The vulnerability of the software for integrating Emarsys functions into Android mobile applications lies in its authentication mechanism’s flaws. This allows a hacker to redirect users to any desired URL address.

The vulnerability of the software for integrating Emarsys functions into Android mobile applications is related to deficiencies in the authentication mechanism. Exploiting this vulnerability could allow a hacker to redirect users to any desired URL address...

The vulnerability of the libtar package, related to reading data beyond the memory boundaries, allows an attacker to gain access to confidential information.

The vulnerability of the libtar package is related to the initiation of the malloc0 call for the gnulonglink variable. Exploiting this vulnerability may allow an attacker to gain access to confidential information...

The vulnerability of the PSL validation mechanism in the Apache HttpClient client module of Apache HttpComponents allows a attacker to perform a CSRF attack.

The vulnerability of the PSL validation mechanism in the Apache HttpClient client module of Apache HttpComponents is related to errors in the certificate authentication process. Exploiting this vulnerability can allow a malicious actor to execute a CSRF attack remotely...

The vulnerability of the data transmission function in the Nearby Share data sharing tool between Google Quick Share devices allows a perpetrator to cause a service failure.

The vulnerability of the Nearby Share data transfer function in the Google Quick Share data sharing tool is related to improper cleaning or release of resources. Exploiting this vulnerability could allow an attacker to cause service failures...

The vulnerability of the data transfer function in the Nearby Share utility allows a hacker to upload arbitrary files onto the user’s device.

The vulnerability of the “Nearby Share” data transfer function in the Google Quick Share data sharing tool relates to bypassing the authentication process. Exploiting this vulnerability could allow an attacker to upload arbitrary files onto the user’s device remotely...

The vulnerability of TOTOLINK N150RT router microprogramming software, related to copying buffers without checking the size of input data, allows a hacker to execute arbitrary code.

The vulnerability of TOTOLINK N150RT router microprogramming software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by sending a specially crafted POST request...

The vulnerability of the software for Hitachi Energy’s equipment control and management systems, Hitachi Energy MicroSCADA X SYS600 and Pro SYS600, arises from incorrect restrictions on the path name to the restricted-access catalog. This allows attackers to gain access to read, modify, and delete system files.

The vulnerability of the software for controlling and managing equipment in Hitachi Energy’s MicroSCADA X SYS600 and Pro SYS600 systems lies in improper restrictions on the path name to the restricted-access catalog. Exploiting this vulnerability could allow a malicious actor to gain read, modify...

The vulnerability of the get_znodes_to_commit() function in the fs/ubifs/tnc_commit.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the getznodestocommit function in the fs/ubifs/tnccommit.c module of the Linux operating system is related to the repeated use of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of...

The vulnerability of the del_gendisk() function in the block/blk-sysfs.c module of the Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the delgendisk function in the block/blk-sysfs.c module of the Linux kernel is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...

The vulnerability of the software for the Hitachi Energy MicroSCADA X SYS600 and Pro SYS600 systems lies in the improper neutralization of certain components, allowing a intruder to execute arbitrary code.

The vulnerability of the software for controlling and managing equipment in Hitachi Energy’s MicroSCADA X SYS600 and Pro SYS600 systems is related to improper neutralization of certain components. Exploiting this vulnerability could allow a malicious actor to execute arbitrary codes remotely...

The vulnerability of the `ocfs2_global_read_info()` function in the `/fs/ocfs2/quota_local.c` module of the Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the ocfs2globalreadinfo function in the /fs/ocfs2/quotalocal.c module of the Linux kernel is related to incorrect resource initialization. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...

The vulnerability of the register_intc_controller() function in the drivers/sh/intc/core.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the registerintccontroller function in the drivers/sh/intc/core.c file of the Linux kernel is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...

The vulnerability of the hvs_destruct() function in the net/vmw_vsock/hyperv_transport.c module of the Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the hvsdestruct function in the net/vmwvsock/hypervtransport.c module of the Linux kernel is related to the assignment of the NULL pointer. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...

The vulnerability of the nfs4_open_release() function in the fs/nfs/nfs4proc.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the nfs4openrelease function in the fs/nfs/nfs4proc.c module of the Linux operating system is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of...

The vulnerability of the ___do_page_fault() function in the arch/powerpc/mm/fault.c module of the PowerPC platform support for the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the dopagefault function in the arch/powerpc/mm/fault.c module of the PowerPC platform support for the Linux operating system is related to the repeated use of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...

The vulnerability of the xen_9pfs_front_free() function in the net/9p/trans_xen.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the xen9pfsfrontfree function in the net/9p/transxen.c module of the Linux operating system is related to the repeated release of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility ...

The vulnerability of function 0x45C380() in Tenda AC10 router software allows a hacker to execute arbitrary code.

The vulnerability of function 0x45C380 in Tenda AC10 router microprogramming software is related to the operation of writing data outside the buffer in memory when processing the parameter wanMTU2. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the UnlockTcmSettings method in the software for managing and monitoring deleted objects in telemetering and telemechanics systems allows a perpetrator to circumvent security restrictions and gain access to write and read arbitrary files.

The vulnerability of the UnlockTcmSettings method in the software for managing and monitoring removed objects in Telemetry and Telemechanics systems is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to bypass securi...

The vulnerability of NVIDIA NeMo’s integrated platform for training and applying neural networks in speech processing and natural language processing lies in errors in the processing of the relative path to the catalog. This allows attackers to execute arbitrary code.

The vulnerability of NVIDIA NeMo’s integrated platform for training and applying neural networks in speech processing and natural language processing is related to errors in processing the relative path to the catalog. Exploiting this vulnerability can allow attackers to execute arbitrary code...

The vulnerability of the UnlockProjectUserRights method in the software for managing and monitoring removed objects in telemetry and telemechanics systems, such as the TeleControl Server Basic, allows a hacker to circumvent security restrictions and gain access to write and read arbitrary files.

The vulnerability of the UnlockProjectUserRights method in the software for managing and monitoring removed objects in telemetry and telemechanics systems related to the TeleControl Server Basic is linked to the lack of measures taken to protect the SQL query structure. Exploiting this...

The vulnerability of the UnlockBufferingSettings method in the software for managing and monitoring removed objects in telemetry and telemechanics systems, such as the TeleControl Server Basic, allows a hacker to circumvent security restrictions and gain access to write and read arbitrary files.

The vulnerability of the UnlockBufferingSettings method in the software for managing and monitoring removed objects in telemetry and telemechanics systems related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows an attacker to bypass security...

The vulnerability of the UnlockDatabaseSettings method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems, allows a hacker to circumvent security restrictions and gain access to write and read arbitrary files.

The vulnerability of the UnlockDatabaseSettings method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows an attacker to bypass security...

The vulnerability of the LockDatabaseSettings method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems, allowing a hacker to circumvent security restrictions and gain access to write and read arbitrary files.

The vulnerability of the LockDatabaseSettings method in software for managing and monitoring deleted objects in telemetry and telemechanics systems related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to bypass security...

The vulnerability of the LockGeneralSettings method in the software for managing and monitoring remote objects in telemetry and telemechanics systems, such as the TeleControl Server Basic, allows a hacker to circumvent security restrictions and gain access to write and read arbitrary files.

The vulnerability of the LockGeneralSettings method in the software for managing and monitoring remote objects in telemetry and telemechanics systems, such as the TeleControl Server Basic, is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability...

The vulnerability of the UnlockUser method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems of the TeleControl Server Basic allows a hacker to circumvent security restrictions and gain access to write and read arbitrary files.

The vulnerability of the UnlockUser method in software for managing and monitoring remote devices in telemetry and telemechanics systems related to the lack of security measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to bypass security...

The vulnerability of the LockGateway method in the software for managing and monitoring remote devices in telemetry and telemechanics systems allows a hacker to bypass security restrictions and gain access to write and read arbitrary files.

The vulnerability of the LockGateway method in software for managing and monitoring remote devices in telemetry and telemechanics systems is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to bypass security restrictio...

The vulnerability of the NVIDIA Riva multilingual speech processing and translation tools is related to access control deficiencies, which allow attackers to escalate their privileges, gain unauthorized access to protected information, or cause service failures.

The vulnerability of the NVIDIA Riva multilingual speech processing and translation tools is related to deficiencies in access control. Exploiting this vulnerability can allow unauthorized actors to enhance their privileges, gain unauthorized access to protected information, or cause service...

The vulnerability of the NVIDIA Riva multilingual speech processing and translation tools is related to access control deficiencies, which allow attackers to trigger service failures.

The vulnerability of the NVIDIA Riva multilingual speech processing and translation tools is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to cause service failures...

The vulnerability in the web interface for managing Tenda FH1202 micro-program software routers allows a hacker to escalate their privileges.

The vulnerability of the web-based management interface for Tenda FH1202 micro-programmed routing software is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to enhance their privileges by sending specially crafted POST requests...

The vulnerability of function 0x41737c() in D-Link DIR-832x router microprogramming software allows a attacker to execute arbitrary commands.

The vulnerability of function 0x41737c in D-Link DIR-832x router microprogramming software is related to the failure to take measures to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

The vulnerability of function 0x41710c() in D-Link DIR-832x router microprogramming software allows a hacker to execute arbitrary commands.

The vulnerability of function 0x41710c in D-Link DIR-832x router microprogramming software is related to the failure to take measures to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

The vulnerability in the Splunk Web platform for operational analysis of Splunk Enterprise’s web interface allows attackers to bypass security restrictions, increase their privileges, and execute arbitrary commands.

The vulnerability in the Splunk Web platform for operational analysis in Splunk Enterprise relates to insufficient protection of sensitive data when processing the /services/streams/search endpoint with the q parameter. Exploiting this vulnerability allows an attacker to bypass security...

The vulnerability in the interface for connecting peripheral devices via USB browsers like Google Chrome and Microsoft Edge allows a hacker to induce a service failure.

The vulnerability of the interface for connecting peripheral devices in Google Chrome and Microsoft Edge browsers is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to cause a service failure through a specially created HTML page...

The vulnerability of the SetQuantumFormat() function in the ImageMagick console-based graphics editor allows a hacker to cause a service failure.

The vulnerability of the SetQuantumFormat function in the ImageMagick console-based graphics editor is related to incorrect calculation of buffer size during processing of received packets. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the UNI-NMS-Lite network management system, which stems from the use of rigidly encrypted account data, allows a hacker to elevate their privileges to the level of an administrator.

The vulnerability of the UNI-NMS-Lite network management system is related to the use of strictly encrypted account data. Exploiting this vulnerability can allow a malicious actor to elevate their privileges to the level of an administrator...

The vulnerability of the microprogramming software of the Guangzhou 1GE ONU terminals V2801RW and V2804RGW arises from the failure to take measures to neutralize special elements used in the operating system commands. This allows attackers to execute arbitrary operating system commands.

The vulnerability of the microprogramming software in the Guangzhou 1GE ONU V2801RW and V2804RGW subscriber terminals is related to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a malicious actor to execute...

The vulnerability of the UpdateConnectionVariableArchivingBuffering method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the UpdateConnectionVariableArchivingBuffering method in software for managing and monitoring deleted objects in telemetry and telemechanics systems is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious act...

The vulnerability of the UpdateConnectionVariablesWithImport method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems, allowing a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the UpdateConnectionVariablesWithImport method in software for managing and monitoring deleted objects in telemetry and telemechanics systems is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to...

The vulnerability of the LockProjectUserRights method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems, allowing a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the LockProjectUserRights method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows an attacker to compromise the...

The vulnerability of the UpdateProjectUserRights method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems, allowing a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the UpdateProjectUserRights method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows an attacker to compromise the...

The vulnerability of the LockWebServerGatewaySettings method in the software for managing and monitoring remote devices in telemetry and telemechanics systems allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the LockWebServerGatewaySettings method in the software for managing and monitoring remote devices in telemetry and telemechanics systems is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to...

The vulnerability of the LockOpcSettings method in the software for managing and monitoring remote devices in telemetry and telemechanics systems allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the LockOpcSettings method in the software for managing and monitoring remote devices in telemetry and telemechanics systems is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to compromise the...

The vulnerability of the GetGateways method in the software for managing and monitoring remote devices in telemetry and telemechanics systems allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the GetGateways method in the software for managing and monitoring remote devices in telemetering and telemechanics systems is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to compromise the...

The vulnerability of the LockSmtpSettings method in the software for managing and monitoring remote devices in telemetry and telemechanics systems allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the LockSmtpSettings method in the software for managing and monitoring remote devices in telemetry and telemechanics systems is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to compromise the...

The vulnerability of the UnlockGeneralSettings method in the software for managing and monitoring remote objects in telemetering and telemechanics systems allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the UnlockGeneralSettings method in the software for managing and monitoring remote devices in telemetering and telemechanics systems is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to...

The vulnerability of the UpdateGeneralSettings method in the software for managing and monitoring removed objects in telemetry and telemechanics systems, allowing a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the UpdateGeneralSettings method in the software for managing and monitoring removed objects in telemetering and telemechanics systems is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to compromi...

The vulnerability of the ImportConnectionVariables method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems, allowing a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the ImportConnectionVariables method in software for managing and monitoring remote objects in telemetry and telemechanics systems is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows an attacker to compromise the...

The vulnerability of the GetActiveConnectionVariables method in the software for managing and monitoring remote objects in telemetry and telemechanics systems allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the GetActiveConnectionVariables method in software for managing and monitoring remote objects in telemetry and telemechanics systems is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to compromis...

The vulnerability of the GetConnectionVariables method in the software for managing and monitoring remote objects in telemetry and telemechanics systems allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the GetConnectionVariables method in software for controlling and monitoring remote objects in telemetry and telemechanics systems is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to compromise t...

The vulnerability of the MetadataUploader function in the Visual Composer tool of the SAP NetWeaver software integration platform allows a hacker to execute arbitrary code.

The vulnerability of the MetadataUploader function in the Visual Composer software integration platform of SAP NetWeaver lies in the ability to upload executable files without limitation. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code by sending a specially...