The vulnerability of the WebContentFilter filter in macOS operating systems allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the WebContentFilter filter in macOS operating systems is related to insufficient protection of service data. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of protected information...

The vulnerability of the CoreServices component in macOS operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the CoreServices component in macOS operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the /dao/verificar_recursos_cargo.php script of the WeGIA web manager allows a hacker to gain unauthorized access to protected information.

The vulnerability of the WeGIA web manager’s “/dao/verificarrecursoscargo.php” script is related to the lack of authentication for critical functions. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the cadastro_adotante.php web manager of WeGIA allows attackers to perform cross-site scripting attacks (XSS).

The vulnerability of the cadastroadotante.php script of the WeGIA web manager is related to the lack of measures taken to protect the structure of the web page when processing the cpf parameter. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks XSS...

The vulnerability of the control.php script of the WeGIA web manager allows a hacker to execute arbitrary code.

The vulnerability of the control.php script of the WeGIA web manager is related to the failure to protect the SQL query structure when processing the cargo parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the device management platform for heating, ventilation, and air conditioning systems, lighting, and energy consumption within the Niagara Framework, along with the Niagara Enterprise Security tools for access control and security, stems from incorrect processing of alternative data streams. This allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the device management platform for heating, ventilation, and air conditioning systems, lighting, and energy consumption in the Niagara Framework, along with the access control and security measures, is related to incorrect handling of alternative data streams. Exploiting this...

The vulnerability of the PHPOffice Math library, related to incorrect restrictions on XML links to external objects, allows attackers to compromise the confidentiality of the protected information.

The vulnerability of the PHPOffice Math library is related to incorrect restrictions on XML links to external objects. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality of the protected information...

The vulnerability of D-Link DCS-960L IP camera’s microprogramming software allows a intruder to execute arbitrary code by bypassing the authentication process using an alternative path or channel.

The vulnerability of D-Link DCS-960L IP camera software relates to bypassing the authentication process by using an alternative path or channel. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability in the control.php script of the WeGIA web manager allows attackers to perform cross-site scripting (XSS) attacks.

The vulnerability in the control.php script of the WeGIA web manager is related to the failure to protect the structure of the web page when processing the descricaoemergencia parameter. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks XSS remotely...

The vulnerability in the adicionar_especie.php script of the WeGIA web manager allows a attacker to perform cross-site scripting (XSS) attacks.

The vulnerability of the adicionarespecie.php script of the WeGIA web manager is related to the lack of measures taken to protect the website structure when processing the especie parameter. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks XSS remotel...

The vulnerability of the SwSmiInputValue() function, a handler for System Management Interrupts in Gigabyte’s microprogramming motherboard software, allows attackers to circumvent security restrictions, gain elevated privileges, and execute arbitrary code.

The vulnerability of the SwSmiInputValue function, a handler for System Management Interrupts in Gigabyte’s microprogramming motherboard software, is related to the use of an unreliable pointer. Exploiting this vulnerability can allow attackers to bypass security restrictions, gain elevated...

The vulnerability of the SwSmiInputValue() function, a handler for System Management Interrupts in Gigabyte’s microprogramming motherboard software, allows attackers to circumvent security restrictions, gain elevated privileges, and execute arbitrary code.

The vulnerability of the SwSmiInputValue function, a handler for System Management Interrupts in Gigabyte’s microprogramming motherboard software, is related to the use of an unreliable pointer. Exploiting this vulnerability can allow attackers to bypass security restrictions, gain elevated...

The vulnerability of the SmartFabric OS10 network operating system, related to incorrect restrictions on XML links to external objects, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the SmartFabric OS10 network operating system is related to incorrect restrictions on XML links to external objects. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the XtremIO X2 TechAdvisor management and optimization tool, related to the disclosure of information through log files, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the XtremIO X2 TechAdvisor management and optimization tools is related to the disclosure of information through log files. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected information...

The vulnerability of the mhi_ep_ring_add_element() function in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the mhiepringaddelement function in the Linux operating system is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the mas_preallocate() function in the lib/maple_tree.c module of the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the maspreallocate function in the lib/mapletree.c module of the Linux kernel is related to the pointer dereferencing that occurs due to incorrect memory allocation. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability in the `drivers/infiniband/hw/mlx5/mr.c` module of Linux operating systems allows a hacker to cause a service failure.

The vulnerability in the drivers/infiniband/hw/mlx5/mr.c module of Linux operating systems is related to incorrect resource locking. Exploiting this vulnerability can allow an attacker to cause service failures...

The vulnerability of the ciwweb.pl script, a software used for creating and conducting surveys with Lighthouse Studio, allows a perpetrator to execute arbitrary code.

The vulnerability of the ciwweb.pl script used by Lighthouse Studio for creating and conducting surveys is related to the improper elimination of special elements used in the templater. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the r535_gsp_rpc_push() function in the nouveau kernel component of Linux operating systems allows a hacker to trigger a service failure.

The vulnerability of the r535gsprpcpush function in the nouveau kernel of Linux operating systems is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to trigger a service denial...

The vulnerability of the SmartFabric OS10 network operating system, related to the use of pre-installed user accounts, allows a perpetrator to escalate their privileges.

The vulnerability of the SmartFabric OS10 network operating system is related to the use of pre-installed user accounts. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the Btrfs file system (fs/btrfs/inode.c) in the Linux operating system, which allows a hacker to cause a service failure

The vulnerability of the Btrfs file system fs/btrfs/inode.c in the Linux operating system arises from a race condition. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of components such as EAI and UI (Oxygen XML WebHelp) in the Oracle Siebel CRM system for managing customer relationships allows attackers to gain unauthorized access to protected information or cause service failures.

The vulnerability of the EAI and UI Oxygen XML WebHelp components of the Oracle Siebel CRM system relates to improper cleaning or release of resources. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information or cause service failures...

The vulnerability in the arch/riscv/include/asm/vector.h module of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability in the arch/riscv/include/asm/vector.h module of the Linux operating system is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the SmartFabric OS10 network operating system, related to the use of files and directories accessible from external parties, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the SmartFabric OS10 network operating system is related to the use of files and directories accessible from external parties. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

The vulnerability of the drm_sched_entity_kill() function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the drmschedentitykill function in the Linux operating system is related to insufficient locking of resources. Exploiting this vulnerability can allow a perpetrator to cause a service failure...

The vulnerability of the appletb_kbd_probe() function in the drivers/hid/hid-appletb-kbd.c module of Linux operating systems allows a hacker to cause a service failure.

The vulnerability of the appletbkbdprobe function in the drivers/hid/hid-appletb-kbd.c module of Linux operating systems is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability in the kernel modules driver/gpu/drm/amd/amdgpu/amdgpu_ras_eeprom.c of the Linux operating system allows a hacker to cause a service failure.

The vulnerability in the kernel modules such as drivers/gpu/drm/amd/amdgpu/amdgpuraseeprom.c of the Linux operating system is related to unlimited resource allocation. Exploiting this vulnerability can allow an attacker to cause service failures...

The vulnerability of the csum_ipv6_magic() function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the csumipv6magic function in the Linux operating system is related to incorrect initialization of the resource. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the Sparkle framework on the Oracle Java SE software platform arises from the ability to expose files or directories to external parties. This allows a perpetrator to bypass the signature verification mechanism and gain full control over the application.

The vulnerability of the Sparkle framework on the Oracle Java SE software platform relates to the exposure of files or directories to external parties. Exploiting this vulnerability could allow an attacker to bypass the EdDSA signature verification and gain full control over the application...

The vulnerability of the web interface of the IBM Robotic Process Automation software allows a perpetrator to disclose account information during a secure session.

The vulnerability of the web interface of the IBM Robotic Process Automation software lies in the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to obtain login credentials during a secure session by executing the code...

The vulnerability in the drivers/dma/idxd/cdev.c module of Linux operating systems allows a hacker to cause a service failure.

The vulnerability in the drivers/dma/idxd/cdev.c module of Linux operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause system failures...

The vulnerability of the i40e_clearHW() function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the i40eclearhw function in the Linux operating system is related to integer overflow. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the ath12k_mac_station_add() function in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the ath12kmacstationadd function in the Linux operating system is related to improper memory release. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the `create_empty_buffers()` function in the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the createemptybuffers function in the Linux operating system’s kernel is related to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the IBM DB2 database management system and the IBM DB2 Connect Server automatic redirection server, related to buffer overflow in the stack, allows an attacker to execute arbitrary code.

The vulnerability of the IBM DB2 database management system and the IBM DB2 Connect Server automatic redirection server is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the agent installer for data collection and delivery in Elasticsearch or Logstash Elastic Beats allows a perpetrator to enhance their privileges.

The vulnerability of the agent installer for data collection and delivery in Elasticsearch or Logstash Elastic Beats is related to an uncontrolled element in the search process. Exploiting this vulnerability can allow attackers to enhance their privileges...

Vulnerability of software for modeling, designing, and drawing in AutoCAD, related to the execution of operations beyond buffer boundaries in memory, allowing attackers to execute arbitrary code or cause system failures.

The vulnerability of the software for modeling, designing, and drawing in AutoCAD is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code or cause a service failure using a specially created PR...

The vulnerability of the bitmap_get_stats() function in the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the bitmapgetstats function in the Linux operating system’s kernel is related to state management errors. Exploiting this vulnerability could allow an attacker to cause a service failure...

Vulnerability of software for modeling, designing, and drawing in AutoCAD, related to the execution of operations beyond buffer boundaries in memory, allowing attackers to execute arbitrary code or cause system failures.

The vulnerability of software for modeling, designing, and drawing in AutoCAD is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code or cause a service failure using a specially created 3DM fi...

The vulnerability of the AutoGRAPH Web monitoring software platform lies in the insufficient protection of operational data, which allows attackers to disclose the protected information.

The vulnerability of the AutoGRAPH Web monitoring software platform lies in the insufficient protection of operational data. Exploiting this vulnerability allows a malicious actor to disclose sensitive information by sending a specially crafted POST request...

The vulnerability of the resize() and text() methods of the ImageMagick framework, which are used for developing web systems and CodeIgniter applications, allows attackers to load arbitrary files.

The vulnerability of the resize and text methods of the ImageMagick framework used for developing web systems and CodeIgniter applications relates to the lack of measures taken to neutralize special elements used in the operating system command line. Exploiting this vulnerability allows a remote...

The vulnerability of the insn_rw_emulate_bits() function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the insnrwemulatebits function in the Linux operating system is related to access to an uninitialized pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability in the driver module comedi/drivers/das6402.c of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the driver module comedi/drivers/das6402.c in the Linux operating system is related to a violation of the buffer boundary. Exploiting this vulnerability can allow an attacker to cause a service failure...

Vulnerability of software for modeling, designing, and drawing in AutoCAD, related to the execution of operations beyond buffer boundaries in memory, allowing attackers to execute arbitrary code or cause system failures.

The vulnerability of the software for modeling, designing, and drawing in AutoCAD is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code or cause a service failure using a specially created XT...

The vulnerabilities of the functions folio_remove_rmap_pud(), try_to_unmap_one(), and hugetlb_remove_rmap() in the Linux operating system’s kernel allow a malicious actor to cause service failures.

The vulnerabilities of the functions folioremovermappud, trytounmapone, and hugetlbremovermap in the Linux operating system are related to reading data beyond the buffer boundaries in memory. Exploiting these vulnerabilities can allow an attacker to cause service failures...

The vulnerability of the IBM DB2 database management system and the IBM DB2 Connect Server automatic redirection server lies in the fact that resources are not released after their useful period has ended. This allows attackers to cause service failures.

The vulnerability of the IBM DB2 database management system and the IBM DB2 Connect Server automatic redirection server is related to the failure to release resources after their useful lifespan has ended. Exploiting this vulnerability allows a malicious actor to cause service interruptions by...

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the IBM DB2 database management system and the IBM DB2 Connect Server automatic redirection server, related to uncontrolled memory distribution, allows a attacker to cause service interruptions.

The vulnerability of the IBM DB2 database management system and the IBM DB2 Connect Server automatic redirection server is related to uncontrolled memory allocation. Exploiting this vulnerability could allow a malicious actor to cause service interruptions by sending specially crafted requests...

The vulnerability of the Azure DevOps software development tool, related to bypassing authentication using supposedly immutable data, allows attackers to escalate their privileges.

The vulnerability of the Azure DevOps software development tool relates to bypassing authentication using supposedly immutable data. Exploiting this vulnerability can allow a malicious actor to gain increased privileges remotely...

The vulnerability of the raid1_reshape() function in the Linux operating system allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the raid1reshape function in the Linux operating system is related to improper cleaning or release of resources. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...