the decompressfiles function on the Wazuh security monitoring and threat detection platform is related to an incorrect restriction on the path name to the restricted catalog. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...
The vulnerability of the Webhook component of the AI agent OpenClaw (formerly known as ClawdBot or MoltBot) allows a violator to trigger a service failure.
The vulnerability of the Webhook component of the AI agent OpenClaw formerly known as ClawdBot or MoltBot relates to the unlimited distribution of resources. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...
The vulnerability of the AI agent OpenClaw (formerly known as ClawdBot or MoltBot) relates to the disclosure of information based on temporal discrepancies. This vulnerability allows a intruder to gain unauthorized access to protected information.
The vulnerability of the AI agent OpenClaw formerly known as ClawdBot or MoltBot involves exploiting time-based discrepancies in data disclosure. Exploiting this vulnerability can allow a remote attacker to gain unauthorized access to protected information...
The vulnerability of the BlueBubbles plugin for the AI agent OpenClaw (formerly known as ClawdBot or MoltBot) allows a hacker to bypass existing security mechanisms.
The vulnerability of the BlueBubbles plugin for the AI agent OpenClaw previously known as ClawdBot or MoltBot is related to the lack of authentication for a critical function. Exploiting this vulnerability allows a malicious actor to bypass existing security mechanisms remotely...
The vulnerability of the IDS system’s detection and prevention mode in Suricata allows a intruder to trigger a service failure.
The vulnerability of the IDS system’s intrusion detection and prevention mechanism, Suricata, is related to its algorithmic complexity. Exploiting this vulnerability could allow a malicious actor, operating remotely, to trigger a service failure...
The vulnerability of the preview mode in the RoundCube Webmail client allows attackers to perform cross-site scripting attacks (XSS).
The vulnerability of the preview mode in RoundCube Webmail involves a lack of measures taken to protect the website structure. Exploiting this vulnerability allows an attacker to perform cross-site scripting attacks XSS remotely...
The vulnerability of the RoundCube Webmail email client, related to deficiencies in the deserialization mechanism, allows attackers to upload arbitrary files.
The vulnerability of the RoundCube Webmail email client is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability allows an attacker who operates remotely to write arbitrary files...
The vulnerability in the Firefox web browser and the Thunderbird email client relates to the use of an uninitialized resource, allowing a hacker to trigger a service failure.
The vulnerability in the Firefox web browser and the Thunderbird email client relates to the use of an uninitialized resource. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...
The vulnerability of the GC component in the Firefox web browser and the Thunderbird email client, which allows a hacker to trigger a service failure
The vulnerability of the GC component in the Firefox web browser and the Thunderbird email client is related to the use of memory after it is released. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the xmlParseAttValueComplex() function in the parser.c component of the Libxml2 library allows a attacker to cause a service failure.
The vulnerability of the xmlParseAttValueComplex function in the parser.c component of the Libxml2 library is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the xmlFAParseCharClassEsc() function in the xmlregexp.c component of the Libxml2 library allows a attacker to cause a service failure.
The vulnerability of the xmlFAParseCharClassEsc function in the xmlregexp.c component of the Libxml2 library is related to pointer dereferencing errors. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the nts_client_process_response() function in the ntpd/nts_client.c component of the NTPsec network time protocol allows a intruder to cause a service failure.
The vulnerability of the ntsclientprocessresponse function in the ntpd/ntsclient.c component of the NTPsec time synchronization protocol is related to reading data from within a buffer that is beyond acceptable limits. Exploiting this vulnerability could allow a remote attacker to cause a service...
The vulnerability of the uccanoncompatdecomp() function in the ucdata.c component of the Kerberos authentication protocol allows a attacker to cause a service failure.
The vulnerability of the uccanoncompatdecomp function in the ucdata.c component of the Kerberos authentication protocol is related to buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to access confidential data, compromise its integrity, and cause service failur...
The vulnerability of the parser.c component in the Keepalived network traffic balancing system allows a attacker to cause a service failure.
The vulnerability of the parser.c component in the Keepalived network traffic balancing system is related to the situation where the operation results in values exceeding the memory buffer limits. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the BPF Libbpf loader library, related to pointer dereferencing errors, allows a perpetrator to cause a service failure.
The vulnerability of the BPF Libbpf loader library is related to pointer dereferencing errors. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the coroparse.c component in the Corosync cluster engine allows a attacker to cause a service failure.
The vulnerability of the coroparse.c component in the Corosync cluster engine is related to the improper release of memory before deleting the last reference. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the PARSEC security subsystem, related to type conversion errors, allows a perpetrator to trigger a service failure.
The vulnerability of the PARSEC security subsystem is related to type conversion errors. Exploiting this vulnerability could allow an attacker to cause a service failure...
Vulnerability of the `parsecsecid` and `pscsecid_to_lbl` functions in Linux Astra Module kernels, allowing a hacker to cause a service failure
The vulnerability of the parsecsecid and pscsecidtolbl functions in Linux Astra Modules is related to errors during thread blocking. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the scan_ps function on the CUPS printing server allows a perpetrator to cause a service failure.
The vulnerability of the scanps function on the CUPS printing server is related to pointer arithmetic errors. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the formQuickIndex function in the Tenda AC9 router’s microprogramming software allows a hacker to induce a service failure.
The vulnerability of the formQuickIndex function in the Tenda AC9 router’s microprogramming software is related to buffer overflow in the stack when processing the PPPOEPassword parameter. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the AI agent OpenClaw (formerly known as ClawdBot or MoltBot) arises from an incorrect restriction on the path name to the catalog, allowing attackers to write arbitrary files.
The vulnerability of the AI agent OpenClaw formerly known as ClawdBot or MoltBot is related to an incorrect restriction on the path name to the catalog. Exploiting this vulnerability allows a malicious actor to write arbitrary files...
The vulnerability of the Suricata intrusion detection and prevention system, due to uncontrolled resource consumption, allows an intruder to trigger a service failure.
The vulnerability of the Suricata intrusion detection and prevention system is related to an uncontrolled consumption of resources. Exploiting this vulnerability could allow a malicious actor, operating remotely, to cause service interruptions...
The vulnerability of the dcerpc parser in the Suricata intrusion detection and prevention system allows a intruder to trigger a service failure.
The vulnerability of the dcerpc parser in the Suricata intrusion detection and prevention system is related to its algorithmic complexity. Exploiting this vulnerability could allow a malicious actor, operating remotely, to cause service interruptions...
The vulnerability of the GC component in the Firefox web browser and the Thunderbird email client allows attackers to gain access to confidential data and compromise its integrity.
The vulnerability of the GC component in the Firefox web browser and the Thunderbird email client is related to the simultaneous execution using a shared resource with incorrect synchronization. Exploiting this vulnerability can allow an attacker to gain access to confidential data and compromise...
The vulnerability of Firefox browser and Thunderbird email client lies in the use of memory after it is freed, allowing an attacker to trigger a service failure.
The vulnerability of Firefox browser and Thunderbird email client lies in the use of memory after it is freed. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...
The vulnerability in the Firefox web browser and Thunderbird email client, related to the disclosure of information, allows attackers to gain access to confidential data.
The vulnerability in the Firefox web browser and Thunderbird email client relates to the disclosure of information. Exploiting this vulnerability can allow a malicious actor to gain access to confidential data...
The vulnerability of the PackageFromTask() function in the program, which is used for installing, updating, and deleting software packages in the Apt system, allows a malicious actor to trigger a service failure.
The vulnerability of the PackageFromTask function in the software for installing, updating, and deleting Apt software packages is related to reading data beyond the allowed buffer size. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the PARSEC security subsystem, related to integer overflow, allows a attacker to trigger a service failure.
The vulnerability of the PARSEC security subsystem is related to a numerical overflow. Exploiting this vulnerability could allow an attacker, operating remotely, to cause a service failure...
The vulnerability of the krb5int_utf8_normalize() function in the ucstr.c component of the Kerberos authentication protocol allows a perpetrator to access confidential data.
The vulnerability of the krb5intutf8normalize function in the ucstr.c component of the Kerberos authentication protocol is related to reading data beyond the allowable buffer size. Exploiting this vulnerability could allow an attacker to access confidential data...
The vulnerability of the Parsec Cups protection and marking device lies in the lack of memory release after its effective lifespan, allowing a intruder to trigger a service failure.
The vulnerability of the Parsec Cups protection and marking mechanism is related to the lack of memory release after the effective lifespan of the device. Exploiting this vulnerability could allow an attacker to trigger a maintenance failure...
The vulnerability of the `factor` utility in the GNU Core Utilities suite of operating system utilities allows a hacker to cause a service failure.
The vulnerability of the factor utility in the GNU Core Utilities suite is related to its dependence on behaviors that are undefined for each type of implementation. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability in the `src/cfgparse.c` component of the HAProxy server software allows a attacker to cause a service failure.
The vulnerability in the src/cfgparse.c component of the HAProxy server software is related to errors in pointer dereferencing of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the fetchWithGuard() function in the AI agent OpenClaw (formerly ClawdBot or MoltBot) allows a violator to trigger a service failure.
The vulnerability of the fetchWithGuard function in the AI agent OpenClaw formerly ClawdBot or MoltBot is related to the unlimited distribution of resources. Exploiting this vulnerability could allow a remote attacker to cause service failures...
The vulnerability of the Nextcloud Talk plugin with the AI agent OpenClaw (previously known as ClawdBot or MoltBot) allows a hacker to bypass existing security mechanisms.
The vulnerability of the Nextcloud Talk plugin and the AI agent OpenClaw previously known as ClawdBot or MoltBot is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to bypass existing security mechanisms remotely...
The vulnerability of the krb5 parser in the Suricata intrusion detection and prevention system allows a perpetrator to trigger a service failure.
The vulnerability of the krb5 parser in the Suricata intrusion detection and prevention system is related to its algorithmic complexity. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...
The vulnerability of the RoundCube Webmail email client, which can be exploited by introducing or modifying arguments, allows attackers to perform CSRF attacks.
The vulnerability of the RoundCube Webmail email client is related to the implementation or modification of arguments. Exploiting this vulnerability can allow a malicious actor to perform a CSRF attack remotely...
The vulnerability in the Firefox web browser and the Thunderbird email client relates to the ability to write beyond the buffer limit, allowing an attacker to trigger a service failure.
The vulnerability in the Firefox web browser and the Thunderbird email client is related to buffer overflow attacks. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...
The vulnerability of the UI components of the Firefox web browser and the Thunderbird email client, which allows a hacker to access confidential data
The vulnerability of the UI component in the Firefox web browser and the Thunderbird email client is related to the disclosure of information. Exploiting this vulnerability can allow a malicious actor to gain access to confidential data...
The vulnerability in the Firefox web browser and the Thunderbird email client relates to access to an uninitialized pointer, allowing a malicious actor to trigger a service failure.
The vulnerability in the Firefox web browser and the Thunderbird email client relates to access to an uninitialized pointer. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...
The vulnerability of the WebAssembly component in the Firefox web browser and the Thunderbird email client, which allows a hacker to trigger a service failure
The vulnerability of the WebAssembly component in the Firefox web browser and the Thunderbird email client is related to type conversion errors. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...
The vulnerability in the Google Chrome web browser, related to errors in HTTP requests, allows a hacker to induce a service failure.
The vulnerability in the Google Chrome web browser is related to errors in HTTP requests. Exploiting this vulnerability can allow a malicious actor to cause a service failure through a specially created HTML page...
The vulnerability in the Google Chrome web browser, related to overflowing dynamic memory buffers, allows a malicious actor to trigger a service failure.
The vulnerability in the Google Chrome web browser is related to overflowing the buffer in the dynamic memory. Exploiting this vulnerability can allow a remote attacker to cause a service failure through the use of a specially created PDF file...
The vulnerability of the xmlBuildRelativeURI() function in the uri.c component of the Libxml2 library allows a attacker to trigger a service failure.
The vulnerability of the xmlBuildRelativeURI function in the uri.c component of the Libxml2 library is related to reading data beyond the allowable buffer size. Exploiting this vulnerability could allow a malicious actor to cause service failures...
The vulnerability of the xmlFAParseQuantExact() function in the xmlregexp.c component of the Libxml2 library allows a attacker to cause a service failure.
The vulnerability of the xmlFAParseQuantExact function in the xmlregexp.c component of the Libxml2 library is related to integer overflow. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the extract_file() function in the GNU Tar archive viewer allows a hacker to trigger a service failure.
The vulnerability of the extractfile function in the GNU Tar archive viewer is related to reading data beyond the buffer’s allowed limits. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...
The vulnerability of the copy_stack() function on the printing server of CUPS allows a attacker to cause a service failure.
The vulnerability of the copystack function in the CUPS printing server relates to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to access confidential data, compromise its integrity, and cause service failures...
The vulnerability in the src/kex.c component of the SSH2 protocol implementation library Libssh2 allows a attacker to access confidential data.
The vulnerability in the src/kex.c component of the SSH2 protocol implementation library Libssh2 involves reading data beyond the allowed buffer limits. Exploiting this vulnerability could allow a malicious actor to gain access to confidential data remotely...
The vulnerability of the ausearch-parse.c component of the Linux Audit storage and record retrieval tool allows a perpetrator to trigger a service failure.
The vulnerability of the ausearch-parse.c component, a storage and search tool for audit records in Linux Audit, relates to reading data from the buffer beyond its allowable limits. Exploiting this vulnerability could allow an attacker to cause service failures...
The vulnerability of the NTPsec network time protocol lies in the reading of data from buffers within acceptable limits, allowing attackers to access confidential data.
The vulnerability of the NTPsec network time protocol lies in reading data from buffers within acceptable limits. Exploiting this vulnerability can allow a remote attacker to gain access to confidential data...