The MsIo64.sys driver before 1.1.19.1016 in MSI Dragon Center before 2.0.98.0 has a buffer overflow that allows privilege escalation via a crafted 0x80102040,... weiterlesen

SonLogger before 6.4.1 is affected by user creation with any user permissions profile (e.g., SuperAdmin). An anonymous user can send a POST request to... weiterlesen

On Xerox AltaLink B8045/B8055/B8065/B8075/B8090 and C8030/C8035/C8045/C8055/C8070 multifunction printers with software releases before 101.00x.099.28200,... weiterlesen

SQL injection in admin.php in doctor appointment system 1.0 allows an unauthenticated attacker to insert malicious SQL queries via username parameter at... weiterlesen

A vulnerability, which was classified as problematic, has been found in GNU C Library 2.29/2.30/2.31/2.32/2.33 (Software Library). This issue affects an... weiterlesen

A vulnerability classified as critical was found in Advantech BB-ESWGP506-2SFP-T up to 1.01.09. This vulnerability affects an unknown function. The problem... weiterlesen

A vulnerability classified as critical has been found in OpenSLP (the affected version unknown). This affects some unknown processing of the component... weiterlesen

A vulnerability was found in VMware vCenter Server and Cloud Foundation (Server Management Software) (affected version not known). It has been rated as... weiterlesen

A vulnerability was found in Contec SolarView Compact SV-CPT-MC310 up to 6.4 and classified as critical. This issue affects an unknown code block of the... weiterlesen

A vulnerability has been found in Contec SolarView Compact SV-CPT-MC310 up to 6.4 and classified as critical. This vulnerability affects an unknown code.... weiterlesen

A vulnerability, which was classified as problematic, was found in Contec SolarView Compact SV-CPT-MC310 up to 6.4. This affects an unknown part. Upgrading... weiterlesen

In ytnef 1.9.3, the SwapWord function in lib/ytnef.c allows remote attackers to cause a denial-of-service (and potentially code execution) due to a heap... weiterlesen

... weiterlesen

... weiterlesen

... weiterlesen

In ytnef 1.9.3, the TNEFSubjectHandler function in lib/ytnef.c allows remote attackers to cause a denial-of-service (and potentially code execution) due... weiterlesen

... weiterlesen

... weiterlesen

Calling of non-existent provider in Samsung Members prior to version 2.4.81.13 (in Android O(8.1) and below) and 3.8.00.13 (in Android P(9.0) and above)... weiterlesen

Calling of non-existent provider in S Assistant prior to version 6.5.01.22 allows unauthorized actions including denial of service attack by hijacking... weiterlesen

Improper access control vulnerability in Samsung keyboard version prior to SMR Feb-2021 Release 1 allows physically proximate attackers to change in arbitrary... weiterlesen

... weiterlesen

A NULL pointer dereference flaw was found in the Linux kernel’s GPU Nouveau driver functionality in versions prior to 5.12-rc1 in the way the user... weiterlesen

Clustered Data ONTAP versions prior to 9.3P21, 9.5P16, 9.6P12, 9.7P9 and 9.8 are susceptible to a vulnerability which could allow a remote authenticated... weiterlesen

Improper lockscreen status check in cocktailbar service in Samsung mobile devices prior to SMR Mar-2021 Release 1 allows unauthenticated users to access... weiterlesen

Improper access control in Samsung Pay mini application prior to v4.0.14 allows unauthorized access to balance information over the lockscreen via scanning... weiterlesen

Improper access control in Samsung Pay mini application prior to v4.0.14 allows unauthorized access to contacts information over the lockscreen in specific... weiterlesen

Improper input check in wallpaper service in Samsung mobile devices prior to SMR Feb-2021 Release 1 allows untrusted application to cause permanent denial... weiterlesen

Improper access control in Samsung Pay mini application prior to v4.0.14 allows unauthorized access to balance information over the lockscreen in specific... weiterlesen

Improper address validation in HArx in Samsung mobile devices prior to SMR Mar-2021 Release 1 allows an attacker, given a compromised kernel, to corrupt... weiterlesen

Improper access control in NotificationManagerService in Samsung mobile devices prior to SMR Mar-2021 Release 1 allows untrusted applications to acquire... weiterlesen

An issue was discovered in AfterLogic Aurora through 8.5.3 and WebMail Pro through 8.5.3, when DAV is enabled. They allow directory traversal to create... weiterlesen

Clustered Data ONTAP versions prior to 9.3P21, 9.5P16, 9.6P12, 9.7P8 and 9.8 are susceptible to a vulnerability which could allow unauthorized tenant users... weiterlesen

Improper memory access control in RKP in Samsung mobile devices prior to SMR Mar-2021 Release 1 allows an attacker, given a compromised kernel, to write... weiterlesen

Improper access control in clipboard service in Samsung mobile devices prior to SMR Mar-2021 Release 1 allows untrusted applications to read or write certain... weiterlesen

In the Zstandard command-line utility prior to v1.4.1, output files were created with default permissions. Correct file permissions (matching the input)... weiterlesen

Beginning in v1.4.1 and prior to v1.4.9, due to an incomplete fix for CVE-2021-24031, the Zstandard command-line utility created output files with default... weiterlesen

... weiterlesen

... weiterlesen

In bPanel 2.0, the administrative ajax endpoints (aka ajax/aj_*.php) are accessible without authentication and allow SQL injections, which could lead to... weiterlesen

An issue was discovered in Scytl sVote 2.1. Because the sdm-ws-rest API does not require authentication, an attacker can retrieve the administrative configuration... weiterlesen

The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier, when processing invalid multi-byte input sequences in IBM1364, IBM1371,... weiterlesen

A vulnerability, which was classified as critical, has been found in libcaca 0.99.beta19. Affected by this issue is the function caca_resize of the file... weiterlesen

A vulnerability classified as critical was found in Artifex MuPDF 1.18.0 (Document Reader Software). Affected by this vulnerability is an unknown functionality.... weiterlesen

A vulnerability classified as critical has been found in libEBML up to 1.4.1. Affected is the function EbmlString::ReadData/EbmlUnicodeString::ReadData.... weiterlesen

A vulnerability was found in Directus up to 8.8.1. It has been rated as problematic. This issue affects some unknown processing of the component Password... weiterlesen

A vulnerability was found in Jasper up to 2.0.24 (Programming Tool Software). It has been declared as problematic. This vulnerability affects the function... weiterlesen

A vulnerability was found in Aruba ClearPass Policy Manager up to 6.7.14/6.8.8/6.9.4 (Policy Management Software). It has been classified as critical.... weiterlesen

A vulnerability was found in Aruba ClearPass Policy Manager up to 6.7.14/6.8.8/6.9.4 (Policy Management Software) and classified as critical. Affected... weiterlesen

A vulnerability has been found in Aruba ClearPass Policy Manager up to 6.7.14/6.8.8/6.9.4 (Policy Management Software) and classified as critical. Affected... weiterlesen