The vulnerability of Microsoft Office and 365 Apps for Enterprise packages relates to the execution of operations beyond the buffer in memory, allowing an attacker to execute arbitrary code.

The vulnerability of Microsoft Office packages and 365 Apps for Enterprise lies in the execution of operations outside the buffer in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code by sending a specially created file...

The vulnerability of Microsoft Office and 365 Apps for Enterprise applications relates to the possibility of exploiting memory after it is freed, allowing an attacker to execute arbitrary code.

The vulnerability of Microsoft Office packages and 365 Apps for Enterprise lies in the ability to exploit memory after it is freed. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the Microsoft Visual Studio software lies in its lack of measures to neutralize special elements used in the operating system command line, allowing an attacker to execute arbitrary code.

The vulnerability of the Microsoft Visual Studio software lies in the lack of measures taken to neutralize special elements used in the operating system command line. Exploiting this vulnerability allows an attacker to execute arbitrary code...

The vulnerability of Microsoft Office, Excel, and 365 Apps for Enterprise packages lies in the fact that operations are performed outside of the buffer in memory, allowing an attacker to execute arbitrary code.

The vulnerability of Microsoft Office, Excel, and 365 Apps for Enterprise packages is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of Microsoft SharePoint Server and SharePoint Enterprise Server lies in the insecure management of privileges, allowing attackers to escalate their privileges.

The vulnerability of Microsoft SharePoint Server and SharePoint Enterprise Server lies in the insecure management of privileges. Exploiting this vulnerability can allow attackers to increase their privileges...

The vulnerability of Microsoft Office and Microsoft 365 Apps for Enterprise packages lies in their ability to exploit memory after it is freed, allowing an attacker to execute arbitrary code.

The vulnerability of Microsoft Office and Microsoft 365 Apps for Enterprise packages relates to the ability to utilize memory after it is freed. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability in the implementation of the Server Message Block (SMB) protocol in Windows operating systems allows a perpetrator to disclose protected information.

The vulnerability of the Server Message Block SMB protocol in Windows operating systems is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow a remote attacker to disclose sensitive information that is protected by the protocol...

The vulnerability of the Universal Print Management Service for Windows operating systems allows a perpetrator to increase their privileges.

The vulnerability of the Universal Print Management Service in Windows operating systems is related to synchronization errors when using a shared resource “Race Condition”. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the Substance 3D Stager software lies in its ability to exploit memory after it is freed, allowing an attacker to execute arbitrary code.

The vulnerability of the Substance 3D Stager software relates to the possibility of exploiting memory after it is freed. Exploiting this vulnerability could allow a hacker to execute arbitrary code...

The vulnerability of the Substance 3D Stager software lies in its ability to exploit memory after it is freed, allowing an attacker to execute arbitrary code.

The vulnerability of the Substance 3D Stager software relates to the possibility of exploiting memory after it is freed. Exploiting this vulnerability could allow a hacker to execute arbitrary code...

The vulnerability of the nghttp2_on_stream_close_callback() function in the nghttp2 library allows a attacker to cause a service failure.

The vulnerability of the nghttp2onstreamclosecallback function in the nghttp2 library is related to uncontrolled use of resources. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

The vulnerability of the CommuniGate Pro mail server, which stems from insufficient validation of incoming requests, allows attackers to carry out SSRF attacks.

The vulnerability of the CommuniGate Pro mail server is related to insufficient checking of incoming requests. Exploiting this vulnerability could allow a malicious actor to perform an SSRF attack remotely...

The vulnerability of the Substance 3D Stager software lies in its ability to exploit memory after it is freed, allowing an attacker to execute arbitrary code.

The vulnerability of the Substance 3D Stager software relates to the possibility of exploiting memory after it is freed. Exploiting this vulnerability could allow a hacker to execute arbitrary code...

The vulnerability of the Windows Media component in Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Windows Media component in Windows operating systems is related to overflowing buffers in dynamic memory. Exploiting this vulnerability can allow a remote attacker to execute arbitrary code...

The vulnerability of the CoreGraphics component in macOS, tvOS, iPadOS, iOS, visionOS, and watchOS allows attackers to disclose sensitive information that is protected by these systems.

The vulnerability of the CoreGraphics component in macOS, tvOS, iPadOS, iOS, visionOS, and watchOS relates to operations where data is written beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a remote attacker to disclose sensitive information that is protected by...

The vulnerability of FaceTime video/audio call technology in operating systems iPadOS and iOS, which allows a perpetrator to cause service failure.

The vulnerability of the FaceTime video/audio call technology in iPadOS and iOS operating systems is related to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to cause service failures...

The vulnerability of the Kibana data visualization service, related to the unlimited loading of malicious files, allows attackers to upload harmful files.

The vulnerability of the Kibana data visualization service is related to the unlimited loading of malicious files. Exploiting this vulnerability allows a remote attacker to upload malicious files...

The vulnerability of the Windows operating system’s task scheduler allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the Windows operating system’s task scheduler is related to insufficient checks for the correctness of messages or data structures. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of protected information...

Vulnerability of the Microsoft.Identity.Abstractions component in the Microsoft Identity Web library, which allows a perpetrator to gain unauthorized access to protected information

The vulnerability of the Microsoft.Identity.Abstractions component in the Microsoft Identity Web library is related to the disclosure of information through registration files. Exploiting this vulnerability may allow an attacker to gain unauthorized access to protected information...

The vulnerability of the Power Automate for Desktop automation platform on Windows operating systems stems from an uncontrolled search path element, which allows a malicious individual to disclose protected information.

The vulnerability of the Power Automate for Desktop automation platform for Windows operating systems is related to an uncontrolled element in the search process. Exploiting this vulnerability can allow a remote attacker to disclose sensitive information that is protected by the system...

The vulnerability of Microsoft Edge browser, related to information representation errors in the user interface, allows attackers to perform spear-phishing attacks.

The vulnerability of Microsoft Edge is related to information representation errors in the user interface. Exploiting this vulnerability can allow a remote attacker to perform spoofing attacks...

The vulnerability of the Scripting Engine component in browsers Edge and Internet Explorer on Windows operating systems allows a perpetrator to execute arbitrary code.

The vulnerability of the Scripting Engine component in Edge and Internet Explorer browsers on Windows operating systems is related to data type mixing errors. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending a specially crafted link...

The vulnerability of the Windows Common Log File System (CLFS) driver in Windows operating systems allows a hacker to elevate their privileges to the SYSTEM level.

The vulnerability of the Windows Common Log File System CLFS driver in Windows operating systems is related to deficiencies in the mechanism for checking input data. Exploiting this vulnerability can allow an attacker to elevate their privileges to the SYSTEM level...

The vulnerabilities of the FortiVoice corporate telephony software’s web interface, the FortiMail email protection system, the Fortinet FortiNDR software-defined detection and intrusion prevention system, the FortiRecorder video surveillance device’s microsoftware, and the FortiCamera video surveillance system allow a perpetrator to execute arbitrary codes.

The vulnerabilities of the FortiVoice corporate telephony software’s web interface, the FortiMail email protection system, the Fortinet FortiNDR software-defined intrusion detection and prevention system, the FortiRecorder video surveillance device’s microsoftware, and the FortiCamera video...

The vulnerability of Microsoft Office and Microsoft 365 Apps for Enterprise packages lies in their ability to exploit memory after it is freed, allowing an attacker to execute arbitrary code.

The vulnerability of Microsoft Office and Microsoft 365 Apps for Enterprise packages relates to the possibility of using memory after it is freed. Exploiting this vulnerability could allow an attacker to execute arbitrary code by sending a specially created malicious file...

The vulnerability of Microsoft Defender for Endpoint on Linux operating systems, related to improper external management of file names or paths, allows attackers to escalate their privileges.

The vulnerability of Microsoft Defender for Endpoint on Linux operating systems is related to incorrect external management of file names or file paths. Exploiting this vulnerability can allow attackers to increase their privileges...

The vulnerability of the client for remote desktop clients on Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Remote Desktop Client for Windows operating systems in dealing with client remote desktops is related to buffer overflows in dynamic memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of Microsoft Visual Studio, the Microsoft.NET platform, and the Build Tools for Visual Studio toolset lies in improper external control of file names or files, allowing attackers to perform spoofing attacks.

The vulnerability of Microsoft Visual Studio, the Microsoft.NET platform, and the Build Tools for Visual Studio toolset is related to improper external name handling or file path manipulation. Exploitation of this vulnerability can allow a malicious actor to perform spear-phishing attacks by...

The vulnerability of PDF viewing and editing programs such as Acrobat DC, Acrobat Reader DC, Acrobat 2017, and Acrobat Reader 2017 lies in the use of memory after it is freed, allowing an attacker to execute arbitrary code.

The vulnerability of PDF viewing and editing programs such as Acrobat DC, Acrobat Reader DC, Acrobat 2017, and Acrobat Reader 2017 is related to the use of memory after it is freed. Exploiting this vulnerability can allow a remote attacker to execute arbitrary code...

The vulnerability of software platforms for developing and managing online stores such as Magento Open Source, Adobe Commerce, and Adobe Commerce B2B lies in the insufficient protection of registration data. This allows attackers to gain unauthorized access to protected information.

The vulnerabilities of software platforms for developing and managing online stores such as Magento Open Source, Adobe Commerce, and Adobe Commerce B2B are related to insufficient protection of registration data. Exploiting these vulnerabilities can allow a malicious actor, operating remotely, to...

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, which allows attackers to execute XSS attacks.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to carry out XSS attacks...

The vulnerability of the Adobe Animate program for creating multimedia and computer animations lies in the ability to read data beyond the buffer in memory. This allows attackers to gain unauthorized access to protected information and circumvent the ASLR protection mechanism.

The vulnerability of the Adobe Animate program for creating multimedia and computer animations is related to reading data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information and bypass the ASLR protection mechanism...

The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in its ability to read data beyond the buffer limit in memory. This allows attackers to gain unauthorized access to protected information and circumvent the ASLR protection mechanism.

The vulnerability of Adobe After Effects’ video and dynamic image editing software relates to reading beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information and bypass the ASLR protection mechanism...

The vulnerability of Adobe After Effects’ video and dynamic image editing software relates to the handling of the null pointer, which allows a hacker to trigger a service failure.

The vulnerability of Adobe After Effects video and dynamic image editing software relates to the handling of the zero pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerabilities of PDF viewing and editing programs like Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2020, and Adobe Acrobat 2024, as well as Adobe Acrobat Reader 2020, are related to reading beyond the buffer memory limit. This allows attackers to gain unauthorized access to protected information.

The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2020, and Adobe Acrobat Reader 2020 are related to reading data beyond the buffer memory. Exploiting these vulnerabilities can allow attackers to gain...

The vulnerability of the ssdpcgi_main function in the binary file cgibin of D-Link DIR-815 router microprogramming software, allowing a hacker to execute any command they desire.

The vulnerability of the ssdpcgimain function in the binary file cgibin of D-Link DIR-815 router microprogramming software is related to the lack of measures for cleaning incoming data. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

The vulnerability of the COMM_MakeCustomMsg function in D-Link DSL-3788 router microprogramming software allows a hacker to execute arbitrary code.

The vulnerability of the COMMMakeCustomMsg function in D-Link DSL-3788 router microprogramming software is related to buffer overflow in the stack. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

The vulnerability of D-Link DIR-618 and DIR-605L router microprogramming software allows a hacker to execute arbitrary code.

The vulnerability of D-Link DIR-618 and DIR-605L router microprogramming software is related to access control errors. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the /goform/formSetPassword function in D-Link’s DIR-618 and DIR-605L router microprogramming software allows a hacker to execute arbitrary code.

The vulnerability of the /goform/formSetPassword function in D-Link DIR-618 and DIR-605L router microprogramming systems is related to access control errors. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

Vulnerability of the /goform/formSetPortTr function in D-Link DIR-618 and DIR-605L router microprogramming software, allowing a hacker to execute arbitrary code.

The vulnerability of the /goform/formSetPortTr function in D-Link DIR-618 and DIR-605L router microprogramming systems is related to access control errors. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the /goform/formSetDDNS function in D-Link DIR-618 and DIR-605L router microprogramming software allows a hacker to execute arbitrary code.

The vulnerability of the /goform/formSetDDNS function in D-Link DIR-618 and DIR-605L router microprogramming systems is related to access control errors. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

The vulnerability of the sub_41710C function (/goform/diag_nslookup) in the D-Link DIR-823X AX3000 router’s microprogramming system allows a hacker to execute arbitrary commands.

The vulnerability of the sub41710C function /goform/diagnslookup in the D-Link DIR-823X AX3000 router’s microprogramming system exists due to the failure to implement measures to neutralize specific elements. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands...

The vulnerability of the ipsec_road_asp function in D-Link DI-8100 router microprogramming software allows a attacker to execute arbitrary code.

The vulnerability of the ipsecroadasp function in D-Link DI-8100 router microprogramming software is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the ip_position_asp function in D-Link DI-8003 router microprogramming software allows a intruder to trigger a service failure.

The vulnerability of the ippositionasp function in D-Link DI-800 router microprogramming software is related to the execution of operations outside the buffer in memory when processing the ip parameter. Exploiting this vulnerability can allow a remote attacker to cause a service failure...

The vulnerability of the iptablesWebsFilterRun component of the D-Link DIR-816 A2 wireless router’s microprogramming software allows a hacker to execute arbitrary code.

The vulnerability of the iptablesWebsFilterRun component in the software of D-Link DIR-816 A2 wireless routers is related to the lack of data cleaning measures at the management level. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...

The vulnerability of the sub_175C8 function in the /htdocs/soap.cgi file of the D-Link DIR-890L and DIR-806A1 router microprogramming system, related to the lack of data cleaning at the control level, allows a perpetrator to execute arbitrary commands.

The vulnerability of the sub175C8 function in the /htdocs/soap.cgi file of the D-Link DIR-890L and DIR-806A1 routers’ microprogramming software is related to the lack of measures taken to clean data at the control level. Exploiting this vulnerability can allow an attacker operating remotely to...

The vulnerability of the formSetWAN_Wizard534 function in D-Link DIR-605L router microprogramming software allows a hacker to execute arbitrary code.

The vulnerability of the formSetWANWizard534 function in the microprogramming software for D-Link DIR-605L routers is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code using the...

The vulnerability of the formEasySetupWizard function in the D-Link DIR-600L router’s microprogramming software allows a hacker to execute arbitrary code.

The vulnerability of the formEasySetupWizard function in the D-Link DIR-600L router’s microprogramming software is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code by using the host...

The vulnerability of the formLogin function in the D-Link DIR-600L router’s software allows a hacker to execute arbitrary code.

The vulnerability of the formLogin function in the D-Link DIR-600L router microprogramming system is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by using the host parameter...

The vulnerability of the formEasySetupWizard3 function in the D-Link DIR-600L router’s microprogramming software allows a hacker to execute arbitrary code.

The vulnerability of the formEasySetupWizard3 function in the microprogramming software of the D-Link DIR-600L router is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely by...