8599 matches found
ROS-20260707-73-0021
The vulnerability of the ECDSA Elliptic Curve Digital Signature Algorithm algorithm in the PuTTY cryptographic protection tool is related to an uncontrolled and exploitable assertion. Exploiting this vulnerability could allow a malicious actor, operating remotely, to cause service failures...
ROS-20260707-73-0018
The vulnerability in freerdp3 is related to a memory reclamation error. Exploiting this vulnerability can allow an attacker to cause a service failure...
ROS-20260707-73-0017
The vulnerability of the gdiCreateSurface function in the RDP client FreeRDP is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code and cause a service failure by sending specially crafted RDPGFX packets...
ROS-20260707-73-0041
The vulnerability in dovecot is related to manipulating an unknown input, resulting in a time mismatch vulnerability. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information...
ROS-20260707-73-0026
The vulnerability in ImageMagick7 is related to insufficient resource control during its existence. Exploiting this vulnerability can allow an attacker to cause a service failure...
ROS-20260707-73-0019
The vulnerability in freerdp3 is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
ROS-20260707-73-0022
The vulnerability of the Telnet protocol implementation in the cryptographic protection tool PuTTY is related to errors in information representation by the user interface. Exploiting this vulnerability allows a malicious actor to perform spoofing attacks remotely...
ROS-20260707-73-0020
The vulnerability of the cliprdrserverreceivepdu function in the RDP client FreeRDP is related to buffer overflows in dynamic memory during the processing of the capabilitySetLength parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrary code and cause service...
ROS-20260707-73-0024
The vulnerability of the systemās application programming interface for aggregating and storing Loki logs is related to an incorrect limitation on the path name to the catalog. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protecte...
ROS-20260707-73-0033
The vulnerability in openbao is related to access control deficiencies. Exploiting this vulnerability can allow attackers to enhance their privileges...
ROS-20260707-73-0007
The vulnerability in zabbix7-lts is related to insufficient protection of registration data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...
ROS-20260707-73-0027
The vulnerability in Apache Kafka is related to deficiencies in the authentication process. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...
ROS-20260707-73-0009
The vulnerability in jq is related to integer overflow. Exploiting this vulnerability can allow an attacker to cause a service failure...
ROS-20260707-73-0025
The vulnerability in ImageMagick is related to insufficient control over resources during its existence. Exploiting this vulnerability can allow an attacker to cause a service failure...
ROS-20260707-73-0034
The vulnerability of Nomad application orchestrators is related to the incorrect definition of symbolic links before accessing files. Exploiting this vulnerability allows an attacker to gain access to and read/write arbitrary files...
ROS-20260707-73-0006
The vulnerability in zabbix-lts is related to insufficient protection of registration data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...
ROS-20260707-73-0008
A vulnerability in Zabbix 7.4 is related to insufficient protection of registration data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...
ROS-20260707-73-0005
The vulnerability of the user interface of the Zabbix monitoring system is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to execute arbitrary code, provided that the user opens a specially crafted link...
ROS-20260707-73-0015
The vulnerability in gpac is related to the lack of checks for division by zero. Exploiting this vulnerability can allow an attacker to cause a service failure...
ROS-20260707-73-0016
The vulnerability in gpac is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
ROS-20260707-73-0028
The vulnerability in Python-Django relates to the exposure of information through caching. Exploiting this vulnerability allows an attacker to gain access to the memory of a supervisor machine or other virtual machines. This can be achieved by implementing attacks through secondary channels,...
ROS-20260707-73-0031
The vulnerability in Python-Django is related to insufficient registry checks. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
ROS-20260707-73-0012
The vulnerability in ImageMagick7 is related to incorrect calculations. Exploiting this vulnerability can allow an attacker to cause a service failure...
ROS-20260707-73-0013
The vulnerability in libexif is related to integer overflow. Exploiting this vulnerability could allow an attacker to cause a service failure...
ROS-20260707-73-0002
The vulnerability of the user interface of the Zabbix monitoring system is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to execute arbitrary JavaScript code remotely...
ROS-20260707-73-0004
The vulnerability of the user interface of the Zabbix monitoring system is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to execute arbitrary code, provided that the user opens a specially crafted link...
ROS-20260707-73-0010
The vulnerability in rubygem-yard is related to an incorrect restriction on the path name to the restricted access catalog. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information...
ROS-20260707-73-0030
The vulnerability in Python-Django is related to incorrect verification of the cryptographic signature. Exploiting this vulnerability allows an attacker to execute arbitrary code...
ROS-20260707-73-0003
The vulnerability of the user interface of the Zabbix monitoring system is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to execute arbitrary JavaScript code remotely...
ROS-20260707-73-0023
The vulnerability of the sshrsakexfreekey function in the PuTTY cryptographic protection tool is related to a memory reclamation error. Exploiting this vulnerability could allow an attacker to cause a service failure remotely...
ROS-20260707-73-0011
The vulnerability in ImageMagick is related to incorrect calculations. Exploiting this vulnerability can allow an attacker to cause a service failure...
ROS-20260707-73-0001
The vulnerability of the user interface of the Zabbix monitoring system is related to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to execute arbitrary JavaScript code remotely...
ROS-20260707-73-0032
The vulnerability in Python-Django is related to the transmission of data in an open manner. Exploiting this vulnerability can allow a remote attacker to gain unauthorized access to protected information...
ROS-20260707-73-0029
The vulnerability in Python-Django is related to incomplete comparisons with missing factors. Exploiting this vulnerability can allow attackers to bypass existing security restrictions...
ROS-20260707-73-0014
The vulnerability of the gdiCacheToSurface function in the RDP client FreeRDP is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code and cause a service failure by sending specially crafted RDPGFX packets...
ROS-20260707-73-0036
The vulnerability of the Go programming languageās crypto/x509 component is related to the lack of input validation for cyclic operations. Exploiting this vulnerability can allow an attacker to cause service failures remotely...
ROS-20260707-73-0037
The vulnerability of the Go programming languageās MIME component is related to its algorithmic complexity. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause service failures by using a specially created MIME header...
ROS-20260706-73-0066
The vulnerability of the gfodfac4cfgdsiv1 function, implemented by the MP4Box component of the GPAC multimedia platform, is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...
ROS-20260706-73-0048
The vulnerability in gpac is related to the lack of memory release after the effective lifespan has ended. Exploiting this vulnerability can allow an attacker to cause a service failure...
ROS-20260706-73-0047
The vulnerability of the refint module in the PostgreSQL database management system is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
ROS-20260706-73-0052
The vulnerability in gpac is related to the swapping of the zero pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...
ROS-20260706-73-0051
The vulnerability of the dasherprocess function in the MP4Box packaging tool of the GPAC multimedia platform relates to the possibility of exploiting memory after it is freed. Exploiting this vulnerability could allow an attacker to cause a service failure...
ROS-20260706-73-0050
The vulnerability in pdns-recursor is related to errors in the use of standard permissions. Exploiting this vulnerability can allow a hacker to enhance their privileges...
ROS-20260706-73-0054
The vulnerability of the m2tsdmxsendpacket function, implemented by the MP4Box packaging tool of the GPAC multimedia platform, is related to buffer overflows in dynamic memory. Exploiting this vulnerability could allow an attacker to cause a service failure...
ROS-20260706-73-0053
The vulnerability in frr is related to the improper assignment of privileges. Exploiting this vulnerability can allow an attacker to enhance their privileges...
ROS-20260706-73-0056
The vulnerability of the ALTER SUBSCRIPTION...REFRESH PUBLICATION command in PostgreSQL database management systems lies in the lack of protective measures for SQL query structures. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL queries remotely...
ROS-20260706-73-0057
The vulnerability of the ALTER SUBSCRIPTION...REFRESH PUBLICATION command in PostgreSQL database management systems lies in the lack of protective measures for SQL query structures. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL queries remotely...
ROS-20260706-73-0063
The vulnerability of the gfmediagetcolorinfo function in the MP4Box packaging tool of the GPAC multimedia platform is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...
ROS-20260706-73-0061
The vulnerability in python-virtualenv is related to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker to cause a service failure...
ROS-20260706-73-0060
The vulnerability in Python-Starlette is related to an uncontrolled resource consumption. Exploiting this vulnerability can allow a malicious actor to cause service failures...