23 matches found
CVE-2024-20391
A vulnerability in the Network Access Manager NAM module of Cisco Secure Client could allow an unauthenticated attacker with physical access to an affected device to elevate privileges to SYSTEM. This vulnerability is due to a lack of authentication on a specific function. A successful exploit...
CVE-2022-20391
Summary:Product: AndroidVersions: Android SoCAndroid ID: A-238257000...
CVE-2020-20391
Cross Site Scripting vulnerability in GetSimpleCMS 3.4.0a in admin/snippets.php via 1 Add Snippet and 2 Save snippets...
CVE-2023-37335 Kofax Power PDF BMP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
Kofax Power PDF BMP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must...
CVE-2023-37335
CVE-2023-37335 affects Kofax Power PDF BMP file parsing. The flaw is a heap-based buffer overflow caused by insufficient validation of the length of user-supplied data before copying it into a fixed-length heap buffer. This can allow an attacker to execute arbitrary code in the context of the cur...
Debian dla-3572 : libyang-cpp-dev - security update
The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3572 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3572-1 [email protected]...
[SECURITY] [DLA 3572-1] libyang security update
Debian LTS Advisory DLA-3572-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany September 19, 2023 https://wiki.debian.org/LTS Package : libyang Version : 0.16.105+really1.0-0+deb10u1 CVE ID : CVE-2019-20391 CVE-2019-20392 CVE-2019-20393 CVE-2019-20394 CVE-2019-203...
CVE-2022-20391
Summary:Product: AndroidVersions: Android SoCAndroid ID: A-238257000...
CVE-2022-20391
CVE-2022-20391 is listed in the Android 2022-09-01 bulletin under Unisoc components with a High severity. The provided documents do not include explicit root-cause, exploit details, or affected Android versions beyond the bulletin’s context. remediation guidance, where provided, is to apply the 2...
CVE-2020-20391
creationtimestamp| type| source ---|---|--- 2021-06-23 18:17:40+00:00| seen| https://t.me/cibsecurity/25647...
CVE-2020-20391
CVE-2020-20391 targets GetSimpleCMS 3.4.0a, with a Cross-Site Scripting vulnerability in admin/snippets.php triggered via Add Snippet and Save snippets. The connected entries confirm the affected product/version and vulnerability type (XSS) but do not provide concrete root-cause details beyond th...
CVE-2021-20391
CVE-2021-20391 affects IBM QRadar User Behavior Analytics (QRadar UBA) add-on for QRadar SIEM, with versions 1.0.0–4.1.0 vulnerable to an information-disclosure issue where web pages can be stored locally and read by other users on the same system. The IBM Security Bulletin (E2FDAB2D4F6B1859F199A...
Security Bulletin: User Behavior Analytics application add on to IBM QRadar SIEM is vulnerable to cacheable SSL pages (CVE-2021-20391)
Summary User Behavior Analytics application add on to IBM QRadar SIEM is vulnerable to cacheable SSL pages. Vulnerability Details CVEID: CVE-2021-20391 DESCRIPTION: IBM QRadar User Behavior Analytics allows web pages to be stored locally which can be read by another user on the system. CVSS Base...
CVE-2019-20391
An invalid memory access flaw occurs in libyang in the function resolvefeaturevalue when an if-feature statement is used inside a bit. Applications that use libyang to process untrusted input YANG files may crash...
CVE-2019-20391
An invalid memory access flaw is present in libyang before v1.0-r3 in the function resolvefeaturevalue when an if-feature statement is used inside a bit. Applications that use libyang to parse untrusted input yang files may crash...
CVE-2019-20391
An invalid memory access flaw is present in libyang before v1.0-r3 in the function resolvefeaturevalue when an if-feature statement is used inside a bit. Applications that use libyang to parse untrusted input yang files may crash...
CVE-2019-20391
An invalid memory access flaw is present in libyang before v1.0-r3 in the function resolvefeaturevalue when an if-feature statement is used inside a bit. Applications that use libyang to parse untrusted input yang files may crash...
CVE-2019-20391
An invalid memory access flaw is present in libyang before v1.0-r3 in the function resolvefeaturevalue when an if-feature statement is used inside a bit. Applications that use libyang to parse untrusted input yang files may crash...
CVE-2019-20391
An invalid memory access flaw is present in libyang before v1.0-r3 in the function resolvefeaturevalue when an if-feature statement is used inside a bit. Applications that use libyang to parse untrusted input yang files may crash...
CVE-2019-20391
CVE-2019-20391 affects libyang before v1.0-r3. The flaw is an invalid memory access in resolve_feature_value() when an if-feature statement is used inside a bit, which may cause a crash when parsing untrusted YANG input. Impact details in sources indicate potential denial of service with crashes;...