The vulnerability of Microsoft Office, Excel, and 365 Apps for Enterprise packages, related to numerical truncation errors, allows a perpetrator to execute arbitrary code.

The vulnerability of Microsoft Office, Excel, and 365 Apps for Enterprise packages is related to numerical truncation errors. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of Google Chrome, related to a data source confirmation error, allows a hacker to circumvent existing security restrictions.

The vulnerability of Google Chrome is related to a data source confirmation error. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions through a specially created HTML page...

The vulnerability of Microsoft Exchange Server servers, related to insufficient validation of requests on the server side, allows attackers to perform spoofing attacks.

The vulnerability of Microsoft Exchange Server servers is related to insufficient validation of requests on the server side. Exploiting this vulnerability allows a malicious actor to perform spear-phishing attacks remotely...

The vulnerability of Microsoft Exchange Server servers is related to insufficient protection of the website structure, which allows attackers to carry out spear-phishing attacks.

The vulnerability of Microsoft Exchange Server is related to insufficient protection of the website structure. Exploiting this vulnerability allows a malicious actor to perform spear-phishing attacks remotely...

The vulnerability of the UNIX Disk Format File System Driver (UDFS) on Windows operating systems allows a hacker to increase their privileges.

The vulnerability of the UNIX Disk Format File System Driver UDFS on Windows operating systems is related to numerical truncation errors. Exploiting this vulnerability can allow an attacker to gain increased privileges...

The vulnerability of Microsoft Office packages and 365 Apps for Enterprise lies in the use of memory after it is freed, allowing an attacker to execute arbitrary code.

The vulnerability of Microsoft Office and 365 Apps for Enterprise packages relates to the use of memory after it is released. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability in the web interface for managing microprogrammed software routers UTT HiPER 1250GW allows a hacker to trigger a service failure.

The vulnerability of the web-based management interface for UTT HiPER 1250GW microprogramming software is related to buffer overflow in the stack when processing the Profile parameter. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the Core component of the Oracle Enterprise Command Center Framework allows a perpetrator to gain access to read, modify, or delete data, or to cause a service failure.

The vulnerability of the Core component of the Oracle Enterprise Command Center Framework is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to gain read, modify, or delete access to data, or cause a service failure using the HTTP network protocol...

The vulnerability of the EcoStruxure IT Data Center Expert software in managing data center infrastructure lies in the improper limitation of XML references to external objects, which allows attackers to disclose sensitive information.

The vulnerability of the EcoStruxure IT Data Center Expert software for managing data center infrastructure is related to incorrect restrictions on XML links to external objects. Exploiting this vulnerability could allow a malicious actor to disclose sensitive information...

The vulnerability of the Internal Operations component of the Oracle Process Manufacturing (OPM) application development system allows a perpetrator to gain full control over the application. This vulnerability exists in the Oracle E-Business Suite, a software suite for enterprise automation.

The vulnerability of the Internal Operations component of the Oracle Process Manufacturing Application for process development involves deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to gain full control over the application...

The vulnerability of Google Chrome’s user interface allows a hacker to escape from the sandbox environment.

The vulnerability of Google Chrome’s user interface is related to insufficient validation of entered data. Exploiting this vulnerability can allow a malicious actor to bypass security measures by using a specially created HTML page...

The vulnerability of Microsoft Office and 365 Apps for Enterprise applications relates to buffer overflows in dynamic memory, which allows attackers to exploit the protected information.

The vulnerability of Microsoft Office and 365 Apps for Enterprise packages is related to overflowing buffers in dynamic memory. Exploiting this vulnerability can allow an attacker to disclose sensitive information that is protected by these security measures...

The vulnerability of the btool Configuration Helper tool, a software tool for working with machine learning algorithms like Splunk AI Tookit (formerly known as Splunk Machine Learning Toolkit (MLTK)), allows a perpetrator to execute arbitrary commands.

The vulnerability of the btool Configuration Helper tool of the Splunk AI Tookit formerly Splunk Machine Learning Toolkit MLTK relates to the lack of measures taken to neutralize special elements used in the operating system’s command line. Exploiting this vulnerability allows a remote attacker t...

The vulnerability of the Cisco Webex App for collaborative work lies in the redirection of the URL to an unreliable website, allowing a hacker to redirect users to any given URL address.

The vulnerability of the Cisco Webex App for collaborative work relates to the redirection of the URL to an unreliable website as a result of incorrect processing of HTTP request parameters. Exploiting this vulnerability allows a malicious actor to redirect users to any desired URL address...

The vulnerability of the Program Compatibility Assistant Service in Windows operating systems allows attackers to exploit their privileges.

The vulnerability of the Program Compatibility Assistant service for Windows systems is related to synchronization errors when using a common resource “Race Condition”. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability in the web interface for managing microprogrammed network devices UTT 1200GW allows a perpetrator to cause a service failure.

The vulnerability in the web interface for managing microprogrammed network devices UTT 1200GW is related to the data being written beyond the buffer boundaries in memory when processing the sysAdmUser/sysAdmPass parameter. Exploitation of this vulnerability could allow a malicious actor to cause...

The vulnerability of the IBM Storage Protect Server (formerly Tivoli Storage Manager) software platform, related to the lack of measures taken to protect the SQL query structure, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the IBM Storage Protect Server formerly Tivoli Storage Manager software platform lies in the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected information...

The vulnerability of Microsoft Office, Excel, and 365 Apps for Enterprise packages lies in buffer overflows in dynamic memory, allowing attackers to execute arbitrary code.

The vulnerability of Microsoft Office, Excel, and 365 Apps for Enterprise packages is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the Portainer container management platform, related to the disclosure of information through a query string, allows a perpetrator to gain unauthorized access to the protected information.

The vulnerability of the Portainer container management platform is related to the disclosure of information through query strings. Exploiting this vulnerability could allow an attacker operating remotely to gain unauthorized access to protected information...

The vulnerability of Google Chrome browsers on iOS operating systems relates to a lack of mechanisms for verifying the source of access. This allows attackers to gain unauthorized access to protected information.

The vulnerability of Google Chrome browser on iOS operating systems is related to a lack of mechanisms for verifying the source of the request. Exploiting this vulnerability can allow an attacker, working remotely, to gain unauthorized access to protected information...

The vulnerability of the user remote access agent for corporate resources and Prisma Access Agent applications lies in the improper assignment of permissions to critical resources, allowing attackers to increase their privileges.

The vulnerability of the Prisma Access Agent, a user remote access agent, relates to the improper assignment of permissions for critical resources. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of the Google Chrome browser’s Media component, which allows a hacker to execute arbitrary code.

The vulnerability of the Google Chrome browser’s Media component relates to reading beyond the buffer in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code using a specially created HTML page...

The vulnerability of the Password component in the Google Chrome browser allows a hacker to gain access to protected information.

The vulnerability of the Password component in the Google Chrome browser is related to a flaw in data protection mechanisms. Exploiting this vulnerability could allow an attacker, operating remotely, to gain access to protected information through a specially created HTML page...

The vulnerability of Google Chrome’s ServiceWorker component, which allows a hacker to execute arbitrary code.

The vulnerability of Google Chrome’s ServiceWorker component is related to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code through a specially created HTML page...

The vulnerability of the Read Anything component in the Google Chrome browser allows a hacker to escape from the sandbox environment.

The vulnerability of the Read Anything component in the Google Chrome browser relates to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to escape the sandbox environment by using a specially created HTML page...

The vulnerability of the Content Server component of the Oracle WebCenter Content user interaction platform allows a perpetrator to gain full control over the application.

The vulnerability of the Content Server component of the Oracle WebCenter Content user interaction platform is related to the lack of authentication for a critical function. Exploiting this vulnerability could allow an attacker to gain full control over the application...

The vulnerability in the web interface for managing microprogrammed software routers UTT HiPER 1250GW allows a hacker to trigger a service failure.

The vulnerability of the web-based management interface for UTT HiPER 1250GW microprogramming software is related to buffer overflow in the stack when processing the Profile parameter. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to gain full control over the application.

The vulnerability of the Core component of the Oracle VM VirtualBox software is related to lack of access control. Exploiting this vulnerability can allow an attacker to gain full control over the application...

The vulnerability of Google Chrome, related to the use of memory after it is freed, allows a hacker to execute arbitrary code.

The vulnerability of Google Chrome relates to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially created HTML page...

The vulnerability of the SVG component in Google Chrome browser allows attackers to execute arbitrary code.

The vulnerability of the SVG component in Google Chrome browsers is related to improper handling of code generation. Exploiting this vulnerability allows a malicious actor to execute arbitrary code through a specially created HTML page...

The vulnerability of the Password component in the Google Chrome browser allows attackers to circumvent existing security restrictions.

The vulnerability of the Password component in the Google Chrome browser is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions through a specially created HTML page...

The vulnerability of the New Tab Page component in the Google Chrome browser allows a perpetrator to compromise the confidentiality of protected information.

The vulnerability of the New Tab Page component in the Google Chrome browser is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality of protected information through a specially created HTML page...

The vulnerability of the Client Bundle component of the Oracle WebCenter Enterprise Capture software platform for automatic scanning, recognition, and digitization of documents allows a intruder to gain full control over the system.

The vulnerability of the Client Bundle component of the Oracle WebCenter Enterprise Capture software platform for automatic scanning, recognition, and digitization of documents is related to access control errors. Exploiting this vulnerability could allow an attacker to gain full control over the...

The vulnerability of the WinCC Certificate Manager in WinCC SCADA systems and WinCC Unified PC Runtime allows a intruder to gain unauthorized access to protected information.

The vulnerability of the WinCC Certificate Manager in WinCC SCADA systems is related to the unencrypted storage of credentials. Exploiting this vulnerability could allow an intruder to gain unauthorized access to protected information...

The vulnerability in the web interface for managing micro-program software-based network devices UTT 1200GW allows a perpetrator to cause a service failure.

The vulnerability of the web-based interface for managing microprogrammed network devices UTT 1200GW is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a malicious actor to cause service failures...

The vulnerability of the software for working with Splunk AI Tookit (AITK) algorithms (formerly known as Splunk Machine Learning Toolkit (MLTK)) relates to insecure resource initialization, allowing an intruder to gain unauthorized access to protected information.

The vulnerability of the software for working with Splunk AI Tookit AITK algorithms formerly known as Splunk Machine Learning Toolkit MLTK is related to insecure resource initialization due to the lack of restrictions on outgoing requests, as approved by external domains. Exploiting this...

The vulnerability of the Content Server component of the Oracle WebCenter Content user interaction platform allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Content Server component of the Oracle WebCenter Content user interaction platform is related to access control errors. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

The vulnerability of the Shell component for VS Code, a command-line and code editor client of Oracle MySQL Shell, allows an attacker to gain full control over the system.

The vulnerability of the Shell component in VS Code’s command-line and code editor client for Oracle MySQL Shell is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to gain full control over the system...

The vulnerability of the Shell component for VS Code, a command-line and code editor client of Oracle MySQL Shell, allows a hacker to gain full control over the system.

The vulnerability of the Shell component in VS Code’s command-line and code editor client for Oracle MySQL Shell is related to improper code generation management. Exploiting this vulnerability can allow an attacker operating remotely to gain full control over the system...

The vulnerability of the Custom Resource Definition (CRD) component of the NGINX Gateway Fabric web server controller allows a attacker to read and modify data, or cause a service failure.

The vulnerability of the Custom Resource Definition CRD component of the NGINX Gateway Fabric web server controller is related to the failure to eliminate special elements when processing string values. Exploiting this vulnerability may allow an attacker to gain read and modify access to data, or...

The vulnerability of the rds_message_purge function in the Linux operating system allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the rdsmessagepurge function in the Linux operating system is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected informati...

The vulnerability of the ast_for_if_stmt() function in the CPython interpreter, related to pointer arithmetic errors, allows attackers to trigger a service failure.

The vulnerability of the astforifstmt function in the CPython interpreter is related to pointer arithmetic errors. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

The vulnerability of the software for detecting vulnerabilities and errors in PT Application Inspector, related to access control errors, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the PT Application Inspector’s software for detecting vulnerabilities and errors is related to access control errors. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

The vulnerability in the Layout component: Text and Fonts of Mozilla Firefox, Firefox ESR, and the email client Thunderbird, which allows a hacker to cause a service failure.

The vulnerability of the Layout component: Texts and fonts in Mozilla Firefox, Firefox ESR, and the email client Thunderbird are vulnerable due to insufficient testing for unusual or exceptional states. Exploiting this vulnerability can allow an attacker to cause service failures remotely...

The vulnerability in the JavaScript Engine component of Mozilla Firefox, Firefox ESR, and the Thunderbird email client allows a hacker to induce a service failure.

The vulnerability of the JavaScript Engine component in Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to the use of an uninitialized resource. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

The vulnerability in the Audio/Video components of Mozilla Firefox, Firefox ESR, and the email client Thunderbird allows a hacker to induce a service failure.

The vulnerability of the Audio/Video components in Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability can allow a malicious actor to cause service failures...

The vulnerability in the Graphics component of Mozilla Firefox, Firefox ESR, and the email client Thunderbird allows a hacker to cause a service failure.

The vulnerability of the Graphics component in Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability can allow an attacker to cause service failures remotely...

vulnerability of the Widget component: Mozilla Firefox, Firefox ESR, and Thunderbird email client’s Cocoa browser engine, allowing attackers to execute arbitrary code.

The vulnerability of the Widget component: The Cocoa browser components of Mozilla Firefox, Firefox ESR, and the email client Thunderbird rely on the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

Vulnerability of the Audio/Video component: The GMP browser components in Mozilla Firefox, Firefox ESR, and the email client Thunderbird allow a hacker to trigger a service failure.

Vulnerability of Audio/Video components: The GMP browsers Mozilla Firefox and Firefox ESR, as well as the email client Thunderbird, are vulnerable due to insufficient checking of unusual or exceptional states. Exploitation of this vulnerability can allow a malicious actor to cause service failure...

vulnerability of the Widget component: Mozilla Firefox, Firefox ESR, and Thunderbird email client’s Cocoa browser engine, which allows attackers to gain unauthorized access to protected information.

The vulnerability of the Widget component: Mozilla Firefox, Firefox ESR, and the email client Thunderbird have vulnerabilities related to information processing errors. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...