The vulnerability of the mDNSResponder demon in operating systems such as macOS, watchOS, iOS, iPadOS, tvOS, and visionOS, due to deficiencies in access control, allows attackers to escalate their privileges.

The vulnerability of the mDNSResponder on operating systems such as macOS, watchOS, iOS, iPadOS, tvOS, and visionOS is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of the mm/MADV_COLLAPSE components of the Linux operating system, which allows a hacker to cause a service failure.

The vulnerability of the mm/MADVCOLLAPSE component in the Linux operating system is related to a memory leak. Exploiting this vulnerability can allow an attacker to cause a system failure...

The vulnerability of the kernel component of the Linux operating system, which allows a hacker to cause a service failure

The vulnerability of the kernel component of the Linux operating system is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability in the template.cgi web interface of the Meteobridge software allows a perpetrator to bypass security restrictions, gain elevated privileges, and execute arbitrary commands.

The vulnerability of the template.cgi web interface of the Meteobridge software lies in the lack of authentication for critical functions, due to insufficient filtering of special elements. Exploiting this vulnerability allows a malicious actor to bypass security restrictions, gain increased...

The vulnerability of the IBM Guardium Data Protection platform regarding data security protection, related to deficiencies in the authentication mechanism, allows attackers to disclose the protected information.

The vulnerability of the IBM Guardium Data Protection platform relates to deficiencies in its authentication mechanism. Exploiting this vulnerability could allow a malicious actor, operating remotely, to disclose the protected information...

The vulnerability of sub_42581C in the microprogrammed Wi-Fi router software of Tenda AX12 allows a hacker to execute arbitrary commands.

The vulnerability of sub42581C in Tenda AX12 Wi-Fi routers exists due to the lack of measures taken to neutralize special elements used in the operating system’s processing of the staticIp parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

The vulnerability of the httpd_get_parm() function in the jhttpd component of D-Link DI-8100 router microprogramming software allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the httpdgetparm function /login.cgi in the jhttpd component of D-Link DI-8100 router microprogramming software is caused by a buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility o...

The vulnerability of the declarative delivery tool for GitOps on Kubernetes Argo CD, related to the lack of measures taken to protect the website structure, allows attackers to perform cross-site scripting attacks.

The vulnerability of GitOps’ continuous delivery tool for Kubernetes Argo CD is related to the lack of protective measures for the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

The vulnerability of Intel microprogramming software, related to insufficient protection of system data, allows attackers to gain unauthorized access to protected information.

The vulnerability of Intel microprogramming software is related to insufficient protection of system data. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...

The vulnerability of the GrantAccessToMultipleFiles interface in the Core Services framework of operating systems macOS, iOS, iPadOS, and tvOS allows a perpetrator to bypass the sandbox protection mechanisms and gain unauthorized access to protected information.

The vulnerability of the GrantAccessToMultipleFiles interface in the Core Services framework of operating systems macOS, iOS, iPadOS, and tvOS is related to insufficient protection of service data. Exploiting this vulnerability can allow attackers to bypass the sandbox protection mechanisms and...

The vulnerability of the do_update_vps() function in the Avast Business Antivirus for Linux antivirus tool allows attackers to perform spoofing attacks.

The vulnerability of the doupdatevps function in the Avast Business Antivirus for Linux antivirus tool is related to the use of files and directories accessible from external sources. Exploiting this vulnerability could allow attackers to carry out spoofing attacks by manipulating update files...

The vulnerability of the BFCache technology used by Google Chrome and Microsoft Edge browsers allows a hacker to gain unauthorized access to protected information.

The vulnerability of the BFCache technology used by Google Chrome and Microsoft Edge is related to insufficient protection of service data. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected information...

The vulnerability of the setParentalRules() function in TOTOLINK A810R router software allows a intruder to execute arbitrary code or cause a service failure.

The vulnerability of the setParentalRules function in TOTOLINK A810R router microprogramming software is related to buffer overflows in the stack when processing the startTime and endTime parameters. Exploiting this vulnerability could allow an attacker to execute arbitrary code or cause service...

The vulnerability of the f2fs component of the Linux operating system’s kernel, which allows a hacker to cause a service failure

The vulnerability of the f2fs component of the Linux operating system’s kernel relates to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the i2c component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the i2c component in the Linux operating system’s kernel is related to integer overflow. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the mm/swapfile component in the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the mm/swapfile component in the Linux operating system’s kernel is related to incorrect resource locking. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the zmap.c component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the zmap.c component in the Linux operating system is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the Linux operating system’s FPGA core component, which allows a hacker to trigger a service failure

The vulnerability of the Linux operating system’s FPGA kernel component is related to a memory leak. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerabilities of EDAC/highbank components in the Linux operating system allow attackers to trigger service failures.

Vulnerability of EDAC/highbank components in Linux operating systems. Exploitation of this vulnerability can allow attackers to cause system failures...

The vulnerability of Linux kernel’s mm/hugetlb components, which allows attackers to trigger a service failure

The vulnerability of Linux kernel’s mm/hugetlb components is related to exception handling deficiencies. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the “reset” component of the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the “reset” component in the Linux operating system’s kernel is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the Microsoft Power Apps development environment, related to insufficient validation of incoming requests, allows a attacker to execute an SSRF attack.

The vulnerability of the Microsoft Power Apps development environment is related to insufficient testing of incoming requests. Exploiting this vulnerability could allow a malicious actor to execute an SSRF attack remotely...

The vulnerability of the bpf component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the bpf component in the Linux operating system’s kernel is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the krb_authenticate() function in the fs/smb/server/smb2pdu.c module of the Linux operating system allows a hacker to induce a service failure.

The vulnerability of the krbauthenticate function in the fs/smb/server/smb2pdu.c module of the Linux operating system’s kernel is related to the use of memory after it is freed. Exploiting this vulnerability could allow a attacker to cause a denial-of-service attack...

The vulnerability of the Squashfs component in the Linux operating system, which allows a hacker to trigger a service failure

The vulnerability of the Squashfs component in Linux operating systems is related to improper validation of input data. Exploiting this vulnerability can allow an attacker to cause service failures...

The vulnerability of the Azure DevOps software development tool, related to bypassing authentication using supposedly immutable data, allows attackers to escalate their privileges.

The vulnerability of the Azure DevOps software development tool relates to bypassing authentication using supposedly immutable data. Exploiting this vulnerability can allow a malicious actor to gain increased privileges remotely...

The vulnerability of the IBM Guardium Data Protection platform regarding data security, related to the leakage of information in error messages, allows attackers to disclose protected information.

The vulnerability of the IBM Guardium Data Protection platform relates to the leakage of information in error messages. Exploiting this vulnerability could allow a malicious actor, operating remotely, to disclose the protected information...

The vulnerability of the IBM Guardium Data Protection platform regarding data security protection, which stems from improper encoding or hiding of output data, allows attackers to load arbitrary files.

The vulnerability of the IBM Guardium Data Protection platform regarding data security protection is related to improper encoding or hiding of output data. Exploiting this vulnerability allows a malicious actor to remotely upload arbitrary files...

The vulnerability of software solutions that support the process of closing, consolidating, and reporting using IBM Cognos Controller and IBM Controller lies in the storage of passwords in an unencrypted form, allowing attackers to disclose protected information.

The vulnerability of software solutions that support the closing, consolidation, and reporting processes of IBM Cognos Controller and IBM Controller lies in the storage of passwords in an unencrypted form. Exploiting this vulnerability can allow a malicious actor to disclose the protected...

The vulnerability of the microprogramming software of Schneider Electric’s programmable logic controller Modicon M340 and its network modules BMXNOE0100, BMXNOE0110, and BMXNOR0200H lies in the insufficient protection of operational data. This allows unauthorized access by intruders to read, modify, or delete data, or to cause malfunctions in the system.

The vulnerability of the microprogramming software of Schneider Electric’s Modicon M340 programmable logic controller, as well as the network modules BMXNOE0100, BMXNOE0110, and BMXNOR0200H, is related to insufficient protection for operational data. Exploiting this vulnerability can allow an...

The vulnerability of the Git Utilities module for Drupal CMS systems lies in the insufficient protection of operational data, allowing attackers to gain access to read, modify, or delete data, or execute arbitrary code.

The vulnerability of the Git Utilities module for Drupal CMS systems is related to insufficient protection of operational data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to read, modify, or delete data, or execute arbitrary code...

The vulnerability of the OneDev collaborative development platform, related to insufficient protection of service data, allows a hacker to read arbitrary files.

The vulnerability of the OneDev collaborative development platform is related to insufficient protection for service data. Exploiting this vulnerability allows a remote attacker to read arbitrary files...

The vulnerability of the addToQueue() function in the development package for the blockchain platform Solana web3.js, which allows a hacker to gain unauthorized access to protected information.

The vulnerability of the addToQueue function in the development package for the Solana blockchain platform, web3.js, is related to insufficient protection for private keys when accessing crypto wallets. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected...

The vulnerability of the runtime.InternetConnection() function in Linksys E5600 router microprogramming software allows a hacker to execute arbitrary commands.

The vulnerability of the runtime.InternetConnection function in Linksys E5600 router microprogramming software is related to the lack of data cleaning measures at the control level. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

The vulnerability of the Linux operating system’s kernel component, which allows a hacker to cause a service failure

The vulnerability of the phy component in the Linux operating system’s kernel is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the fec_enet_free_buffers() function in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the fecenetfreebuffers function in the Linux operating system is related to the use of memory after deallocation. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the acpi_skip_set_wakeup_address() function in the Linux kernel’s ACPI component allows a hacker to trigger a service failure.

The vulnerability of the acpiskipsetwakeupaddress function in the Linux kernel’s ACPI component is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to trigger a system failure...

The vulnerability of the ip_metrics_convert() function in the ipv4 component of the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the ipmetricsconvert function in the ipv4 component of the Linux operating system’s kernel is related to the lack of memory release. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the bpf_send_signal_common() function in the Linux kernel component of the MM module allows a hacker to trigger a service failure.

The vulnerability of the bpfsendsignalcommon function in the Linux kernel component is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow an attacker to trigger a system failure...

The vulnerability of the `sof_ipc4_priority_mask_dfs_write()` function in the AsoC component of the Linux operating system allows a hacker to execute arbitrary code.

The vulnerability of the sofipc4prioritymaskdfswrite function in the AsoC component of the Linux operating system is related to integer overflow. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of the add_secret_dac_path() function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the addsecretdacpath function in the Linux operating system is related to incorrect array indexing. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the `getIterator` function in the symfony\finder\Iterator\SortableIterator.php file of the PHP framework Yii allows a attacker to execute arbitrary code.

The vulnerability of the getIterator function in the symfony\finder\Iterator\SortableIterator.php file of the PHP framework Yii is related to deserialization mechanism vulnerabilities. Exploiting this vulnerability could allow an attacker to execute arbitrary code by injecting specially crafted...

The vulnerability of the tcp_bpf_prots() function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the tcpbpfprots function in the Linux operating system is related to the execution of a loop with an unreachable exit condition. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the dp83822_config_intr() function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the dp83822configintr function in the Linux operating system is related to pointer manipulation. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerabilities of the functions fscache_is_acquire_pending() and fscache_wake_pending_volume() in the Linux operating system’s kernel allow a attacker to trigger a service failure.

The vulnerabilities of the functions fscacheisacquirepending and fscachewakependingvolume in the Linux operating system are related to the use of memory after it is freed. Exploiting these vulnerabilities could allow an attacker to cause a service failure...

The vulnerability of the soup_message_headers_get_content_disposition() function in the libsoup library for GNOME graphical interfaces allows a attacker to trigger a service failure.

The vulnerability of the soupmessageheadersgetcontentdisposition function in the GNOME graphical interface library libsoup is related to pointer aliasing errors. Exploiting this vulnerability could allow a remote attacker to cause a service failure by sending a specially crafted POST request...

The vulnerabilities of the functions arch_simulate_insn() and arch_prepare_kprobe() in the Linux operating system allow a hacker to trigger a service failure.

The vulnerabilities of the functions archsimulateinsn and archpreparekprobe in the Linux operating system are related to resource management errors. Exploiting these vulnerabilities can allow an attacker to cause a service failure...

Vulnerabilities of the `ovs_flow_cmd_new()` and `kfree_skb()` functions in the Linux operating system, allowing a hacker to trigger a service failure

The vulnerabilities of the ovsflowcmdnew and kfreeskb functions in the Linux operating system are related to the lack of memory release. Exploiting these vulnerabilities can allow an attacker to cause a service failure...

The vulnerability of the efi_mem_reserve_persistent() function in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the efimemreservepersistent function in the Linux operating system is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the platform for managing and monitoring Vynamic View terminals lies in the insufficient protection of operational data, which allows attackers to disclose the protected information.

The vulnerability of the platform for managing and monitoring Vynamic View terminals is related to insufficient protection of operational data. Exploiting this vulnerability could allow an attacker to disclose the protected information...