253 matches found
Arcserve Unified Data Protection - Authentication Bypass
An authentication bypass vulnerability exists in Arcserve Unified Data Protection 9.2 and 8.1 in the edge-app-base-webui.jar!com.ca.arcserve.edge.app.base.ui.server.EdgeLoginServiceImpl.doLogin function within wizardLogin. id: CVE-2024-0799 info: name: Arcserve Unified Data Protection -...
RHEL 9 : poppler (RHSA-2026:0799)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:0799 advisory. Poppler is a Portable Document Format PDF rendering library, used by applications such as Evince. Security Fixes: poppler: Out-of-Bounds Read in...
MiracleLinux 7 : openssl-1.0.1e-51.el7.5 (AXSA:2016-230:03)
The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2016-230:03 advisory. The OpenSSL toolkit provides support for secure communications between machines. OpenSSL includes a certificate management tool and shared libraries...
CVE-2021-0799
In ActivityThread.java, there is a possible way to collide the content provider's authorities. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12Android ID: A-1976479...
CVE-2011-0799
Unspecified vulnerability in the Oracle Warehouse Builder component in Oracle Database Server 10.2.0.5 OWB, 11.1.0.7, and 11.2.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to Oracle Warehouse Builder User Account...
CVE-2023-0799
creationtimestamp| type| source ---|---|--- 2025-03-21 19:19:44+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/8412...
Security Bulletin: IBM App Connect Enterprise Certified Container is vulnerable to an attacker with deploy privilege [CVE-2025-0799]
Summary IBM App Connect Enterprise Certified Container is vulnerable to an attacker with deploy privilege. Malicious bar files could allow an attacker with deploy privilege to write arbitrary files in the container for a running IBM App Connect Enterprise Certified Container IntegrationRuntime or...
Linux Distros Unpatched Vulnerability : CVE-2023-0799
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3701, allowing attackers to cause a denial-of-service via a crafted tiff file. For users...
CVE-2025-0799
IBM App Connect enterprise 12.0.1.0 through 12.0.12.10 and 13.0.1.0 through 13.0.2.1 could allow an authenticated user to write to an arbitrary file on the system during bar configuration deployment due to improper pathname limitations on restricted directories...
CVE-2025-0799
Summary: CVE-2025-0799 affects IBM App Connect Enterprise and related Certified Container components. An authenticated user could exploit a path traversal flaw during bar configuration deployment to write arbitrary files, due to improper pathname restrictions on restricted directories. Affected v...
CVE-2025-0799 IBM App Connect Enterprise Arbitrary File Write
IBM App Connect enterprise 12.0.1.0 through 12.0.12.10 and 13.0.1.0 through 13.0.2.1 could allow an authenticated user to write to an arbitrary file on the system during bar configuration deployment due to improper pathname limitations on restricted directories...
Security Bulletin: IBM App Connect Enterprise is vulnerable to an attacker with deploy privilege (CVE-2025-0799)
Summary Malicious bar files could allow an attacker with deploy privilege to write arbitrary files on the file system for a running IBM App Connect Enterprise installation. Vulnerability Details CVEID:CVE-2025-0799 DESCRIPTION: IBM App Connect enterprise could allow an authenticated user to write...
Photon OS 4.0: Libtiff PHSA-2023-4.0-0417
An update of the libtiff package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-4.0-0417. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Arcserve UDP Console Authentication Bypass (CVE-2024-0799)
Binary data arcserveudpcve-2024-0799.nbin...
CVE-2024-0799
creationtimestamp| type| source ---|---|--- 2024-03-13 20:23:04+00:00| seen| https://t.me/ctinow/207115 2024-03-13 20:27:44+00:00| seen| https://t.me/ctinow/207121 2024-03-14 12:41:05+00:00| published-proof-of-concept| https://t.me/ctinow/207672 2024-05-14 18:10:04+00:00|...
CVE-2024-0799
Arcserve UDP (Arcserve Unified Data Protection) 8.1–9.2 is affected by an authentication bypass in edge-app-base-webui.jar, specifically EdgeLoginServiceImpl.doLogin() within wizardLogin. The vulnerability enables bypassing authentication and unauthorized access. Documented impacted versions: 8.1...
CVE-2024-0799 Authentication Bypass via wizardLogin in Arcserve Unified Data Protection
An authentication bypass vulnerability exists in Arcserve Unified Data Protection 9.2 and 8.1 in the edge-app-base-webui.jar!com.ca.arcserve.edge.app.base.ui.server.EdgeLoginServiceImpl.doLogin function within wizardLogin...
CVE-2024-0799 Authentication Bypass via wizardLogin in Arcserve Unified Data Protection
An authentication bypass vulnerability exists in Arcserve Unified Data Protection 9.2 and 8.1 in the edge-app-base-webui.jar!com.ca.arcserve.edge.app.base.ui.server.EdgeLoginServiceImpl.doLogin function within wizardLogin...
RHEL 8 : Red Hat Single Sign-On 7.6.7 security update on RHEL 8 (Important) (RHSA-2024:0799)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:0799 advisory. Red Hat Single Sign-On 7.6 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single...
BELL-CVE-2023-0799 CVE-2023-0799 does not affect BellSoft software
Bulletin has no description...