74701 matches found
The vulnerability of the Mongo fragment processing tool for MongoDB database management systems allows a hacker to induce a service failure.
The vulnerability of the Mongo fragment processing tool for MongoDB database management systems is related to an error in handling exceptional states. Exploiting this vulnerability allows a malicious actor to cause service failures using a specially created protocol called Wire...
The vulnerability of the DNS server software used for network security in Cilium allows a attacker to cause a service failure.
The vulnerability of the DNS server used by the Cilium networking security software is related to the unlimited distribution of resources during the processing of the DNSZombieMapping list. Exploiting this vulnerability allows a malicious actor to cause service failures remotely...
The vulnerability in the web interface of the software for automating application deployment by IBM UrbanCode Deploy (UCD) allows a perpetrator to carry out cross-site scripting attacks.
The vulnerability of the software web interface for IBM UrbanCode Deploy UCD automation of application releases is related to the lack of protective measures for the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...
The vulnerability of microprogrammed software in telephones and audio conferencing systems, related to incorrect restrictions on path names to the restricted access catalog, allows attackers to disclose protected information.
The vulnerability of microprogrammed software in telephones and audio conferencing systems relates to incorrect restrictions on the path to the restricted access catalog. Exploiting this vulnerability can allow a malicious actor to disclose protected information...
The vulnerability of the ovl component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the ovl component in the Linux operating system’s kernel is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service failures...
The vulnerability of the vmci_dispatch_dgs() function in the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the vmcidispatchdgs function in the Linux operating system is related to incorrect resource locking. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the WebAudio component in Google Chrome and Microsoft Edge browsers allows a hacker to execute arbitrary code or cause a service failure.
The vulnerability of the WebAudio component in Google Chrome and Microsoft Edge relates to the use of memory after it is freed. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code or cause a service failure through a specially created HTML page...
The vulnerability of the check_language_file() function in Netgear’s JWNR2000v2 router software allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the checklanguagefile function in Netgear JWNR2000v2 router microprogramming software is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...
The vulnerability of the ImportCertificate method in the software for managing and monitoring remote devices in telemetry and telemechanics systems allows a hacker to circumvent security restrictions, read and write arbitrary files, and execute arbitrary code.
The vulnerability of the ImportCertificate method in software for managing and monitoring remote devices in telemetry and telemechanics systems related to the lack of security measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to bypass security...
The vulnerability of the LockTraceLevelSettings method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems, allowing a hacker to circumvent security restrictions, read and write arbitrary files, and execute arbitrary code.
The vulnerability of the LockTraceLevelSettings method in the software for managing and monitoring removed objects in telemetry and telemechanics systems, such as the TeleControl Server Basic, is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability...
The vulnerability of the SimpleOne ITSM automation system allows a attacker to carry out an attack using brute-force methods.
The vulnerability of the SimpleOne ITSM automation system is related to inconsistencies in the responses to incoming requests. Exploiting this vulnerability allows a malicious actor to carry out an attack using brute-force methods...
The vulnerability of the enterprise automation system 1C:Enterprise lies in errors related to the mechanism for extending configurations, which allows attackers to disable the secure execution mode of software code.
The vulnerability of the 1C:Enterprise automation system lies in errors related to the mechanism for extending configuration settings. Exploiting this vulnerability allows attackers to disable the secure execution mode of the software code...
The vulnerability of VideoGrace video conference software, related to insufficient validation of input data, allows a intruder to trigger a service failure.
The vulnerability of VideoGrace video conferencing software is related to insufficient verification of input data. Exploiting this vulnerability can allow attackers to cause service failures...
The vulnerability of VideoGrace software-related video conferencing systems lies in insufficient validation of input data, allowing attackers to create conferences under the identity of arbitrary users.
The vulnerability of VideoGrace video conferencing software is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to create conferences under the identity of any user...
The vulnerability of VideoGrace video conference software, related to insufficient validation of input data, allows a intruder to trigger a service failure.
The vulnerability of VideoGrace video conferencing software is related to insufficient verification of input data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause service failures by sending specially crafted requests...
The vulnerability of the ExportCertificate method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems, such as the TeleControl Server Basic, allows a hacker to circumvent security restrictions, read and write arbitrary files, and execute arbitrary code.
The vulnerability of the ExportCertificate method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems, such as the TeleControl Server Basic, is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allo...
The vulnerability of VideoGrace video conferencing software, related to insufficient verification of input data, allows a hacker to perform spoofing attacks.
The vulnerability of VideoGrace video conferencing software is related to insufficient verification of input data. Exploiting this vulnerability can allow a remote attacker to perform a spoofing attack...
The vulnerability of the UpdateWebServerGatewaySettings method in the software for managing and monitoring remote objects in telemetry and telemechanics systems, allowing a hacker to bypass security restrictions, read and write arbitrary files, and execute arbitrary code.
The vulnerability of the UpdateWebServerGatewaySettings method in the software for managing and monitoring remote devices in telemetry and telemechanics systems is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to...
The vulnerability of the LockUser method in software for managing and monitoring deleted objects in telemetry and telemechanics systems, such as the TeleControl Server Basic, allows a hacker to circumvent security restrictions, read and write arbitrary files, and execute arbitrary code.
The vulnerability of the LockUser method in software for managing and monitoring removed objects in telemetry and telemechanics systems related to the TeleControl Server Basic is associated with the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a...
The vulnerability of the UpdateProject method in the software for managing and monitoring removed objects in telemetry and telemechanics systems allows a hacker to circumvent security restrictions, read and write arbitrary files, and execute arbitrary code.
The vulnerability of the UpdateProject method in software for managing and monitoring removed objects in telemetry and telemechanics systems is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to bypass security...
The vulnerability of the MongoDB database management system, related to access control errors, allows attackers to gain unauthorized access to protected information.
The vulnerability of the MongoDB database management system is related to access control errors. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...
The vulnerability of the UnlockWebServerGatewaySettings method in the software for managing and monitoring remote devices in telemetering and telemechanics systems allows a security intruder to read and write arbitrary files and execute arbitrary code.
The vulnerability of the UnlockWebServerGatewaySettings method in the software for managing and monitoring remote devices in telemetering and telemechanics systems is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to...
The vulnerability of the UnlockSmtpSettings method in the software for managing and monitoring remote devices in telemetry and telemechanics systems allows a hacker to circumvent security restrictions, read and write arbitrary files, and execute arbitrary code.
The vulnerability of the UnlockSmtpSettings method in the software for managing and monitoring remote devices in telemetering and telemechanics systems is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to bypass...
The vulnerability of the GetOverview method in the software for managing and monitoring remote devices in telemetry and telemechanics systems, as well as in the TeleControl Server Basic, allows a hacker to circumvent security restrictions, read and write arbitrary files, and execute arbitrary code.
The vulnerability of the GetOverview method in the software for managing and monitoring remote devices in telemetry and telemechanics systems, such as the TeleControl Server Basic, is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a...
The vulnerability of the MigrateDatabase method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems, allowing a hacker to circumvent security restrictions, read and write arbitrary files, and execute arbitrary code.
The vulnerability of the MigrateDatabase method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems related to the TeleControl Server Basic lies in the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows an...
The vulnerability of the CreateBackup method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems, such as the TeleControl Server Basic, allows a hacker to circumvent security restrictions, read and write arbitrary files, and execute arbitrary code.
The vulnerability of the CreateBackup method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows an attacker to bypass security restrictions,...
The vulnerability of the jffs2_rtime_decompress() function in the fs/jffs2/compr_rtime.c module of the Linux kernel file system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the jffs2rtimedecompress function in the fs/jffs2/comprrtime.c module of the Linux kernel operating system is related to buffer overflow attacks. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...
The vulnerability of the GetSettings method in the software for controlling and monitoring remote devices in telemetry and telemechanics systems allows a hacker to circumvent security restrictions, read and write arbitrary files, and execute arbitrary code.
The vulnerability of the GetSettings method in software for controlling and monitoring remote devices in telemetry and telemechanics systems related to the lack of security measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to bypass security restrictions...
The vulnerability of the GetLogs method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems of the TeleControl Server Basic allows a hacker to circumvent security restrictions, read and write arbitrary files, and execute arbitrary code.
The vulnerability of the GetLogs method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems related to the lack of security measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to bypass security...
The vulnerability of the UnlockTraceLevelSettings method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems, allowing a hacker to circumvent security restrictions, read and write arbitrary files, and execute arbitrary code.
The vulnerability of the UnlockTraceLevelSettings method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to bypass...
The vulnerabilities of the s390/cpum_sf components of the Linux operating system’s kernel allow attackers to cause service failures.
The vulnerability of the s390/cpumsf components in Linux operating systems is related to the use of memory after it has been freed. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the netfilter component in the Linux operating system’s kernel allows a hacker to induce a service failure.
The vulnerability of the netfilter component in the Linux operating system’s kernel is related to the operation of data out of the buffer into memory. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the sctp component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the sctp component in the Linux operating system’s kernel is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the sctp component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the sctp component in the Linux operating system’s kernel is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the sctp component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the sctp component in the Linux operating system’s kernel is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the afs component in the Linux operating system’s kernel allows a hacker to cause a service failure.
The vulnerability of the afs component in the Linux operating system’s kernel is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause service failures...
The vulnerability of the UpdateTraceLevelSettings method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems, allowing a hacker to circumvent security restrictions, read and write arbitrary files, and execute arbitrary code.
The vulnerability of the UpdateTraceLevelSettings method in software for managing and monitoring deleted objects in telemetry and telemechanics systems is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to bypass...
The vulnerability of the ext4 kernel component in the Linux operating system, which allows a hacker to cause a service failure
The vulnerability of the ext4 kernel component in the Linux operating system is related to insufficient memory allocation for operations. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the `net_sched` component in the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the netsched component in the Linux operating system is related to the violation of the buffer boundary. Exploiting this vulnerability can allow an attacker to trigger a service failure...
The vulnerability of the getUsers method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems, such as the TeleControl Server Basic, allows a hacker to circumvent security restrictions, read and write arbitrary files, and execute arbitrary code.
The vulnerability of the getUsers method in software for managing and monitoring removed objects in telemetry and telemechanics systems related to the TeleControl Server Basic lies in the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows an attacker to...
The vulnerability in the `include/net/lapb.h` module of the Linux operating system allows a hacker to cause a service failure.
The vulnerability in the include/net/lapb.h module of the Linux kernel is related to exception handling flaws. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of Nomad application orchestrators, related to the lack of authorization, allows attackers to gain unauthorized access to protected information.
The vulnerability of Nomad application orchestrators is related to the lack of authentication. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected information...
The vulnerability of the wacom_update_name() function in the drivers/hid/wacom_sys.c module of the HID device subsystem driver of the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the wacomupdatename function in the drivers/hid/wacomsys.c module of the HID device subsystem driver for the Linux operating system is related to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of Nomad application developers, related to errors in processing hypertext links, allows attackers to compromise the integrity of the protected information.
The vulnerability of Nomad application developers is related to errors in processing hypertext links. Exploiting this vulnerability can allow an attacker to compromise the integrity of the protected information...
The vulnerability of Nomad application orchestrators, related to the lack of authorization, allows attackers to gain unauthorized access to protected information.
The vulnerability of Nomad application orchestrators is related to the lack of authentication. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected information...
The vulnerability of Nomad application orchestrators, related to incorrect input data validation, allows attackers to trigger service failures.
The vulnerability of Nomad application orchestrators is related to improper validation of input data. Exploiting this vulnerability can allow an attacker who operates remotely to cause service failures...
The vulnerability of the msg_process() function in TOTOLINK CA600-PoE router microprogramming software allows a intruder to execute arbitrary commands.
The vulnerability of the msgprocess function in TOTOLINK CA600-PoE router microprogramming software is related to the lack of measures taken at the control level during the processing of the URL parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands by...
The vulnerability of the setWebWlanIdx() function in TOTOLINK CA600-PoE router software allows a intruder to execute arbitrary commands.
The vulnerability of the setWebWlanIdx function in TOTOLINK CA600-PoE router microprogramming software is related to the lack of measures taken at the control level during the processing of the webWlanIdx parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrary...
The vulnerability of Nomad application orchestrators, related to incorrect processing of network packet headers, allows attackers to escalate their privileges.
The vulnerability of Nomad application orchestrators is related to incorrect processing of network packet headers. Exploiting this vulnerability can allow an attacker to increase their privileges remotely...
The vulnerability of the CloudSrvUserdataVersionCheck() function in TOTOLINK CA600-PoE router’s software allows a hacker to execute arbitrary commands.
The vulnerability of the CloudSrvUserdataVersionCheck function in TOTOLINK CA600-PoE router’s software lies in the lack of measures taken at the control level during the processing of the url parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands by sendin...