90509 matches found
The vulnerabilities of the software for loading, installing, and activating Siemens Software Center programs, as well as tools for design and simulation such as Siemens Solid Edge, Simcenter 3D, and Simcenter Femap—software for simulation based on Computational Fluid Dynamics, Simcenter STAR-CCM+—and the simulation environment for systems and processes called Siemens Tecnomatix Plant Simulation—allow attackers to carry out “man-in-the-middle” attacks.
The vulnerabilities of the software for loading, installing, and activating Siemens Software Center, as well as the tools for design and simulation such as Siemens Solid Edge, Simcenter 3D, and Simcenter Femap, along with the simulation software based on Computational Fluid Dynamics like Simcente...
The vulnerability of the distributed resource management system, which optimizes workloads in Siemens Altair Grid Engine data centers, is related to an uncontrolled search element that allows attackers to execute arbitrary code with elevated privileges.
The vulnerability of the distributed resource management system, which optimizes workloads in Siemens Altair Grid Engine data centers, is related to an uncontrolled element in the search process. Exploiting this vulnerability allows a attacker to execute arbitrary code with elevated privileges...
The vulnerability of the Yokogawa CENTUM VP SCADA system, which stems from the use of rigidly encrypted accounting data, allows a intruder to compromise the confidentiality and integrity of the protected information.
The vulnerability of the Yokogawa CENTUM VP SCADA system is related to the use of strictly encrypted accounting data. Exploiting this vulnerability could allow an intruder to compromise the confidentiality and integrity of the protected information...
The vulnerability of the kprobe_event_gen_test_exit() function in the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the kprobeeventgentestexit function in the Linux operating system is related to an error in pointer arithmetic. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the ftrace_add_mod() function in the Linux operating system’s kernel allows a hacker to cause a service failure.
The vulnerability of the ftraceaddmod function in the Linux operating system’s kernel is related to an error in pointer arithmetic. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the svc_exportPut() function in the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the svcexportput function in the Linux operating system’s kernel is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of JetBrains Junie software, related to the lack of measures taken to clean data at the management level, allows a perpetrator to execute arbitrary commands.
The vulnerability of JetBrains Junie software is related to the lack of measures taken to clean data at the management level. Exploiting this vulnerability allows an attacker to execute arbitrary commands...
The vulnerability of the switchdev subsystem in the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the switchdev subsystem in the Linux operating system is related to the lack of memory release after the effective lifespan of the component. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the `nsim_dev_trap_fa_cookie_write` function in the `netdevsim` component of the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the nsimdevtrapfacookiewrite function in the netdevsim component of the Linux operating system is related to the lack of memory release after the effective lifespan has ended. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the xdp_umem_reg() function in the xsk component of the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the xdpumemreg function in the xsk component of the Linux operating system’s kernel is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the BPF component in the Linux operating system’s kernel allows a hacker to trigger a service failure or expose protected information.
The vulnerability of the BPF component in the Linux operating system’s kernel is related to incorrect calculations of the size of the buffer allocated. Exploiting this vulnerability can allow an attacker to cause service failures or expose protected information...
The vulnerability of the NFSD component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the NFSD component in the Linux operating system’s kernel is related to the dereferencing of a pointer whose expiration time has expired. Exploiting this vulnerability can allow an attacker to trigger a service failure...
The vulnerability of the Memory Management Unit (MMU) in the Linux operating system, which allows a hacker to cause a service failure
The vulnerability of the Memory Management Unit MMU in the Linux operating system is related to improper storage of permissions. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the ata_tdev_add() function in the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the atatdevadd function in the Linux operating system is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the drm_dev_init() function in the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the drmdevinit function in the Linux operating system is related to the lack of memory release after the effective lifespan of the function has ended. Exploiting this vulnerability could allow a hacker to cause a service failure...
The vulnerability of the napi_get_frags() function in the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the napigetfrags function in the Linux operating system’s kernel is related to the lack of memory release after the effective lifespan of the function has ended. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the cortex_a76_erratum_1463225debug_handler() function in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the cortexa76erratum1463225debughandler function in the Linux operating system is related to buffer overflow attacks. Exploiting this vulnerability could allow attackers to compromise the confidentiality, integrity, and accessibility of protected information...
The vulnerability of the `blk_mq_init_allocated_queue()` function in the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the blkmqinitallocatedqueue function in the Linux operating system’s kernel is related to the lack of memory release after the effective lifespan has ended. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the qed_iov_getVF_info() function in the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the qediovgetVFinfo function in the Linux operating system is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to trigger a service failure...
The vulnerability of the sunrpc component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the sunrpc component in the Linux operating system’s kernel is related to the failure to release resources after their useful life has expired. Exploiting this vulnerability can allow an attacker to cause service failures...
The vulnerability of the nd_async_device_register() function in the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the ndasyncdeviceregister function in the Linux operating system’s kernel is related to a violation of the count of references to pages displayed in memory. Exploiting this vulnerability can allow an attacker to trigger a service failure...
The vulnerability of the mhi_net_dellink() function in the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the mhinetdellink function in the Linux operating system is related to the lack of memory release after the effective lifespan of the function has ended. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the ata_tport_add() function in the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the atatportadd function in the Linux operating system is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the kernel component of the Linux operating system, which allows a hacker to cause a service failure
The vulnerability of the kernel component of the Linux operating system is related to improper cleaning or release of resources. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the tracing_read_pipe() function in the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the tracingreadpipe function in the Linux operating system’s kernel is related to the lack of memory release after the effective lifespan of the function has ended. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the xas_retry() function in the Linux operating system allows a hacker to induce a service failure.
The vulnerability of the xasretry function in the Linux operating system’s kernel is related to an error during pointer arithmetic. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the sctp_sched_fcfs_dequeue() function in the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the sctpschedfcfsdequeue function in the Linux operating system is related to improper resource release. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the Open Graph image generation module in the Nuxt OG Image framework for creating web applications and sites using Nuxt.js allows a attacker to perform an SSRF attack.
The vulnerability of the Open Graph image generation module in the Nuxt OG Image framework for creating web applications and sites using Nuxt.js is related to insufficient validation of requests on the server side. Exploiting this vulnerability allows a malicious actor to perform an SSRF attack...
The vulnerability of the Linux operating system’s kernel PCI component, which allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information
The vulnerability of the Linux operating system’s kernel-level PCI component relates to the possibility of exploiting memory after it is freed. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...
The vulnerability of the distributed resource management system, which optimizes workloads in Siemens Altair Grid Engine data centers, is related to errors in the certificate validation process. These errors allow attackers to disclose password hashes.
The vulnerability of the distributed resource management system, which optimizes workloads in Siemens Altair Grid Engine data centers, is related to errors in the certificate validation process. Exploiting this vulnerability can allow attackers to disclose password hashes...
Vulnerability of the __ip_vs_cleanup_batch() functions in Linux kernel, allowing a hacker to trigger a service failure
The vulnerability of the ipvscleanupbatch function in the Linux operating system is related to an error in handling exceptional conditions. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the hinic_get_stats64() function in the drivers/net/ethernet/huawei/hinic/hinic_main.c file of the Linux kernel’s Ethernet network adapter driver allows a hacker to cause a service failure.
The vulnerability of the hinicgetstats64 function in the drivers/net/ethernet/huawei/hinic/hinicmain.c file of the Linux kernel’s Ethernet network adapter driver is related to improper resource locking. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the __rvu_flr_handler() function in the drivers/net/ethernet/marvell/octeontx2/af/rvu.c file of the Ethernet network adapter driver for the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the rvuflrhandler function in the drivers/net/ethernet/marvell/octeontx2/af/rvu.c file of the Ethernet network adapter driver for the Linux operating system is related to a memory leak. Exploiting this vulnerability could allow an attacker to cause a system failure...
The vulnerabilities of the functions mptcpDestroyCommon() and mptcpDestroy() in the net/mptcp/protocol.c module of the Linux operating system’s MPTCP protocol implementation allow a attacker to cause a service failure.
The vulnerability of the mptcpDestroyCommon and mptcpDestroy functions in the net/mptcp/protocol.c module of the MPTCP protocol implementation in Linux’s kernel is related to a memory leak. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the rb_end_commit() function in the Linux operating system’s kernel allows a attacker to compromise the accessibility of protected information.
The vulnerability of the rbendcommit function in the Linux operating system’s kernel is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to compromise the accessibility of protected information...
The vulnerability of the usbPutHCD() function in the drivers/usb/host/xhci-mtk.c module of the Linux operating system, which allows a hacker to cause a service failure
The vulnerability of the usbPutHCD function in the drivers/usb/host/xhci-mtk.c module of the Linux operating system is related to the lack of memory release after the effective lifespan of the function. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the `alloc_huge_page()` function in the Linux operating system’s `mm/hugetlb.c` module, which allows a hacker to cause a service failure
The vulnerability of the allochugepage function in the mm/hugetlb.c module of the Linux operating system is related to synchronization errors. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the `tracing_err_log_open()` function in the kernel/trace/trace.c module, which supports Linux operating system traceability, allows a malicious actor to cause a service failure.
The vulnerability of the tracingerrlogopen function in the kernel/trace/trace.c module, which supports Linux operating system traceability, is related to the pointer manipulation. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability in the function `serial8250_unregister_port()` of the `drivers/tty/serial/8250/8250_core.c` file, a driver for console TTY support on the serial port of the Linux kernel, allows a attacker to cause a service failure.
The vulnerability of the serial8250unregisterport function in the driver/tty/serial/8250/8250core.c file of the console support driver for the serial port in the Linux kernel is related to the failure to release resources after their useful period has ended. Exploiting this vulnerability could...
The vulnerability of the Resource Timing application programming interface of Google Chrome allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the Resource Timing application programming interface in the Google Chrome browser is related to improper protection of physical external channels. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...
The vulnerability of the Google Chrome browser’s Navigation function, which allows a hacker to circumvent navigation restrictions
The vulnerability of Google Chrome’s Navigation function is related to improper authorization. Exploiting this vulnerability allows a malicious actor to circumvent navigation restrictions by using a specially created HTML page...
The vulnerability of the WebAppInstalls component in the Google Chrome browser allows a hacker to replace the user interface.
The vulnerability of the WebAppInstalls component in Google Chrome is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to replace the user interface with a specially created HTML page...
The vulnerability of Google Chrome, related to deficiencies in access control, allows attackers to circumvent security restrictions.
The vulnerability of Google Chrome is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to bypass security restrictions using a specially crafted HTML page...
The vulnerability of Google Chrome’s DevTools component allows a hacker to bypass security restrictions.
The vulnerability of Google Chrome’s DevTools component is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to bypass security restrictions using a specially crafted HTML page...
The vulnerability of Vmware Workstation hypervisor, related to writing beyond the buffer boundaries of memory, allows an attacker to compromise the integrity and accessibility of the protected information.
The vulnerability of Vmware Workstation hypervisor is related to writing beyond the buffer boundaries of memory. Exploiting this vulnerability can allow an attacker to compromise the integrity and accessibility of the protected information...
The vulnerability of the Java framework for securing industrial applications using Spring Security allows attackers to escalate their privileges.
The vulnerability of the Java framework for securing industrial applications using Spring Security involves bypassing authentication through phising techniques. Exploiting this vulnerability can allow attackers, operating remotely, to increase their privileges...
The vulnerability of Google Chrome’s Picture In Picture technology, which allows a perpetrator to compromise the integrity of protected information
The vulnerability of Google Chrome’s Picture In Picture technology is related to an improper limitation on the visual layers of the user interface. Exploiting this vulnerability allows a malicious actor to compromise the integrity of protected information through a specially created HTML page...
The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine allows attackers to gain unauthorized access to protected information.
The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information through a specially created HTML page...
The vulnerability of Google Chrome’s DevTools component, which allows a hacker to bypass security restrictions
The vulnerability of Google Chrome’s DevTools component is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to bypass security restrictions using a specially crafted HTML page...
The vulnerability of Google Chrome’s Picture In Picture technology, which allows a perpetrator to compromise the integrity of protected information
The vulnerability of Google Chrome’s Picture In Picture technology is related to information representation errors in the user interface. Exploiting this vulnerability can allow a malicious actor to compromise the integrity of protected information through a specially created HTML page...