131179 matches found
Adobe Framemaker Out-of-Bounds Read Vulnerability (CNVD-2026-19997)
Adobe Framemaker is the United States of America Odooby Adobe company's set of page layout software for writing and editing large or complex documents including structured documents. Adobe Framemaker suffers from an out-of-bounds read vulnerability that could be exploited by an attacker to cause...
Adobe Illustrator Out-of-Bounds Write Vulnerability (CNVD-2026-19438)
Adobe Illustrator is a set of vector-based image creation software from the American company Audobee Adobe. An out-of-bounds write vulnerability exists in Adobe Illustrator, which can be exploited by an attacker to execute arbitrary code on a system...
Adobe InDesign Desktop Out-of-Bounds Read Vulnerability (CNVD-2026-19442)
Adobe InDesign Desktop is a page layout software from the American company Audobee Adobe. Adobe InDesign Desktop suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to execute arbitrary code on the system...
Adobe InDesign Desktop Heap Buffer Overflow Vulnerability (CNVD-2026-19441)
Adobe InDesign Desktop is a page layout software from the American company Audobee Adobe. Adobe InDesign Desktop suffers from a heap buffer overflow vulnerability that can be exploited by an attacker to cause an application crash or denial of service...
Adobe DNG SDK Out-of-Bounds Write Vulnerability (CNVD-2026-19444)
Adobe DNG SDK is the United States of America Audobee Adobe company's a software development kit to provide the ability to read and write DNG files. An out-of-bounds write vulnerability exists in Adobe DNG SDK, which can be exploited by an attacker to cause a denial of service in an application...
Adobe Connect Cross-Site Scripting Vulnerability (CNVD-2026-19445)
Adobe Connect is a software for creating meeting environments from the American company Audobee Adobe. Adobe Connect suffers from a cross-site scripting vulnerability that can be exploited by an attacker to execute malicious JavaScript in the context of the victim's browser by manipulating the DO...
Adobe InDesign Desktop Memory Misreference Vulnerability
Adobe InDesign Desktop is a page layout software from the American company Audobee Adobe. A memory misreference vulnerability exists in Adobe InDesign Desktop, which can be exploited by an attacker to execute arbitrary code on the system...
Adobe InDesign Desktop Heap Buffer Overflow Vulnerability (CNVD-2026-19446)
Adobe InDesign Desktop is a page layout software from the American company Audobee Adobe. Adobe InDesign Desktop suffers from a heap buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code on the system or cause the application to crash...
Adobe Connect Cross-Site Scripting Vulnerability (CNVD-2026-18680)
Adobe Connect is a software for creating meeting environments from the American company Audobee Adobe. Adobe Connect suffers from a cross-site scripting vulnerability that is caused by improper validation of user-supplied input. An attacker could exploit the vulnerability to steal the victim's...
Adobe Connect Cross-Site Scripting Vulnerability (CNVD-2026-18678)
Adobe Connect is a software for creating meeting environments from the American company Audobee Adobe. Adobe Connect suffers from a cross-site scripting vulnerability that is caused by improper validation of user-supplied input. An attacker could exploit the vulnerability to steal the victim's...
Adobe InDesign Desktop Heap Buffer Overflow Vulnerability (CNVD-2026-17785)
Adobe InDesign Desktop is a page layout software from the American company Audobee Adobe. Adobe InDesign Desktop suffers from a heap buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code on the system or cause the application to crash...
Adobe Bridge heap buffer overflow vulnerability (CNVD-2026-17742)
Adobe Bridge is a file viewer from the American company Audobee Adobe. Adobe Bridge suffers from a heap buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code on a system or cause an application to crash...
Adobe Framemaker Numeric Error Vulnerability (CNVD-2026-19995)
Adobe Framemaker is a professional desktop publishing software for creating and editing large technical documents. A numeric error vulnerability exists in Adobe Framemaker, which can be exploited by an attacker to cause arbitrary code to be executed in the current user's environment...
Adobe Framemaker Untrusted Search Path Vulnerability
Adobe Framemaker is the United States of America Odooby Adobe company's set of page layout software for writing and editing large or complex documents including structured documents. An untrusted search path vulnerability exists in Adobe Framemaker, which could be exploited by an attacker to caus...
Adobe Framemaker Numeric Error Vulnerability (CNVD-2026-19994)
Adobe Framemaker is the United States of America Odooby Adobe company's set of page layout software for writing and editing large or complex documents including structured documents. A numeric error vulnerability exists in Adobe Framemaker, which can be exploited by an attacker to cause arbitrary...
Schneider Electric PowerChute Serial Shutdown Log Message Disclosure Vulnerability
Schneider Electric PowerChute Serial Shutdown is a UPS management, normal shutdown and energy management software from Schneider Electric France. Schneider Electric PowerChute Serial Shutdown suffers from a log information disclosure vulnerability that can be exploited by an attacker to cause a W...
Schneider Electric PowerChute Serial Shutdown Security Bypass Vulnerability (CNVD-2026-18328)
Schneider Electric PowerChute Serial Shutdown is a UPS management, normal shutdown and energy management software from Schneider Electric France. A security bypass vulnerability exists in Schneider Electric PowerChute Serial Shutdown that stems from improper validation of a specified number of...
Fortinet FortiWeb input validation error vulnerability (CNVD-2026-25596)
Fortinet FortiWeb is a Web Application Firewall WAF product, primarily used to protect web applications from various attacks. Fortinet FortiWeb has a security vulnerability. This vulnerability stems from improper handling of certain data. Attackers can exploit this vulnerability to trigger a...
Fortinet FortiSandbox Cross-site Scripting Vulnerability (CNVD-2026-25595)
Fortinet FortiSandbox is a advanced threat protection solution, primarily used for detecting and analyzing malware and unknown threats. Fortinet FortiSandbox has a cross-site scripting vulnerability. This vulnerability stems from the failure to properly neutralize user inputs during web page...
Schneider Electric PowerChute Serial Shutdown Resource Management Error Vulnerability
Schneider Electric PowerChute Serial Shutdown is a UPS management, normal shutdown and energy management software from Schneider Electric France. Schneider Electric PowerChute Serial Shutdown suffers from a Resource Management Error vulnerability that stems from uncontrolled resource consumption,...
Adobe Framemaker Input Validation Error Vulnerability (CNVD-2026-19992)
Adobe Framemaker is the United States of America Odooby Adobe company's set of page layout software for writing and editing large or complex documents including structured documents. An input validation error vulnerability exists in Adobe Framemaker, which can be exploited by an attacker to cause...
FFmpeg av_bprint_finalize() function heap buffer overflow vulnerability
FFmpeg is an open source software library for processing multimedia data. A heap buffer overflow vulnerability exists in FFmpeg. The vulnerability stems from the avbprintfinalize function failing to properly handle specially crafted input and can be exploited by an attacker to cause a denial of...
Huawei HarmonyOS File System Out-of-Bounds Write Vulnerability
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. An out-of-bounds write vulnerability exists in the Huawei HarmonyOS file system, which can be exploited by an attacker to cause availability to be compromise...
Huawei HarmonyOS and EMUI LBS module privilege bypass access vulnerability
Huawei HarmonyOS is an operating system from Huawei, a Chinese company. It provides a full-scenario distributed operating system based on a microkernel.Huawei EMUI is a user interface developed by Huawei based on the Android operating system. A privilege bypass access vulnerability exists in Huaw...
Huawei HarmonyOS and EMUI kernel module memory misreference vulnerability (CNVD-2026-17177)
Huawei HarmonyOS is an operating system from Huawei, a Chinese company. It provides a full-scenario distributed operating system based on a microkernel.Huawei EMUI is a user interface developed by Huawei based on the Android operating system. A memory misreference vulnerability exists in Huawei...
WordPress Plugin User Registration & Membership Input Validation Error Vulnerability
WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. WordPress plugin User Registration & Membership has an input validation error vulnerability tha...
Huawei HarmonyOS Communication Module Memory Misreference Vulnerability (CNVD-2026-20003)
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A memory misreference vulnerability exists in the Huawei HarmonyOS communication module, which can be exploited by an attacker to cause availability to be...
Huawei HarmonyOS Screen Management Module Memory Misreference Vulnerability
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A memory misreference vulnerability exists in the Huawei HarmonyOS screen management module, which can be exploited by an attacker to cause availability to b...
Huawei HarmonyOS Media Platform Stack Overflow Vulnerability
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A stack overflow vulnerability exists in the Huawei HarmonyOS media platform, which can be exploited by an attacker to cause availability to be compromised...
TOTOLINK A7000R cstecgi.cgi setWiFiEasyGuestCfg function ssid5g parameter stack buffer overflow vulnerability
TOTOLINK A7000R is a wireless router product that is mainly used to provide network connectivity and Wi-Fi access. TOTOLINK A7000R suffers from a stack buffer overflow vulnerability. The vulnerability stems from the setWiFiEasyGuestCfg function in the /cgi-bin/cstecgi.cgi file failing to properly...
Totolink A3002MU formWlanSetup file wan-url parameter stack buffer overflow vulnerability
Totolink A3002MU is a wireless router product that provides network connectivity and wireless access. A stack buffer overflow vulnerability exists in the Totolink A3002MU. The vulnerability stems from a failure to properly handle the wan-url parameter in the HTTP request handling component, which...
Huawei HarmonyOS Memo Module Access Control Vulnerability
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. An access control vulnerability exists in the Huawei HarmonyOS memoization module, which can be exploited by an attacker to cause confidentiality and...
Huawei HarmonyOS Communication Module Memory Misreference Vulnerability
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A memory misreference vulnerability exists in the Huawei HarmonyOS communication module, which can be exploited by an attacker to cause availability to be...
Huawei HarmonyOS Application Read Module Boundary Unrestricted Vulnerability
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A boundary-unlimited vulnerability exists in the Huawei HarmonyOS application read module, which can be exploited by an attacker to cause availability to be...
Huawei HarmonyOS Thermal Management Module Competitive Conditions Vulnerability
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A competitive condition vulnerability exists in the Huawei HarmonyOS thermal management module that can be exploited by an attacker to cause availability to ...
Huawei HarmonyOS and EMUI kernel module out-of-bounds write vulnerability
Huawei HarmonyOS is an operating system from Huawei, a Chinese company. It provides a full-scenario distributed operating system based on a microkernel.Huawei EMUI is a user interface developed by Huawei based on the Android operating system. An out-of-bounds write vulnerability exists in the...
Huawei HarmonyOS Communication Module Memory Misreference Vulnerability (CNVD-2026-20004)
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A memory misreference vulnerability exists in the Huawei HarmonyOS communication module, which can be exploited by an attacker to cause availability to be...
Huawei HarmonyOS WEB Module Out-of-Bounds Write Vulnerability
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. An out-of-bounds write vulnerability exists in the Huawei HarmonyOS WEB module, which can be exploited by an attacker to compromise confidentiality and...
Huawei HarmonyOS WEB module out-of-bounds write vulnerability (CNVD-2026-17169)
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. An out-of-bounds write vulnerability exists in the Huawei HarmonyOS WEB module, which can be exploited by an attacker to compromise confidentiality and...
Huawei HarmonyOS Notification Service Competitive Conditions Vulnerability
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A competitive condition vulnerability exists in the Huawei HarmonyOS notification service, which can be exploited by attackers to cause availability to be...
WordPress Plugin Product Filter for WooCommerce by WBW Has Unspecified Vulnerability
WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. A security vulnerability exists in the WordPress plugin Product Filter for WooCommerce by WBW,...
Huawei HarmonyOS multi-mode input system double release vulnerability
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A double-release vulnerability exists in the Huawei HarmonyOS multi-mode input system, which can be exploited by an attacker to cause an availability impact...
Huawei HarmonyOS Power Consumption Statistics Module Competitive Conditions Vulnerability
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A competitive condition vulnerability exists in the Huawei HarmonyOS Power Consumption Statistics module, which can be exploited by an attacker to cause...
Huawei HarmonyOS and EMUI kernel module memory misreference vulnerability
Huawei HarmonyOS is an operating system from Huawei, a Chinese company. It provides a full-scenario distributed operating system based on a microkernel.Huawei EMUI is a user interface developed by Huawei based on the Android operating system. A memory misreference vulnerability exists in Huawei...
Huawei HarmonyOS Event Notification Module Competitive Condition Vulnerability
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A contention condition vulnerability exists in the Huawei HarmonyOS event notification module, which stems from a failure of the event notification module to...
Tenda F456 fromNatStaticSetting Parameter Stack Buffer Overflow Vulnerability
Tenda F456 is a home wireless router product that is mainly used to provide wireless network access and network management functions. The Tenda F456 suffers from a stack buffer overflow vulnerability. The vulnerability stems from the failure of the fromNatStaticSetting function in...
FFmpeg read_global_param() function out-of-bounds read vulnerability
FFmpeg is an open source software library for processing multimedia data. An out-of-bounds read vulnerability exists in FFmpeg. The vulnerability stems from a failure of the readglobalparam function to properly handle specially crafted input, which can be exploited by an attacker to cause a denia...
Tenda F451 SetIpBind fromSetIpBind page parameter stack buffer overflow vulnerability
Tenda F451 is a wireless router product that provides network connectivity and wireless coverage. The Tenda F451 suffers from a stack buffer overflow vulnerability. The vulnerability stems from the failure of the fromSetIpBind function in /goform/SetIpBind to properly handle the page parameter,...
Discourse authorization issue vulnerability (CNVD-2026-17262)
Discourse is Discourse open source set of open source community discussion platform. The platform includes features such as community , e-mail and chat rooms . Discourse is vulnerable to an authorization issue. The vulnerability stems from the fact that a user who loses access to a topic can stil...
Discourse cross-site scripting vulnerability (CNVD-2026-17253)
Discourse is Discourse open source set of open source community discussion platform. The platform includes features such as community , e-mail and chat rooms . Discourse suffers from a cross-site scripting vulnerability that can be exploited by an attacker to inject arbitrary HTML and JavaScript...