14 matches found
EUVD-2018-16969
Malware in sbrugna...
CVE-2020-16969
creationtimestamp| type| source ---|---|--- 2020-10-17 02:48:48+00:00| seen| https://t.me/cibsecurity/15356...
CVE-2020-16969
An information disclosure vulnerability exists in how Microsoft Exchange validates tokens when handling certain messages. An attacker who successfully exploited the vulnerability could use this to gain further information from a user. To exploit the vulnerability, an attacker could include...
CVE-2020-16969
CVE-2020-16969 affects Microsoft Exchange Server. It is an information-disclosure vulnerability rooted in how tokens are validated when handling certain messages. An attacker could craft OWA messages that are loaded from an attacker-controlled URL, enabling information disclosure without warning....
CVE-2020-16969 Microsoft Exchange Information Disclosure Vulnerability
...
Security Updates for Exchange (October 2020)
The Microsoft Exchange Server installed on the remote host is missing a security update. It is, therefore, affected by the following vulnerability : - An information disclosure vulnerability exists in how Microsoft Exchange validates tokens when handling certain messages. An attacker who...
Vulnerability fixed in Microsoft Exchange Server
Microsoft has fixed a vulnerability that could allow an authenticated malicious party potentially able to gain access to sensitive systems. Microsoft Exchange Server: |---------------|------|-------------------------------------| | CVE ID | CVSS | Impact |...
KLA11975 OSI vulnerability in Microsoft Exchange Server
An information disclosure vulnerability was found in Microsoft Exchange Server. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2020-16969 Related products Microsoft-Exchange-Server CVE list CVE-2020-16969 high KB list 4581424 Solution Insta...
CVE-2017-16969
This CVE entry is rejected and not used; it does not represent an active vulnerability entry.
CVE-2017-16969
...
CVE-2019-16969
In FusionPBX up to 4.5.7, the file app\fifolist\fifointeractive.php uses an unsanitized "c" variable coming from the URL, which is reflected in HTML, leading to XSS...
CVE-2019-16969
FusionPBX vulnerable to cross-site scripting (XSS) in versions up to 4.5.7 due to an unsanitized URL parameter c in the file app/fifo_list/fifo_interactive.php, which is reflected in HTML. The root cause is the reflection of an unsanitized input from the URL. Impact is client-side code execution ...
CVE-2018-16969
Citrix ShareFile StorageZones Controller prior to 5.4.2 has CVE-2018-16969: Information Exposure Through an Error Message. The issue affects all supported versions before 5.4.2 and can disclose local file system paths via error messages. Exploitation requires a compromised or malicious ShareFile ...
CVE-2018-16969
creationtimestamp| type| source ---|---|--- 2018-09-26 17:03:25+00:00| seen| MISP/5babba3a-a22c-475a-b957-2ae30a021402...