213680 matches found
Code injection
An issue was discovered in QEMU 7.1.0 through 8.2.1. registervfs in hw/pci/pciesriov.c does not set NumVFs to PCISRIOVTOTALVF, and thus interaction with hw/nvme/ctrl.c is mishandled...
Buffer overflow
An issue was discovered in QEMU 7.1.0 through 8.2.1. registervfs in hw/pci/pciesriov.c mishandles the situation where a guest writes NumVFs greater than TotalVFs, leading to a buffer overflow in VF implementations...
Cross site scripting
Serenity before 6.8.0 allows XSS via an email link because LoginPage.tsx permits return URLs that do not begin with a / character...
Code injection
plugins/gtk+/glade-gtk-box.c in GNOME Glade before 3.38.1 and 3.39.x before 3.40.0 mishandles widget rebuilding for GladeGtkBox, leading to a denial of service application crash...
Design/Logic Flaw
closealtfile in filename.c in less before 606 omits shellquote calls for LESSCLOSE...
Server side request forgery (ssrf)
can: out of bounds in removerxfilter function...
Design/Logic Flaw
Signed to unsigned conversion esp32ipmsend...
Privilege escalation
Permission control vulnerability in the calendarProvider module.Successful exploitation of this vulnerability may affect service confidentiality...
Improper access control
Vulnerability of improper access control in the email module.Successful exploitation of this vulnerability may affect service confidentiality...
Code injection
Script injection vulnerability in the email module.Successful exploitation of this vulnerability may affect service confidentiality, integrity, and availability...
Design/Logic Flaw
Vulnerability of incorrect service logic in the WindowManagerServices module.Successful exploitation of this vulnerability may cause features to perform abnormally...
Input validation
Unchecked length coming from user input in settings shell...
Authentication flaw
Vulnerability of missing authentication for critical functions in the Wi-Fi module.Successful exploitation of this vulnerability may affect service confidentiality...
Privilege escalation
Permission control vulnerability in the WindowManagerServices module.Successful exploitation of this vulnerability may affect availability...
Information disclosure
Information management vulnerability in the Gallery module.Successful exploitation of this vulnerability may affect service confidentiality...
Out-of-bounds
Vulnerability of input data not being verified in the cellular data module.Successful exploitation of this vulnerability may cause out-of-bounds access...
Input validation
Input verification vulnerability in the account module.Successful exploitation of this vulnerability may cause features to perform abnormally...
Stack overflow
Stack overflow vulnerability in the NFC module.Successful exploitation of this vulnerability may affect service availability and integrity...
Stack overflow
Stack overflow vulnerability in the network acceleration module.Successful exploitation of this vulnerability may cause unauthorized file access...
Privilege escalation
Vulnerability of null references in the motor module.Successful exploitation of this vulnerability may affect availability...
Privilege escalation
Out-of-bounds read vulnerability in the smart activity recognition module.Successful exploitation of this vulnerability may cause features to perform abnormally...
Privilege escalation
Permission control vulnerability in the package management module.Successful exploitation of this vulnerability may affect service confidentiality...
Privilege escalation
Vulnerability of input parameter verification in the motor module.Successful exploitation of this vulnerability may affect availability...
Design/Logic Flaw
Vulnerability of permission verification in the content sharing pop-up module.Successful exploitation of this vulnerability may cause unauthorized file sharing...
Improper access control
Vulnerability of improper access control in the media library module.Successful exploitation of this vulnerability may affect service availability and integrity...
Privilege escalation
Vulnerability of foreground service restrictions being bypassed in the NMS module.Successful exploitation of this vulnerability may affect service confidentiality...
Design/Logic Flaw
Vulnerability of serialization/deserialization mismatch in the vibration framework.Successful exploitation of this vulnerability may affect availability...
Design/Logic Flaw
Vulnerability of configuration defects in some APIs of the audio module.Successful exploitation of this vulnerability may affect availability...
Privilege escalation
The VerifiedBoot module has a vulnerability that may cause authentication errors.Successful exploitation of this vulnerability may affect integrity...
Privilege escalation
Permission management vulnerability in the lock screen module.Successful exploitation of this vulnerability may affect availability...
Design/Logic Flaw
Logic vulnerabilities in the baseband.Successful exploitation of this vulnerability may affect service integrity...
Privilege escalation
Out-of-bounds read vulnerability in the smart activity recognition module.Successful exploitation of this vulnerability may cause features to perform abnormally...
Privilege escalation
Vulnerability of defects introduced in the design process in the Control Panel module.Successful exploitation of this vulnerability may cause app processes to be started by mistake...
Design/Logic Flaw
Resource reuse vulnerability in the GPU module. Successful exploitation of this vulnerability may affect service confidentiality...
Open redirect
Rejected reason: This CVE was misassigned. See CVE-2023-47623 for the canonical reference...
Design/Logic Flaw
IBM Storage Scale Container Native Storage Access 5.1.2.1 through 5.1.7.0 could allow a local attacker to initiate connections from a container outside the current namespace. IBM X-Force ID: 237811...
Code injection
IBM Storage Scale Container Native Storage Access 5.1.2.1 -through 5.1.7.0 could allow an attacker to initiate connections to containers from external networks. IBM X-Force ID: 237812...
Code injection
An undisclosed issue in Trusteer iOS SDK for mobile versions prior to 5.7 and Trusteer Android SDK for mobile versions prior to 5.7 may allow uploading of files. IBM X-Force ID: 238535...
Code injection
IBM QRadar Suite 1.10.12.0 through 1.10.17.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 stores potentially sensitive information in log files that could be read by a local user. IBM X-Force ID: 279975...
Code injection
IBM QRadar Suite 1.10.12.0 through 1.10.17.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 stores potentially sensitive information in log files that could be read by a local user. IBM X-Force ID: 279976...
Code injection
IBM QRadar Suite 1.10.12.0 through 1.10.17.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 stores potentially sensitive information in log files that could be read by a local user. IBM X-Force ID: 279977...
Authorization
IBM QRadar Suite 1.10.12.0 through 1.10.17.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 in some circumstances will log some sensitive information about invalid authorization attempts. IBM X-Force ID: 275747...
Sql injection
The Piraeus Bank WooCommerce Payment Gateway plugin for WordPress is vulnerable to time-based blind SQL Injection via the 'MerchantReference' parameter in all versions up to, and including, 1.6.5.1 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on t...
Sql injection
The MasterStudy LMS WordPress Plugin – for Online Courses and Education plugin for WordPress is vulnerable to union based SQL Injection via the 'user' parameter of the /lms/stm-lms/order/items REST route in all versions up to, and including, 3.2.5 due to insufficient escaping on the user supplied...
Cross site scripting
Cross Site Scripting XSS vulnerability in Bludit CMS version 3.15, allows remote attackers to execute arbitrary code and obtain sensitive information via edit-content.php...
Code injection
An issue was discovered in REDAXO version 5.15.1, allows attackers to execute arbitrary code and obtain sensitive information via modules.modules.php...
Design/Logic Flaw
An issue in TOTOLINK X5000R V.9.1.0u.6369B20230113 allows a remote attacker to cause a denial of service via the hosttime parameter of the NTPSyncWithHost component...
Authentication flaw
Versions of the package github.com/greenpau/caddy-security before 1.0.42 are vulnerable to Insecure Randomness due to using an insecure random number generation library which could possibly be predicted via a brute-force search. Attackers could use the potentially predictable nonce value used for...
Session fixation
All versions of the package github.com/greenpau/caddy-security are vulnerable to Insufficient Session Expiration due to improper user session invalidation upon clicking the "Sign Out" button. User sessions remain valid even after requests are sent to /logout and /oauth2/google/logout. Attackers w...
Design/Logic Flaw
All versions of the package github.com/greenpau/caddy-security are vulnerable to HTTP Header Injection via the X-Forwarded-Proto header due to redirecting to the injected protocol.Exploiting this vulnerability could lead to bypass of security mechanisms or confusion in handling TLS...