The vulnerability of the SCSI component in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the SCSI component in the Linux operating system is related to a memory leak in the qedfallocandinitsb function. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the course_can_delete_section() function in the virtual learning environment Moodle, which allows a violator to increase their privileges

The vulnerability of the coursecandeletesection function in the virtual learning environment Moodle is related to deficiencies in the authentication mechanism. Exploiting this vulnerability could allow a malicious actor to gain increased privileges...

The vulnerability in the web-based interface of the Cisco Secure Network Analytics system (previously known as Cisco Stealthwatch Enterprise) allows a malicious actor to elevate their privileges to the root level.

The vulnerability in the web-based interface of the Cisco Secure Network Analytics system, previously known as Cisco Stealthwatch Enterprise, is related to errors in verifying the cryptographic signature. Exploiting this vulnerability can allow an attacker to elevate their privileges to the root...

The vulnerability of the rtc component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the rtc component in the Linux operating system’s kernel is related to improper blocking of resources in the rtctimerdowork function. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the Rsync file transfer and synchronization utility is related to synchronization errors when using a shared resource, allowing a perpetrator to gain increased privileges.

The vulnerability of the Rsync file transfer and synchronization utility is related to synchronization errors when using a shared resource during the processing of symbolic links. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the FreeIpa server, related to insufficient protection of service data, allows attackers to circumvent existing security restrictions and disclose the protected information.

The vulnerability of the FreeIpa server is related to insufficient protection of operational data. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions and disclose the protected information...

The vulnerability of the libtar package, related to reading data beyond the memory boundaries, allows an attacker to gain access to confidential information.

The vulnerability of the libtar package is related to the initiation of the malloc0 call for the variable gnulongname. Exploiting this vulnerability may allow an attacker to gain access to confidential information...

The vulnerability of the th_read() function in the libtar package, which allows a hacker to access confidential information

The vulnerability of the thread function in the libtar package is related to the lack of memory release after the effective lifespan has ended. Exploiting this vulnerability could allow an attacker operating remotely to gain access to confidential information...

The vulnerability of the th_read() function in the libtar package, which allows a hacker to access confidential information

The vulnerability of the thread function in the libtar package is related to the lack of memory release after the effective lifespan has ended. Exploiting this vulnerability could allow an attacker operating remotely to gain access to confidential information...

The vulnerability of the web interface of the AvertX network IP camera’s software allows a intruder to gain access to the video stream.

The vulnerability of the web interface of the AvertX network IP camera’s microprogramming software is related to the disclosure of information due to incompatibility. Exploiting this vulnerability can allow a remote attacker to gain access to the video stream...

The vulnerability of the OnPayloadReceived() function in the data exchange utility for Google Quick Share allows a hacker to upload arbitrary files onto the user’s device.

The vulnerability of the OnPayloadReceived function in the Google Quick Share data exchange tool is related to the ability to download files of a dangerous type without limitation. Exploiting this vulnerability could allow an attacker to upload arbitrary files to the user’s device remotely...

The vulnerability of the SSH protocol implementation on Windows operating systems allows attackers to escalate their privileges.

The vulnerability of the SSH protocol implementation in OpenSSH servers for Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow attackers to increase their privileges...

The vulnerability of the formLtefotaUpgradeQuectel function in the microprogrammed routing software of Edimax BR-6478AC allows a hacker to execute arbitrary code.

The vulnerability of the formLtefotaUpgradeQuectel function in the microprogrammed routing software of Edimax BR-6478AC is related to the failure to take measures to neutralize special elements used in the operating system’s processing of the fotaurl parameter. Exploiting this vulnerability allow...

The vulnerability of the Jenkins automation server, related to the manipulation of cross-site requests, allows a hacker to perform a CSRF attack.

The vulnerability of the Jenkins automation server relates to the manipulation of cross-site requests. Exploiting this vulnerability allows a malicious actor to execute a CSRF attack remotely...

The vulnerability of the Jenkins automation server lies in the redirection of URLs to an unreliable website, allowing attackers to redirect users to arbitrary URL addresses.

The vulnerability of the Jenkins automation server relates to the redirection of URLs to an unreliable website. Exploiting this vulnerability allows a malicious actor to redirect users to arbitrary URL addresses...

The vulnerability of the Jenkins automation server, related to insufficient protection of service data, allows a malicious actor to gain unauthorized access to protected information.

The vulnerability of the Jenkins automation server is related to insufficient protection for service data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the Jenkins automation server, related to insufficient protection of service data, allows a malicious actor to gain unauthorized access to protected information.

The vulnerability of the Jenkins automation server is related to insufficient protection for service data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the Security Zone Mapping component in Windows operating systems allows attackers to circumvent existing security restrictions.

The vulnerability of the Security Zone Mapping component in Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow attackers to circumvent existing security restrictions...

The vulnerability of the Digital Media component of Windows operating systems, which allows attackers to enhance their privileges

The vulnerability of the Digital Media component in Windows operating systems is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the eval() function in Cloud Deployment modules and the Query Tool, a database management tool for pgAdmin 4, allows a hacker to execute arbitrary code.

The vulnerability of the eval function in the Cloud Deployment and Query Tool modules of the pgAdmin 4 database management tool is related to improper code generation during processing of endpoints like /sqleditor/querytool/download and /cloud/deploy, when the querycommited and highavailability...

The vulnerability of Windows operating systems relates to the use of memory after it is freed, allowing an attacker to increase their privileges.

Vulnerabilities of Windows operating systems are related to the use of memory after it is freed. Exploiting these vulnerabilities can allow attackers to increase their privileges...

The vulnerability of the RPC Endpoint Mapper service on Windows operating systems allows attackers to escalate their privileges.

The vulnerability of the RPC Endpoint Mapper service on Windows operating systems is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...

The compatibility subsystem for running Linux applications allows Windows Subsystem for Linux (WSL) operating systems. This enables attackers to increase their privileges.

The vulnerability of the compatibility subsystem for running Linux applications in Windows Subsystem for Linux WSL operating systems is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the Microsoft Dataverse data management platform, related to deficiencies in deserialization mechanisms, allows attackers to execute arbitrary code.

The vulnerability of the Microsoft Dataverse data management platform is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of Microsoft Office, Word, and 365 Apps for Enterprise packages lies in the fact that they allow the loading of unreliable external data alongside reliable data. This allows attackers to circumvent existing security restrictions.

The vulnerability of Microsoft Office, Word, and 365 Apps for Enterprise packages lies in the loading of unreliable external data alongside reliable data. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions remotely...

The vulnerability of Windows Admin Center’s server management tool, related to incorrect external management of file names or paths, allows a perpetrator to disclose protected information.

The vulnerability of Windows Admin Center relates to incorrect external management of file names or paths. Exploiting this vulnerability can allow an attacker to disclose sensitive information that is protected by the system...

The vulnerability of the WhatsApp messaging and video call application, related to insufficient validation of input data, allows a perpetrator to execute arbitrary code and perform a spoofing attack.

The vulnerability of the WhatsApp messaging and video call application is related to insufficient validation of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code and perform a spear-phishing attack...

The vulnerability of the Gladinet CentreStack software platform for secure file sharing lies in the use of strictly encrypted user credentials, allowing a hacker to execute arbitrary code.

The vulnerability of the Gladinet CentreStack file sharing software platform lies in the use of strictly encrypted user credentials. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

Microsoft Edge browser’s vulnerability, related to the use of memory after its release, allows a hacker to execute arbitrary code.

The vulnerability of Microsoft Edge browser is related to the use of memory after it is freed. Exploiting this vulnerability can allow a remote attacker to execute arbitrary code...

The vulnerability of the Microsoft Partner Center software lies in the insufficient validation of input data, which allows attackers to escalate their privileges.

The vulnerability of the Microsoft Partner Center cloud platform is related to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to gain increased privileges remotely...

The vulnerability of the CHOCO TEI WATCHER mini’s microprogramming software, related to security mechanism errors, allows a intruder to gain access to read, modify, and delete data, as well as alter device settings.

The vulnerability of the CHOCO TEI WATCHER mini camera’s microprogramming software is related to security mechanism errors. Exploiting this vulnerability could allow an attacker, operating remotely, to gain access to read, modify, and delete data, as well as alter the device’s settings...

The vulnerability of Remote Desktop Services (RDS) for Windows operating systems allows attackers to escalate their privileges.

The vulnerability of Remote Desktop Services RDS for Windows operating systems relates to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to gain increased privileges remotely...

The vulnerability of the Apache Roller server for creating web blogs relates to incorrect session duration settings, which allows attackers to gain unauthorized access to the system.

The vulnerability of the Apache Roller server for creating web blogs is related to an incorrect session duration. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to the system remotely...

The vulnerability of the CHOCO TEI WATCHER mini’s microprogramming software, related to weak password requirements, allows attackers to perform brute-force attacks and gain unauthorized access to protected information.

The vulnerability of the CHOCO TEI WATCHER mini camera’s microprogramming software is related to weak password requirements. Exploiting this vulnerability could allow an attacker to perform a brute-force attack and gain unauthorized access to protected information...

The vulnerability of Mozilla Firefox, Firefox ESR, and the email client Thunderbird lies in the use of memory after it is freed, allowing an attacker to execute arbitrary code.

The vulnerability of Mozilla Firefox, Firefox ESR, and the email client Thunderbird relates to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the octeontx2-pf component in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the octeontx2-pf component in the Linux operating system’s kernel is related to incorrect validation of input data. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the nilfsPutPage() function in the fs/nilfs2/dir.c module of the Linux file system support module allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the nilfsputpage function in the fs/nilfs2/dir.c module of the Linux file system support module is related to the repeated use of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of...

Vulnerability of the brd_init() function in the drivers/block/brd.c module – The driver for supporting block devices in the Linux operating system, which allows an attacker to compromise the confidentiality, integrity, and accessibility of protected information.

Vulnerability of the brdinit function in the drivers/block/brd.c module – The Linux block device driver relies on the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of protected...

The vulnerability of the igen6_register_mci() function in the drivers/edac/igen6_edac.c module of the Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the igen6registermci function in the drivers/edac/igen6edac.c module of the Linux kernel is related to reclamation processes. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of protected information...

The vulnerability of the Linux operating system’s kernel’s media component, which allows a hacker to cause a service failure

The vulnerability of the Linux operating system’s kernel media component is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the Linux operating system’s crypto kernel component, which allows a hacker to trigger a service failure

The vulnerability of the Linux operating system’s crypto kernel component is related to improper error handling. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the ReadParams function in the implementation of the FastCGI protocol, provided by the fcgii2 library (fcgi), allows a hacker to execute arbitrary code.

The vulnerability of the ReadParams function in the FastCGI protocol implementation of the fcgii2 fcgi library is related to integer overflow. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending requests containing specially crafted values for parameters...

The vulnerability of the SNMP protocol implementation in Cisco IOS and IOS XE operating systems allows a intruder to trigger a service failure.

The vulnerability of the SNMP protocol implementation in Cisco IOS and IOS XE operating systems is related to access to the buffer with an incorrect length value. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

The vulnerability of the Azure Health Bot, a tool for creating and deploying intelligent chatbots in the healthcare sector, relates to a data protection mechanism breach, allowing attackers to escalate their privileges.

The vulnerability of the tool for creating and deploying intelligent chatbots in the healthcare domain, Azure Health Bot, is related to a breach in data protection mechanisms. Exploiting this vulnerability could allow an attacker, operating remotely, to enhance their privileges...

The vulnerability of the SNMP protocol implementation in Cisco IOS and IOS XE operating systems allows a intruder to trigger a service failure.

The vulnerability of the SNMP protocol implementation in Cisco IOS and IOS XE operating systems is related to access to the buffer with an incorrect length value. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

The vulnerability of the RPAC component in operating systems such as MacOS Sequoia, tvOS, visionOS, iOS, and iPadOS allows attackers to circumvent existing security restrictions.

The vulnerability of the RPAC component in macOS Sequoia, tvOS, visionOS, iOS, and iPadOS relates to reading beyond the buffer in memory. Exploiting this vulnerability can allow a malicious actor to bypass existing security restrictions remotely...

The vulnerability of the Mozilla Firefox browser and the Thunderbird email client relates to the execution of operations beyond the buffer in memory, allowing an attacker to execute arbitrary code.

The vulnerability of the Mozilla Firefox browser and the Thunderbird email client is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the SureTriggers plugin of the WordPress content management system allows attackers to create administrator accounts on the website.

The vulnerability of the SureTriggers plugin of the WordPress content management system is related to insufficient comparison. Exploiting this vulnerability could allow a malicious actor to create administrator accounts on the website...

The vulnerability of the SNMP protocol implementation in Cisco IOS, IOS XE, and Cisco IOS XR systems allows a perpetrator to trigger a service failure.

The vulnerability of SNMP protocol implementations in Cisco IOS, IOS XE, and Cisco IOS XR lies in the access to the buffer with an incorrect length value. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

The vulnerability of the SNMP protocol implementation in Cisco IOS and IOS XE operating systems allows a intruder to trigger a service failure.

The vulnerability of the SNMP protocol implementation in Cisco IOS and IOS XE operating systems is related to access to the buffer with an incorrect length value. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...