8 matches found
CVE-2021-20038
A Stack-based buffer overflow vulnerability in SMA100 Apache httpd server's modcgi module environment variables allows a remote unauthenticated attacker to potentially execute code as a 'nobody' user in the appliance. This vulnerability affected SMA 200, 210, 400, 410 and 500v appliances firmware...
CVE-2021-20038
A Stack-based buffer overflow vulnerability in SMA100 Apache httpd server's modcgi module environment variables allows a remote unauthenticated attacker to potentially execute code as a 'nobody' user in the appliance. This vulnerability affected SMA 200, 210, 400, 410 and 500v appliances firmware...
Sonicwall SMA100 缓冲区错误漏洞
The Sonicwall SMA100 is a secure access gateway appliance from Sonicwall, Inc. A buffer error vulnerability in the modcgi module environment variable of the SonicWall SMA100 Apache httpd server allows an unauthenticated, remote attacker to potentially execute code as the nobody user in the device...
SonicWall Secure Mobile Access Arbitrary File Delete (SNWLID-2021-0021)
According to its self-reported version, the remote SonicWall Secure Mobile Access is affected by an arbitrary file delete vulnerability. An unauthenticated, remote attacker can exploit this to bypass authentication and delete arbitrary files. Note that Nessus has not tested for these issues but h...
Security Bulletin: IBM Cognos Business Intelligence is affected by a vulnerability.
Summary This bulletin addresses a cross-site scripting security vulnerability with IBM Cognos Business Intelligence. Vulnerability Details CVEID: CVE-2016-0217 DESCRIPTION: IBM Cognos Business Intelligence and IBM Cognos Analytics are vulnerable to stored cross-site scripting, caused by improper...
Security Bulletin: Several vulnerabilities in the libpng component of IBM Cognos Business Intelligence Server (CVE-2015-8126, CVE-2015-8472, CVE-2015-8540)
Summary Several vulnerabilities has been addressed in the libpng component of IBM Cognos Business Intelligence Server. Vulnerability Details CVEID: CVE-2015-8126 DESCRIPTION: libpng is vulnerable to a buffer overflow, caused by improper bounds checking by the pngsetPLTE and pnggetPLTE functions. ...
CVE-2017-1764
IBM Cognos Business Intelligence 10.2, 10.2.1, 10.2.1.1, and 10.2.2, under specialized circumstances, could expose plain text credentials to a local user. IBM X-Force ID: 136149...
CVE-2013-3030
The CVE-2013-3030 entry affects IBM Cognos Business Intelligence (BI) and Cognos Analytics platforms. Affected is the servlet gateway in IBM Cognos BI 10.2.1 and earlier (including 8.4.1 before IF3, 10.1.x before various IFs, and 10.2.1.x before IF1/IF2/IF4 as listed). The vulnerability allows re...