Lucene search
K
Bdu FstecRecent

90509 matches found

BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•3 views

The vulnerability of the SSL-VPN technology of the FortiOS operating system allows a hacker to gain unauthorized access to the device.

The vulnerability of the SSL-VPN technology for the FortiOS operating system is related to an incorrect session duration. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to the device by reusing the SAML token...

6.5CVSS5.8AI score0.00272EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•3 views

The vulnerability of the graphical user interface (GUI) of the FortiOS operating system’s Node.js daemon, the FortiProxy proxy server for protecting against internet attacks, the FortiPAM identity management system, the FortiSRA software for secure remote access, and the FortiSwitchManager local management platform, allows a malicious actor to execute arbitrary code or commands.

The vulnerability of the graphical user interface GUI of the FortiOS operating system’s Node.js daemon, the FortiProxy proxy server for protecting against internet attacks, the FortiPAM identity management system, the FortiSRA software for secure remote access, and the FortiSwitchManager local...

9CVSS6.5AI score0.00523EPSS
Exploits0References3Affected Software5
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•2 views

The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of the input data. This allows a hacker to trigger a service failure.

The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of input data when processing the s parameter. Exploiting this vulnerability allows a malicious actor to cause a service failure by sending a specially crafted GET request...

7.8CVSS5.8AI score0.00408EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•3 views

The vulnerability of D-Link DI-8003 router microprogramming software, related to buffer overflow in the stack, allows a hacker to trigger a service failure.

The vulnerability of D-Link DI-8003 router microprogramming software is related to buffer overflow in the stack when processing the name parameter. Exploiting this vulnerability allows an attacker to cause a service failure by sending a specially crafted GET request to the /urlgroup.asp endpoint...

7.8CVSS6.1AI score0.00516EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•3 views

The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of the input data. This allows a hacker to trigger a service failure.

The vulnerability of D-Link DI-8003 router microprogramming software lies in the copying of buffers without checking the size of input data during the processing of the iface parameter. Exploiting this vulnerability allows a malicious actor to cause a service failure by sending a specially crafte...

7.8CVSS5.8AI score0.00412EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•2 views

The vulnerability of the AI agent OpenClaw (formerly known as ClawdBot or MoltBot) relates to synchronization errors when using a shared resource, allowing a hacker to execute arbitrary commands.

The vulnerability of the AI agent OpenClaw formerly known as ClawdBot or MoltBot is related to synchronization errors when using a shared resource. Exploiting this vulnerability allows a hacker to execute arbitrary commands...

6.1CVSS6AI score0.00095EPSS
Exploits0References8Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•3 views

The vulnerability of the Lobster extension for the AI agent OpenClaw (formerly known as ClawdBot or MoltBot) in Windows operating systems allows a hacker to execute arbitrary commands.

The vulnerability of the Lobster extension for AI agents OpenClaw previously known as ClawdBot or MoltBot in Windows operating systems is related to the failure to take measures to neutralize special elements. Exploiting this vulnerability allows a hacker to execute arbitrary commands...

5.3CVSS6AI score0.00525EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•4 views

The vulnerability of the setNtpCfg function (/cgi-bin/cstecgi.cgi) in the Totolink A7100RU router’s microprogramming software allows a hacker to bypass existing security restrictions and execute arbitrary commands.

The vulnerability of the setNtpCfg function /cgi-bin/cstecgi.cgi in the Totolink A7100RU router’s microprogramming software is related to the failure to take measures to neutralize special elements used in the operating system’s processing of the tz parameter. Exploiting this vulnerability allows...

7.5CVSS7.3AI score0.01459EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•5 views

The vulnerability of the OCSP server component in Apache Tomcat allows a hacker to execute arbitrary code.

The vulnerability of the OCSP server component in Apache Tomcat is related to insufficient validation of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

7.8CVSS6.9AI score0.00498EPSS
Exploits0References7Affected Software6
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•2 views

The vulnerability of the proc_readdir_de() function in the Linux operating system allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the procreaddirde function in the Linux operating system is related to the possibility of using memory after it has been freed. Exploiting this vulnerability could allow an attacker to execute arbitrary code or cause service failures...

5.2CVSS6.1AI score0.00517EPSS
Exploits3References15Affected Software6
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•2 views

The vulnerability of the itimer_delete() function in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the itimerdelete function in the Linux operating system is related to the execution of a loop with an unreachable exit condition. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.2AI score0.00167EPSS
Exploits0References11Affected Software4
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•3 views

The vulnerability of the http.cookies.Morsel component in the Python programming language allows a attacker to compromise the accessibility of the protected information.

The vulnerability of the http.cookies.Morsel component in the Python interpreter is related to the failure to take measures to neutralize CRLF sequences. Exploiting this vulnerability can allow an attacker, operating remotely, to compromise the accessibility of protected information...

7.5CVSS5.8AI score0.00401EPSS
Exploits0References6Affected Software6
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•3 views

The vulnerability of the base64 module in the Python programming language allows a hacker to execute arbitrary code.

The vulnerability of the base64 module in the Python programming language is related to incorrect data type conversion. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

5.3CVSS6.1AI score0.00513EPSS
Exploits1References4Affected Software5
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•4 views

The vulnerability of the ASN.1 library pyasn1 in the Python programming language, related to unlimited resource distribution, allows attackers to cause service failures.

The vulnerability of the ASN.1 library pyasn1 in the Python programming language is related to the unlimited distribution of resources. Exploiting this vulnerability could allow a malicious actor to cause service failures...

7.8CVSS6.7AI score0.00679EPSS
Exploits0References39Affected Software19
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•3 views

The vulnerability of the Git-based software platform for collaborative code development on GitLab, related to bypassing authentication using a user-managed key, allows unauthorized access to protected information.

The vulnerability of the Git-based software platform for collaborative code development on GitLab relates to exploiting authentication bypass using a user-managed key. Exploiting this vulnerability could allow an intruder, operating remotely, to gain unauthorized access to protected information...

4.3CVSS5.8AI score0.00308EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•3 views

The vulnerability of the network traffic analysis, network detection, and response capabilities of the Cortex XDR Agent for Windows operating systems arises from external system management or configuration settings, allowing attackers to disable the Cortex XDR Agent.

The vulnerability of the network traffic analysis, network detection, and response capabilities of the Cortex XDR Agent for Windows operating systems is related to external system management or configuration settings. Exploiting this vulnerability could allow attackers to disable the Cortex XDR...

4.6CVSS5.8AI score0.00146EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•3 views

The vulnerability of the Comindware Platform for business process management lies in the incorrect limitation of the path name to the restricted access catalog, allowing a hacker to execute arbitrary code.

The vulnerability of the Comindware Platform for business process management is related to an incorrect restriction on the path name to the restricted catalog. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

9CVSS6.1AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•4 views

The vulnerability of the WebView component of Google Chrome’s browser allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the WebView component of Google Chrome’s browser involves the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of protected information through a specially created HTML page...

10CVSS5.8AI score0.00277EPSS
Exploits0References5Affected Software4
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•4 views

The vulnerability of the TM2 Monitoring platform, related to deficiencies in the authentication process, allows attackers to disclose protected information.

The vulnerability of the TM2 Monitoring platform is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor to disclose the protected information...

10CVSS5.7AI score0.00274EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•3 views

The vulnerability of the Emby Server, a management and multimedia transmission server, relates to the lack of a password recovery mechanism, allowing attackers to gain full access to the system.

The vulnerability of the Emby Server, a management and multimedia transmission server, is related to the lack of a password recovery mechanism. Exploiting this vulnerability could allow an attacker to gain full access to the system remotely...

10CVSS7.3AI score0.00613EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•3 views

The vulnerability of the backup server of the Veeam Backup & Replication software allows a perpetrator to execute arbitrary code. This vulnerability targets systems for cloud, virtual, and physical environments.

The vulnerability of the backup server of the Veeam Backup & Replication solution for cloud, virtual, and physical systems is related to access control errors. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

9.9CVSS7.5AI score0.01173EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•3 views

The vulnerability of the Liebert UNITY communication and device management platform, as well as the Liebert RDU101 communication card, stems from buffer overflows in the stack. This allows an attacker to execute arbitrary code.

The vulnerability of the Liebert UNITY communication and device management platform, as well as the Liebert RDU101 communication card, is related to buffer overflow in the stack. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

10CVSS6.3AI score0.00703EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•2 views

The vulnerability of the NOOP Command Handler component of the Freefloat FTP Server allows a hacker to execute arbitrary commands.

The vulnerability of the NOOP Command Handler component in the Freefloat FTP Server lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

10CVSS7.4AI score0.10139EPSS
Exploits12References5Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•2 views

The vulnerability of the Gogs self-managed Git repository creation software lies in its insufficient verification of data authenticity, allowing a violator to re-archive LFS objects.

The vulnerability of the Gogs self-managed Git repository creation software is related to insufficient verification of data authenticity. Exploiting this vulnerability could allow a malicious actor, operating remotely, to re-archive LFS objects...

9.3CVSS7.2AI score0.00327EPSS
Exploits1References5Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•3 views

The vulnerability of the amdgpu_virt_rlcg_reg_rw() function in the Linux operating system’s drivers/gpu/drm/amd/amdgpu/amdgpu_virt.c kernel module allows a hacker to cause a service failure.

The vulnerability of the amdgpuvirtrlcgregrw function in the drivers/gpu/drm/amd/amdgpu/amdgpuvirt.c file of the Linux kernel is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

4.7CVSS6.1AI score0.00152EPSS
Exploits0References9Affected Software2
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•4 views

The vulnerability of the command-line interface (CLI) of the FortiClient for MAC protection tool allows a attacker to carry out the LaunchDaemon hijacking attack and execute arbitrary code or commands.

The vulnerability of the command-line interface CLI of the FortiClient for MAC security tool is related to the improper assignment of permissions for critical resources. Exploiting this vulnerability can allow an attacker to carry out a LaunchDaemon hijacking attack and execute arbitrary code or...

7.8CVSS6.1AI score0.00118EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•5 views

The vulnerability of the graphical user interface (GUI) of the FortiADC application controller allows a hacker to execute arbitrary code.

The vulnerability of the graphical user interface GUI of the FortiADC application delivery controller is related to the lack of measures taken to neutralize html tags. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending a specially created URL address...

6.4CVSS6.1AI score0.00149EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•2 views

The vulnerability of the cloud platform for data protection, FortiDLP, stems from insufficient protection of registration data, allowing attackers to disclose the protected information.

The vulnerability of the FortiDLP data protection cloud platform lies in the insufficient protection of registration data. Exploiting this vulnerability could allow attackers to disclose protected information by reusing the registration code...

4.4CVSS5.7AI score0.00146EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•3 views

The vulnerability of the allowlist mode of the AI agent OpenClaw (formerly ClawdBot or MoltBot) allows a violator to execute arbitrary commands.

The vulnerability of the allowlist mode of the AI agent OpenClaw previously – ClawdBot or MoltBot is related to the failure to take measures to neutralize special elements. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

8.3CVSS6.1AI score0.0063EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•5 views

The vulnerability of the AI agent OpenClaw (formerly known as ClawdBot or MoltBot) arises from the uncontrolled modification of object prototypes’ attributes. This allows attackers to circumvent existing security mechanisms.

The vulnerability of the AI agent OpenClaw formerly known as ClawdBot or MoltBot relates to uncontrolled changes in the attributes of the object’s prototype. Exploiting this vulnerability can allow a malicious actor to bypass existing security mechanisms remotely...

4.3CVSS5.7AI score0.00237EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•3 views

The vulnerability of the setRemoteCfg function (/cgi-bin/cstecgi.cgi) in the Totolink A7100RU router software allows a hacker to bypass existing security restrictions and execute arbitrary commands.

The vulnerability of the setRemoteCfg function /cgi-bin/cstecgi.cgi in the Totolink A7100RU router software lies in the lack of measures to neutralize special elements used in the operating system’s command for processing the enable parameter. Exploiting this vulnerability allows a remote attacke...

7.5CVSS7.4AI score0.01459EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•4 views

The vulnerability of the Cockpit server management system, related to the failure to take measures to neutralize specific elements, allows a perpetrator to execute arbitrary code.

The vulnerability of the Cockpit server management system is related to the failure to take measures to neutralize specific elements. Exploiting this vulnerability allows a malicious actor operating remotely to execute arbitrary code...

10CVSS6AI score0.142EPSS
Exploits3References5Affected Software3
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•2 views

The vulnerability of the maybe_fork_scalars() function in Linux operating systems allows a perpetrator to influence the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the maybeforkscalars function in the Linux operating system’s kernel is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow an attacker to influence the confidentiality, integrity, and accessibility of the protecte...

7CVSS7.3AI score0.00221EPSS
Exploits2References8Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•3 views

The vulnerability of the Nix packet manager in Unix operating systems arises from an incorrect definition of the link before accessing a file. This allows a malicious actor to gain administrative privileges.

The vulnerability of the Nix packet manager in Unix operating systems is related to an incorrect definition of the reference before accessing a file. Exploiting this vulnerability can allow an attacker to gain administrative privileges...

9CVSS5.8AI score0.00193EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•3 views

The vulnerability of the SSL/TLS WolfSSL library, related to errors in the certificate validation process, allows attackers to influence the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the SSL/TLS WolfSSL library is related to errors in the certificate authentication process. Exploiting this vulnerability could allow an attacker to influence the confidentiality, integrity, and accessibility of the protected information...

9.4CVSS6.1AI score0.00468EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•3 views

The vulnerability of the Apache Tomcat application server, related to insufficient input validation, allows attackers to execute arbitrary code.

The vulnerability of the Apache Tomcat application server is related to insufficient validation of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

6.5CVSS7.3AI score0.00494EPSS
Exploits0References5Affected Software5
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•3 views

The vulnerability of the encode_comp_t() function in the Linux operating system’s kernel allows a attacker to compromise the integrity of the protected information.

The vulnerability of the encodecompt function in the Linux operating system’s kernel is related to integer overflow. Exploiting this vulnerability could allow an attacker to compromise the integrity of the protected information...

3.3CVSS6.1AI score0.00239EPSS
Exploits0References13Affected Software3
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•2 views

The vulnerability of the `configfs_create_dir()` function in the Linux operating system allows a attacker to compromise the accessibility of protected information.

The vulnerability of the configfscreatedir function in the Linux operating system is related to the lack of memory release after the effective lifespan of the function has ended. Exploiting this vulnerability could allow an attacker to compromise the accessibility of protected information...

3.3CVSS6AI score0.00211EPSS
Exploits0References10Affected Software3
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•2 views

The vulnerability of the poplib module in the Python programming language allows a hacker to execute arbitrary code.

The vulnerability of the poplib module, a programming language interpreter for Python, is related to the lack of measures taken to clean data at the control level. Exploiting this vulnerability allows an attacker who operates remotely to execute arbitrary code...

7.5CVSS7.3AI score0.00315EPSS
Exploits0References29Affected Software6
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•4 views

The vulnerability of NetworkManager’s software for managing network connections, related to improper storage of permissions, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the NetworkManager software for managing network connections is related to improper storage of permissions. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

3.3CVSS5.8AI score0.00162EPSS
Exploits0References5Affected Software5
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•3 views

The vulnerability of the special_keys() function in the src/netbeans.c file of the Vim text editor allows a hacker to execute arbitrary code.

The vulnerability of the specialkeys function in the src/netbeans.c file of the Vim text editor is related to the execution of an operation beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

7.6CVSS6.6AI score0.00284EPSS
Exploits0References5Affected Software5
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•3 views

The vulnerability of the ssh_get_hexa() function in the application programming interface of the libssh library, which allows a hacker to cause a service failure

The vulnerability of the sshgethexa function in the application programming interface of the libssh library is related to a breach of the buffer boundary. Exploiting this vulnerability could allow an attacker, operating remotely, to cause service failures...

6.5CVSS6.7AI score0.00582EPSS
Exploits0References7Affected Software6
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•3 views

The vulnerability of the libssh library, related to the use of a regular expression with inefficient computational complexity, allows a hacker to cause a service failure.

The vulnerability of the libssh library is related to the use of a regular expression with inefficient computational complexity. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.4AI score0.00223EPSS
Exploits0References7Affected Software6
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•3 views

The vulnerability in the script/cgi-bin/wireless.cgi of the WAVLINK WL-WN578W2 signal booster software allows a hacker to execute arbitrary commands.

The vulnerability of the /cgi-bin/wireless.cgi microprogramming system of the WAVLINK WL-WN578W2 amplifier is related to the lack of measures taken at the control level for data cleaning. Exploiting this vulnerability could allow an attacker operating remotely to execute arbitrary commands...

10CVSS7.5AI score0.02057EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•2 views

The vulnerability of D-Link DI-8003 router microprogramming software, related to buffer overflow in the stack, allows a hacker to trigger a service failure.

The vulnerability of D-Link DI-8003 router microprogramming software is related to buffer overflows in the stack when processing parameters such as name, en, userid, shibiename, time, act, log, and rpri. Exploiting this vulnerability allows a malicious actor to cause service failure by sending a...

7.8CVSS6AI score0.00492EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•3 views

The vulnerability of the ReadValue module of the MESCIUS ActiveReports.NET reporting tool allows a perpetrator to execute arbitrary code.

The vulnerability of the ReadValue module of the MESCIUS ActiveReports.NET reporting tool is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

10CVSS7.6AI score0.00738EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•5 views

The vulnerability of the MESCIUS ActiveReports.NET reporting tool, related to deficiencies in the deserialization mechanism, allows a perpetrator to execute arbitrary code.

The vulnerability of the MESCIUS ActiveReports.NET reporting tool is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

10CVSS7.6AI score0.00738EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•3 views

The vulnerability of the Oracle Cloud Infrastructure Designer and Visualization Toolkit (OKIT) software allows a hacker to compromise the system.

The vulnerability of the Oracle Cloud Infrastructure Designer and Visualization Toolkit OKIT software relates to deficiencies in the deserialization mechanism. Exploiting this vulnerability can allow a malicious actor to compromise the system remotely...

10CVSS5.8AI score0.00448EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•4 views

The vulnerability of the Liebert UNITY communication and device management platform and the Liebert RDU101 communication card, related to bypassing the authentication process through an alternative path or channel, allows a perpetrator to circumvent existing security restrictions.

The vulnerability of the Liebert UNITY communication and device management platform, as well as the Liebert RDU101 communication card, lies in the ability to bypass authentication by using an alternative path or channel. Exploiting this vulnerability allows a remote attacker to circumvent existin...

10CVSS5.8AI score0.00552EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
•added 2026/04/14 12:0 a.m.•4 views

The vulnerability of the SillyTavern software platform, related to a data source confirmation error, allows a violator to execute arbitrary code.

The vulnerability of the SillyTavern software platform is related to a data source verification error. Exploiting this vulnerability allows an attacker who operates remotely to execute arbitrary code...

10CVSS6AI score0.00236EPSS
Exploits0References4Affected Software1
Total number of security vulnerabilities90509