90509 matches found
The vulnerability of the DNG file reading and writing software developed by Adobe’s SDK lies in the ability to write beyond the buffer boundary, allowing an attacker to cause memory corruption.
The vulnerability of the DNG file reading and writing software developed by Adobe’s SDK is related to writing beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to cause memory corruption...
The vulnerability of the .NET software platform, related to uncontrolled resource consumption, allows a hacker to cause a service failure.
The vulnerability of the .NET software platform is related to an uncontrolled consumption of resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...
The vulnerability of the _strindices() function in the JQ programming language allows a attacker to trigger a service failure.
The vulnerability of the strindices function in the JQ programming language is related to the execution of an operation outside the buffer in memory. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of Adobe Illustrator, related to writing beyond the buffer boundaries, allows a hacker to execute arbitrary code.
The vulnerability of the Adobe Illustrator graphic editor is related to writing beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
The vulnerability of the Function Discovery service in Windows operating systems allows a perpetrator to increase their privileges.
The vulnerability of the Function Discovery service in Windows operating systems is related to synchronization errors when using a common resource. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the Adobe Bridge file manager, related to buffer overflow in dynamic memory, allows an attacker to execute arbitrary code.
The vulnerability of the Adobe Bridge file manager is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
The vulnerability of the Windows Server Update Service (WSUS) for Windows operating systems arises from insufficient input validation. This allows attackers to make changes to the system via the network.
The vulnerability of the Windows Server Update Service WSUS for Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to make changes to the system remotely...
Vulnerability of the functions jv_setpath(), jv_getpath(), and delpaths_sorted() in the programming language jq, which allows a hacker to cause a service failure.
The vulnerability of the functions jvsetpath, jvgetpath, and delpathssorted in the programming language jq is related to an uncontrolled recursion. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Server Subscription Edition, and Microsoft SharePoint Enterprise Server programs lies in the lack of security measures for website structures, allowing attackers to perform spear-phishing attacks.
The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Server Subscription Edition, and Microsoft SharePoint Enterprise Server is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform spear-phishin...
The vulnerability of SAP Business Analytics and SAP Content Management systems lies in their inadequate authentication procedures, which allow unauthorized users to gain access to protected information.
The vulnerability of SAP Business Analytics and SAP Content Management systems is related to deficiencies in authentication procedures. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...
The vulnerability of the Package Catalog component in the Windows operating system, which allows a perpetrator to disclose protected information
The vulnerability of the Package Catalog component in the Windows operating system is related to insufficient protection of sensitive data. Exploiting this vulnerability can allow an attacker to disclose protected information...
The vulnerability of the Function Discovery Service (fdwsd.dll) on Windows operating systems allows a perpetrator to escalate their privileges.
The vulnerability of the Function Discovery Service fdwsd.dll on Windows operating systems is related to synchronization errors when using a common resource. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the IBM Langflow Desktop software for visual AI development lies in its deserialization mechanism flaws, allowing attackers to execute arbitrary code.
The vulnerability of IBM Langflow Desktop, a software for visual development of AI agents, is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...
The vulnerability in the implementation of the system call ioctl of the MxGeneralIo utility allows a attacker to escalate their privileges and cause a service failure.
The vulnerability in the implementation of the ioctl utility MxGeneralIo is related to an open IOCTL with insufficient access control. Exploiting this vulnerability can allow a malicious actor to increase their privileges and cause service failures...
The vulnerability of the Gimp image processing library, related to integer overflow, allows an attacker to execute arbitrary code.
The vulnerability of the Gimp image processing library is related to a numerical overflow condition. Exploiting this vulnerability could allow an attacker to execute arbitrary code...
The vulnerability of the USB Printing Stack driver (usbprint.sys) on Windows operating systems, which allows a hacker to escalate their privileges
The vulnerability of the USB Printing Stack driver usbprint.sys in Windows operating systems is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain increased privileges...
The vulnerability of the Flare file-sharing platform, related to bypassing authentication using a user-controlled key, allows attackers to influence the confidentiality of protected information.
The vulnerability of the Flare file-sharing platform relates to bypassing authentication using a user-controlled key. Exploiting this vulnerability allows an attacker to influence the confidentiality of the protected information...
The vulnerability of the Universal Plug and Play (UPnP) Device Host Service in Windows operating systems allows a hacker to enhance their privileges.
The vulnerability of the Universal Plug and Play UPnP Device Host Service in Windows operating systems is related to unreliable pointer reassignments. Exploiting this vulnerability can allow attackers to gain increased privileges...
The vulnerability of the UPnP Device Host Service in the Windows operating system allows a hacker to disclose protected information.
The vulnerability of the UPnP Device Host Service in the Windows operating system is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to disclose protected information remotely...
The vulnerability of the SMB CSI driver of the Kubernetes cluster management software allows a hacker to delete or modify any directory at will.
The vulnerability of the SMB CSI driver in the Kubernetes cluster management software is related to an incorrect path name limitation. Exploiting this vulnerability allows a remote attacker to delete or modify directories beyond the scope of the target managed subdirectory in the exported SMB fil...
The vulnerability of D-Link DI-8003 router microprogramming software, related to buffer overflow in the stack, allows a hacker to trigger a service failure.
The vulnerability of D-Link DI-8003 router microprogramming software is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker, operating remotely, to cause a service failure by sending a specially crafted GET request to the /urlmember.asp endpoint...
The vulnerability of D-Link DI-8003 router microprogramming software, related to buffer overflow in the stack, allows a hacker to trigger a service failure.
The vulnerability of D-Link DI-8003 router microprogramming software is related to buffer overflow in the stack when processing the PID parameter. Exploiting this vulnerability allows a malicious actor to cause a service failure by sending a specially crafted GET request to the /trace.asp endpoin...
The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of the input data. This allows a hacker to trigger a service failure.
The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of input data when processing the wans parameter. Exploiting this vulnerability allows a malicious actor to cause service failure by sending a specially crafted GET reques...
The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of the input data. This allows a hacker to trigger a service failure.
The vulnerability of D-Link DI-8003 router’s microprogramming software lies in the copying of buffers without checking the size of input data when processing the id parameter. Exploiting this vulnerability allows a malicious actor to cause a service failure by sending a specially crafted GET...
The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of the input data. This allows a hacker to trigger a service failure.
The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of input data during the processing of the routes parameter. Exploiting this vulnerability allows a malicious actor to cause service failure by sending a specially crafted...
The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of the input data. This allows a hacker to trigger a service failure.
The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a malicious actor to cause a service failure by sending a specially crafted GET request to the final destination...
The vulnerability of the Universal Plug and Play (UPnP) Device Host Service in Windows operating systems allows a hacker to enhance their privileges.
The vulnerability of the Universal Plug and Play UPnP Device Host Service in Windows operating systems is related to unreliable pointer reassignments. Exploiting this vulnerability can allow attackers to gain increased privileges...
The vulnerability of the Simple Search and Discovery Protocol (SSDP) service for Windows operating systems allows a hacker to increase their privileges.
The vulnerability of the Simple Search and Discovery Protocol SSDP service for Windows operating systems is related to synchronization errors when using a common resource. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the Projected File System (ProjFS) file system in the Windows operating system, which allows a hacker to increase their privileges
The vulnerability of the Projected File System ProjFS in the Windows operating system is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the Windows User Interface Core component in Windows operating systems allows attackers to escalate their privileges.
The vulnerability of the Windows User Interface Core component of Windows operating systems is related to synchronization errors when using common resources. Exploiting this vulnerability can allow an attacker to gain elevated privileges...
The vulnerability of the print spooler daemon on Windows operating systems allows attackers to escalate their privileges.
The vulnerability of the Windows Print Spooler in operating systems related to the print queue handler is related to the possibility of using memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the Universal Plug and Play (UPnP) Device Host Service in Windows operating systems allows a hacker to enhance their privileges.
The vulnerability of the Universal Plug and Play UPnP Device Host Service in Windows operating systems is related to the possibility of using memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the Projected File System (ProjFS) file system in Windows operating systems, which allows a hacker to increase their privileges
The vulnerability of the Projected File System ProjFS in Windows operating systems is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerabilities of the jvp_string_append() and jvp_string_copy_replace_bad() functions, which are utilities for processing JSON files in jq, allow a malicious actor to cause service interruptions.
The vulnerabilities of the jvpstringappend and jvpstringcopyreplacebad functions, which are used to process JSON files in jq, are related to integer overflow. Exploiting these vulnerabilities could allow an attacker to cause a service failure by sending a specially crafted request...
The vulnerability of the retrieveById() function in the Laravel Passport OAuth2 server implementation allows a hacker to gain unauthorized access to protected information.
The vulnerability of the retrieveById function in the Laravel Passport OAuth2 server implementation is related to deficiencies in the authentication process. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...
The vulnerability of the user interface of Windows operating systems, which allows a hacker to increase their privileges
The vulnerability of the user interface UI of Windows operating systems is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the User Interface Core component in Windows operating systems allows attackers to escalate their privileges.
The vulnerability of the User Interface Core component in Windows operating systems is related to synchronization errors when using shared resources „Race Conditions“. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the Windows Push Notifications service allows a perpetrator to escalate their privileges.
The vulnerability of Windows push-notifications services is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow attackers to gain increased privileges...
The vulnerability of the Desktop Windows Manager in operating systems Windows allows attackers to increase their privileges.
The vulnerability of the Desktop Windows Manager in Windows operating systems relates to the possibility of exploiting memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of Microsoft Word packages in Microsoft Office and Microsoft 365 Apps for Enterprise, related to reading data beyond the buffer in memory, allows attackers to disclose protected information.
The vulnerability of Microsoft Word packages in Microsoft Office and Microsoft 365 Apps for Enterprise lies in the reading of data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to disclose protected information...
The vulnerability of Microsoft Excel spreadsheet editors within Microsoft Office and Microsoft 365 Apps for Enterprise applications relates to the possibility of exploiting memory after it is freed, allowing an attacker to execute arbitrary code.
The vulnerability of Microsoft Excel spreadsheet editors within the Microsoft Office and Microsoft 365 Apps for Enterprise software packages is related to the ability to exploit memory after it is freed. Exploiting this vulnerability could allow an attacker to execute arbitrary code...
The vulnerability of the Windows Speech Runtime component in operating systems allows attackers to exploit their privileges.
The vulnerability of the Windows Speech Runtime component in operating systems is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the Microsoft SQL Server database management system lies in the lack of measures taken to protect SQL query structures, allowing attackers to enhance their privileges.
The vulnerability of the Microsoft SQL Server database management system is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of the Windows Advanced Rasterization Platform (WARP) in Windows operating systems allows attackers to escalate their privileges.
The vulnerability of the Windows Advanced Rasterization Platform WARP in Windows operating systems is related to integer overflow. Exploiting this vulnerability can allow a remote attacker to gain elevated privileges...
The vulnerability of the Brokering File System (BFS) in Windows operating systems allows a perpetrator to increase their privileges.
The vulnerability of the Brokering File System BFS in Windows operating systems is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the Windows operating system’s kernel, which allows a hacker to increase their privileges
The vulnerability of the Windows operating system’s kernel is related to a memory reallocation error. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the Container Isolation FS Filter driver for Windows operating systems, which allows attackers to exploit their privileges.
The vulnerability of the Container Isolation FS Filter driver for Windows operating systems relates to the possibility of exploiting memory after it is freed. Exploiting this vulnerability could allow an attacker to gain increased privileges...
The vulnerability of the NFS module in the network monitoring system LibreNMS allows a intruder to execute arbitrary code.
The vulnerability of the nfsen module in the LibreNMS network monitoring system is related to incorrect path name restrictions when processing the nfsen parameter. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted PHP file...
The vulnerability of the Windows GDI component in Windows operating systems allows attackers to disclose protected information.
The vulnerability of the Windows GDI component in Windows operating systems is related to the execution of operations beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to disclose sensitive information using a specially created file with the EMF extension...
The vulnerability of the Windows Speech Brokered API interface in operating systems allows attackers to escalate their privileges.
The vulnerability of the Windows Speech Brokered API in operating systems is related to the possibility of using memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...