Lucene search
K
Bdu FstecRecent

90509 matches found

BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.3 views

The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of the input data. This allows a hacker to trigger a service failure.

The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of input data when processing the wans parameter. Exploiting this vulnerability allows a malicious actor to cause service failure by sending a specially crafted GET reques...

7.8CVSS5.8AI score0.00516EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.2 views

The vulnerability of the Ancillary Function Driver for WinSock in Windows operating systems allows attackers to increase their privileges.

The vulnerability of the Ancillary Function Driver for WinSock in Windows operating systems lies in the ability to exploit memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...

7CVSS7.1AI score0.00351EPSS
Exploits0References2Affected Software22
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.2 views

The vulnerability of the Function Discovery Service (fdwsd.dll) on Windows operating systems allows a perpetrator to escalate their privileges.

The vulnerability of the Function Discovery Service fdwsd.dll on Windows operating systems is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow an attacker to gain increased privileges...

7CVSS6AI score0.00252EPSS
Exploits0References2Affected Software22
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.4 views

The vulnerability of Windows Kernel Memory in the Windows operating system allows attackers to disclose sensitive information that is protected by security measures.

The vulnerability of Windows Kernel Memory in the operating system is related to operations that go beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to disclose sensitive information that is protected by security measures...

6.1CVSS5.8AI score0.02418EPSS
Exploits0References2Affected Software18
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.2 views

The vulnerability of the biometric authentication function of the Windows Hello operating system allows a perpetrator to circumvent existing security restrictions.

The vulnerability of the biometric authentication function of the Windows Hello operating system lies in insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to bypass existing security restrictions remotely...

8.7CVSS5.7AI score0.00408EPSS
Exploits0References2Affected Software9
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.2 views

The vulnerability of the user interface of Windows operating systems, which allows a hacker to increase their privileges

The vulnerability of Windows operating system user interfaces is related to synchronization errors when using common resources. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.8CVSS5.8AI score0.002EPSS
Exploits0References2Affected Software15
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.3 views

The vulnerability of the Desktop Windows Manager in operating systems Windows allows attackers to increase their privileges.

The vulnerability of the Desktop Windows Manager in Windows operating systems relates to the possibility of exploiting memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.8CVSS5.8AI score0.00258EPSS
Exploits0References2Affected Software11
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.4 views

The vulnerability of the Windows Speech Brokered API interface in operating systems allows attackers to escalate their privileges.

The vulnerability of the Windows Speech Brokered API in operating systems is related to the possibility of using memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.8CVSS5.8AI score0.00246EPSS
Exploits0References2Affected Software18
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.5 views

The vulnerability of the Redirected Drive Buffering System (RDBS) allows a perpetrator to cause a service failure.

The vulnerability of the Redirected Drive Buffering System RDBS is related to pointer manipulation. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS5.8AI score0.00366EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.3 views

The vulnerability of the Windows Push Notifications service allows a perpetrator to escalate their privileges.

The vulnerability of Windows push-notifications services is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow attackers to gain increased privileges...

7.8CVSS5.8AI score0.002EPSS
Exploits0References2Affected Software14
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.2 views

The vulnerability of the Synology SSL VPN Client lies in the use of files and directories accessible to external parties, allowing a hacker to gain access to protected information.

The vulnerability of the Synology SSL VPN Client lies in the use of files and directories accessible to external parties. Exploiting this vulnerability could allow a malicious actor to gain access to protected information...

7.8CVSS5.8AI score0.00188EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.1 views

The vulnerability of the Gimp image processing library, related to buffer overflow in dynamic memory, allows an attacker to execute arbitrary code.

The vulnerability of the Gimp image processing library is related to overflow in the dynamic memory buffer. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.8CVSS7.4AI score0.00651EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.4 views

The vulnerability of the Remote Desktop Licensing Service for Windows operating systems allows attackers to increase their privileges.

The vulnerability of the Remote Desktop Licensing Service for Windows operating systems is related to the lack of authentication for a critical function. Exploiting this vulnerability can allow attackers to increase their privileges...

7.8CVSS5.8AI score0.00256EPSS
Exploits0References2Affected Software22
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.3 views

The vulnerability of the Windows Server Update Service (WSUS) for Windows operating systems allows attackers to enhance their privileges.

The vulnerability of the Windows Server Update Service WSUS for Windows operating systems relates to the use of memory after it is released. Exploiting this vulnerability could allow an attacker to increase their privileges...

7CVSS5.8AI score0.00244EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.4 views

The vulnerability of the Flare file-sharing platform, related to bypassing authentication using a user-controlled key, allows attackers to influence the confidentiality of protected information.

The vulnerability of the Flare file-sharing platform relates to bypassing authentication using a user-controlled key. Exploiting this vulnerability allows an attacker to influence the confidentiality of the protected information...

7.8CVSS5.8AI score0.00376EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.3 views

The vulnerability of the Flare file-sharing platform, related to bypassing authentication using a user-controlled key, allows attackers to escalate their privileges.

The vulnerability of the Flare file-sharing platform relates to bypassing authentication using a user-controlled key. Exploiting this vulnerability allows a malicious actor to increase their privileges remotely...

5.3CVSS5.7AI score0.00283EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.7 views

The vulnerability of the HTTP.sys driver on Windows operating systems, which allows a hacker to trigger a service failure

The vulnerability of the HTTP.sys driver on Windows operating systems is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

7.8CVSS6.1AI score0.01248EPSS
Exploits0References2Affected Software10
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.2 views

The vulnerability of the Hyper-V hardware virtualization system for Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Hyper-V hardware virtualization technology for Windows operating systems lies in the fact that operations are performed outside the buffer in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code...

7.8CVSS6.2AI score0.00411EPSS
Exploits0References2Affected Software18
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.2 views

The vulnerability of the Hyper-V hardware virtualization system for Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Hyper-V hardware virtualization technology for Windows operating systems is related to insufficient checking of output data. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.3CVSS6AI score0.00317EPSS
Exploits0References2Affected Software18
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.2 views

The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of the input data. This allows a hacker to trigger a service failure.

The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a malicious actor to cause a service failure by sending a specially crafted GET request to the final destination...

7.8CVSS5.8AI score0.00412EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.3 views

The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of the input data. This allows a hacker to trigger a service failure.

The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of input data during the processing of the httplanport parameter. Exploiting this vulnerability allows a malicious actor to cause service failure by sending a specially...

7.8CVSS5.8AI score0.00408EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.3 views

The vulnerability of the SMB CSI driver of the Kubernetes cluster management software allows a hacker to delete or modify any directory at will.

The vulnerability of the SMB CSI driver in the Kubernetes cluster management software is related to an incorrect path name limitation. Exploiting this vulnerability allows a remote attacker to delete or modify directories beyond the scope of the target managed subdirectory in the exported SMB fil...

8.5CVSS5.8AI score
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.1 views

The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of the input data. This allows a hacker to trigger a service failure.

The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of input data during the processing of the name parameter. Exploiting this vulnerability allows an attacker, operating remotely, to cause a service failure by sending a...

7.8CVSS5.8AI score0.00516EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.2 views

The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of the input data. This allows a hacker to trigger a service failure.

The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a malicious actor to cause a service failure by sending a specially crafted GET request to the final destination...

7.8CVSS5.8AI score0.00516EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.2 views

The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of the input data. This allows a hacker to trigger a service failure.

The vulnerability of D-Link DI-8003 router’s microprogramming software lies in the copying of buffers without checking the size of input data when processing the s parameter. Exploiting this vulnerability allows a malicious actor to cause service failure by sending a specially crafted GET request...

7.8CVSS5.8AI score0.00516EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.2 views

The vulnerability of the Kerberos protocol for Windows operating systems allows attackers to increase their privileges.

The vulnerability of the Kerberos protocol for Windows operating systems is related to deficiencies in the authentication process. Exploiting this vulnerability can allow a malicious actor to enhance their privileges remotely...

8CVSS5.7AI score0.00242EPSS
Exploits0References2Affected Software13
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.4 views

The vulnerability of the Projected File System (ProjFS) file system in Windows operating systems, which allows a hacker to increase their privileges

The vulnerability of the Projected File System ProjFS in Windows operating systems is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.8CVSS5.8AI score0.00191EPSS
Exploits0References2Affected Software15
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.3 views

The vulnerability of the encryption mechanism for flash memory (XTS-AES with pseudo-rounds) in the ESP32-C5 chip allows a hacker to recover the AES keys.

The vulnerability of the XTS-AES encryption mechanism with pseudo-rounds on the ESP32-C5 chip is related to the lack of protection for service data. Exploiting this vulnerability allows a hacker to recover the AES keys...

5.7CVSS5.8AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.2 views

The vulnerability affects the `/_og/d/` component of the Open Graph image generation module from the Nuxt OG Image framework. This framework is used for creating web applications and websites using Nuxt.js. It allows attackers to trigger a denial-of-service attack.

The vulnerability of the og/d/ component of the Open Graph image generation module of the Nuxt OG Image framework, which is used for creating web applications and sites using Nuxt.js, relates to improper resource release. Exploiting this vulnerability allows an attacker to cause service failures...

5.3CVSS5.8AI score0.00324EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.7 views

The vulnerability of the Universal Plug and Play (UPnP) Device Host Service in Windows operating systems allows a hacker to enhance their privileges.

The vulnerability of the Universal Plug and Play UPnP Device Host Service in Windows operating systems is related to unreliable pointer reassignments. Exploiting this vulnerability can allow attackers to gain increased privileges...

7.8CVSS5.8AI score0.00298EPSS
Exploits0References2Affected Software22
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.2 views

The vulnerability of the Simple Search and Discovery Protocol (SSDP) service in the Windows operating system allows a hacker to increase their privileges.

The vulnerability of the Simple Search and Discovery Protocol SSDP service in the Windows operating system is related to synchronization errors when using a common resource. Exploiting this vulnerability can allow an attacker to increase their privileges...

7CVSS5.8AI score0.00164EPSS
Exploits0References2Affected Software22
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.3 views

The vulnerability of Microsoft Excel spreadsheet editors in Microsoft Office packages and Microsoft 365 Apps for Enterprise allows a perpetrator to execute arbitrary code.

The vulnerability of Microsoft Excel spreadsheet editors within the Microsoft Office and Microsoft 365 Apps for Enterprise software packages is related to the ability to exploit memory after it is freed. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

7.8CVSS6AI score0.00291EPSS
Exploits0References2Affected Software4
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.4 views

The vulnerability in the implementation of the Internet Key Exchange (IKE) protocol in Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Internet Key Exchange IKE protocol implementation in Windows operating systems is related to a memory reclamation error. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

10CVSS6.8AI score0.5585EPSS
Exploits2References2Affected Software18
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.3 views

The vulnerability of the user interface of Windows operating systems, which allows a hacker to increase their privileges

The vulnerability of the user interface UI of Windows operating systems is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.8CVSS5.8AI score0.00164EPSS
Exploits0References2Affected Software15
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.3 views

The vulnerability of the Windows Advanced Rasterization Platform (WARP) in Windows operating systems allows attackers to escalate their privileges.

The vulnerability of the Windows Advanced Rasterization Platform WARP in Windows operating systems is related to integer overflow. Exploiting this vulnerability can allow a remote attacker to gain elevated privileges...

10CVSS5.9AI score0.00416EPSS
Exploits0References2Affected Software16
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.2 views

The vulnerability of the Microsoft Dynamics 365 resource planning software, related to access control errors, allows a perpetrator to disclose protected information.

The vulnerability of the Microsoft Dynamics 365 resource planning software is related to access control errors. Exploiting this vulnerability could allow an attacker to disclose sensitive information that is protected by security measures...

5.5CVSS5.7AI score0.00221EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.5 views

The vulnerability of the Brokering File System (BFS) in Windows operating systems allows a perpetrator to increase their privileges.

The vulnerability of the Brokering File System BFS in Windows operating systems is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to increase their privileges...

8.4CVSS5.8AI score0.00157EPSS
Exploits0References2Affected Software17
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.2 views

The vulnerability of the Projected File System (ProjFS) file system in the Windows operating system, which allows a hacker to increase their privileges

The vulnerability of the Projected File System ProjFS in the Windows operating system is related to a memory reclamation error. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.8CVSS5.8AI score0.00257EPSS
Exploits0References2Affected Software15
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.1 views

The vulnerability of the axios library, related to the failure to handle CRLF sequences in HTTP headers, allows attackers to bypass existing security mechanisms.

The vulnerability of the axios library is related to the failure to handle CRLF sequences in HTTP headers. Exploiting this vulnerability allows a malicious actor to bypass existing security mechanisms by sending specially crafted HTTP requests...

10CVSS6.9AI score0.01815EPSS
Exploits5References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.2 views

The vulnerability of the validate_auth() function in the framework for working with Marimo data allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the information.

The vulnerability of the validateauth function in the Marimo framework relates to the lack of authentication for critical functions. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of information...

10CVSS6.2AI score0.95645EPSS
Exploits11References7Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.2 views

The vulnerability of the Gimp image processing library, related to integer overflow, allows an attacker to execute arbitrary code.

The vulnerability of the Gimp image processing library is related to a numerical overflow condition. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

7.8CVSS7.4AI score0.00596EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.1 views

The vulnerability of the Gimp image processing library, related to buffer overflow in dynamic memory, allows an attacker to execute arbitrary code.

The vulnerability of the Gimp image processing library is related to overflow in the dynamic memory buffer. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.8CVSS7.4AI score0.00744EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.4 views

The vulnerability of the Universal Plug and Play (UPnP) Device Host Service in Windows operating systems allows a hacker to enhance their privileges.

The vulnerability of the Universal Plug and Play UPnP Device Host Service in Windows operating systems is related to unreliable pointer reassignments. Exploiting this vulnerability can allow attackers to gain increased privileges...

7.8CVSS5.8AI score0.0024EPSS
Exploits0References2Affected Software22
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.2 views

The vulnerability of D-Link DI-8003 router microprogramming software, related to buffer overflow in the stack, allows a hacker to trigger a service failure.

The vulnerability of D-Link DI-8003 router microprogramming software is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker, operating remotely, to cause a service failure by sending a specially crafted GET request to the /urlmember.asp endpoint...

7.8CVSS6.1AI score0.00516EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.4 views

The vulnerability of D-Link DI-8003 router microprogramming software, related to buffer overflow in the stack, allows a hacker to trigger a service failure.

The vulnerability of D-Link DI-8003 router microprogramming software is related to buffer overflow in the stack when processing the PID parameter. Exploiting this vulnerability allows a malicious actor to cause a service failure by sending a specially crafted GET request to the /trace.asp endpoin...

7.8CVSS6.1AI score0.00516EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.2 views

The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of the input data. This allows a hacker to trigger a service failure.

The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of input data when processing the id parameter. Exploiting this vulnerability allows a malicious actor to cause a service failure by sending a specially crafted GET reques...

7.8CVSS5.8AI score0.00516EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.3 views

The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of the input data. This allows a hacker to trigger a service failure.

The vulnerability of D-Link DI-8003 router’s microprogramming software lies in the copying of buffers without checking the size of input data when processing the id parameter. Exploiting this vulnerability allows a malicious actor to cause a service failure by sending a specially crafted GET...

7.8CVSS5.8AI score0.00467EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.3 views

The vulnerability of the Windows operating system’s kernel, which allows a hacker to increase their privileges

The vulnerability of the Windows operating system’s kernel is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to increase their privileges...

7CVSS6.1AI score0.00243EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.3 views

The vulnerability of the TCP/IP protocol implementation in Windows operating systems allows a perpetrator to execute arbitrary code.

The vulnerability of the TCP/IP protocol implementation in Windows operating systems is related to synchronization errors when using shared resources. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

8.1CVSS6.4AI score0.00837EPSS
Exploits1References2Affected Software22
BDU FSTEC
BDU FSTEC
added 2026/04/15 12:0 a.m.5 views

The vulnerability of the Universal Plug and Play (UPnP) Device Host Service in Windows operating systems allows a hacker to enhance their privileges.

The vulnerability of the Universal Plug and Play UPnP Device Host Service in Windows operating systems is related to unreliable pointer reassignments. Exploiting this vulnerability can allow attackers to gain increased privileges...

7.8CVSS5.8AI score0.00321EPSS
Exploits0References2Affected Software22
Total number of security vulnerabilities90509