8278 matches found
ROS-20260515-73-0025
A vulnerability in the WebAudio component of the Google Chrome and Microsoft Edge browsers involves reading outside of the allowed range in memory. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service using a specially crafted HTML page...
ROS-20260515-73-0037
A vulnerability in the WebML component of Google Chrome and Microsoft Edge browser is related to an operation exceeding memory buffer boundaries. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service using a specially crafted HTML page...
ROS-20260513-73-0012
Vulnerability in python-django related to spoofing authentication bypass. Exploitation of the vulnerability could allow an attacker acting remotely to conduct spoofing attacks...
ROS-20260513-73-0010
Vulnerability in python-django related to uncontrolled resource consumption. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...
ROS-20260513-73-0013
Vulnerability in python-django related to a flaw in the authorization procedure. Exploitation of the vulnerability could allow a remote attacker to gain unauthorized access to protected information...
ROS-20260513-73-0004
Vulnerability in rubygem-rack related to permissive regular expressions. Exploitation of the vulnerability may allow a remote attacker to gain unauthorized access to protected information...
ROS-20260513-73-0019
Vulnerability in lxd due to insufficient control over modification of dynamically defined object characteristics. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...
ROS-20260512-73-0021
A vulnerability in the Core component of the Oracle VM VirtualBox virtual machine is related to insufficient input validation. Exploitation of the vulnerability could allow an attacker to gain access to read, modify, or delete protected information...
ROS-20260512-73-0022
A vulnerability in the Core component of the Oracle VM VirtualBox virtual machine is related to insufficient input validation. Exploitation of the vulnerability could allow an attacker to gain access to read, modify, or delete protected information...
ROS-20260512-73-0026
A vulnerability in the kernel of the Oracle VM VirtualBox virtualization software tool is related to a flaw in the data protection mechanism. Exploitation of the vulnerability could allow an attacker to bypass existing security mechanisms...
ROS-20260512-73-0024
A vulnerability in the Core component of Oracle VM VirtualBox virtual machine is related to insufficient input validation. Exploitation of the vulnerability could allow an attacker to gain full control over the application...
ROS-20260512-73-0032
A vulnerability in the Core component of the Oracle VM VirtualBox virtual machine is related to insufficient input validation. Exploitation of the vulnerability could allow an attacker to gain full control over the application...
ROS-20260512-73-0029
A vulnerability in the Core component of the Oracle VM VirtualBox virtual machine is related to insufficient input validation. Exploitation of the vulnerability could allow an attacker to gain full control over the application...
ROS-20260512-73-0017
A vulnerability in the Core component of Oracle VM VirtualBox virtual machine is related to insufficient input validation. Exploitation of the vulnerability could allow an attacker to gain full control over the application...
ROS-20260512-73-0011
Vulnerability in hdf5 related to memory usage after memory release. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...
ROS-20260508-73-0002
Vulnerability in rubygem-activesupport related to the use of regular expression with inefficient computational complexity. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...
ROS-20260508-73-0010
A vulnerability in the .NET software platform is related to incorrect handling of a missing special element. Exploitation of the vulnerability could allow an attacker acting remotely to conduct spoofing attacks...
ROS-20260508-73-0017
A vulnerability in the ngxhttpmp4module module of NGINX Open Source web servers is related to integer overflow. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260508-73-0007
Vulnerability in roundcubemail related to the use of an insecure alternate channel. Exploitation of the vulnerability could allow an attacker acting remotely to modify user projects and/or device configuration via cip commands...
ROS-20260507-73-0002
Vulnerability in roundcubemail related to lack of validation of received requests. Exploitation of the vulnerability could allow a remote attacker to disclose protected information...
ROS-20260506-73-0049
Vulnerability in python-cairosvg related to uncontrolled recursion. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260505-73-0001
Vulnerability in zabbix7.4 related to the use of externally controlled input data for class selection. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...
ROS-20260505-73-0068
A vulnerability in the base64 module of the Python programming language interpreter is related to incorrect data type conversion. Exploitation of the vulnerability allows an attacker acting remotely to execute arbitrary code...
ROS-20260429-73-0026
A vulnerability in the pgcrypto component of the PostgreSQL database management system is related to a buffer overflow in dynamic memory. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...
ROS-20260417-73-0044
Vulnerability in glpi due to a flaw in the output encoding or escaping mechanism. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...
ROS-20260417-73-0001
Vulnerability in frr related to null pointer dereferencing. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260407-73-0007
A vulnerability in the sizelimitmb function of the Linux kernel is related to buffer copying without input validation. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260324-73-0009
A vulnerability in the f2fs component of the Linux operating system kernel is related to the use of memory after it has been freed. Exploitation of the vulnerability allows an attacker to affect confidentiality, integrity and availability of protected information...
ROS-20260324-73-0020
A vulnerability in the wifi component of the Linux operating system kernel is related to the use of memory after it has been freed. Exploitation of the vulnerability allows an intruder to affect confidentiality, integrity and availability of protected information...
ROS-20260324-73-0026
A vulnerability in the eventpoll component of the Linux kernel is related to uncontrolled recursion. Exploitation of the vulnerability allows an attacker to cause a denial of service...
ROS-20260324-73-0032
A vulnerability in the imxfb component of the Linux kernel is related to pointer dereferencing errors. Exploitation of the vulnerability allows an attacker to cause a denial of service...
ROS-20260324-73-0011
A vulnerability in the f2fs component of the Linux operating system kernel is related to the use of an uninitialized resource. Exploitation of the vulnerability allows an attacker to affect confidentiality, integrity and availability of protected information...
ROS-20260324-73-0021
A vulnerability in the bpf and ktls components of the Linux operating system kernel is related to the use of an uninitialized resource. Exploitation of the vulnerability allows an intruder to affect confidentiality and availability of protected information...
ROS-20260324-73-0016
Vulnerability in kernel-lt related to insufficient control of the resource during its existence. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260324-73-0001
A vulnerability in the smb2sesssetup function in the fs/smb/server/smb2pdu.c module of the Linux kernel SMB server support is related to synchronization errors when using a shared resource. Exploitation of the vulnerability may allow a remote attacker to affect confidentiality, integrity and...
ROS-20260324-73-0014
A vulnerability in the ipv6 component of the Linux operating system kernel is related to the execution of a loop with an unreachable exit condition. Exploitation of the vulnerability allows an attacker to cause a denial of service...
ROS-20260324-73-0037
A vulnerability in the net/mlx5 component of the Linux kernel is related to pointer dereferencing errors. Exploitation of the vulnerability allows an attacker to cause a denial of service...
ROS-20260323-73-0026
A vulnerability in the mcast component of the Linux operating system kernel is related to resource release errors. Exploitation of the vulnerability allows an attacker to cause a denial of service...
ROS-20260313-73-0029
A vulnerability in the clippush function of the Linux operating system kernel is related to uncontrolled recursion. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260313-73-0038
A vulnerability in the unregistervlandev function of the 8021q Module component of the Linux operating system kernel is related to the failure to free memory after an effective lifetime. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260313-73-0031
A vulnerability in the vsockuselocaltransport function of the Linux operating system kernel is related to improper control of a resource during its lifecycle. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260310-73-0012
A vulnerability in the Network service of Google Chrome browser is related to access control weaknesses. Exploitation of the vulnerability could allow an attacker acting remotely to bypass existing security restrictions...
ROS-20260220-73-0029
A vulnerability in the EXPORTSYMBOL, destroycmid and cmworkhandler functions drivers/infiniband/core/iwcm.c of the Linux kernel is related to the use of memory after it has been freed. Exploitation of the vulnerability could allow an attacker to escalate his privileges...
ROS-20260216-73-0026
A vulnerability in the JavaFX component of the Oracle Java SE software platform is related to an operation exceeding buffer boundaries. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to read, modify, or delete data...
ROS-20260202-73-0053
A vulnerability in the p9clientwrite function of the 9p/net component of the Linux kernel is related to pointer dereferencing errors. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260129-73-0075
A vulnerability in the HTTP/2 protocol implementation is related to the ability to generate a stream of requests within an already established network connection, without opening new network connections and without acknowledging the receipt of packets. Exploitation of the vulnerability could allo...
ROS-20260119-7386
A vulnerability in the max96712probe function of the MAX96712 deserializer driver drivers/staging/media/max96712/max96712.c of the Linux kernel is related to resource management errors. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260113-7312
A vulnerability in the navi10issupportfinegraineddpm function in the drivers/gpu/drm/amd/pm/swsmu/smu11/navi10ppt.c module of the amdpgu driver of the Linux kernel is related to incorrect index calculation. Exploitation of the vulnerability may allow an intruder to affect confidentiality, integri...
ROS-20251203-18
Vulnerability of the cURL server communication software tool is related to errors in the host verification mechanism when using the wolfSSH-based backend. host verification mechanism when using wolfSSH-based backend. Exploitation of the vulnerability could allow an attacker acting remotely to...
ROS-20251203-09
A vulnerability in the ProxyCommand component of the OpenSSH cryptographic protection tool is related to the injection of a null byte %00 in the username string. Exploitation of the vulnerability could allow an attacker to execute arbitrary code...