131179 matches found
IBM Guardium Data Protection Web UI Cross-Site Scripting Vulnerability
IBM Guardium Data Protection is a data security and activity monitoring platform for database auditing, vulnerability assessment and compliance management. A cross-site scripting vulnerability exists in IBM Guardium Data Protection. The vulnerability stems from the failure of the Web UI to proper...
Oracle VM VirtualBox Core Component Elevation of Privilege Vulnerability (CNVD-2026-18427)
Oracle VM VirtualBox is a desktop virtualization software developed by Oracle for running multiple operating systems on a single host. An elevation of privilege vulnerability exists in Oracle VM VirtualBox. The vulnerability stems from a failure of the Core component to properly handle privilege...
Oracle MySQL Server InnoDB Denial of Service Vulnerability (CNVD-2026-18432)
Oracle MySQL Server is an open source relational database management system with an InnoDB component that provides transaction-safe storage engine functionality. A denial of service vulnerability exists in Oracle MySQL Server. The vulnerability stems from the InnoDB component failing to properly...
Oracle MySQL Server Optimizer Denial of Service Vulnerability (CNVD-2026-18428)
Oracle MySQL Server is an open source relational database management system for storing, managing and retrieving data. A denial of service vulnerability exists in Oracle MySQL Server. The vulnerability stems from a failure of the Server: Optimizer component to properly handle a specific request a...
Oracle MySQL Server InnoDB Component Denial of Service Vulnerability (CNVD-2026-18430)
Oracle MySQL Server is an open source relational database management system with an InnoDB component that provides transaction-safe storage engine functionality. A denial of service vulnerability exists in the InnoDB component of Oracle MySQL Server. The vulnerability stems from a flaw in the...
Oracle MySQL Server InnoDB Component Denial of Service Vulnerability (CNVD-2026-18431)
Oracle MySQL Server is an open source relational database management system with an InnoDB component that provides transaction-safe storage engine functionality. A denial of service vulnerability exists in the InnoDB component of Oracle MySQL Server. The vulnerability stems from an internal...
Oracle MySQL Server InnoDB Component Denial of Service Vulnerability (CNVD-2026-18576)
Oracle MySQL Server is an open source relational database management system with an InnoDB component that provides transaction-safe storage engine functionality. A denial of service vulnerability exists in the InnoDB component of Oracle MySQL Server. The vulnerability stems from a flaw in the...
Oracle MySQL Server Optimizer Denial of Service Vulnerability (CNVD-2026-18578)
Oracle MySQL Server is an open source relational database management system for storing, managing and retrieving data. A denial of service vulnerability exists in Oracle MySQL Server. The vulnerability stems from a failure of the Server: Optimizer component to properly handle a specific request a...
Oracle MySQL Server GIS Component Denial of Service Vulnerability
Oracle MySQL Server is an open source relational database management system with a GIS component that provides geospatial data processing capabilities. A denial of service vulnerability exists in Oracle MySQL Server. The vulnerability stems from a failure of the GIS component to properly handle a...
Oracle MySQL Shell Core Client Denial of Service Vulnerability (CNVD-2026-18573)
Oracle MySQL Shell is a command line tool for managing and operating MySQL databases. A denial of service vulnerability exists in Oracle MySQL Shell. The vulnerability stems from the Core Client component failing to properly handle certain inputs and can be exploited by an attacker to cause MySQL...
Oracle MySQL Server Partition Component Denial of Service Vulnerability
Oracle MySQL Server is an open source relational database management system that provides data storage, querying and management capabilities. A denial of service vulnerability exists in Oracle MySQL Server. The vulnerability stems from the Server:Partition component failing to properly handle a...
Oracle MySQL Shell Core Client Denial of Service Vulnerability (CNVD-2026-18574)
Oracle MySQL Shell is a command line tool and advanced client for managing and operating MySQL databases. A denial of service vulnerability exists in Oracle MySQL Shell. The vulnerability stems from the Core Client component failing to properly handle certain inputs and can be exploited by an...
Oracle VM VirtualBox Core Component Elevation of Privilege Vulnerability (CNVD-2026-18425)
Oracle VM VirtualBox is a desktop virtualization software developed by Oracle to run multiple operating systems on a single host. An elevation of privilege vulnerability exists in Oracle VM VirtualBox. The vulnerability stems from a failure of the Core component to properly handle privilege...
Oracle VM VirtualBox Core Component Memory Corruption Vulnerability
Oracle VM VirtualBox is a desktop virtualization software developed by Oracle to run multiple operating systems on a single host. A memory corruption vulnerability exists in Oracle VM VirtualBox. The vulnerability stems from a failure of the Core component to properly handle memory operations and...
Oracle Fusion Middleware Dynamic Monitoring Service Cross-Site Scripting Vulnerability
Oracle Fusion Middleware is a suite of middleware products for building and deploying enterprise-class applications, integrations and business processes. A cross-site scripting vulnerability exists in the Dynamic Monitoring Service component of Oracle Fusion Middleware. The vulnerability stems fr...
Oracle VM VirtualBox Core Component Elevation of Privilege Vulnerability (CNVD-2026-18539)
Oracle VM VirtualBox is a desktop virtualization software developed by Oracle to run multiple operating systems on a single host. An elevation of privilege vulnerability exists in Oracle VM VirtualBox. The vulnerability stems from a failure of the Core component to properly handle privilege...
Oracle VM VirtualBox Core Component Memory Corruption Vulnerability (CNVD-2026-18426)
Oracle VM VirtualBox is a desktop virtualization software developed by Oracle to create and run virtual machines on host operating systems. A memory corruption vulnerability exists in Oracle VM VirtualBox. The vulnerability stems from a failure of the Core component to properly handle memory...
Oracle Solaris Kernel Denial of Service Vulnerability
Oracle Solaris is a Unix-like operating system developed by Oracle Corporation for use in server and enterprise-class computing environments. A denial of service vulnerability exists in Oracle Solaris. The vulnerability stems from a failure of a kernel component to properly handle certain...
Oracle VM VirtualBox Core Component Denial of Service Vulnerability
Oracle VM VirtualBox is a desktop virtualization software developed by Oracle to run multiple operating systems on a single host. A denial of service vulnerability exists in Oracle VM VirtualBox. The vulnerability stems from a flaw in the Core component, which can be exploited by an attacker to...
Oracle VM VirtualBox Core Component Denial of Service Vulnerability (CNVD-2026-18569)
Oracle VM VirtualBox is a desktop virtualization software developed by Oracle that supports running multiple operating systems on a single host. A denial of service vulnerability exists in Oracle VM VirtualBox. The vulnerability stems from a failure of the Core component to properly handle RDP...
Oracle MySQL Server JSON Component Denial of Service Vulnerability
Oracle MySQL Server is an open source relational database management system that provides data storage, querying and management capabilities. A denial of service vulnerability exists in Oracle MySQL Server. The vulnerability stems from a failure of the Server: JSON component to properly handle...
Oracle Database Server Java VM Component Data Disclosure Vulnerability
Oracle Database Server is a relational database management system with a Java VM component that supports running Java programs in the database. A data disclosure vulnerability exists in Oracle Database Server. The vulnerability arises from a failure of the Java VM component to properly handle a...
Oracle MySQL Server DML Component Denial of Service Vulnerability
Oracle MySQL Server is an open source relational database management system for storing, querying and managing data. A denial of service vulnerability exists in Oracle MySQL Server. The vulnerability stems from a failure of the Server: DML component to properly handle a specific request and can b...
Microsoft Word Information Disclosure Vulnerability (CNVD-2026-19707)
Microsoft Word is a word processing software in the Office suite of the U.S. company Microsoft Microsoft. An information disclosure vulnerability exists in Microsoft Word. An attacker could exploit this vulnerability to obtain sensitive information...
Microsoft Word Code Execution Vulnerability (CNVD-2026-19747)
Microsoft Word is a word processing software in the Office suite of the U.S. company Microsoft Microsoft. A code execution vulnerability exists in Microsoft Word, which can be exploited by an attacker to execute arbitrary code on a system...
Microsoft Windows Shell Elevation of Privilege Vulnerability (CNVD-2026-20175)
The Microsoft Windows Shell is the graphical user interface for the Windows operating system from Microsoft.The easily recognizable elements of the Windows shell include features such as the desktop, the taskbar, the start menu, the task switcher, and autoplay. An elevation of privilege...
Dell PowerProtect Data Domain Incorrect Authentication Vulnerability
Dell PowerProtect Data Domain Dell PowerProtect DD is a suite of hardware appliances for data protection, backup, storage, and deduplication from Dell, USA. An incorrect authentication vulnerability exists in Dell PowerProtect Data Domain with Data Domain Operating System DD OS, which can be...
Microsoft PowerShell Elevation of Privilege Vulnerability
Microsoft PowerShell is a Microsoft-developed cross-platform task automation solution that includes a command-line shell, scripting language, and configuration management framework. An elevation of privilege vulnerability exists in Microsoft PowerShell, which is caused by incorrect input validati...
Microsoft Windows Shell Elevation of Privilege Vulnerability (CNVD-2026-20176)
The Microsoft Windows Shell is the graphical user interface for the Windows operating system from Microsoft.The easily recognizable elements of the Windows shell include features such as the desktop, the taskbar, the start menu, the task switcher, and autoplay. An elevation of privilege...
Microsoft .NET Framework Denial of Service Vulnerability
Microsoft .NET Framework is a comprehensive and consistent programming model from Microsoft Corporation USA and a development platform. The platform includes the C and Visual Basic programming languages, a public language runtime library, and an extensive class library. A security vulnerability...
Microsoft Azure Monitor Agent Input Validation Error Vulnerability (CNVD-2026-18593)
Microsoft Azure Monitor Agent is a monitoring agent program from Microsoft USA. A security vulnerability exists in Microsoft Azure Monitor Agent. An attacker can exploit the vulnerability to elevate privileges...
Microsoft Windows Kernel Elevation of Privilege Vulnerability (CNVD-2026-20169)
The Microsoft Windows Kernel is the kernel of the Windows operating system from the American company Microsoft. An elevation of privilege vulnerability exists in Microsoft Windows Kernel, which can be exploited by an attacker to elevate privileges...
Microsoft Brokering File System Resource Management Error Vulnerability
Microsoft Brokering File System is a file system from the American company Microsoft. A security vulnerability exists in Microsoft Brokering File System. An attacker could exploit the vulnerability to elevate privileges...
Microsoft Excel Code Execution Vulnerability (CNVD-2026-19428)
Microsoft Excel is a spreadsheet processing software in the Office suite from Microsoft USA. A code execution vulnerability exists in Microsoft Excel, which can be exploited by an attacker to execute arbitrary code on a system...
Microsoft Windows Kernel Information Disclosure Vulnerability (CNVD-2026-20167)
The Microsoft Windows Kernel is the kernel of the Windows operating system from the American company Microsoft. An information disclosure vulnerability exists in Microsoft Windows Kernel, which can be exploited by attackers to obtain sensitive information...
Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability
Microsoft Dynamics 365 is a suite of ERP business solutions for multinational organizations from Microsoft USA. It is used for financial management, production management and business intelligence management. An information disclosure vulnerability exists in Microsoft Dynamics 365 On-Premises,...
Microsoft Office PowerPoint Code Execution Vulnerability
Microsoft Office PowerPoint is an American Microsoft Microsoft company's software for creating, presentations PPT. A code execution vulnerability exists in Microsoft Office PowerPoint, which can be exploited by an attacker to execute arbitrary code on a system...
Microsoft Excel Code Execution Vulnerability (CNVD-2026-19430)
Microsoft Excel is a spreadsheet processing software in the Office suite from Microsoft USA. A code execution vulnerability exists in Microsoft Excel, which can be exploited by an attacker to execute arbitrary code on a system...
Microsoft Word Code Execution Vulnerability (CNVD-2026-19750)
Microsoft Word is a word processing software in the Office suite of the U.S. company Microsoft Microsoft. A code execution vulnerability exists in Microsoft Word, which can be exploited by an attacker to execute arbitrary code on a system...
Microsoft Word Code Execution Vulnerability (CNVD-2026-19748)
Microsoft Word is a word processing software in the Office suite of the U.S. company Microsoft Microsoft. A code execution vulnerability exists in Microsoft Word due to an untrusted pointer dereference flaw. An attacker could exploit this vulnerability to execute arbitrary code on a system...
Microsoft Desktop Windows Manager Resource Management Error Vulnerability (CNVD-2026-18598)
Microsoft Desktop Windows Manager is a desktop window manager from Microsoft USA. A security vulnerability exists in Microsoft Desktop Windows Manager. An attacker could exploit the vulnerability to elevate privileges...
Microsoft SharePoint Server Spoofing Vulnerability (CNVD-2026-19433)
Microsoft SharePoint Server is an enterprise business collaboration platform from Microsoft. The platform is used to consolidate business information and enable sharing of work, collaborating with others, organizing projects and workgroups, and searching for people and information. A spoofing...
Microsoft Desktop Windows Manager Resource Management Error Vulnerability (CNVD-2026-18599)
Microsoft Desktop Windows Manager is a desktop window manager from Microsoft USA. A security vulnerability exists in Microsoft Desktop Windows Manager. An attacker could exploit the vulnerability to elevate privileges...
Microsoft Windows Kernel Information Disclosure Vulnerability (CNVD-2026-20172)
The Microsoft Windows Kernel is the kernel of the Windows operating system from the American company Microsoft. An information disclosure vulnerability exists in Microsoft Windows Kernel, which can be exploited by attackers to obtain sensitive information...
Microsoft Windows TCP/IP Remote Code Execution Vulnerability
Microsoft Windows TCP/IP is a Microsoft component that provides TCP/IP configuration capabilities for Windows. A remote code execution vulnerability exists in Microsoft Windows TCP/IP, which can be exploited by an attacker to execute code...
Microsoft Windows Kernel Information Disclosure Vulnerability (CNVD-2026-20173)
The Microsoft Windows Kernel is the kernel of the Windows operating system from the American company Microsoft. An information disclosure vulnerability exists in Microsoft Windows Kernel, which can be exploited by attackers to obtain sensitive information...
WordPress Plugin YouTube Showcase Cross-Site Scripting Vulnerability
WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in the WordPress plugin YouTube Showcase, which ste...
WordPress Plugin WCFM Marketplace SQL Injection Vulnerability
WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. WordPress plugin WCFM Marketplace suffers from a SQL injection vulnerability that stems from th...
Microsoft Desktop Windows Manager Resource Management Error Vulnerability
Microsoft Desktop Windows Manager is a desktop window manager from Microsoft USA. A security vulnerability exists in Microsoft Desktop Windows Manager. An attacker could exploit the vulnerability to elevate privileges...
Microsoft PowerShell Security Feature Bypass Vulnerability
Microsoft PowerShell is a Microsoft-developed cross-platform task automation solution that includes a command-line shell, scripting language, and configuration management framework. A security feature bypass vulnerability exists in Microsoft PowerShell, which can be exploited by an attacker to...