7149 matches found
ROS-20251216-7316
Vulnerability in ImageMagick7 related to integer overflow. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20251216-7312
Vulnerability in gnuplot related to null pointer dereferencing. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20251216-7333
A vulnerability in the Core component of the Oracle VM VirtualBox virtualization software tool is related to access control flaws. Exploitation of the vulnerability could allow an attacker to gain full control over the application...
ROS-20251216-7329
A vulnerability in the Core component of the Oracle VM VirtualBox virtualization software tool is related to access control flaws. Exploitation of the vulnerability could allow an attacker to gain full control over the application...
ROS-20251216-7327
A vulnerability in the Core component of the Oracle VM VirtualBox virtualization software tool is related to access control flaws. Exploitation of the vulnerability could allow an attacker to gain full control over the application...
ROS-20251216-7326
A vulnerability in the Core component of the Oracle VM VirtualBox virtualization software tool is related to access control flaws. Exploitation of the vulnerability could allow an attacker to gain full control over the application...
ROS-20251216-7304
Vulnerability in gnuplot related to null pointer dereferencing. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20251216-7308
Vulnerability in guacamole related to unchecked array indexing. Exploitation of the vulnerability may allow an attacker to affect confidentiality, integrity and availability of protected information...
ROS-20251216-7306
Vulnerability in gnuplot related to insufficient checking for unusual or exceptional states. Exploitation of the vulnerability could allow a remote attacker to cause a denial of service...
ROS-20251216-7356
A vulnerability in the V8 JavaScript script handler of Google Chrome and Microsoft Edge browsers is related to flaws in the implementation of security checks for standard elements. Exploitation of the vulnerability could allow an attacker acting remotely to gain read/write access to arbitrary fil...
ROS-20251216-7355
Vulnerability in chromium related to data type mixing errors. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...
ROS-20251216-7352
Vulnerability in incus related to insecure privilege management. Exploitation of the vulnerability could allow an attacker to escalate privileges...
ROS-20251216-7350
A vulnerability in the isolated container runc tool is associated with a race condition that allows link tracking. Exploitation of the vulnerability could allow an attacker to impact the confidentiality, integrity and availability of protected information...
ROS-20251216-7372
A vulnerability in the SplitView component of Google Chrome and Microsoft Edge browsers is related to information presentation errors in the user interface. Exploitation of the vulnerability could allow an attacker acting remotely to spoof the user interface...
ROS-20251216-7370
A vulnerability in the Fullscreen UI component of Google Chrome and Microsoft Edge browsers is related to information presentation errors in the user interface. Exploitation of the vulnerability could allow an attacker acting remotely to spoof the user interface using a specially crafted HTML pag...
ROS-20251216-7369
A vulnerability in the WebXR component of Google Chrome and Microsoft Edge browsers is related to reading data outside the buffer boundaries in memory. Exploitation of the vulnerability could allow a remote attacker to gain unauthorized access to protected information...
ROS-20251216-7362
A vulnerability in the Omnibox component of Google Chrome and Microsoft Edge browsers is related to information presentation errors in the user interface. Exploitation of the vulnerability could allow an attacker acting remotely to spoof the user interface using a specially crafted HTML page...
ROS-20251216-7344
A vulnerability in the Core component of the Oracle VM VirtualBox virtualization software tool is related to access control flaws. Exploitation of the vulnerability could allow an attacker to gain full control over the application...
ROS-20251216-7340
A vulnerability in the qemuFwCfgMmioRead function of the Box/Devices/PC/DevQemuFwCfg.cpp component of the Oracle VM VirtualBox virtualization software tool is related to integer overflow. Exploitation of the vulnerability may allow an intruder to gain unauthorized access to protected information...
ROS-20251216-7338
A vulnerability in the Core component of the Oracle VM VirtualBox virtualization software tool is related to an access control flaw. Exploitation of the vulnerability could allow an attacker to gain unauthorized access to protected information...
ROS-20251216-7336
A vulnerability in the Core component of the Oracle VM VirtualBox virtualization software tool is related to an access control flaw. Exploitation of the vulnerability may allow an attacker to gain unauthorized access to protected information...
ROS-20251216-7311
A vulnerability in the ClassUtils.getClass function of the Apache Commons Lang library for the Java programming language involves uncontrolled recursion. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...
ROS-20251216-7360
A vulnerability in the V8 JavaScript script handler of Google Chrome and Microsoft Edge browsers is related to errors in the implementation of security checks for standard elements. Exploitation of the vulnerability may allow a remote attacker to gain unauthorized access to protected information...
ROS-20251216-7359
A vulnerability in the V8 JavaScript script handler of Google Chrome and Microsoft Edge browsers is related to synchronization errors when using a shared resource. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...
ROS-20251216-7367
A vulnerability in the Autofill component of Google Chrome and Microsoft Edge browsers is related to errors in the implementation of security checks for standard elements. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to sensitive information...
ROS-20251215-7313
A vulnerability in the cifs.upcall function of the CIFS cifs-utils network file system mount utility package is related to the provisioning of a data element for an erroneous session. Exploitation of the vulnerability could allow an attacker to disclose protected information...
ROS-20251215-7311
Vulnerability in qt6-qtbase related to algorithmic complexity. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...
ROS-20251215-7305
A vulnerability in the net component of the Go programming language is related to the execution of a loop with an unreachable exit condition. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...
ROS-20251215-7307
A vulnerability in the GNU Wget download manager is related to insufficient server-side request validation. Exploitation of the vulnerability could allow a remote attacker to perform an SSRF, phishing or man-in-the-middle attack...
ROS-20251215-7314
A vulnerability in the Yelp help system is related to the inclusion of functions from an invalid controlled scope when processing documents using the ghelp schema. Exploitation of the vulnerability may allow a remote attacker to gain unauthorized access to protected information and execute...
ROS-20251215-7309
Elasticsearch search engine vulnerability related to unrestricted resource allocation. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service by sending specially crafted SQL queries...
ROS-20251215-7306
A vulnerability in the perl-Crypt-OpenSSL-RSA package of Red Hat Enterprise Linux operating systems is related to information disclosure through a mismatch. Exploitation of the vulnerability could allow an attacker acting remotely to implement the Bleichenbacher attack...
ROS-20251215-7303
A vulnerability in Mozilla Firefox, Firefox ESR and Thunderbird email client is related to an operation exceeding the memory buffer boundaries. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...
ROS-20251215-7308
Vulnerability in phpldapadmin related to failure to take measures to protect web page structure. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...
ROS-20251215-7301
Vulnerability in mongodb-org related to incorrect resource locking. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20251215-7312
Vulnerability in varnish related to flaws in http request handling. Exploitation of the vulnerability could allow a remote attacker to send a hidden http request http request smuggling attack...
ROS-20251215-7310
Vulnerability in elasticsearch related to uncontrolled resource consumption. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...
ROS-20251215-7302
A vulnerability in the net/sched/schhfsc.c component of the Linux kernel is associated with the execution of a loop with an unreachable exit condition. Exploitation of the vulnerability could allow an attacker to gain access to sensitive data, compromise its integrity, and cause a denial of servi...
ROS-20251215-7304
Vulnerability in advancecomp related to insufficient input validation. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...
ROS-20251203-16
A vulnerability in the Consul and Consul Enterprise service configuration tool is related to incorrect validation of the Content Length of the Content Length header. Exploitation of the vulnerability could allow an attacker acting remotely, cause a denial of service Vulnerability in the Consul an...
ROS-20251203-15
Vulnerability in Go library for decoding common map values into structures and vice versa mapstructure is related to incorrect neutralization of output data for logs. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to sensitive information...
ROS-20251203-04
A vulnerability in the cross-platform software development framework Qt is related to the fact that QStringConverter has an invalid pointer passed as a callback. Exploitation of the vulnerability could allow an attacker to bypass the implemented security restrictions...
ROS-20251203-07
Vulnerability of C language module for signing and encryption of JSON objects latchset Jose is related to uncontrolled resource consumption. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service. remotely to cause a denial of service...
ROS-20251203-03
A vulnerability in the JMX interface of the Apache Cassandra distributed database management system is related to a flaw in the deserialization mechanism. flaws in the deserialization mechanism. Exploitation of the vulnerability could allow an attacker to implement a man-in-the-middle...
ROS-20251203-14
MongoDB database management system vulnerability is related to DDL operation execution during query execution. query execution. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...
ROS-20251203-08
The aiohttp HTTP client vulnerability is related to the fact that the final sections of an HTTP request are not analyzed. Exploitation of the vulnerability could allow an attacker acting remotely to perform spoofing attacks on HTTP requests. HTTP requests...
ROS-20251203-09
A vulnerability in the ProxyCommand component of the OpenSSH cryptographic protection tool is related to the injection of a null byte %00 in the username string. Exploitation of the vulnerability could allow an attacker to execute arbitrary code...
ROS-20251203-06
A vulnerability in Varnish web content caching software is related to incorrect HTTP/1 requests HTTP/1 request validation. Exploitation of the vulnerability could allow a remote attacker, Perform HTTP request spoofing attacks...
ROS-20251203-01
A vulnerability in the Lens component of Google Chrome browser is related to URL redirection to an untrusted website. Exploitation of the vulnerability could allow an attacker acting remotely to spoof the user interface with a specially crafted QR code. interface using a specially crafted QR code...
ROS-20251203-11
Vulnerability of parse.ParseUnverified function of golang-jwt web token library of Go programming language is related to uncontrolled resource consumption. Go programming language is related to uncontrolled resource consumption. Exploitation of the vulnerability allows an attacker acting remotely...