8586 matches found
ROS-20260708-73-0032
The vulnerability of the sqlExpressions function on the Grafana monitoring and observation platform relates to the use of files and directories accessible from external parties. Exploiting this vulnerability could allow a malicious actor to read arbitrary files...
ROS-20260708-73-0033
The vulnerability of the Grafana monitoring and observation platform relates to incorrect access to the account after the token’s expiration period. Exploiting this vulnerability could allow an attacker who operates remotely to gain unauthorized access to protected information...
ROS-20260708-73-0065
The vulnerability in ImageMagick is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
ROS-20260708-73-0064
The vulnerability in ImageMagick relates to the execution of a loop with an unavailable exit condition. Exploiting this vulnerability can allow an attacker to cause a service failure...
ROS-20260708-73-0066
The vulnerability in ImageMagick 7 is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
ROS-20260708-73-0048
The vulnerability in dovecot is related to an uncontrolled resource consumption. Exploiting this vulnerability can allow a remote attacker to cause service failures...
ROS-20260708-73-0063
The vulnerability in ImageMagick7 relates to the execution of a loop with an unavailable exit condition. Exploiting this vulnerability can allow an attacker to cause a service failure...
ROS-20260708-73-0006
The vulnerability of the PostgreSQL database management system is related to integer overflow. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...
ROS-20260708-73-0005
The vulnerability of the PostgreSQL database management system is related to integer overflow. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...
ROS-20260708-73-0003
The vulnerability of the PostgreSQL database management system is related to integer overflow. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...
ROS-20260708-73-0002
The vulnerability of the PostgreSQL database management system is related to integer overflow. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...
ROS-20260708-73-0026
The vulnerability of the Grafana Live messaging system in real-time mode, a platform for monitoring and surveillance, is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to cause service interruptions by sending specially crafted...
ROS-20260708-73-0082
The vulnerability of the PostgreSQL database management system is related to integer overflow. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...
ROS-20260708-73-0052
The vulnerability of the jvparsesized function in the programming language jq is related to reading data beyond the allowable range of memory. Exploiting this vulnerability could allow a malicious actor to cause service failures...
ROS-20260708-73-0039
The vulnerability in glibc is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
ROS-20260708-73-0038
The vulnerability in glibc is related to the execution of an operation outside the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to disclose protected information...
ROS-20260708-73-0060
The vulnerabilities of the jvpstringappend and jvpstringcopyreplacebad functions, which are used to process JSON files in jq, are related to integer overflow. Exploiting these vulnerabilities could allow an attacker to cause a service failure by sending a specially crafted request...
ROS-20260708-73-0049
The vulnerability of the strindices function in the JQ programming language is related to the execution of an operation outside the buffer in memory. Exploiting this vulnerability could allow an attacker to cause a service failure...
ROS-20260708-73-0051
The vulnerability of the functions jvsetpath, jvgetpath, and delpathssorted in the programming language jq is related to an uncontrolled recursion. Exploiting this vulnerability could allow an attacker to cause a service failure...
ROS-20260708-73-0050
The vulnerability of the jq JSON processing tool lies in the use of a hash function that does not meet security requirements. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information or cause service failures...
ROS-20260708-73-0079
The vulnerability of the negotiation mechanisms for SSL and GSS in the PostgreSQL database management system is related to an uncontrolled recursion. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause service interruptions...
ROS-20260707-73-0036
The vulnerability of the Go programming language’s crypto/x509 component is related to the lack of input validation for cyclic operations. Exploiting this vulnerability can allow an attacker to cause service failures remotely...
ROS-20260707-73-0038
The vulnerability of the net/textproto component in the Go programming language is related to incorrect processing of output data for registration logs. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
ROS-20260707-73-0058
The vulnerability of the pgbasebackup and pgrewind utilities in the PostgreSQL database management system is related to deficiencies in the mechanism for handling symbolic references. Exploiting this vulnerability allows a malicious actor to rewrite any files remotely...
ROS-20260707-73-0025
The vulnerability in ImageMagick is related to insufficient control over resources during its existence. Exploiting this vulnerability can allow an attacker to cause a service failure...
ROS-20260707-73-0013
The vulnerability in libexif is related to integer overflow. Exploiting this vulnerability could allow an attacker to cause a service failure...
ROS-20260707-73-0019
The vulnerability in freerdp3 is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
ROS-20260707-73-0009
The vulnerability in jq is related to integer overflow. Exploiting this vulnerability can allow an attacker to cause a service failure...
ROS-20260707-73-0052
The vulnerability in gpac is related to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
ROS-20260707-73-0049
The vulnerability in gpac is related to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
ROS-20260707-73-0034
The vulnerability of Nomad application orchestrators is related to the incorrect definition of symbolic links before accessing files. Exploiting this vulnerability allows an attacker to gain access to and read/write arbitrary files...
ROS-20260707-73-0011
The vulnerability in ImageMagick is related to incorrect calculations. Exploiting this vulnerability can allow an attacker to cause a service failure...
ROS-20260707-73-0010
The vulnerability in rubygem-yard is related to an incorrect restriction on the path name to the restricted access catalog. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information...
ROS-20260707-73-0012
The vulnerability in ImageMagick7 is related to incorrect calculations. Exploiting this vulnerability can allow an attacker to cause a service failure...
ROS-20260707-73-0007
The vulnerability in zabbix7-lts is related to insufficient protection of registration data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...
ROS-20260707-73-0008
A vulnerability in Zabbix 7.4 is related to insufficient protection of registration data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...
ROS-20260707-73-0006
The vulnerability in zabbix-lts is related to insufficient protection of registration data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...
ROS-20260707-73-0002
The vulnerability of the user interface of the Zabbix monitoring system is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to execute arbitrary JavaScript code remotely...
ROS-20260707-73-0003
The vulnerability of the user interface of the Zabbix monitoring system is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to execute arbitrary JavaScript code remotely...
ROS-20260707-73-0005
The vulnerability of the user interface of the Zabbix monitoring system is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to execute arbitrary code, provided that the user opens a specially crafted link...
ROS-20260707-73-0004
The vulnerability of the user interface of the Zabbix monitoring system is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to execute arbitrary code, provided that the user opens a specially crafted link...
ROS-20260707-73-0001
The vulnerability of the user interface of the Zabbix monitoring system is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to execute arbitrary JavaScript code remotely...
ROS-20260707-73-0040
The vulnerability in dovecot is related to bypassing the authentication process. Exploiting this vulnerability can allow an unauthorized attacker to gain unauthorized access to protected information...
ROS-20260707-73-0041
The vulnerability in dovecot is related to manipulating an unknown input, resulting in a time mismatch vulnerability. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information...
ROS-20260707-73-0043
The vulnerability in dovecot is related to an uncontrolled resource consumption. Exploiting this vulnerability can allow a remote attacker to cause service failures...
ROS-20260707-73-0047
The vulnerability in dovecot is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to enhance their privileges...
ROS-20260707-73-0039
The vulnerability in dovecot is related to insufficient validation of input data. Exploiting this vulnerability can allow a remote attacker to cause service failures...
ROS-20260707-73-0035
The vulnerability in dovecot is related to the lack of protection for service data. Exploiting this vulnerability can allow an unauthorized attacker to gain unauthorized access to protected information...
ROS-20260707-73-0053
The vulnerability in gpac is related to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
ROS-20260707-73-0033
The vulnerability in openbao is related to access control deficiencies. Exploiting this vulnerability can allow attackers to enhance their privileges...