CVE-2021-41557

Sofico Miles RIA 2020.2 Build 127964T is affected by Stored Cross Site Scripting XSS. An attacker with access to a user account of the RIA IT or the Fleet role can create a crafted work order in the damage reports section or change existing work orders. The XSS payload is in the work order number...

EUVD-2020-4991

Malware in sbrugna...

EUVD-2020-3512

Malware in sbrugna...

CVE-2021-25773

JetBrains TeamCity before 2020.2 was vulnerable to reflected XSS on several pages...

CVE-2021-46160

A vulnerability has been identified in Simcenter Femap V2020.2 All versions, Simcenter Femap V2021.1 All versions. Affected application contains an out of bounds write past the end of an allocated structure while parsing specially crafted NEU files. This could allow an attacker to execute code in...

CVE-2021-46151

A vulnerability has been identified in Simcenter Femap V2020.2 All versions, Simcenter Femap V2021.1 All versions. Affected application contains an out of bounds write past the end of an allocated structure while parsing specially crafted NEU files. This could allow an attacker to execute code in...

CVE-2021-46158

A vulnerability has been identified in Simcenter Femap V2020.2 All versions, Simcenter Femap V2021.1 All versions. Affected application contains a stack based buffer overflow vulnerability while parsing NEU files. This could allow an attacker to execute code in the context of the current process...

PT-2022-12586 · Siemens · Simcenter Femap

Name of the Vulnerable Software and Affected Versions: Simcenter Femap V2020.2 All versions Simcenter Femap V2021.1 All versions Description: A memory corruption issue has been identified in the affected application while parsing NEU files. This could allow an attacker to execute code in the...

PT-2022-12590 · Siemens · Simcenter Femap

Name of the Vulnerable Software and Affected Versions: Simcenter Femap versions 2020.2 through 2021.1 Description: A memory corruption issue has been identified in the affected application while parsing NEU files. This could allow an attacker to execute code in the context of the current process...

PT-2022-12591 · Siemens · Simcenter Femap

Name of the Vulnerable Software and Affected Versions: Simcenter Femap V2020.2 All versions Simcenter Femap V2021.1 All versions Description: A stack-based buffer overflow vulnerability has been identified in the affected application while parsing NEU files. This could allow an attacker to execut...

CVE-2021-41557

CVE-2021-41557 affects Sofico Miles RIA 2020.2, build 127964T. The vulnerability is a Stored Cross Site Scripting (XSS) flaw in the work order number field within the damage reports section, exploitable by an attacker who already has a user account with IT or Fleet role access. The impact is desc...

Sofico Miles RIA 2020.2 Build 127964T Cross Site Scripting Vulnerability

Sofico Miles RIA version 2020.2 build 127964T suffers from a persistent cross site scripting vulnerability. ======================================================================= title: Stored Cross Site Scripting product: Sofico Miles RIA vulnerable version: 2020.2 build 127964T fixed version:...

Sofico Miles RIA 2020.2 Build 127964T Cross Site Scripting

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Stored Cross Site Scripting product: Sofico Miles RIA vulnerable version: 2020.2 build 127964T fixed version: 2020.2 build 128076 or higher CVE number: CVE-2021-41557...

Sofico Miles Ria跨站脚本漏洞

Sofico Miles Ria is a car rental management software from Sofico Belgium. A security vulnerability exists in Sofico Miles RIA version 2020.2 build 127964T, which allows an attacker to create a malicious work order in the damase report section or change an existing work order using a malicious...

CVE-2021-27387

A vulnerability has been identified in Simcenter Femap 2020.2 All versions V2020.2.MP3, Simcenter Femap 2021.1 All versions V2021.1.MP3. The femap.exe application lacks proper validation of user-supplied data when parsing FEMAP files. This could result in an out of bounds write past the end of an...

CVE-2021-27399

A vulnerability has been identified in Simcenter Femap 2020.2 All versions V2020.2.MP3, Simcenter Femap 2021.1 All versions V2021.1.MP3. The femap.exe application lacks proper validation of user-supplied data when parsing FEMAP files. This could result in an out of bounds write past the end of an...

CVE-2021-27387

A vulnerability has been identified in Simcenter Femap 2020.2 All versions V2020.2.MP3, Simcenter Femap 2021.1 All versions V2021.1.MP3. The femap.exe application lacks proper validation of user-supplied data when parsing FEMAP files. This could result in an out of bounds write past the end of an...

Jetbrains JetBrains TeamCity 代码问题漏洞

JetBrains TeamCity is a set of distributed build management and continuous integration tools from the Czech company JetBrains. The tool provides continuous unit testing, code quality analysis and build problem analysis reports and other features. A server-side request forgery vulnerability exists...

CVE-2021-27258

This vulnerability allows remote attackers to execute escalate privileges on affected installations of SolarWinds Orion Platform 2020.2. Authentication is not required to exploit this vulnerability. The specific flaw exists within the SaveUserSetting endpoint. The issue results from improper...

CVE-2021-25773

JetBrains TeamCity before 2020.2 was vulnerable to reflected XSS on several pages...