The vulnerability of UserGate Next-Generation Firewall (NGFW) and UserGate Web Application Firewall (WAF) at the web application level arises from the failure to implement measures to neutralize specific elements. This allows attackers to execute arbitrary operating system commands with maximum privileges.

The vulnerability of UserGate Next-Generation Firewall NGFW and UserGate Web Application Firewall WAF at the web application level is related to the failure to implement measures to neutralize specific elements. Exploiting this vulnerability allows a remote attacker to execute any command on the...

The vulnerability of the function in gf_m2ts_process_pmt of the multimedia platform GPAC, which allows a intruder to cause a service failure

The vulnerability in the gfm2tsprocesspmt function of the multimedia platform GPAC involves copying buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to cause service failures...

The vulnerability of the header_gnu_longlink function in the archive_read_support_format_tar.c file of the Libarchive library allows a attacker to cause a service failure.

The vulnerability of the headergnulonglink function in the archivereadsupportformattar.c file of the Libarchive library is related to the execution of operations outside of the buffer. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the bsdunzip.c file in the Libarchive library allows a hacker to trigger a service failure.

The vulnerability of the bsdunzip.c file in the Libarchive library is related to a NULL pointer dereferencing error. Exploiting this vulnerability could allow an attacker to cause a service failure...

Vulnerability of the Cluster component: The general system for managing MySQL Cluster databases, which allows attackers to gain access to read, modify, add, or delete data, or to cause service interruptions.

Vulnerability of the MySQL Cluster component: General database management systems related to MySQL Cluster are vulnerable due to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor to gain read, modify, add, or delete access to data, or cause service failures...

The vulnerability of the Python API component of the libxml2 library, which allows a hacker to trigger a denial-of-service attack.

The vulnerability of the Python API component of the libxml2 library is related to incorrect checking of the returned value from methods or functions. Exploiting this vulnerability could allow an attacker to cause service failures remotely...

The vulnerability of the Packet Forwarding Engine (PFE) module in Junos OS routers of the MX series allows a hacker to cause a service failure.

The vulnerability of the Packet Forwarding Engine PFE module in Junos OS routers of the MX series is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability can allow a malicious actor to trigger a service failure by sending specially crafted GRE packets...

The vulnerability of the Orders component in the Oracle Configurator application of the Oracle E-Business Suite allows a malicious actor to gain access to read, modify, add, or delete data.

The vulnerability of the Orders component in the Oracle Configurator application of the Oracle E-Business Suite is related to insufficient validation of entered data. Exploiting this vulnerability may allow an attacker to gain access to read, modify, add, or delete data...

The vulnerability of the Web Runtime SEC component of the JD Edwards EnterpriseOne Tools, a resource management system for enterprises, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Web Runtime SEC component of the JD Edwards EnterpriseOne Tools system for resource management involves deficiencies in access control. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the anti-virus command in the Junos OS operating system’s SRX routers allows a hacker to cause a service failure.

The vulnerability of the Junos OS operating system’s SRX series router drivers relates to the absence of memory release after the effective lifespan of the devices. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of the Packet Forwarding Engine (PFE) module in Junos OS routers of the SRX series allows a hacker to cause a service failure.

The vulnerability of the Packet Forwarding Engine PFE module in Junos OS routers of the SRX series is related to errors in processing input data length parameters. Exploiting this vulnerability allows a malicious actor to trigger a service failure by sending specially crafted packets...

The vulnerability of the Flexible PIC Concentrator module’s operating system, Juniper Networks Junos OS, allows a hacker to trigger a maintenance failure.

The vulnerability of the Flexible PIC Concentrator FPC module of Juniper Networks’ Junos OS is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow a malicious actor to trigger a service failure by sending a specially crafted DHCP packet...

The vulnerability of the DHCP Daemon (jdhcpd) on Juniper Networks Junos OS allows a attacker to cause a service failure.

The vulnerability of the DHCP Daemon jdhcpd on Juniper Networks Junos OS systems is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service interruptions by sending specially crafted packets...

The vulnerability of Juniper Networks’ Junos routers of the SRX series, which allows a attacker to cause a service failure.

The vulnerability of Juniper Networks’ Junos router series SRX devices, specifically those related to flow processing on operating systems, is related to the swapping of zero pointers. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

The vulnerability of the TCP protocol implementation in Juniper Networks’ Junos OS routers MX240, MX480, and MX960 allows a attacker to cause service interruptions.

The vulnerability of the TCP protocol implementation in Juniper Networks’ Junos OS routers of the MX240, MX480, and MX960 models is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service interruptions by sending specially craft...

The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to gain access to read, modify, add, or delete data, or to cause a service failure.

The vulnerability of the Core component of the Oracle VM VirtualBox software lies in insufficient validation of input data. Exploiting this vulnerability can allow an attacker to read, modify, add, or delete data, or cause a service failure...

The vulnerability of the Routing Protocol Daemon (RPD) in Juniper Networks’ Junos OS and Junos OS Evolved operating systems allows a attacker to cause service interruptions.

The vulnerability of the Routing Protocols Daemon RPD in Juniper Networks’ Junos OS and Junos OS Evolved operating systems is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow a malicious actor to cause service interruptions by sending...

The vulnerability of the containerd execution environment, related to integer overflows, allows a attacker to execute arbitrary code.

The vulnerability of the containerd execution environment is related to integer overflows. Exploiting this vulnerability allows an attacker to execute arbitrary code...

The vulnerability of the Graphite automated drawing system, related to writing beyond the buffer memory boundaries, allows a perpetrator to execute arbitrary code.

The vulnerability of the Graphite automated drawing system is related to the writing beyond the buffer memory during the analysis of VC6 files. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the Cobalt Ashlar-Vellum software for parametric automated design and 3D modeling lies in errors related to data type mixing, allowing a hacker to execute arbitrary code.

The vulnerability of the Cobalt Ashlar-Vellum software for parametric automated design and 3D modeling is related to errors in data type mixing during the processing of CO files. Exploiting this vulnerability allows an attacker to execute arbitrary code...

The vulnerability of Cobalt Ashlar-Vellum’s software for parametric automated design and 3D modeling lies in its ability to read data beyond the buffer limit in memory, allowing an attacker to execute arbitrary code.

The vulnerability of the Cobalt Ashlar-Vellum software for parametric automated design and 3D modeling lies in the reading of data beyond the buffer limit in memory during the processing of CO files. Exploiting this vulnerability allows an attacker to execute arbitrary code...

The vulnerability of Cobalt Ashlar-Vellum’s software for parametric automated design and 3D modeling lies in its ability to read data beyond the buffer limit in memory, allowing an attacker to execute arbitrary code.

The vulnerability of Cobalt Ashlar-Vellum software for parametric automated design and 3D modeling lies in the reading of data beyond the buffer in memory during the processing of AR format files. Exploiting this vulnerability allows an attacker to execute arbitrary code...

The vulnerability of the Cobalt Ashlar-Vellum software for parametric automated design and 3D modeling lies in errors related to data type mixing, allowing a hacker to execute arbitrary code.

The vulnerability of the Cobalt Ashlar-Vellum software for parametric automated design and 3D modeling is related to errors in data type mixing during the processing of XE files. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the multimedia platform GPAC, related to uncontrolled resource consumption, allows a violator to trigger a service failure.

The vulnerability of the multimedia platform GPAC is related to an uncontrolled consumption of resources. Exploiting this vulnerability could allow a hacker to cause a service failure...

The vulnerability of the static_call_module_notify() function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the staticcallmodulenotify function in the Linux operating system is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the sctp_listen_start() function in the Linux kernel’s SCTP component allows a hacker to trigger a service failure.

The vulnerability of the sctplistenstart function in the SCTP component of the Linux operating system is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the nf_dup_ipv4() and nf_dup_ipv6() functions in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the nfdupipv4 and nfdupipv6 functions in the Linux operating system is related to memory corruption. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the gf_vvc_read_sps_bs_internal function in the MP4Box module of the GPAC multimedia platform allows a perpetrator to execute arbitrary code.

The vulnerability of the gfvvcreadspsbsinternal function in the MP4Box module of the GPAC multimedia platform is related to integer overflow. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of the gf_hevc_read_sps_bs_internal function in the MP4Box module of the GPAC multimedia platform allows a hacker to execute arbitrary code.

The vulnerability of the gfhevcreadspsbsinternal function in the MP4Box module of the GPAC multimedia platform is related to integer overflow. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of the microprogramming software of the Uniswap Universal Router, which allows a hacker to cause a service failure.

The vulnerability of the Uniswap Universal Router’s microprogramming software is related to insufficient blocking mechanisms. Exploiting this vulnerability could allow a malicious actor to cause service failures...

The vulnerability of the _parse/load_user-profile.php file in the Job Recruitment system allows a hacker to gain unauthorized access to protected information and execute arbitrary code.

The vulnerability of the parse/loaduser-profile.php file in the Job Recruitment system is related to the lack of measures to neutralize special elements. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected information and execute arbitra...

The vulnerability of the /admin/chart1.php file of the attendance tracking management system, related to the failure to protect the SQL query structure, allows a perpetrator to execute arbitrary code.

The vulnerability of the /admin/chart1.php file of the attendance tracking management system involves a lack of measures to protect the SQL query structure. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...

The vulnerability of the multimedia platform GPAC, related to the assignment of the NULL pointer, allows a perpetrator to trigger a service failure.

The vulnerability of the multimedia platform GPAC is related to the use of the NULL pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the GPAC multimedia platform, related to unvalidated value return, allows a violator to trigger a service failure.

The vulnerability of the multimedia platform GPAC is related to an unverified return value. Exploiting this vulnerability could allow a attacker to cause a service failure...

The vulnerability of the software for interacting with servers via cURL, related to insufficient protection of operational data, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the software for interacting with servers via cURL is related to insufficient protection of operational data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the sev_receive_start() function in the arch/x86/kvm/svm/sev.c module of the virtualization subsystem on the x86 kernel of the Linux operating system allows a attacker to compromise the integrity and accessibility of the protected information.

The vulnerability of the sevreceivestart function in the arch/x86/kvm/svm/sev.c module of the virtualization subsystem on the Linux kernel-based x86 platform is related to the failure to release resources after their useful life has ended. Exploiting this vulnerability could allow an attacker to...

Vulnerability of the w83793_detect_subclients() function in the drivers/hwmon/w83793.c module – This driver for monitoring hardware in Linux operating systems allows a hacker to cause service failure.

Vulnerability of the w83793detectsubclients function in the drivers/hwmon/w83793.c module – The driver for monitoring hardware in Linux operating systems contains errors in its code. Exploiting this vulnerability could allow a remote attacker to cause service failures...

Vulnerability of the hns3_nic_net_open() function in the drivers/net/ethernet/hisilicon/hns3/hns3_enet.c module – This is a driver for supporting Ethernet network adapters in the Linux operating system. An attacker can exploit this vulnerability to cause a service failure.

Vulnerability of the hns3nicnetopen function in the drivers/net/ethernet/hisilicon/hns3/hns3enet.c module – The Linux kernel’s Ethernet adapter support driver has a vulnerability due to insufficient resource control during its operation. Exploiting this vulnerability could allow an attacker to...

Vulnerability of the ixgbe_maxChannels() function in the drivers/net/ethernet/intel/ixgbe/ixgbe_ethtool.c module – This driver is part of the Linux kernel’s Ethernet network adapter support. It allows a hacker to cause a system failure.

Vulnerability of the ixgbemaxChannels function in the drivers/net/ethernet/intel/ixgbe/ixgbeethtool.c module – The Linux kernel-based Intel Ethernet network adapter driver has a vulnerability related to the use of the NULL pointer. Exploiting this vulnerability could allow an attacker to cause a...

The vulnerability of the Git-based software platform for collaborative code development in GitLab Enterprise Edition, related to the lack of authentication, allows attackers to gain unauthorized access to protected information.

The vulnerability of the Git-based software platform for collaborative code development in GitLab Enterprise Edition is related to the lack of authentication. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the Ingress controller in the Kubernetes cluster ingress-nginx, related to errors in processing Ingress object annotations, allows a hacker to execute arbitrary code.

The vulnerability of the Ingress controller in the Kubernetes cluster ingress-nginx is related to errors in processing Ingress object annotations. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of the URI Gem software, related to the disclosure of information, allows a perpetrator to access confidential information.

The vulnerability of the URI Gem software is related to the disclosure of information. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain access to confidential information...

The vulnerability of the CGI Gem software lies in its improper validation of input data, which allows a hacker to trigger a service failure.

The vulnerability of the CGI Gem software lies in improper validation of input data. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of the Git-based software platform for collaborative code development on GitLab EE/CE lies in its unlimited resource distribution, which allows attackers to trigger service interruptions.

The vulnerability of the Git-based software platform for collaborative code development in GitLab EE/CE relates to the unlimited distribution of resources. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause service failures...

The vulnerability of the setWebWlanIdx function in the microprogramming software of TOTOLINK EX1200T routers allows a hacker to execute arbitrary code by manipulating the webWlanIdx parameter.

The vulnerability of the setWebWlanIdx function in TOTOLINK EX1200T router microprogramming systems exists due to the lack of measures to neutralize specific elements. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by manipulating the webWlanIdx parameter...

The vulnerability of the Apache ActiveMQ NMS OpenWire Client software platform lies in its ability to restore unreliable data in memory, allowing a perpetrator to execute arbitrary code.

The vulnerability of the Apache ActiveMQ NMS OpenWire Client software platform lies in the recovery of unreliable data in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the IBM i operating system, related to deficiencies in HTTP request processing, allows a perpetrator to trigger a service failure.

The vulnerability of the IBM i operating system is related to deficiencies in handling HTTP requests. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

The vulnerability of the org.xwiki.platform:xwiki-platform-wiki-rest-default component of the XWiki Platform, a platform for creating collaborative web applications. This vulnerability allows attackers to escalate their privileges.

The vulnerability of the “org.xwiki.platform:xwiki-platform-wiki-rest-default” component of the XWiki Platform’s collaborative web application framework is related to improper authentication. Exploiting this vulnerability could allow an attacker to increase their privileges remotely...

The vulnerability of the main() function in NETGEAR R6100 integrated routing software allows a hacker to execute arbitrary code.

The vulnerability of the main function in NETGEAR R6100 integrated routing software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code using the QUERYSTRING parameter...

The vulnerability of the /goform/set_prohibiting function in the microprogramming software for D-link DIR-823X AX3000 allows a hacker to execute arbitrary commands.

The vulnerability of the /goform/setprohibiting function in the microprogramming software for D-link DIR-823X AX3000 routers is related to the lack of measures taken to clean data at the control level. Exploitation of this vulnerability allows a remote attacker to execute arbitrary commands by...