90509 matches found
The vulnerability of embedded Qualcomm microprogramming software, related to deficiencies in authentication procedures, allows attackers to compromise the confidentiality of protected information.
The vulnerability of embedded Qualcomm software programs is related to deficiencies in authentication procedures. Exploiting this vulnerability could allow attackers to compromise the confidentiality of the protected information...
The vulnerability of embedded software developed by Qualcomm, related to the execution of operations outside the buffer in memory, allows attackers to disclose protected information.
The vulnerability of embedded Qualcomm software is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow a malicious actor to disclose protected information remotely...
The vulnerability of the WebGPU component in the Mozilla Firefox browser and the Thunderbird email client allows a hacker to execute arbitrary code.
The vulnerability of the WebGPU component in the Mozilla Firefox browser and the Thunderbird email client is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...
The vulnerability of the icmp_tag_validation() function in Linux operating systems allows a hacker to cause a service failure.
The vulnerability of the icmptagvalidation function in Linux operating systems is related to pointer arithmetic errors. Exploiting this vulnerability could allow a remote attacker to cause a service failure by sending specially crafted ICMP packets...
The vulnerability of the update function of the analytics and automation platform for Cisco Nexus Dashboard involves an incorrect path limitation to the catalog. This allows a malicious user to write arbitrary files into the system with root privileges.
The vulnerability of the metadata update function of the analytics and automation platform for Cisco Nexus Dashboard involves an incorrect limitation on the path to the catalog. Exploiting this vulnerability could allow a malicious actor to write arbitrary files into the system with root privileg...
The vulnerability of Dell EMC AppSync’s data storage and protection software lies in its lack of mechanisms for handling symbolic links. This allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the Dell EMC AppSync data storage and protection software is related to deficiencies in the mechanism for handling symbolic links. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected informatio...
The vulnerability of the Cisco Integrated Management Controller, a software tool for remote server management, arises from the lack of protective measures for the website structure. This allows attackers to carry out cross-site scripting attacks (XSS).
The vulnerability of the Cisco Integrated Management Controller, a software tool for remote server management, is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks XSS remotely...
The vulnerability in the XPCOM component of Mozilla Firefox, Firefox ESR, and the Thunderbird email client allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the XPCOM component in Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to a numerical overflow vulnerability. Exploiting this vulnerability allows an attacker to compromise the confidentiality, integrity, and accessibility of the protected informatio...
The vulnerability in the Layout component: Text and Fonts of Mozilla Firefox, Firefox ESR, and the email client Thunderbird, which allows an attacker to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the Layout component: Texts and fonts in Mozilla Firefox, Firefox ESR, and the email client Thunderbird are related to the use of memory after it is released. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility o...
Vulnerability of the Audio/Video component: Web codecs in Mozilla Firefox, Firefox ESR, and the email client Thunderbird, which allows a hacker to cause a service failure.
Vulnerability of Audio/Video components: Mozilla Firefox, Firefox ESR, and Thunderbird’s email client use web codecs. This vulnerability is related to insufficient checking of unusual or exceptional states. Exploitation of this vulnerability could allow a remote attacker to cause service...
The vulnerability of the /goform/formConfigDnsFilterGlobal function in the UTT 1200GW network device software, which allows a attacker to cause a service failure.
The vulnerability of the /goform/formConfigDnsFilterGlobal function in the UTT 1200GW network device software is related to buffer overflow in dynamic memory. Exploiting this vulnerability could allow an attacker to cause service interruptions...
The vulnerability of the ConfigAdvideo() function in the microprogramming software for UTT HiPER 810G allows a hacker to induce a service failure.
The vulnerability of the ConfigAdvideo function in the UTT HiPER 810G router software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to cause service interruptions remotely...
The vulnerability of embedded software developed by Qualcomm, related to copying buffers without checking the size of the input data, allows a violator to cause memory corruption.
The vulnerability of embedded Qualcomm software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker to cause memory corruption...
The vulnerability of embedded software developed by Qualcomm, related to buffer overflows due to integer overflows, allows attackers to cause memory corruption.
The vulnerability of microprogramming software in embedded Qualcomm chips is related to buffer overflows due to integer overflows. Exploiting this vulnerability can allow attackers to cause memory corruption...
The vulnerability of embedded software developed by Qualcomm, related to access control errors, allows attackers to cause memory corruption.
The vulnerability of embedded Qualcomm software programs is related to access control errors. Exploiting this vulnerability can allow an attacker to cause memory corruption...
The vulnerability of the map() function in the Sapera Memory Manager driver, a software solution for image management in Sapera LT systems, allows a malicious actor to elevate their privileges to SYSTEM level and execute arbitrary code.
The vulnerability of the map function in the Sapera Memory Manager driver, a software solution for image management in Sapera LT machine vision systems, is related to pointer arithmetic errors. Exploiting this vulnerability can allow an attacker to elevate their privileges to the SYSTEM level and...
The vulnerability of Google Chrome’s WebGL component allows attackers to disclose protected information.
The vulnerability of Google Chrome’s WebGL component is related to the disclosure of information. Exploiting this vulnerability can allow a remote attacker to disclose the protected information through a specially created HTML page...
The vulnerability of the Cisco Integrated Management Controller, a software tool for remote server management, arises from the lack of protective measures for the website structure. This allows attackers to carry out cross-site scripting attacks (XSS).
The vulnerability of the Cisco Integrated Management Controller, a software tool for remote server management, is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks XSS remotely...
The vulnerability of the centreon-web component of the Centreon software for monitoring IT infrastructure allows a perpetrator to execute arbitrary code.
The vulnerability of the centreon-web component of the Centreon software for monitoring IT infrastructure is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially created SQL que...
The vulnerability of the Canvas2D component in Mozilla Firefox, Firefox ESR, and the Thunderbird email client allows a hacker to trigger a service failure.
The vulnerability of the Canvas2D component in Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability can allow an attacker to cause service failures remotely...
Vulnerability of the Audio/Video component: Playback in browsers Mozilla Firefox, Firefox ESR, and email client Thunderbird, allowing a hacker to cause a service failure.
Vulnerability of the Audio/Video component: Playback in Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to insufficient checking of unusual or exceptional states. Exploitation of this vulnerability can allow a remote attacker to cause service failures...
The vulnerability of the Canvas2D component in Mozilla Firefox, Firefox ESR, and the Thunderbird email client allows a hacker to trigger a service failure.
The vulnerability of the Canvas2D component in Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability can allow an attacker to cause service failures remotely...
Vulnerability of the ngx_http_mp4_module in HTTP-servers of NGINX Plus and NGINX Open Source, allowing attackers to cause service failures or execute arbitrary code.
The vulnerability of the ngxhttpmp4module in NGINX Plus and NGINX Open Source HTTP servers is related to reading beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause service failures or execute arbitrary code...
The vulnerability of the Cisco Catalyst Center (formerly Cisco DNA Center) network infrastructure management system allows a perpetrator to gain unauthorized access to protected information or enhance their privileges.
The vulnerability of the Cisco Catalyst Center formerly Cisco DNA Center network infrastructure management system is related to access control errors. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information or enhance their...
The software for deploying and executing AI models by NVIDIA Triton Inference Server is vulnerable, allowing attackers to trigger a service failure.
The vulnerability of NVIDIA Triton Inference Server’s deployment and AI model execution software is related to an error in handling exceptional states. Exploiting this vulnerability can allow a remote attacker to cause service failures...
The vulnerability of the formConfigCliForEngineerOnly() function in the UTT 520W router software allows a hacker to cause a service failure.
The vulnerability of the formConfigCliForEngineerOnly function in the UTT 520W router’s microprogramming system is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...
The vulnerability of embedded software developed by Qualcomm, related to the use of a pointer offset that is outside the allowed range, allows attackers to cause memory corruption.
The vulnerability of embedded software developed for Qualcomm chips lies in the use of a pointer offset that is out of range. Exploiting this vulnerability can allow an attacker to cause memory corruption...
The vulnerability of the Quantum DXi6702 backup device lies in the improper limitation of XML links to external objects, allowing attackers to read arbitrary files.
The vulnerability of the Quantum DXi6702 backup device is related to incorrect restrictions on XML links to external objects. Exploiting this vulnerability allows a malicious actor to remotely read arbitrary files...
The vulnerability of the GUI component of the FortiSandbox threat detection and mitigation system allows a perpetrator to execute arbitrary code.
The vulnerability of the GUI component of the FortiSandbox threat detection and mitigation system is related to the failure to take measures to neutralize special elements. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using specially created HTTP requests...
The vulnerability of the cupsd server daemon in the CUPS printing system allows a hacker to execute arbitrary code.
The vulnerability of the cupsd server printing service in CUPS is related to deficiencies in the mechanism for verifying input data when processing the parameter “textWithoutLanguage”. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending a specially crafted...
The vulnerability of the Compositing component in the Google Chrome browser allows attackers to execute arbitrary code or trigger a service denial.
The vulnerability of the Compositing component in the Google Chrome browser is related to the use of memory after deallocation. Exploiting this vulnerability could allow an attacker to execute arbitrary code or cause a service failure...
The vulnerability of the WebCodecs component in Google Chrome allows a hacker to execute arbitrary code or cause a service failure.
The vulnerability of Google Chrome’s WebCodecs component relates to reading data beyond the buffer in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code or cause a service failure by using a specially created HTML page...
The vulnerability of the ngx_http_dav_module module in NGINX Plus and NGINX Open Source servers allows a hacker to cause a service failure.
The vulnerability of the ngxhttpdavmodule module in NGINX Plus and NGINX Open Source servers is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...
The vulnerability of the formFtpServerDirConfig() function in the UTT 520W router software allows a hacker to cause a service failure.
The vulnerability of the formFtpServerDirConfig function in the UTT 520W router software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a malicious actor to cause service interruptions remotely...
The vulnerability of the formGroupConfig() function in the UTT HiPER 810G router software allows a hacker to cause a service failure.
The vulnerability of the formGroupConfig function in the UTT HiPER 810G router’s microprogramming software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the formTaskEdit() function in the microprogramming software for UTT HiPER 810G allows a hacker to induce a service failure.
The vulnerability of the formTaskEdit function in the UTT HiPER 810G router’s microprogramming software is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the setGameSpeedCfg function in the microprogramming software of TOTOLink A7100RU allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the setGameSpeedCfg function in the microprogramming software of TOTOLink A7100RU relates to the lack of measures taken to protect data at the control level. Exploiting this vulnerability can allow an attacker operating remotely to compromise the confidentiality, integrity, a...
The vulnerability of the Node.js software platform, related to the exhaustion of file descriptors, allows attackers to compromise the integrity of protected information.
The vulnerability of the Node.js software platform is related to the exhaustion of file descriptors. Exploiting this vulnerability can allow an attacker to compromise the integrity of the protected information...
The vulnerability of the fs.realpathSync.native() function in the Node.js software platform allows a malicious actor to gain unauthorized access to protected information.
The vulnerability of the fs.realpathSync.native function in the Node.js framework is related to insufficient protection for private data. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...
The vulnerability of the Node.js software platform, related to improper cleaning or release of resources, allows a perpetrator to trigger a service failure.
The vulnerability of the Node.js software platform is related to improper cleaning or release of resources. Exploiting this vulnerability can allow a remote attacker to cause service failures...
The vulnerability of embedded software developed by Qualcomm, related to the use of dangerous methods or functions, allows attackers to compromise the confidentiality and integrity of protected information.
The vulnerability of embedded software developed by Qualcomm relates to the use of dangerous methods or functions. Exploiting this vulnerability can allow attackers to compromise the confidentiality and integrity of the protected information...
The vulnerability of embedded software in Qualcomm chips, related to deficiencies in access control, allows attackers to cause memory corruption.
The vulnerability of embedded Qualcomm software is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to cause memory corruption...
The vulnerability of the formwrlSSIDset function in the Tenda i12 wireless access point’s microprogramming software allows a hacker to cause a service failure.
The vulnerability of the formwrlSSIDset function in the Tenda i12 wireless access point’s microprogramming software is related to buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the acpi_processor_errata_piix4() function in the Linux operating system allows a hacker to trigger memory corruption.
The vulnerability of the acpiprocessorerratapiix4 function in the Linux operating system is related to the use of memory after deallocation. Exploiting this vulnerability can allow an attacker to cause memory corruption...
The vulnerability of Adobe Experience Manager’s content and media data management system, related to the lack of measures taken to protect the website structure, allows attackers to perform cross-site scripting attacks.
The vulnerability of the Adobe Experience Manager content and media data management system is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability could allow a malicious actor to perform cross-site scripting attacks remotely...
The vulnerability of Adobe Experience Manager’s content and media data management system, related to the lack of measures taken to protect the website structure, allows attackers to perform cross-site scripting attacks.
The vulnerability of the Adobe Experience Manager content and media data management system is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability could allow a malicious actor to perform cross-site scripting attacks remotely...
The vulnerability of the AppleKeyStore component in operating systems such as visionOS, iOS, iPadOS, macOS, watchOS, and tvOS allows a perpetrator to trigger a service failure.
The vulnerability of the AppleKeyStore component in operating systems such as visionOS, iOS, iPadOS, macOS, watchOS, and tvOS relates to the ability to utilize memory after it is freed. Exploiting this vulnerability could allow a malicious individual to cause a service failure...
Vulnerability of the progressive_decompress_tile_upgrade() function in the RDP client FreeRDP, allowing a intruder to trigger a service failure
The vulnerability of the progressivedecompresstileupgrade function in the RDP client FreeRDP is related to integer overflow. Exploiting this vulnerability could allow a malicious actor to cause service failure...
The vulnerability of the resize_vbar_entry() function in the RDP client FreeRDP allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the resizevbarentry function in the RDP client FreeRDP is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...
The vulnerability of Adobe Experience Manager’s content and media data management system, related to the lack of measures taken to protect the website structure, allows attackers to perform cross-site scripting attacks.
The vulnerability of the Adobe Experience Manager content and media data management system is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability could allow a malicious actor to perform cross-site scripting attacks remotely...