In Task.java, there is a possible escalation of privilege due to a confused deputy. This could lead to local escalation of privilege with no additional…

The th_read() function doesn’t free a variable t->th_buf.gnu_longname after allocating memory, which may cause a memory leak. Zafiyet ile ilgili Genel Bilgi, Etki ve Çözümleri…

The th_read() function doesn’t free a variable t->th_buf.gnu_longlink after allocating memory, which may cause a memory leak. Zafiyet ile ilgili Genel Bilgi, Etki ve Çözümleri…

An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for…

An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for…

IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 could allow a privileged user to obtain sensitive Azure bot credential information. IBM X-Force ID: 226342. Zafiyet…

IBM Spectrum Scale Data Access Services (DAS) 5.1.3.1 could allow an authenticated user to insert code which could allow the attacker to manipulate cluster resources…

IBM Workload Scheduler 9.4 and 9.5 could allow a local user to overwrite key system files which would cause the system to crash. IBM X-Force…

A vulnerability in the handling of RSA keys on devices running Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could…

A vulnerability in the Clientless SSL VPN (WebVPN) component of Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote attacker to conduct browser-based…