90509 matches found
The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of the input data. This allows a hacker to trigger a service failure.
The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of input data during the processing of parameters “name” and “mem”. Exploiting this vulnerability allows a malicious actor to cause a service failure by sending a speciall...
The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of the input data. This allows a hacker to trigger a service failure.
The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of input data during the processing of the vlanname parameter. Exploiting this vulnerability allows an attacker, operating remotely, to cause a service failure by sending ...
The vulnerability of the Shell command shell in Windows operating systems allows attackers to bypass security restrictions.
The vulnerability of the Shell command shell in Windows operating systems is related to a breach of data protection mechanisms. Exploiting this vulnerability allows an attacker to circumvent security restrictions remotely...
The vulnerability of the print spooler daemon on Windows operating systems allows attackers to escalate their privileges.
The vulnerability of the Windows Print Spooler in operating systems related to the print queue handler is related to the possibility of using memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the Windows operating system’s kernel, which allows a hacker to increase their privileges
The vulnerability of the Windows operating system’s kernel is related to a memory reallocation error. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the Projected File System (ProjFS) file system in the Windows operating system, which allows a hacker to increase their privileges
The vulnerability of the Projected File System ProjFS in the Windows operating system is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of Microsoft Word packages in Microsoft Office and Microsoft 365 Apps for Enterprise, related to the possibility of exploiting memory after release, allows attackers to execute arbitrary code.
The vulnerability of Microsoft Word packages in Microsoft Office and Microsoft 365 Apps for Enterprise lies in the ability to exploit memory after it is freed. Exploiting this vulnerability allows an attacker to execute arbitrary code by sending a specially created malicious file...
The vulnerability of Microsoft Office, Excel, and 365 Apps for Enterprise programs relates to the use of memory after it is freed, allowing an attacker to execute arbitrary code.
The vulnerability of Microsoft Office, Excel, and 365 Apps for Enterprise packages is related to the use of memory after it is freed. Exploiting this vulnerability allows an attacker to execute arbitrary code...
The vulnerability of Microsoft Excel spreadsheet editors within Microsoft Office and Microsoft 365 Apps for Enterprise applications relates to the possibility of exploiting memory after it is freed, allowing an attacker to execute arbitrary code.
The vulnerability of Microsoft Excel spreadsheet editors within the Microsoft Office and Microsoft 365 Apps for Enterprise software packages is related to the ability to exploit memory after it is freed. Exploiting this vulnerability could allow an attacker to execute arbitrary code...
The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Server Subscription Edition, and Microsoft SharePoint Enterprise Server lies in the insufficient validation of requests on the server side, allowing an attacker to gain unauthorized access to protected information.
The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Server Subscription Edition, and Microsoft SharePoint Enterprise Server is related to insufficient testing of server-side requests. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected...
The vulnerability of the Log4j1XmlLayout component in the Apache Log4j Core logging library, which allows attackers to influence the integrity of protected information.
The vulnerability of the Log4j1XmlLayout component in the Apache Log4j Core logging library is related to improper encoding or escaping of output data. Exploiting this vulnerability allows an attacker to influence the integrity of the protected information...
The vulnerability of IBM Verify Identity Access and IBM Security Verify Access systems lies in the insufficient validation of requests at the server-side. This allows attackers to gain unauthorized access to protected information.
The vulnerability of IBM Verify Identity Access and IBM Security Verify Access lies in insufficient validation of requests at the server-side. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...
The vulnerability of the IBM Langflow Desktop software for visual AI development lies in its deserialization mechanism flaws, allowing attackers to execute arbitrary code.
The vulnerability of IBM Langflow Desktop, a software for visual development of AI agents, is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...
The vulnerability of the XWiki Platform, a platform for creating collaborative web applications, relates to the absence of authentication mechanisms. This allows attackers to compromise the integrity, accessibility, and confidentiality of information.
The vulnerability of the XWiki Platform, a platform for creating collaborative web applications, lies in the lack of authentication. Exploiting this vulnerability allows a malicious actor to manipulate the integrity, accessibility, and confidentiality of information...
The vulnerability of the Windows Ancillary Function Driver for WinSock operating system allows attackers to increase their privileges.
The vulnerability of the Windows Ancillary Function Driver for WinSock operating system is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to gain increased privileges...
The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of the input data. This allows a hacker to trigger a service failure.
The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of input data when processing the wans parameter. Exploiting this vulnerability allows a malicious actor to cause service failure by sending a specially crafted GET reques...
The vulnerability of the Ancillary Function Driver for WinSock in Windows operating systems allows attackers to increase their privileges.
The vulnerability of the Ancillary Function Driver for WinSock in Windows operating systems lies in the ability to exploit memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the Function Discovery Service (fdwsd.dll) on Windows operating systems allows a perpetrator to escalate their privileges.
The vulnerability of the Function Discovery Service fdwsd.dll on Windows operating systems is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow an attacker to gain increased privileges...
The vulnerability of Windows Kernel Memory in the Windows operating system allows attackers to disclose sensitive information that is protected by security measures.
The vulnerability of Windows Kernel Memory in the operating system is related to operations that go beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to disclose sensitive information that is protected by security measures...
The vulnerability of the biometric authentication function of the Windows Hello operating system allows a perpetrator to circumvent existing security restrictions.
The vulnerability of the biometric authentication function of the Windows Hello operating system lies in insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to bypass existing security restrictions remotely...
The vulnerability of the user interface of Windows operating systems, which allows a hacker to increase their privileges
The vulnerability of Windows operating system user interfaces is related to synchronization errors when using common resources. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the Desktop Windows Manager in operating systems Windows allows attackers to increase their privileges.
The vulnerability of the Desktop Windows Manager in Windows operating systems relates to the possibility of exploiting memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the Windows Speech Brokered API interface in operating systems allows attackers to escalate their privileges.
The vulnerability of the Windows Speech Brokered API in operating systems is related to the possibility of using memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the Redirected Drive Buffering System (RDBS) allows a perpetrator to cause a service failure.
The vulnerability of the Redirected Drive Buffering System RDBS is related to pointer manipulation. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the Windows Push Notifications service allows a perpetrator to escalate their privileges.
The vulnerability of Windows push-notifications services is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow attackers to gain increased privileges...
The vulnerability of the Synology SSL VPN Client lies in the use of files and directories accessible to external parties, allowing a hacker to gain access to protected information.
The vulnerability of the Synology SSL VPN Client lies in the use of files and directories accessible to external parties. Exploiting this vulnerability could allow a malicious actor to gain access to protected information...
The vulnerability of the Gimp image processing library, related to buffer overflow in dynamic memory, allows an attacker to execute arbitrary code.
The vulnerability of the Gimp image processing library is related to overflow in the dynamic memory buffer. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
The vulnerability of the Remote Desktop Licensing Service for Windows operating systems allows attackers to increase their privileges.
The vulnerability of the Remote Desktop Licensing Service for Windows operating systems is related to the lack of authentication for a critical function. Exploiting this vulnerability can allow attackers to increase their privileges...
The vulnerability of the Windows Server Update Service (WSUS) for Windows operating systems allows attackers to enhance their privileges.
The vulnerability of the Windows Server Update Service WSUS for Windows operating systems relates to the use of memory after it is released. Exploiting this vulnerability could allow an attacker to increase their privileges...
The vulnerability of the Flare file-sharing platform, related to bypassing authentication using a user-controlled key, allows attackers to influence the confidentiality of protected information.
The vulnerability of the Flare file-sharing platform relates to bypassing authentication using a user-controlled key. Exploiting this vulnerability allows an attacker to influence the confidentiality of the protected information...
The vulnerability of the Flare file-sharing platform, related to bypassing authentication using a user-controlled key, allows attackers to escalate their privileges.
The vulnerability of the Flare file-sharing platform relates to bypassing authentication using a user-controlled key. Exploiting this vulnerability allows a malicious actor to increase their privileges remotely...
The vulnerability of the HTTP.sys driver on Windows operating systems, which allows a hacker to trigger a service failure
The vulnerability of the HTTP.sys driver on Windows operating systems is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...
The vulnerability of the Hyper-V hardware virtualization system for Windows operating systems allows a hacker to execute arbitrary code.
The vulnerability of the Hyper-V hardware virtualization technology for Windows operating systems lies in the fact that operations are performed outside the buffer in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code...
The vulnerability of the Hyper-V hardware virtualization system for Windows operating systems allows a hacker to execute arbitrary code.
The vulnerability of the Hyper-V hardware virtualization technology for Windows operating systems is related to insufficient checking of output data. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of the input data. This allows a hacker to trigger a service failure.
The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a malicious actor to cause a service failure by sending a specially crafted GET request to the final destination...
The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of the input data. This allows a hacker to trigger a service failure.
The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of input data during the processing of the httplanport parameter. Exploiting this vulnerability allows a malicious actor to cause service failure by sending a specially...
The vulnerability of the SMB CSI driver of the Kubernetes cluster management software allows a hacker to delete or modify any directory at will.
The vulnerability of the SMB CSI driver in the Kubernetes cluster management software is related to an incorrect path name limitation. Exploiting this vulnerability allows a remote attacker to delete or modify directories beyond the scope of the target managed subdirectory in the exported SMB fil...
The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of the input data. This allows a hacker to trigger a service failure.
The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of input data during the processing of the name parameter. Exploiting this vulnerability allows an attacker, operating remotely, to cause a service failure by sending a...
The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of the input data. This allows a hacker to trigger a service failure.
The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a malicious actor to cause a service failure by sending a specially crafted GET request to the final destination...
The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of the input data. This allows a hacker to trigger a service failure.
The vulnerability of D-Link DI-8003 router’s microprogramming software lies in the copying of buffers without checking the size of input data when processing the s parameter. Exploiting this vulnerability allows a malicious actor to cause service failure by sending a specially crafted GET request...
The vulnerability of the Projected File System (ProjFS) file system in Windows operating systems, which allows a hacker to increase their privileges
The vulnerability of the Projected File System ProjFS in Windows operating systems is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the encryption mechanism for flash memory (XTS-AES with pseudo-rounds) in the ESP32-C5 chip allows a hacker to recover the AES keys.
The vulnerability of the XTS-AES encryption mechanism with pseudo-rounds on the ESP32-C5 chip is related to the lack of protection for service data. Exploiting this vulnerability allows a hacker to recover the AES keys...
The vulnerability affects the `/_og/d/` component of the Open Graph image generation module from the Nuxt OG Image framework. This framework is used for creating web applications and websites using Nuxt.js. It allows attackers to trigger a denial-of-service attack.
The vulnerability of the og/d/ component of the Open Graph image generation module of the Nuxt OG Image framework, which is used for creating web applications and sites using Nuxt.js, relates to improper resource release. Exploiting this vulnerability allows an attacker to cause service failures...
The vulnerability of the Universal Plug and Play (UPnP) Device Host Service in Windows operating systems allows a hacker to enhance their privileges.
The vulnerability of the Universal Plug and Play UPnP Device Host Service in Windows operating systems is related to unreliable pointer reassignments. Exploiting this vulnerability can allow attackers to gain increased privileges...
The vulnerability of the Simple Search and Discovery Protocol (SSDP) service in the Windows operating system allows a hacker to increase their privileges.
The vulnerability of the Simple Search and Discovery Protocol SSDP service in the Windows operating system is related to synchronization errors when using a common resource. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of Microsoft Excel spreadsheet editors in Microsoft Office packages and Microsoft 365 Apps for Enterprise allows a perpetrator to execute arbitrary code.
The vulnerability of Microsoft Excel spreadsheet editors within the Microsoft Office and Microsoft 365 Apps for Enterprise software packages is related to the ability to exploit memory after it is freed. Exploiting this vulnerability could allow an attacker to execute arbitrary code...
The vulnerability in the implementation of the Internet Key Exchange (IKE) protocol in Windows operating systems allows a hacker to execute arbitrary code.
The vulnerability of the Internet Key Exchange IKE protocol implementation in Windows operating systems is related to a memory reclamation error. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...
The vulnerability of the user interface of Windows operating systems, which allows a hacker to increase their privileges
The vulnerability of the user interface UI of Windows operating systems is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the Windows Advanced Rasterization Platform (WARP) in Windows operating systems allows attackers to escalate their privileges.
The vulnerability of the Windows Advanced Rasterization Platform WARP in Windows operating systems is related to integer overflow. Exploiting this vulnerability can allow a remote attacker to gain elevated privileges...
The vulnerability of the Microsoft Dynamics 365 resource planning software, related to access control errors, allows a perpetrator to disclose protected information.
The vulnerability of the Microsoft Dynamics 365 resource planning software is related to access control errors. Exploiting this vulnerability could allow an attacker to disclose sensitive information that is protected by security measures...