Lucene search
K
Bdu FstecRecent

90509 matches found

BDU FSTEC
BDU FSTEC
added 2026/04/09 12:0 a.m.2 views

The vulnerability of the Create/Edit Conference function in the TrueConf Server software allows a hacker to execute arbitrary code.

The vulnerability of the “Create/Edit Conference” function in the TrueConf Server software is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely, provided that the user opens a specially...

4CVSS6.1AI score0.00159EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/09 12:0 a.m.1 views

The vulnerability of the show_cpuinfo() function in the arch/um/kernel/um_arch.c module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the showcpuinfo function in the arch/um/kernel/umarch.c module of the Linux operating system is related to buffer overflows based on a stack. Exploiting this vulnerability could allow an attacker to cause a system failure...

5.5CVSS6.2AI score0.00149EPSS
Exploits0References21Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/04/09 12:0 a.m.4 views

The vulnerability of the Git-based software platform for collaborative code development on GitLab EE/CE arises from incorrect input of configuration data, allowing a perpetrator to trigger a service failure.

The vulnerability of the Git-based software platform for collaborative code development in GitLab EE/CE relates to incorrect input of configuration data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause service failures...

7.8CVSS6.1AI score0.00552EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/09 12:0 a.m.4 views

The vulnerability of the buffer_prepare() function in the drivers/media/pci/cx88/cx88-video.c file of the Linux operating system’s multimedia device driver for PCI bus cores allows a hacker to cause a service failure.

The vulnerability of the bufferprepare function in the driver/media/pci/cx88/cx88-video.c file of the Linux operating system’s multimedia device driver library is related to the pointer assignment. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6AI score0.00196EPSS
Exploits0References22Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/04/09 12:0 a.m.1 views

The vulnerability of the ila_xlat_nl_cmd_get_mapping() function in the net/ipv6/ila/ila_xlat.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the ilaxlatnlcmdgetmapping function in the net/ipv6/ila/ilaxlat.c module of the Linux operating system is related to an uncontrolled and exploitable condition. Exploiting this vulnerability could allow a remote attacker to compromise the confidentiality, integrity, and...

4.6CVSS6.3AI score0.00155EPSS
Exploits0References18Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/04/09 12:0 a.m.2 views

The vulnerability of the Git-based software platform for collaborative code development in GitLab EE allows a perpetrator to trigger a service failure due to incorrect configuration data input.

The vulnerability of the Git-based software platform for collaborative code development in GitLab EE is related to incorrect input of configuration data. Exploiting this vulnerability can allow a malicious actor to cause service failures...

6.8CVSS5.8AI score0.00412EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/09 12:0 a.m.2 views

The vulnerability of the Git-based software platform for collaborative code development in GitLab EE, related to improper code generation management, allows attackers to compromise the confidentiality of protected information.

The vulnerability of the Git-based software platform for collaborative code development in GitLab EE is related to improper management of code generation. Exploiting this vulnerability can allow a malicious actor, operating remotely, to compromise the confidentiality of protected information...

6.8CVSS5.8AI score0.00428EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/09 12:0 a.m.2 views

The vulnerability of the user_mem_abort() function in the arch/arm64/kvm/mmu.c module of the virtualization subsystem on the ARM 64-bit kernel of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the usermemabort function in the arch/arm64/kvm/mmu.c module of the virtualization subsystem on the ARM 64-bit kernel of the Linux operating system is related to improper initialization. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6AI score0.0013EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/09 12:0 a.m.3 views

The vulnerability of the WebML component in the Google Chrome browser allows a hacker to execute arbitrary code.

The vulnerability of the WebML component in Google Chrome browser is related to buffer overflow in dynamic memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

10CVSS8.1AI score0.00608EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/09 12:0 a.m.3 views

The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine allows attackers to execute arbitrary code.

The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine is related to the use of memory after deallocation. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9.7CVSS7.6AI score0.00303EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/09 12:0 a.m.1 views

The software for deploying and executing AI models by NVIDIA Triton Inference Server has vulnerabilities related to integer overflow. This allows attackers to trigger a service failure.

The vulnerability of NVIDIA Triton Inference Server’s deployment and AI model execution software is related to a numerical overflow issue. Exploiting this vulnerability can allow an attacker to cause service failures...

7.8CVSS6AI score0.00518EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2026/04/09 12:0 a.m.3 views

The vulnerability of the ksmbd component in the Linux operating system’s kernel allows a hacker to gain unauthorized access to protected information.

The vulnerability of the ksmbd component in the Linux operating system’s kernel is related to deficiencies in error handling. Exploiting this vulnerability can allow an attacker, working remotely, to gain unauthorized access to protected information...

5.3CVSS7.2AI score0.00454EPSS
Exploits0References9Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/09 12:0 a.m.6 views

The vulnerability of the distributed database management system Apache Cassandra, related to uncontrolled resource consumption, allows attackers to influence privacy, integrity, and accessibility of the data.

The vulnerability of the distributed database management system Apache Cassandra is related to uncontrolled resource consumption. Exploiting this vulnerability can allow attackers to compromise privacy, integrity, and accessibility of the data...

7.8CVSS6.6AI score0.00533EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/09 12:0 a.m.3 views

The vulnerability of the nvm_download() function in the Node.js Node Version Manager (nvm) allows a hacker to execute arbitrary commands.

The vulnerability of the nvmdownload function in the Node.js Node Version Manager nvm lies in the improper elimination of special elements during the processing of the NVMAUTHHEADER variable. Exploiting this vulnerability allows an attacker to execute arbitrary commands...

7.3CVSS6AI score0.00767EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/09 12:0 a.m.2 views

The vulnerability of the Telnet service provided by NETGEAR’s PR2000 microprogrammable router allows a intruder to execute arbitrary commands.

The vulnerability of the Telnet service provided by NETGEAR’s PR2000 microprogrammable routers lies in the use of undocumented functions. Exploiting this vulnerability could allow a malicious actor to execute arbitrary commands remotely...

7.8CVSS7.3AI score0.00228EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2026/04/09 12:0 a.m.2 views

The vulnerability of the netiucv_close() function in the drivers/s390/net/netiucv.c driver module on the S390 platform of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the netiucvclose function in the drivers/s390/net/netiucv.c driver module of the S390 Linux operating system is related to the improper implementation of thread management. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6AI score0.00227EPSS
Exploits0References21Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/04/09 12:0 a.m.2 views

The vulnerability of the ext4_write_info() function in the fs/ext4/super.c module of the Ext4 file system in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the ext4writeinfo function in the fs/ext4/super.c module of the Ext4 file system in the Linux operating system is related to the pointer assignment. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.5AI score0.00149EPSS
Exploits0References22Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/04/09 12:0 a.m.2 views

The vulnerability of the WebML component in the Google Chrome browser, which allows a hacker to trigger a service failure.

The vulnerability of the WebML component in Google Chrome relates to external control over a web parameter that is assumed to be immutable. Exploiting this vulnerability could allow a malicious actor to cause a service failure through a specially created HTML page...

10CVSS7.5AI score0.00351EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/09 12:0 a.m.3 views

The vulnerability of the ice_vc_fdir_parse_raw() function in the drivers/net/ethernet/intel/ice/ice_virtchnl_fdir.c file of the Intel Ethernet network adapter driver for the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the icevcfdirparseraw function in the drivers/net/ethernet/intel/ice/icevirtchnlfdir.c file of the Intel Ethernet network adapter driver for the Linux operating system is related to insufficient validation of input data. Exploiting this vulnerability could allow an attacker t...

5.5CVSS6AI score0.00163EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/09 12:0 a.m.2 views

The vulnerability of the kfence_protect_page() function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the kfenceprotectpage function in the Linux operating system is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS7AI score0.00212EPSS
Exploits0References8Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/09 12:0 a.m.2 views

The vulnerability of the rtw_joinbss_event_prehandle() function in the drivers/staging/r8188eu/core/rtw_mlme.c file of the Linux kernel allows a hacker to trigger a service failure.

The vulnerability of the rtwjoinbsseventprehandle function in the drivers/staging/r8188eu/core/rtwmlme.c file of the Linux kernel is related to the occurrence of mutual locking. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6AI score0.0016EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/09 12:0 a.m.3 views

The vulnerability of the WebRTC technology implementation in Google Chrome browser allows a hacker to execute arbitrary code.

The vulnerability of the WebRTC technology implementation in Google Chrome browser is related to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

10CVSS7.8AI score0.0048EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/09 12:0 a.m.2 views

The software for deploying and executing AI models in NVIDIA Triton Inference Server is vulnerable due to incorrect conversion of numerical value types. This vulnerability allows attackers to trigger service failures.

The vulnerability of NVIDIA Triton Inference Server’s deployment and AI model execution software is related to incorrect conversion of numerical value types. Exploiting this vulnerability can allow a remote attacker to cause service failures...

7.8CVSS6AI score0.00518EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2026/04/08 12:0 a.m.3 views

The vulnerability of Google Chrome’s WebGL component allows attackers to disclose protected information.

The vulnerability of Google Chrome’s WebGL component is related to the disclosure of information. Exploiting this vulnerability can allow a remote attacker to disclose the protected information through a specially created HTML page...

7.8CVSS6.5AI score0.00193EPSS
Exploits0References5Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/04/08 12:0 a.m.1 views

The vulnerability of the WebRender component in Mozilla Firefox, Firefox ESR, and the email client Thunderbird allows a hacker to trigger a service failure.

The vulnerability of the WebRender component in Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to cause a service failure...

7.6CVSS5.8AI score0.00352EPSS
Exploits0References13Affected Software4
BDU FSTEC
BDU FSTEC
added 2026/04/08 12:0 a.m.1 views

The vulnerability of the analytics and automation platform for managing cloud data centers of Cisco Nexus, related to errors in the certificate validation process, allows a perpetrator to execute arbitrary commands.

The vulnerability of the Cisco Nexus Dashboard analytics and cloud computing platform relates to errors in the certificate validation process. Exploiting this vulnerability could allow a malicious actor to execute arbitrary commands remotely...

8.5CVSS6AI score0.00293EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/08 12:0 a.m.2 views

The vulnerability of the Cisco Integrated Management Controller, a software tool for remote server management, arises from the lack of protective measures for the website structure. This allows attackers to perform cross-site scripting attacks (XSS).

The vulnerability of the Cisco Integrated Management Controller, a software tool for remote server management, is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks XSS remotely...

6.4CVSS5.6AI score0.00184EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/04/08 12:0 a.m.3 views

The vulnerability of the Cisco Integrated Management Controller, a software tool for remote server management, arises from the lack of protective measures for the website structure. This allows attackers to carry out cross-site scripting attacks (XSS).

The vulnerability of the Cisco Integrated Management Controller, a software tool for remote server management, is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks XSS remotely...

5.5CVSS5.6AI score0.0017EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/04/08 12:0 a.m.2 views

The vulnerability of Dell EMC AppSync’s data storage and protection software lies in the improper assignment of permissions to critical resources, allowing attackers to increase their privileges.

The vulnerability of the Dell EMC AppSync data storage and protection software is related to the improper assignment of permissions for a critical resource. Exploiting this vulnerability can allow attackers to enhance their privileges...

7.3CVSS5.8AI score0.00127EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/08 12:0 a.m.1 views

The vulnerability in the Access API of Mozilla Firefox, Firefox ESR, and the Thunderbird email client allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the Access API components of Mozilla Firefox, Firefox ESR, and the email client Thunderbird relates to the use of memory after it is released. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...

10CVSS5.8AI score0.00531EPSS
Exploits0References11Affected Software4
BDU FSTEC
BDU FSTEC
added 2026/04/08 12:0 a.m.5 views

The vulnerability of the WebCodecs component in Google Chrome allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of Google Chrome’s WebCodecs component relates to reading data beyond the buffer in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code or cause a service failure by using a specially created HTML page...

10CVSS7.8AI score0.00248EPSS
Exploits0References5Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/04/08 12:0 a.m.1 views

The vulnerability in the JavaScript Engine component of Mozilla Firefox, Firefox ESR, and the Thunderbird email client allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the JavaScript Engine component in Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to access to resources through incompatible types. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility ...

10CVSS7.3AI score0.00755EPSS
Exploits0References16Affected Software6
BDU FSTEC
BDU FSTEC
added 2026/04/08 12:0 a.m.1 views

Vulnerability of the Audio/Video component: Web codecs in Mozilla Firefox, Firefox ESR, and the email client Thunderbird, which allows a hacker to cause a service failure.

Vulnerability of Audio/Video components: Mozilla Firefox, Firefox ESR, and Thunderbird’s email client use web codecs. This vulnerability is related to insufficient checking of unusual or exceptional states. Exploitation of this vulnerability could allow a remote attacker to cause service...

7.8CVSS5.8AI score0.00687EPSS
Exploits0References14Affected Software6
BDU FSTEC
BDU FSTEC
added 2026/04/08 12:0 a.m.2 views

The vulnerability of the Cisco Integrated Management Controller, a software tool for remote server management, arises from the lack of protective measures for the website structure. This allows attackers to carry out cross-site scripting attacks (XSS).

The vulnerability of the Cisco Integrated Management Controller, a software tool for remote server management, is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks XSS remotely...

5.5CVSS5.6AI score0.00223EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/04/08 12:0 a.m.3 views

The vulnerability of the Cisco Integrated Management Controller, a software tool for remote server management, arises from the lack of protective measures for the website structure. This allows attackers to carry out cross-site scripting attacks (XSS).

The vulnerability of the Cisco Integrated Management Controller, a software tool for remote server management, is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks XSS remotely...

5.5CVSS5.6AI score0.00237EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/04/08 12:0 a.m.2 views

The vulnerability of Dell EMC AppSync’s data storage and protection software lies in its lack of mechanisms for handling symbolic links. This allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the Dell EMC AppSync data storage and protection software is related to deficiencies in the mechanism for handling symbolic links. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected informatio...

7.3CVSS5.8AI score0.00165EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/08 12:0 a.m.1 views

The vulnerability in the Graphics component of Mozilla Firefox, Firefox ESR, and the email client Thunderbird allows a hacker to cause a service failure.

The vulnerability of the Graphics component in Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to a numerical overflow condition. Exploiting this vulnerability can allow an attacker to cause service interruptions remotely...

7.8CVSS5.8AI score0.00772EPSS
Exploits0References15Affected Software6
BDU FSTEC
BDU FSTEC
added 2026/04/08 12:0 a.m.1 views

The vulnerabilities of Mozilla Firefox, Firefox ESR, and the email client Thunderbird are related to insufficient validation of input data. This allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerabilities of Mozilla Firefox, Firefox ESR, and the email client Thunderbird are related to insufficient validation of input data. Exploiting these vulnerabilities can allow an attacker to compromise the confidentiality, integrity, and accessibility of protected information...

10CVSS5.8AI score0.00487EPSS
Exploits0References16Affected Software6
BDU FSTEC
BDU FSTEC
added 2026/04/08 12:0 a.m.1 views

The vulnerability of the analytics and automation platform for managing cloud data centers of Cisco Nexus Dashboard lies in insufficient validation of requests on the server side. This allows a malicious actor to carry out an SSRF attack.

The vulnerability of the Cisco Nexus Dashboard, a platform for analytics and automation of cloud-based data centers, lies in insufficient testing of requests on the server side. Exploiting this vulnerability could allow a malicious actor to execute an SSRF attack remotely...

6.4CVSS5.8AI score0.00242EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/04/08 12:0 a.m.3 views

The vulnerability in the Telemetry component of Mozilla Firefox, Firefox ESR, and the Thunderbird email client allows a hacker to trigger a service failure.

The vulnerability of the Telemetry component in Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability can allow a malicious actor to cause service failures...

10CVSS5.8AI score0.00539EPSS
Exploits0References13Affected Software4
BDU FSTEC
BDU FSTEC
added 2026/04/08 12:0 a.m.1 views

The vulnerability of the cupsd server daemon in CUPS printing allows a attacker to elevate their privileges to the root level.

The vulnerability of the cupsd server in CUPS printing relates to deficiencies in authentication mechanisms. Exploiting this vulnerability allows an attacker to elevate their privileges to root by sending specially crafted requests...

7.8CVSS6.1AI score0.00289EPSS
Exploits1References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/04/08 12:0 a.m.1 views

The vulnerability of the TrueConf Client software lies in its uncontrolled search path, which allows a hacker to execute arbitrary code.

The vulnerability of the TrueConf Client software is related to an uncontrolled element in the search process. Exploiting this vulnerability allows a perpetrator to execute arbitrary code by introducing a specially crafted DLL file...

5.7CVSS6.1AI score0.00156EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/08 12:0 a.m.5 views

The vulnerability of the Compositing component in the Google Chrome browser allows attackers to execute arbitrary code or trigger a service denial.

The vulnerability of the Compositing component in the Google Chrome browser is related to the use of memory after deallocation. Exploiting this vulnerability could allow an attacker to execute arbitrary code or cause a service failure...

10CVSS7.6AI score0.00248EPSS
Exploits0References5Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/04/08 12:0 a.m.1 views

The vulnerability of the Canvas2D component in Mozilla Firefox, Firefox ESR, and the Thunderbird email client allows a hacker to trigger a service failure.

The vulnerability of the Canvas2D component in Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability can allow an attacker to cause service failures remotely...

7.8CVSS5.7AI score0.00687EPSS
Exploits0References13Affected Software4
BDU FSTEC
BDU FSTEC
added 2026/04/08 12:0 a.m.1 views

Vulnerability of the Audio/Video component: Playback in browsers Mozilla Firefox, Firefox ESR, and email client Thunderbird, allowing a hacker to cause a service failure.

Vulnerability of the Audio/Video component: Playback in Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to insufficient checking of unusual or exceptional states. Exploitation of this vulnerability can allow a remote attacker to cause service failures...

7.8CVSS5.8AI score0.00687EPSS
Exploits0References15Affected Software6
BDU FSTEC
BDU FSTEC
added 2026/04/08 12:0 a.m.1 views

The vulnerability of Mozilla Firefox, Firefox ESR, and the email client Thunderbird lies in the use of memory after it is freed. This allows an attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerabilities of Mozilla Firefox, Firefox ESR, and the email client Thunderbird are related to the use of memory after it is freed. Exploiting these vulnerabilities can allow an attacker to compromise the confidentiality, integrity, and accessibility of protected information...

10CVSS5.8AI score0.00483EPSS
Exploits0References15Affected Software6
BDU FSTEC
BDU FSTEC
added 2026/04/08 12:0 a.m.1 views

The vulnerability of the ngx_stream_ssl_module module in NGINX Plus and NGINX Open Source HTTP servers allows attackers to bypass security restrictions and gain unauthorized access to protected information.

The vulnerability of the ngxstreamsslmodule module in NGINX Plus and NGINX Open Source HTTP servers is related to deficiencies in authentication procedures. Exploiting this vulnerability allows a malicious actor to bypass security restrictions and gain unauthorized access to protected information...

5.5CVSS5.8AI score0.00133EPSS
Exploits0References5Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/04/08 12:0 a.m.4 views

The vulnerability of the GUI component of the FortiSandbox threat detection and mitigation system allows a perpetrator to execute arbitrary code.

The vulnerability of the GUI component of the FortiSandbox threat detection and mitigation system is related to the failure to take measures to neutralize special elements. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using specially created HTTP requests...

9CVSS7.7AI score0.15797EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/08 12:0 a.m.1 views

Vulnerability of the ngx_mail_smtp_module module in NGINX Plus and NGINX Open Source HTTP servers, allowing attackers to compromise the integrity of protected information.

The vulnerability of the ngxmailsmtpmodule module in NGINX Plus and NGINX Open Source servers is related to the failure to take measures to neutralize CRLF sequences. Exploiting this vulnerability can allow an attacker to compromise the integrity of the protected information...

3.7CVSS5.8AI score0.00264EPSS
Exploits0References9Affected Software6
BDU FSTEC
BDU FSTEC
added 2026/04/08 12:0 a.m.1 views

The vulnerability of the Node.js software platform, related to improper cleaning or release of resources, allows a perpetrator to trigger a service failure.

The vulnerability of the Node.js software platform is related to improper cleaning or release of resources. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause service failures...

7.8CVSS7.3AI score0.26356EPSS
Exploits0References7Affected Software2
Total number of security vulnerabilities90509