The vulnerability of the AngularJS JavaScript framework for developing single-page applications relates to incomplete filtering of special elements, allowing attackers to perform cross-site scripting attacks.

The vulnerability of the AngularJS JavaScript framework for developing single-page applications is related to incomplete filtering of special elements. Exploiting this vulnerability allows a remote attacker to perform cross-site scripting attacks...

The vulnerability of the SSLManagerOpenSSL class in the MongoDB database management system allows a hacker to circumvent security restrictions.

The vulnerability of the SSLManagerOpenSSL class in the MongoDB database management system is related to the lack of verification for certificate revocation. Exploiting this vulnerability allows a malicious actor to circumvent security restrictions remotely...

The vulnerability of the web proxy function in the operating system PAN-OS, which allows a hacker to trigger a service failure

The vulnerability of the web proxy function in the operating system PAN-OS is related to insufficient checks for exceptional states. Exploiting this vulnerability can allow a malicious actor to cause service interruptions by sending numerous specially crafted packets...

The vulnerability of Visual Studio Code’s source editor lies in its use of files and directories accessible from external parties, which allows unauthorized access to protected information.

The vulnerability of Visual Studio Code’s source editor relates to the use of files and directories accessible from external parties. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

The vulnerability of the WRITE_SECURE_SETTINGS function in the ZygoteProcess.java file of the Android operating system allows a hacker to gain increased privileges.

The vulnerability of the WRITESECURESETTINGS function in the ZygoteProcess.java file of the Android operating system is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability can allow an attacker to gain increased privileges...

The vulnerability of the Branch Prediction Unit (BPU) in Intel Core Ultra microprogramming systems allows attackers to disclose protected information.

The vulnerability of the Branch Prediction Unit BPU in Intel Core Ultra microprogrammed software processors is related to incorrect initialization of resources. Exploiting this vulnerability can allow attackers to disclose protected information...

The vulnerability of Microsoft SharePoint Server and SharePoint Enterprise Server’s software packages lies in their deserialization mechanism flaws, which allows attackers to execute arbitrary code.

The vulnerability of Microsoft SharePoint Server and SharePoint Enterprise Server packages is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of Microsoft SharePoint Server and SharePoint Enterprise Server’s software packages lies in their deserialization mechanism flaws, which allows attackers to execute arbitrary code.

The vulnerability of Microsoft SharePoint Server and SharePoint Enterprise Server packages is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability in the web interface of the Cisco Application Policy Infrastructure Controller allows attackers to perform cross-site scripting (XSS) attacks.

The vulnerability of the Cisco Application Policy Infrastructure Controller web interface relates to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks XSS remotely...

The vulnerability of Adobe InDesign’s computer layout automation tool, related to the swapping of pointers, allows a hacker to trigger a service failure.

The vulnerability of Adobe InDesign’s computer layout automation tool is related to the use of pointers. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the Command Line Interface (CLI) of the Cisco Application Policy Infrastructure Controller allows a perpetrator to enhance their privileges and execute arbitrary commands.

The vulnerability of the Command Line Interface CLI of the Cisco Application Policy Infrastructure Controller management tool is related to the lack of measures taken to clean data at the management level. Exploiting this vulnerability can allow an attacker to enhance their privileges and execute...

The vulnerability of the Command Line Interface (CLI) of the Cisco Application Policy Infrastructure Controller, which allows a attacker to disclose protected information

The vulnerability of the Command Line Interface CLI of the Cisco Application Policy Infrastructure Controller management tool is related to improper cross-border deletion of critical data. Exploiting this vulnerability can allow an attacker to disclose protected information...

The vulnerability of the Microsoft Azure File Sync data synchronization service, related to access control deficiencies, allows attackers to escalate their privileges.

The vulnerability of the Microsoft Azure File Sync data synchronization service is related to lack of access control. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of the ColdFusion software platform arises from incorrect restrictions on path names to restricted catalogs. This allows attackers to circumvent security restrictions and gain unauthorized access to protected information.

The vulnerability of the ColdFusion software platform is related to incorrect restrictions on the path name to the restricted directory. Exploiting this vulnerability allows an attacker to bypass security restrictions and gain unauthorized access to protected information...

The vulnerability of the ibftattr_show_nic() function in the driver (drivers/firmware/iscsi_ibft.c) of the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the ibftattrshownic function in the Linux kernel’s drivers/firmware/iscsiibft.c file is related to read misses beyond buffer boundaries. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the Cisco Application Policy Infrastructure Controller, related to synchronization errors when using shared resources, allows a perpetrator to trigger a service failure.

The vulnerability of the Cisco Application Policy Infrastructure Controller, a component of the information infrastructure management tool, is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow attackers to cause service failures...

The vulnerability of the dce60_tg_funcs() function in the driver (drivers/gpu/drm/amd/display/dc/dce60/dce60_timing_generator.c) of the Linux operating system, which allows a hacker to trigger a service failure.

The vulnerability of the dce60tgfuncs function in the driver drivers/gpu/drm/amd/display/dc/dce60/dce60timinggenerator.c of the Linux kernel is related to the use of pointers. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the load_microcode_amd() function in the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the loadmicrocodeamd function in the Linux operating system’s kernel is related to incorrect array indexing. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability in the fs/netfs/read_collect.c module of the Linux kernel file system netfs allows a attacker to cause a service failure.

The vulnerability of the fs/netfs/readcollect.c module of the Linux file system netfs kernel relates to improper control of resource identifiers “resource injection”. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability in the driver module/gpu/drm/amd/amdgpu/gmc_v12_0.c of the AMDGPU kernel of the Linux operating system allows a hacker to cause a service failure.

The vulnerability in the drivers/gpu/drm/amd/amdgpu/gmcv120.c driver of the AMDGPU core in the Linux operating system is related to pointer manipulation. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the amdgpu_ttm_clear_buffer() function in the AMDGPU kernel driver for the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the amdgputtmclearbuffer function in the AMDGPU kernel driver for the Linux operating system is related to the use of an uninitialized pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the HID_USB_DEVICE() function in the Linux kernel driver (drivers/hid/hid-quirks.c), which allows a hacker to cause a service failure.

The vulnerability of the HIDUSBDEVICE function in the Linux kernel driver drivers/hid/hid-quirks.c is related to incorrect input validation. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability in the web interface for managing Tenda FH1202 micro-programmed software routers allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the web interface for managing Tenda FH1202 micro-program software routers is related to deficiencies in access control when processing the /goform/wrlwpsset endpoint. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to...

The vulnerability of the VLAN (Virtual Local Area Network) technology in the microprogramming-based industrial wireless switches ABB ARG600, ARP600, ARR600, and ARC600 allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the VLAN Virtual Local Area Network technology in the microprogramming-based industrial wireless switches ABB ARG600, ARP600, ARR600, and ARC600 is related to incorrect initialization of resources. Exploiting this vulnerability can allow an attacker to compromise the...

The vulnerability of the built-in boa server (/boafrm/formWsc) of TOTOLINK N150RT router microprogramming software allows a intruder to cause a service failure.

The vulnerability of the built-in boa server /boafrm/formWsc of TOTOLINK N150RT router microprogramming software is related to the copying of buffers without checking the size of input data when processing the localPin parameter. Exploiting this vulnerability allows an attacker to cause service...

The vulnerability of the setMacFilterRules function in TOTOLINK A3100R router microprogramming software allows a intruder to trigger a service failure.

The vulnerability of the setMacFilterRules function in TOTOLINK A3100R router microprogramming software is related to buffer overflows in the stack when processing the comment parameter. Exploiting this vulnerability can allow an attacker to cause service interruptions by sending specially crafte...

The vulnerability of the setWiFiEasyGuestCfg function in the microprogramming software for TOTOLINK NR1800X allows a hacker to cause a service failure.

The vulnerability of the setWiFiEasyGuestCfg function in the microprogramming software for TOTOLINK NR1800X is related to buffer overflow in the stack when processing the parameter ssid5g. Exploiting this vulnerability can allow an attacker to cause service failure by sending specially crafted PO...

The vulnerability of the Share Livestream module in the UniFi Protect video surveillance system allows a intruder to gain unauthorized access to protected information.

The vulnerability of the Share Livestream module in the UniFi Protect video surveillance system is related to deficiencies in access control. Exploiting this vulnerability could allow an intruder, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the Tenda RX2 Pro router’s microprogramming-based management service allows a hacker to execute arbitrary commands.

The vulnerability of the Tenda RX2 Pro router’s microprogrammed management service is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands by sending specially crafted UDP packets...

The vulnerability of the Zabbix universal monitoring system’s web interface allows attackers to carry out cross-site scripting attacks.

The vulnerability of the Zabbix universal monitoring system’s web interface is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to carry out a cross-site scripting attack by manipulating the backurl parameter...

The vulnerability in the message processing function of the RADIUS authentication, authorization, and accounting protocol implemented by the Cisco Identity Services Engine (ISE) platform for network connection policy management allows a perpetrator to cause a denial-of-service attack on a network access device (NAD).

The vulnerability of the message processing function in the implementation of the RADIUS authentication, authorization, and accounting protocol of the Cisco Identity Services Engine ISE platform is related to reading data beyond the buffer in memory. Exploiting this vulnerability could allow a...

The vulnerability of the logfile_reopen() function in the GNU screen terminal multiplexer allows a hacker to write data to an arbitrary file with root privileges.

The vulnerability of the logfilereopen function in the GNU screen terminal multiplexer is related to the execution of the operation before privilege reset. Exploiting this vulnerability could allow an attacker to write data to an arbitrary file with root privileges...

The vulnerability of the Branch Target Buffer (BTB) and Indirect Branch Predictor (IBP) components of Intel microprogramming devices allows attackers to disclose protected information.

The vulnerabilities of the Branch Target Buffer BTB and Indirect Branch Predictor IBP in Intel microprogramming devices stem from the state of the race within the pipeline. Exploiting these vulnerabilities can allow attackers to disclose protected information by executing specially crafted...

The vulnerability of the Telnet protocol implementation in the microprogramming-based router software Tenda RX2 Pro allows a hacker to disclose protected information.

The vulnerability of the Telnet protocol implementation in the microprogramming-based router software Tenda RX2 Pro is related to the insecure storage of confidential information. Exploiting this vulnerability can allow an attacker, operating remotely, to disclose the protected information...

The vulnerability of the server of the Zabbix universal monitoring system allows a intruder to trigger a service failure.

The vulnerability of the Zabbix universal monitoring system is related to the unlimited distribution of resources. Exploiting this vulnerability allows a malicious actor to cause service failures remotely...

The vulnerability of the API component of the Zabbix monitoring system allows a attacker to execute arbitrary commands.

The vulnerability of the API component of the Zabbix monitoring system is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows an attacker who operates remotely to execute arbitrary commands by processing the groupBy parameter...

The vulnerability of the web server of the microprogramming software for the Modbus AutomationDirect MB-Gateway allows a perpetrator to gain unauthorized access to the device.

The vulnerability of the web server of the microprogramming-based Modbus AutomationDirect MB-Gateway software lies in the absence of an authentication mechanism for a critical function. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to the...

The vulnerability of the ThinServer.exe executable file of the ThinServer component of the Rockwell Automation ThinManager centralized application management platform allows a attacker to load arbitrary files.

The vulnerability of the ThinServer.exe executable file of the ThinServer component of Rockwell Automation’s ThinManager application platform is related to errors in processing the relative path to the restricted access directory. Exploiting this vulnerability could allow a malicious actor to...

The vulnerability of the client_hdev() function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the clienthdev function in the Linux operating system is related to memory management errors after memory is freed. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of Microsoft Excel spreadsheet editors in Microsoft Office packages and Microsoft 365 Apps for Enterprise allows a perpetrator to execute arbitrary code.

The vulnerability of Microsoft Excel spreadsheet editors within the Microsoft Office and Microsoft 365 Apps for Enterprise software packages is related to data type mixing errors. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of Microsoft Excel spreadsheet editors in Microsoft Office packages and Microsoft 365 Apps for Enterprise allows a perpetrator to execute arbitrary code.

The vulnerability of Microsoft Excel spreadsheet editors within the Microsoft Office and Microsoft 365 Apps for Enterprise software packages is related to the exploitation of a faulty pointer. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the setMacQos function in the /lib/cste_modules/firewall.so module of the TOTOLINK A3100R router’s software allows a attacker to cause a service failure.

The vulnerability of the setMacQos function in the /lib/cstemodules/firewall.so module of the TOTOLINK A3100R router’s software is related to buffer overflows in the stack when processing the priority parameter. Exploiting this vulnerability can allow an attacker to cause service interruptions by...

The vulnerability of the Telnet protocol implementation in the microprogramming-based router software Tenda RX2 Pro allows a hacker to bypass security restrictions and execute arbitrary commands.

The vulnerability of the Telnet protocol implementation in Tenda RX2 Pro microprogramming router software is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to bypass security restrictions and execute arbitrary commands remotely...

The vulnerability of the API component of the Zabbix monitoring system allows a hacker to disclose protected information.

The vulnerability of the API component of the Zabbix monitoring system is related to incorrect authentication. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information that should be protected...

The vulnerability of the AES-128-CBC encryption algorithm in the microprogramming-based router software Tenda RX2 Pro allows a hacker to disclose the protected information.

The vulnerability of the AES-128-CBC encryption algorithm in the microprogramming-based router software Tenda RX2 Pro relates to the repeated use of the Initialization Vector IV during the generation of cryptographic keys. Exploiting this vulnerability could allow a malicious actor to disclose th...

The vulnerability of the AES-128-CBC encryption algorithm in the microprogramming-based router software Tenda RX2 Pro allows a hacker to disclose the protected information.

The vulnerability of the AES-128-CBC encryption algorithm in the microprogramming-based router software Tenda RX2 Pro relates to the storage of encryption keys in an open manner. Exploiting this vulnerability could allow a malicious actor to disclose the protected information...

The vulnerability of the Enable API Endpoints configuration of the ThinServer component on the Rockwell Automation ThinManager centralized application management platform allows a malicious individual to read arbitrary files.

The vulnerability of the Enable API Endpoints configuration of the ThinServer component of Rockwell Automation’s ThinManager centralized application management platform is related to an incorrect restriction on the path name to the restricted directory. Exploiting this vulnerability could allow a...

The vulnerability of the CommuniGate Pro mail server, related to a countable loss of significance, allows a hacker to execute arbitrary code and trigger a service failure.

The vulnerability of the CommuniGate Pro mail server is related to a countable loss of significance. Exploiting this vulnerability can allow an attacker to execute arbitrary code and cause service failures...

The vulnerability of the CommuniGate Pro mail server, related to the swapping of the zero pointer, allows a hacker to disclose protected information.

The vulnerability of the CommuniGate Pro mail server is related to the handling of the zero pointer. Exploiting this vulnerability could allow a malicious actor to disclose the protected information...

The vulnerability of the CommuniGate Pro mail server, related to errors in processing the relative path to the directory, allows a intruder to gain unauthorized access to protected information.

The vulnerability of the CommuniGate Pro mail server is related to errors in processing the relative path to the directory. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information by increasing privileges...