Aggregator

A vulnerability was found in Oracle Primavera P6 Enterprise Project Portfolio Management up to 19.12.22/20.12.20/21.12.17/22.12.10 and classified as critical. Affected is an unknown function of the component Web. The manipulation results in denial of service. This vulnerability is reported as CVE-2023-5072. The attack can be launched remotely. No exploit exists.

A vulnerability marked as critical has been reported in Oracle Communications Pricing Design Center up to 12.0.0.8.0/15.0.0.0.0. Affected is an unknown function of the component REST Services Manager. This manipulation causes denial of service. This vulnerability is registered as CVE-2023-5072. Remote exploitation of the attack is possible. No exploit is available.

免责声明由于传播、利用本公众号红云谈安全所提供的信息而造成的任何直接或者间接的后果及损失，均由使用者本人负责

A vulnerability was found in vim 9.1.0000. It has been classified as problematic. Affected is the function __memmove_avx_unaligned_erms of the file memmove-vec-unaligned-erms.S. The manipulation leads to memory corruption. This vulnerability is documented as CVE-2025-9389. The attack needs to be performed locally. Additionally, an exploit exists. Some users are not able to reproduce this. One of the users mentions that this appears not to be working, "when coloring is turned on".

Защита данных пользователей важнее законов других стран.

一个黑客社区欢迎新手到资深人士加入，提供问答和学习资源，并邀请访问其Discord服务器。

这是一个开放的黑客社区论坛r/HowToHack,旨在帮助新手成长为地下技能专家。用户可以提问、解答和学习,并通过Discord(https://discord.gg/ep2uKUG)进行交流,目前有大量在线成员参与互动。

A vulnerability labeled as problematic has been found in Oracle GoldenGate up to 19.1.0.0.231017/21.12. This vulnerability affects unknown code of the component Oracle GoldenGate. Such manipulation leads to denial of service. This vulnerability is documented as CVE-2023-5072. The attack can be executed remotely. There is not any exploit available.

A vulnerability classified as critical was found in Oracle Commerce Guided Search 11.3.2. The impacted element is an unknown function of the component Workbench. The manipulation results in denial of service. This vulnerability is known as CVE-2023-5072. It is possible to launch the attack remotely. No exploit is available.

A vulnerability was found in Oracle Communications Convergence 3.0.3.3. It has been classified as critical. This issue affects some unknown processing of the component Configuration. This manipulation causes denial of service. The identification of this vulnerability is CVE-2023-5072. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability was found in JSON-Java. It has been classified as problematic. The impacted element is an unknown function of the component Parser. The manipulation leads to allocation of resources. This vulnerability is documented as CVE-2023-5072. The attack can be initiated remotely. There is not any exploit available. Upgrading the affected component is recommended.

A vulnerability categorized as critical has been discovered in Python Documentation 2/3. This vulnerability affects unknown code of the component Sorting. Executing manipulation can lead to incorrect calculation. This vulnerability is registered as CVE-2019-17514. It is possible to launch the attack remotely. No exploit is available. This vulnerability has historical importance owing to its background and reception. It is advisable to upgrade the affected component.

寻找基于科学参考的事实书籍而非轶事类作品的原因：教科书提供可应用于无限场景的原则，而仅靠故事需阅读大量书籍才能理解原则，浪费时间。

A vulnerability has been found in DCN DCME-720 9.1.5.11 and classified as critical. This affects an unknown function of the file /usr/local/www/function/audit/newstatistics/ip_block.php of the component Web Management Backend. Performing manipulation of the argument ip results in os command injection. This vulnerability is cataloged as CVE-2025-9387. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. Other products might be affected as well. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability described as critical has been identified in Linux Kernel up to 6.1.8. This affects the function trace_printk. The manipulation results in denial of service. This vulnerability is reported as CVE-2023-53007. The attacker must have access to the local network to execute the attack. No exploit exists. Upgrading the affected component is recommended.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 4.19.271/5.4.230/5.10.165/5.15.90/6.1.8. Affected by this issue is the function smbd_destroy. Executing manipulation can lead to use after free. This vulnerability is handled as CVE-2023-53006. The attack can only be done within the local network. There is not any exploit available. You should upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.4.230/5.10.165/5.15.90/6.1.8 and classified as critical. Affected by this vulnerability is the function __nla_validate_parse of the component netlink. Executing manipulation can lead to improper validation of array index. The identification of this vulnerability is CVE-2023-53000. The attack needs to be done within the local network. There is no exploit available. It is suggested to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 4.19.271/5.4.230/5.10.165/5.15.90/6.1.8. It has been declared as critical. This affects an unknown part of the file trace_events_hist.c. The manipulation results in null pointer dereference. This vulnerability is identified as CVE-2023-53005. The attack can only be performed from the local network. There is not any exploit available. It is recommended to upgrade the affected component.

A vulnerability marked as critical has been reported in Linux Kernel up to 6.1.8. The impacted element is the function drm_vma_node_allow. The manipulation leads to memory leak. This vulnerability is documented as CVE-2023-53002. The attack requires being on the local network. There is not any exploit available. It is suggested to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 5.4.230/5.10.165/5.15.90/6.1.8. Affected by this vulnerability is the function llcc_driv_data of the component LLCC Driver. Performing manipulation results in use after free. This vulnerability is known as CVE-2023-53003. Access to the local network is required for this attack. No exploit is available. It is advisable to upgrade the affected component.