Google Pixel Information Leakage Vulnerability

Google Pixel is a smartphone from the American company Google Google. Google Pixel has an information disclosure vulnerability that can be exploited by an attacker to cause out-of-bounds reads...

GNU coreutils buffer overflow vulnerability

GNU coreutils is a core toolset of the GNU community. GNU coreutils suffers from a buffer overflow vulnerability that originates from a boundary error in the function begfield in the sort tool when handling untrusted input, which can be exploited by an attacker to cause a crash or data disclosure...

D-Link DCS-5020L Buffer Overflow Vulnerability

D-Link DCS-5020L is a DCS series IP camera from China AUO D-Link. The D-Link DCS-5020L suffers from a buffer overflow vulnerability, which originates from the parameter Authorization in the file /rame/ptdc.cgi that fails to correctly validate the length of the input data, which can be exploited b...

File Upload Vulnerability in UFIDA U8+ at UFIDA Network Technology Co.

UFIDA U8+ is a complete enterprise-level ERP software. A file upload vulnerability exists in UFIDA U8+, which can be exploited by attackers to upload malicious files and gain server privileges...

Planet FW-WGS-804HPT web_sys_infoContact_post Function Buffer Overflow Vulnerability

Planet FW-WGS-804HPT is a wall mounted managed switch from China PLANET. The Planet FW-WGS-804HPT suffers from a buffer overflow vulnerability that originates from the websysinfoContactpost function failing to correctly validate the length of the input data, which can be exploited by an attacker ...

Samsung MagicINFO 9 Server Path Traversal Vulnerability

Samsung MagicINFO 9 Server is a core component of the MagicINFO solution and is responsible for content management and scheduling functions. A path traversal vulnerability exists in Samsung MagicINFO 9 Server, which stems from an improperly restricted pathname, and can be exploited by an attacker...

Siemens SCALANCE LPE9403 Security Bypass Vulnerability (CNVD-2025-17603)

Siemens SCALANCE LPE9403 is a local processing engine for industrial field data processing from Siemens. It is used to capture, collect and pre-process industrial field data. A security bypass vulnerability exists in the Siemens SCALANCE LPE9403 that stems from improper assignment of critical...

WAVLINK WL-WN579A3 /cgi-bin/qos.cgi Component Command Injection Vulnerability

WAVLINK WL-WN579A3 is a high performance dual-band wireless card from China RuiYin WAVLINK. The WAVLINK WL-WN579A3 suffers from a command injection vulnerability that originates from unfiltered input in the /cgi-bin/qos.cgi component, no details of the vulnerability are provided at this time...

IBM Security ReaQta EDR Trust Management Issues Vulnerability

IBM Security ReaQta EDR is an Endpoint Detection and Response EDR solution from International Business Machines IBM that detects, investigates and responds to endpoint threats in real time through behavioral analytics and AI technology, providing automated threat hunting and incident response...

VMware Cloud Foundation License Issue Vulnerability

VMware Cloud Foundation is an all-in-one hybrid cloud platform from VMware. The platform includes features such as operations automation, infrastructure auto-configuration and integrated lifecycle management. VMware Cloud Foundation suffers from an authorization issue vulnerability that stems fro...

Planet FW-WGS-804HPT web_snmpv3_remote_engineId_add_post function buffer overflow vulnerability

Planet FW-WGS-804HPT is a wall mounted managed switch from Planet China. The Planet FW-WGS-804HPT suffers from a buffer overflow vulnerability that originates from the failure of the remoteip parameter in the websnmpv3remoteengineIdaddpost function to properly validate the length of the input dat...

Planet FW-WGS-804HPT web_snmp_notifyv3_add_post function buffer overflow vulnerability

Planet FW-WGS-804HPT is a wall mounted managed switch from China PLANET. The Planet FW-WGS-804HPT suffers from a buffer overflow vulnerability that originates from the hostip parameter in the websnmpnotifyv3addpost function failing to correctly validate the length of the input data, which can be...

Planet FW-WGS-804HPT web_radiusSrv_post function buffer overflow vulnerability

Planet FW-WGS-804HPT is a wall mounted managed switch from China PLANET. The Planet FW-WGS-804HPT suffers from a buffer overflow vulnerability that originates from the failure of the radIpkey parameter in the webradiusSrvpost function to correctly validate the length of the input data, which can ...

JetBrains YouTrack Access Control Error Vulnerability

JetBrains YouTrack is a browser-based bug tracking and project management software from the Czech company JetBrains. The software features bug tracking, creating workflows and monitoring project progress. JetBrains YouTrack suffers from an Access Control Error vulnerability that stems from a lack...

SAP Business Objects Business Intelligence Platform Access Control Error Vulnerability (CNVD-2025-12752)

SAP Business Objects Business Intelligence Platform is a suite of business intelligence software and enterprise performance solutions from SAP, Germany. The product features report generation, analytics, and data visualization. An access control error vulnerability exists in SAP Business Objects...

JetBrains YouTrack Access Control Error Vulnerability

JetBrains YouTrack is a project management tool developed by JetBrains that supports cloud hosting and local deployment. JetBrains YouTrack suffers from an Access Control Error vulnerability that stems from the disclosure of restricted attachments during a cloning issue, which can be exploited by...

Intel Graphics Driver Out-of-Bounds Write Vulnerability

Intel Graphics Driver is Intel's official driver for users of Arc series graphics cards, Iris Xe graphics cards and Core Ultra processors with Arc GPUs. An out-of-bounds write vulnerability exists in Intel Graphics Driver, which can be exploited by an attacker to cause a local denial of service...

Siemens SCALANCE LPE9403 OS Command Injection Vulnerability (CNVD-2025-17604)

Siemens SCALANCE LPE9403 is a local processing engine for industrial field data processing from Siemens. It is used to capture, collect and pre-process industrial field data. The Siemens SCALANCE LPE9403 suffers from an operating system command injection vulnerability that originates from...

VMware Cloud Foundation Directory Traversal Vulnerability

VMware Cloud Foundation is an all-in-one hybrid cloud platform from VMware. The platform includes features such as operations automation, infrastructure auto-configuration and integrated lifecycle management. A directory traversal vulnerability exists in VMware Cloud Foundation, which stems from ...

Intel Processors Information Disclosure Vulnerability

Intel Processors is a family of processors produced by Intel Corporation, covering a wide range of laptop, desktop, workstation, and server applications, providing basic to professional-level performance support. Intel Processors suffers from an information disclosure vulnerability that stems fro...

Siemens SCALANCE LPE9403 Out-of-Bounds Read Vulnerability (CNVD-2025-17599)

Siemens SCALANCE LPE9403 is a local processing engine for industrial field data processing from Siemens. It is used to capture, collect and pre-process industrial field data. The siemens SCALANCE LPE9403 suffers from an out-of-bounds read vulnerability due to an affected device failing to properl...

JetBrains TeamCity Input Validation Error Vulnerability

JetBrains TeamCity is a set of distributed build management and continuous integration tools from the Czech company JetBrains. The tool provides continuous unit testing, code quality analysis and build problem analysis reports and other features. JetBrains TeamCity suffers from an input validatio...

Intel QAT software code issue vulnerability

Intel QAT software refers to the collection of software components that support Intel QuickAssist technology. A code issue vulnerability exists in Intel QAT software that stems from an uncontrolled search path that can be exploited by an attacker to cause a local elevation of privilege...

Siemens SCALANCE LPE9403 Out-of-Bounds Read Vulnerability

Siemens SCALANCE LPE9403 is a local processing engine for industrial field data processing from Siemens. It is used to capture, collect and pre-process industrial field data. The Siemens SCALANCE LPE9403 suffers from an out-of-bounds read vulnerability due to the inability of an affected device t...

SAP Landscape Transformation Authorization Issues Vulnerability

SAP Landscape Transformation is a tool for system data migration and integration from SAP. An authorization issue vulnerability exists in SAP Landscape Transformation that stems from a lack of authorization checks and could be exploited by an attacker to access restricted functionality or data...

Schneider Electric EcoStruxure Power Build Rapsody Stack Buffer Overflow Vulnerability

Schneider Electric EcoStruxure Power Build Rapsody is a power monitoring platform from Schneider Electric France. Schneider Electric EcoStruxure Power Build Rapsody suffers from a stack buffer overflow vulnerability that can be exploited by an attacker to achieve arbitrary code execution on an...

Intel Xeon 6 Processor Improper Access Control Vulnerability

The Intel Xeon 6 Processor is a new generation of server processors from Intel aimed at data centers, artificial intelligence AI and high performance computing HPC. The Intel Xeon 6 Processor suffers from an improper access control vulnerability that stems from improper access control of the memo...

Intel Xeon 6 Processor Elevation of Privilege Vulnerability

The Intel Xeon 6 Processor is a new generation of server processors from Intel aimed at data centers, artificial intelligence AI and high performance computing HPC. The Intel Xeon 6 Processor suffers from an elevation of privilege vulnerability that stems from insufficient control flow management...

Intel Processors Denial of Service Vulnerability (CNVD-2025-21345)

Intel Processors is a family of processors produced by Intel Corporation, covering a wide range of laptop, desktop, workstation, and server applications, providing basic to professional-level performance support. A denial of service vulnerability exists in Intel Processors that stems from an...

Intel Data Center GPU Flex Series Buffer Overflow Vulnerability

Intel Data Center GPU Flex Series is Intel's high-performance GPU solution for data centers, mainly serving cloud gaming, AI visual inference, media processing and other scenarios. The Intel Data Center GPU Flex Series suffers from a buffer overflow vulnerability that originates from a boundary...

Intel Data Center GPU Flex Series Access Control Error Vulnerability

Intel Data Center GPU Flex Series is Intel's high-performance GPU solution for data centers, mainly serving cloud gaming, AI visual inference, media processing and other scenarios. The Intel Data Center GPU Flex Series suffers from an Access Control Error vulnerability that stems from improper...

Netgear DGND3700 Improper Authentication Vulnerability

The Netgear DGND3700 is a dual-band Gigabit wireless DSL router manufactured by NETGEAR and is primarily used for home and SMB network connections. The Netgear DGND3700 suffers from an improper authentication vulnerability that originates in an unknown portion of Basic Authentication's file...

Siemens APOGEE PXC+TALON TC Series Denial of Service Vulnerability

Siemens APOGEE PXC+TALON TC Series is a series of core controllers for building automation systems from Siemens Germany. A denial of service vulnerability exists in the Siemens APOGEE PXC+TALON TC Series, which can be exploited by an attacker to cause a denial of service due to an unsolicited...

Siemens SCALANCE LPE9403 Information Disclosure Vulnerability (CNVD-2025-17602)

Siemens SCALANCE LPE9403 is a local processing engine for industrial field data processing from Siemens. It is used to capture, collect and pre-process industrial field data. The Siemens SCALANCE LPE9403 suffers from an information disclosure vulnerability that originates from the transmission of...

Siemens SCALANCE LPE9403 Path Traversal Vulnerability (CNVD-2025-17601)

Siemens SCALANCE LPE9403 is a local processing engine for industrial field data processing from Siemens. It is used to capture, collect and pre-process industrial field data. A path traversal vulnerability exists in the Siemens SCALANCE LPE9403, which can be exploited by an attacker to cause a...

Siemens SCALANCE LPE9403 Denial of Service Vulnerability

Siemens SCALANCE LPE9403 is a local processing engine for industrial field data processing from Siemens. It is used to capture, collect and pre-process industrial field data. A denial of service vulnerability exists in the Siemens SCALANCE LPE9403, which stems from not properly validating Profine...

Siemens SCALANCE LPE9403 Information Disclosure Vulnerability

Siemens SCALANCE LPE9403 is a local processing engine for industrial field data processing from Siemens. It is used to capture, collect and pre-process industrial field data. An information disclosure vulnerability exists in the Siemens SCALANCE LPE9403 6GK5998-3GS00-2AC2, which can be exploited ...

Siemens SCALANCE LPE9403 Stack Buffer Overflow Vulnerability (CNVD-2025-17597)

Siemens SCALANCE LPE9403 is a local processing engine for industrial field data processing from Siemens. It is used to capture, collect and pre-process industrial field data. The Siemens SCALANCE LPE9403 suffers from a stack buffer overflow vulnerability that can be exploited by an attacker to...

Siemens SCALANCE LPE9403 Stack Buffer Overflow Vulnerability

Siemens SCALANCE LPE9403 is a local processing engine for industrial field data processing from Siemens. It is used to capture, collect and pre-process industrial field data. The Siemens SCALANCE LPE9403 suffers from a stack buffer overflow vulnerability that can be exploited by an attacker to...

Siemens SCALANCE LPE9403 Null Pointer Dereference Vulnerability

Siemens SCALANCE LPE9403 is a local processing engine for industrial field data processing from Siemens. It is used to capture, collect and pre-process industrial field data. The Siemens SCALANCE LPE9403 suffers from a null pointer dereference vulnerability due to an affected device failing to...

Intel Graphics Driver Out-of-Bounds Read Vulnerability

Intel Graphics Driver is Intel's official driver for users of Arc series graphics cards, Iris Xe graphics cards and Core Ultra processors with Arc GPUs. An out-of-bounds read vulnerability exists in Intel Graphics Driver, which can be exploited by an attacker to cause a local information disclosu...

Intel Graphics Drivers Denial of Service Vulnerability

Intel Graphics Drivers is Intel's official driver for users of Arc series graphics cards, Iris Xe graphics cards and Core Ultra processors with Arc GPUs. A denial of service vulnerability exists in Intel Graphics Drivers, which stems from a null pointer dereference, and can be exploited by an...

Intel Graphics Drivers elevation of privilege vulnerability (CNVD-2025-19912)

Intel Graphics Drivers is Intel's official driver for users of Arc series graphics cards, Iris Xe graphics cards and Core Ultra processors with Arc GPUs. An elevation of privilege vulnerability exists in Intel Graphics Drivers, which stems from an untrusted pointer dereference, and is exploited b...

Planet FW-WGS-804HPT web_acl_mgmt_Rules_Apply_post Function Buffer Overflow Vulnerability

Planet FW-WGS-804HPT is a wall mounted managed switch from China PLANET. The Planet FW-WGS-804HPT suffers from a buffer overflow vulnerability that originates from the ruleNamekey parameter in the webaclmgmtRulesApplypost function that fails to correctly validate the length of the input data, whi...

Campcodes Online Shopping Portal SQL Injection Vulnerability

CampCodes Online Shopping Portal is an online shopping portal from CampCodes, Inc. Campcodes Online Shopping Portal suffers from a SQL injection vulnerability that stems from a lack of validation of externally-entered SQL statements for the parameter Category in the file /admin/category.php. An...

GNU PSPP Input Validation Error Vulnerability

GNU PSPP is an application for data sampling, statistics and analysis from the American GNU community. An input validation error vulnerability exists in GNU PSPP that stems from improper parameter handling, and no details of the vulnerability are provided at this time...

SAP Gateway Client Information Disclosure Vulnerability

SAP Gateway Client is an OData service test and debugging tool from SAP Germany, integrated into SAP NetWeaver Gateway. An information disclosure vulnerability exists in SAP Gateway Client that stems from improper privilege management and can be exploited by an attacker to cause information...

Fortinet FortiClientEMS Path Traversal Vulnerability

Fortinet FortiClientEMS is part of Fortinet's Endpoint Management solution from Fortinet, a U.S.-based company, and is designed to help organizations effectively manage endpoint devices in their networks and provide monitoring and control of endpoint security. A path traversal vulnerability exist...

Unspecified Vulnerability in Gnu Screen

Gnu Screen is an application from the American GNU community. It provides the effect of getting multiple virtual terminals on one physical terminal. Gnu Screen suffers from a security vulnerability that stems from TTY hijacking, but no details of the vulnerability are available at this time...

Unspecified Vulnerability in Gnu Screen

Gnu Screen is an application from the American GNU community. It provides the effect of getting multiple virtual terminals on one physical terminal. Gnu Screen suffers from a security vulnerability that stems from a pseudo-terminal default mode change, which can be exploited by an attacker to cau...