VU#127371: iOS contains an unspecified kernel vulnerability
iOS contains an unspecified kernel vulnerability. This vulnerability can allow code execution with kernel privileges. This vulnerability is …
CERT
VU#534195: Bluetooth devices supporting LE and specific BR/EDR implementations are vulnerable to method confusion attacks
Bluetooth is a short-range wireless technology based off of a core specification that defines six different core configurations,including …
VU#647177: Bluetooth devices supporting BR/EDR are vulnerable to impersonation attacks
Bluetooth is a short-range wireless technology based off of a core specification that defines six different core configurations,including …
VU#366027: Samsung Qmage codec for Android Skia library does not properly validate image files
The Samsung May 2020 Android Security Update notes that”a possible memory overwrite vulnerability in Quram qmg library allows possible …
VU#660597: Periscope BuySpeed is vulnerable to stored cross-site scripting
Periscope BuySpeed is a”tool to automate the full procure-to-pay process efficiently and intelligently”. BuySpeed version 14.5 is …
VU#962085: Versiant LYNX Customer Service Portal is vulnerable to stored cross-site scripting
The Versiant LYNX Customer Service Portal(CSP)is a”full-service customer portal that provides real-time information to terminal operators …
VU#944837: Vertiv Avocent UMG-4000 vulnerable to command injection and cross-site scripting vulnerabilities
The Vertiv Avocent UMG-4000 contains multiple vulnerabilities that could allow an authenticated attacker with administrative privileges to …
VU#354840: Microsoft Windows Type 1 font parsing remote code execution vulnerabilities
Adobe Type Manager,which is provided by atmfd.dll,is a kernel module that is provided by Windows and provides support for OpenType fonts. …
VU#425163: Machine learning classifiers trained via gradient descent are vulnerable to arbitrary misclassification attack
This vulnerability results from using gradient descent to determine classification of inputs via a neural network. As such,it is a …
VU#872016: Microsoft SMBv3 compression remote code execution vulnerability
Microsoft Server Message Block 3.1.1(SMBv3)contains a vulnerability in the way that it handles connections that use compression. This …