74701 matches found
The vulnerability of the move_page_tables() function in the Linux operating system allows a hacker to increase their privileges and execute arbitrary code.
The vulnerability of the movepagetables function in the Linux operating system’s kernel is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to increase their privileges and execute arbitrary code...
The vulnerability of the ACPICA component in the Linux operating system’s kernel, which allows a hacker to trigger a service failure
The vulnerability of the ACPICA component in the Linux operating system’s kernel is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of 7-Zip, related to errors in the certificate validation process, allows attackers to compromise the integrity of the protected information.
The vulnerability of 7-Zip archiver is related to errors in the certificate validation process. Exploiting this vulnerability allows an attacker to compromise the integrity of the protected information using a specially created xz file...
The vulnerability of 7-Zip, related to errors in the certificate validation process, allows attackers to compromise the integrity of the protected information.
The vulnerability of 7-Zip archiver is related to errors in the certificate validation process. Exploiting this vulnerability allows an attacker to compromise the integrity of the protected information using a specially created xz file...
The vulnerability of the Git-based software platform for collaborative code development in GitLab EE/CE lies in the improper handling of logical operations, which allows attackers to compromise the integrity and confidentiality of protected information.
The vulnerability of the Git-based software platform for collaborative code development in GitLab EE/CE relates to the improper handling of logical operations. Exploiting this vulnerability allows a malicious actor to compromise the integrity and confidentiality of the protected information...
The vulnerability of the NextCloud calendar application, a cloud-based software for creating and using NextCloud storage, relates to improper authentication procedures. This vulnerability allows attackers to bypass authentication checks.
The vulnerability of the Nextcloud calendar application, a cloud-based software for creating and using Nextcloud data storage, is related to improper authentication procedures. Exploiting this vulnerability allows an attacker to bypass authentication checks remotely...
The vulnerability in the web interface of the Cisco AsyncOS operating system’s account management system allows a malicious individual to gain unauthorized access to protected information. This vulnerability in the Content Security Management Appliance system enables unauthorized access to protected data.
The vulnerability of the web interface of the Cisco AsyncOS operating system’s account management system relates to access control errors. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...
The vulnerability of the rtc component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the rtc component in the Linux operating system’s kernel is related to improper blocking of resources in the rtctimerdowork function. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the Linux-PAM authentication module, related to the insecure storage of confidential information, allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the Linux-PAM authentication module is related to the insecure storage of confidential information. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...
The vulnerability of the DNSServer software’s microprogramming system in Wi-Fi amplifiers, subscriber terminals, DSL/Ethernet CPE routers allows a perpetrator to execute arbitrary commands.
The vulnerability of the DNSServer software, a microprogramming-based system for Wi-Fi amplifiers, subscriber terminals, Fiber ONTs, and DSL/Ethernet CPEs exists due to the lack of measures to neutralize specific elements. Exploiting this vulnerability allows an attacker operating remotely to...
The vulnerability of the zyUtilMailSend function in Wi-Fi amplifiers, subscriber terminals, DSL/Ethernet CPE routers allows a perpetrator to execute arbitrary commands.
The vulnerability of the zyUtilMailSend function in Wi-Fi amplifiers, subscriber terminals, DSL/Ethernet CPE routers exists due to the lack of measures to neutralize specific elements. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...
The vulnerabilities of the LoginView, LogoutView functions, and the set_language() function on the Django web application programming platform allow a hacker to cause a service failure.
The vulnerability of the LoginView, LogoutView, and setlanguage functions in the Django web application framework is related to the unlimited distribution of resources. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...
The vulnerability of the Delphix Continuous Data and Delphix Continuous Compliance data management tools lies in improper privilege assignment, allowing attackers to gain control over the command line of the operating system.
The vulnerability of the Delphix Continuous Data data management software is related to the improper assignment of privileges. Exploiting this vulnerability can allow an attacker to gain control over the command line of the operating system...
The vulnerability of the Camel-Undertow component in the Java framework Apache Camel allows a attacker to influence the confidentiality and integrity of the protected information.
The vulnerability of the Camel-Undertow component in the Java framework Apache Camel is related to the lack of measures taken to neutralize its internal special elements. Exploiting this vulnerability allows a malicious actor to influence the confidentiality and integrity of the protected...
The vulnerability of the Synology Router Manager operating system, related to insufficient protection of sensitive data, allows a hacker to gain unauthorized access to protected information.
The vulnerability of the Synology Router Manager operating system is related to insufficient protection for service data. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to protected information...
The vulnerability of the Synology Router Manager operating system, related to insufficient protection of service data, allows a intruder to gain unauthorized access to protected information.
The vulnerability of the Synology Router Manager operating system is related to insufficient protection for service data. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to protected information...
The vulnerability of the Synology Router Manager operating system, related to insufficient protection of service data, allows a intruder to gain unauthorized access to protected information.
The vulnerability of the Synology Router Manager operating system is related to insufficient protection for service data. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to protected information...
The vulnerability of the vaultwarden password management service lies in the improper elimination of certain elements in the output data, allowing a hacker to execute arbitrary code.
The vulnerability of the vaultwarden password management service is related to incorrect neutralization of certain elements in the output data. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...
The vulnerability of the vaultwarden password management service, related to access control errors, allows attackers to escalate their privileges.
The vulnerability of the vaultwarden password management service is related to access control errors. Exploiting this vulnerability could allow a malicious actor, operating remotely, to increase their privileges...
The vulnerability of the TLS-crypt-v2 function on the software-based OpenVPN server allows a hacker to induce a service failure.
The vulnerability of the TLS-crypt-v2 function in the OpenVPN software server is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...
Vulnerability of the Server component: The Replication function of the MySQL Server database management system, which allows a hacker to cause a service failure.
The vulnerability of the MySQL Server database management system’s replication component is related to the improper assignment of permissions for critical resources. Exploiting this vulnerability can allow an attacker to cause service interruptions remotely...
The vulnerability of the Brickfield component in the virtual learning environment Moodle, which allows a perpetrator to influence the integrity of the protected information
The vulnerability of the Brickfield component in the Moodle virtual learning environment is related to the manipulation of cross-site requests. Exploiting this vulnerability can allow a malicious actor to influence the integrity of the protected information...
The vulnerability of the mod_data module in the virtual training environment Moodle, which allows a intruder to gain unauthorized access to protected information
The vulnerability of the moddata module in the virtual training environment Moodle is related to the disclosure of information through query strings. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information...
The vulnerability of the RSS Block component in the virtual learning environment Moodle allows a intruder to gain unauthorized access to protected information.
The vulnerability of the RSS Block component in the virtual learning environment Moodle relates to bypassing authentication using a key controlled by the user. Exploiting this vulnerability could allow an intruder, operating remotely, to gain unauthorized access to protected information...
The vulnerability of the virtual learning environment Moodle, related to the manipulation of cross-site requests, allows a violator to influence the integrity of the protected information.
The vulnerability in the virtual learning environment Moodle is related to the manipulation of cross-site requests. Exploiting this vulnerability could allow a malicious actor to influence the integrity of the protected information...
The vulnerability of the Multi-Factor Authentication component in the virtual learning environment Moodle allows a perpetrator to gain unauthorized access to protected information or execute arbitrary codes.
The vulnerability of the Multi-Factor Authentication component in the virtual learning environment Moodle is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information or execute arbitrary...
The vulnerability of the virtual learning environment Moodle, related to insufficient protection of operational data, allows a hacker to disclose protected information.
The vulnerability in the virtual learning environment Moodle is related to insufficient protection of operational data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to disclose the protected information...
The vulnerability of the Multi-Factor Authentication component in the virtual learning environment Moodle allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the Multi-Factor Authentication component in the virtual learning environment Moodle is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information...
The vulnerability of the Multi-Factor Authentication component in the virtual learning environment Moodle, which allows a perpetrator to trigger a service failure.
The vulnerability of the Multi-Factor Authentication component in the virtual learning environment Moodle relates to bypassing authentication using a key controlled by the user. Exploiting this vulnerability could allow a malicious actor to trigger a service failure...
The vulnerability of the fromSetWirelessRepeat function in the microprogramming software for Tenda AC15 routers allows a hacker to induce a service failure.
The vulnerability of the fromSetWirelessRepeat function in the Tenda AC15 router’s microprogramming system lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a remote attacker to cause a service failure...
Vulnerability of the PostgresDB._process_insert_query() function (file web/db.py), a web application creation framework by web.py, allowing attackers to execute arbitrary SQL commands
The vulnerability of the PostgresDB.processinsertquery function located in the web/db.py file of the web.py web framework is related to the lack of security measures for SQL query structures. Exploiting this vulnerability allows an attacker to execute arbitrary SQL commands using the seqname...
The vulnerability of Dropbox’s repository in the virtual learning environment Moodle allows a perpetrator to execute arbitrary code.
The vulnerability of Dropbox’s virtual learning environment Moodle is related to improper code generation management. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
The vulnerability of the virtual learning environment Moodle, related to deficiencies in authentication mechanisms, allows a intruder to gain unauthorized access to user data.
The vulnerability of the virtual learning environment Moodle is related to deficiencies in the authentication mechanism. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to user data...
The vulnerability of the virtual learning environment web service Moodle allows a perpetrator to gain unauthorized access to user data.
The vulnerability of the Moodle virtual learning environment’s web service is related to deficiencies in the authentication mechanism. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to user data...
The vulnerability of the course_can_delete_section() function in the virtual learning environment Moodle, which allows a violator to increase their privileges
The vulnerability of the coursecandeletesection function in the virtual learning environment Moodle is related to deficiencies in the authentication mechanism. Exploiting this vulnerability could allow a malicious actor to gain increased privileges...
The vulnerability in the virtual learning environment Moodle, related to the lack of protective measures for website structures, allows attackers to carry out XSS attacks.
The vulnerability in the virtual learning environment Moodle is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks...
The vulnerability of the EQUELLA repository in the virtual learning environment Moodle, which allows a perpetrator to execute arbitrary code.
The vulnerability of the EQUELLA repository in the virtual learning environment Moodle is related to incorrect code generation management. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
The vulnerability in the virtual learning environment Moodle, related to bypassing authentication using a user-controlled key, allows intruders to elevate their privileges and gain unauthorized access to protected information.
The vulnerability in the virtual learning environment Moodle relates to bypassing authentication using a key controlled by the user. Exploiting this vulnerability can allow an intruder to increase their privileges and gain unauthorized access to protected information...
The vulnerability of the gf_hevc_read_sps_bs_internal function in the av_parsers.c file of the MP4Box packaging tool for the GPAC multimedia platform allows a hacker to cause a service failure.
The vulnerability of the gfhevcreadspsbsinternal function in the avparsers.c file of the MP4Box package of the GPAC multimedia platform is related to the reading of data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to cause a service failure during...
The vulnerability of the gf_odf_vvc_cfg_write_bs function in the odf/descriptors.c file of the MP4Box packaging tool for the GPAC multimedia platform allows a attacker to cause a service failure.
The vulnerability of the gfodfvvccfgwritebs function in the odf/descriptors.c file of the MP4Box packaging tool for the GPAC multimedia platform is related to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the ctts_box_write function in the isomedia/box_code_base.c file of the MP4Box packaging tool of the GPAC multimedia platform allows a hacker to cause a service failure.
The vulnerability of the cttsboxwrite function in the isomedia/boxcodebase.c file of the MP4Box packaging tool for the GPAC multimedia platform is related to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the Mark-of-the-Web protection mechanism in the 7-Zip archive viewer allows a hacker to execute arbitrary code.
The vulnerability of the Mark-of-the-Web protection mechanism in the 7-Zip archive extractor is related to a breach of the data protection mechanism. Exploiting this vulnerability allows an attacker to execute arbitrary code during the decompression of the archive by the user, where the archive...
The vulnerability of the Linux operating system’s USB kernel component, which allows a hacker to cause a service failure
The vulnerability of the Linux operating system’s USB kernel component is related to the assignment of the NULL pointer in the gsstartio function. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the Linux operating system’s kernel component, which allows a hacker to cause a service failure
The vulnerability of the Linux operating system’s kernel Ionic component is related to a memory leak in the ioniclifregister function. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the netdevsim component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the netdevsim component in the Linux operating system’s kernel is related to improper handling of the network packet header in the nsimdevhealthbreakwrite function. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the octeontx2-pf component in the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the octeontx2-pf component in the Linux operating system’s kernel is related to resource management errors in the cn10kallocleafprofile function. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the mfd component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the mfd component in the Linux operating system’s kernel is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the Linux operating system’s kernel quota component, which allows a hacker to trigger a service failure
The vulnerability of the Linux kernel’s quota component is related to improper blocking of resources in the dquotwritebackdquots function. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the Linux operating system’s kernel tracing component, which allows a hacker to trigger a service failure
The vulnerability of the Linux operating system’s kernel tracing component is related to errors in resource management within the function tracingcpumaskwrite. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the nvme_free_host_mem() function in the drivers/nvme/host/pci.c module of the Linux kernel driver NVME allows a attacker to cause a service failure.
The vulnerability of the nvmefreehostmem function in the nvmem/host/pci.c driver of the Linux kernel’s NVME driver is related to incorrect calculation of buffer size. Exploiting this vulnerability can allow an attacker to cause a service failure...