Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 U…

Internet Shortcut Files Security Feature Bypass Vulnerability

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 t…

SolarWinds Web Help Desk was found to be susceptible to a security control bypass vulnerability…

An issue was discovered on D-Link DIR-601 2.02NA devices. Being local to the network and having…

A sandbox bypass vulnerability exists in Jenkins Pipeline: Groovy Plugin 2.63 and earlier in po…

7-Zip Mark-of-the-Web Bypass Vulnerability. This vulnerability allows remote attackers to bypas…

An issue was discovered on WyreStorm Apollo VX20 devices before 1.3.58. Remote attackers can di…

A sandbox bypass vulnerability involving crafted constructor bodies in Jenkins Script Security …

SmartScreen Prompt Security Feature Bypass Vulnerability

Exim through 4.97.1 misparses a multiline RFC 2231 header filename, and thus remote attackers c…

In WinRAR versions prior to and including 5.61, there is path traversal vulnerability when craf…

Suricata before 4.0.4 is prone to an HTTP detection bypass vulnerability in detect.c and stream…

Artifex Ghostscript before 10.03.1 allows memory corruption, and SAFER sandbox bypass, via form…

A vulnerability is in the 'BSW_cxttongr.htm' page of the Netgear DGN2200, version DGN2200-V1.0.…

Protection mechanism failure in Windows Shell allows an unauthorized attacker to bypass a secur…

.NET Core and Visual Studio Information Disclosure Vulnerability

Protection mechanism failure in Windows Shell allows an unauthorized attacker to perform spoofi…

Because of a logical error in XSA-407 (Branch Type Confusion), the mitigation is not applied pr…

A vulnerability exists in curl <7.87.0 HSTS check that could be bypassed to trick it to keep us…

The issue was addressed with improved bounds checks. This issue is fixed in watchOS 9.5, tvOS 1…

Protection mechanism failure in MSHTML Framework allows an unauthorized attacker to bypass a se…

The smtplib library in CPython (aka Python) before 2.7.12, 3.x before 3.4.5, and 3.5.x before 3…

Protection mechanism failure in Windows GDI allows an unauthorized attacker to disclose informa…

An issue was discovered in vTech VCS754 version 1.1.1.A before 1.1.1.H, allows attackers to gai…

Windows Mark of the Web Security Feature Bypass Vulnerability

Windows Mark of the Web Security Feature Bypass Vulnerability

The update process of the Circle Parental Control Service on various NETGEAR routers allows rem…

When using Distributed Test only (RMI based), Apache JMeter 2.x and 3.x uses an unsecured RMI c…

Windows Mark of the Web Security Feature Bypass Vulnerability

n8n is an open source workflow automation platform. From version 1.0.0 to before 2.0.0, a sandb…

Dahua DHI-HCVR7216A-S3 devices with NVR Firmware 3.210.0001.10 2016-06-06, Camera Firmware 2.40…

IBM API Connect 5.0.0.0 through 5.0.8.6 could allow an unauthorized user to obtain sensitive in…

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installation…

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (comp…

Druide Antidote through 9.5.1 on Windows and Linux allows remote code execution through the upd…

An issue was found in Docker before 1.6.0. Some programs and scripts in Docker are downloaded v…

Cleartext transmission of sensitive information in Agora Video SDK prior to 3.1 allows a remote…

GIGABYTE BRIX UEFI firmware for the GB-BSi7H-6500 (version F6) and GB-BXi7-5775 (version F2) pl…

EMC Dantz Retrospect Backup Client 7.5.116 sends the password hash in cleartext at an unspecifi…