20 matches found
CVE-2024-30216
Cash Management in SAP S/4 HANA does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. By exploiting this vulnerability, attacker can add notes in the review request with 'completed' status affecting the integrity of the application...
CVE-2023-30216
Insecure permissions in the updateUserInfo function of newbee-mall before commit 1f2c2dfy allows attackers to obtain user account information...
CVE-2025-30216
CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. In versions 1.3.3 and prior, a Heap Overflow vulnerability occurs in t...
CVE-2025-30216
creationtimestamp| type| source ---|---|--- 2025-03-25 20:40:22+00:00| seen| https://bsky.app/profile/cyberalerts.bsky.social/post/3lla4xenrw42v 2025-03-25 21:05:01+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lla6dgqizm26 2025-03-25 23:40:54+00:00| seen|...
CVE-2025-30216
CryptoLib SDLS-EP (NASA cFS) has a heap overflow in Crypto_TM_ProcessSecurity for TM packets. In versions total packet length, memcpy into p_new_dec_frame overflows. Impact: potential arbitrary code execution or system instability. Remediation: patch available at commit 810fd66d592c883125272fef1...
CVE-2025-30216 CryptoLib Has Heap Overflow in Crypto_TM_ProcessSecurity due to Unchecked Secondary Header Length
CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. In versions 1.3.3 and prior, a Heap Overflow vulnerability occurs in t...
CVE-2025-30216 CryptoLib Has Heap Overflow in Crypto_TM_ProcessSecurity due to Unchecked Secondary Header Length
CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. In versions 1.3.3 and prior, a Heap Overflow vulnerability occurs in t...
CVE-2024-30216 Missing Authorization check in SAP S/4 HANA (Cash Management)
Cash Management in SAP S/4 HANA does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. By exploiting this vulnerability, attacker can add notes in the review request with 'completed' status affecting the integrity of the...
CVE-2023-30216
creationtimestamp| type| source ---|---|--- 2023-05-05 00:37:13+00:00| seen| https://t.me/cibsecurity/63324...
CVE-2023-30216
Insecure permissions in the updateUserInfo function of newbee-mall before commit 1f2c2dfy allows attackers to obtain user account information...
CVE-2023-30216
The CVE-2023-30216 entry affects the open-source e-commerce system newbee-mall prior to commit 1f2c2dfy, where the updateUserInfo function has insecure permissions. This configuration flaw allows attackers to obtain user account information, as described across multiple sources. Root cause: impro...
CVE-2022-30216 - Authentication coercion of the Windows ?Server? service
In this blog, see how an off-by-one error could lead to domain controller access in Microsoft Server Service...
CVE-2022-30216 - Authentication coercion of the Windows “Server” service
In this blog, see how an off-by-one error could lead to domain controller access in Microsoft Server Service...
CVE-2022-30216
creationtimestamp| type| source ---|---|--- 2022-07-13 02:25:39+00:00| seen| https://t.me/cibsecurity/46114 2022-07-13 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=833 2022-08-16 17:26:56+00:00| seen| https://t.me/cibsecurity/48220 2024-10-10 18:59:18+00:00|...
CVE-2022-30216
Windows Server Service Tampering Vulnerability...
CVE-2022-30216
Windows Server Service Tampering Vulnerability...
CVE-2022-30216 Windows Server Service Tampering Vulnerability
...
CVE-2022-30216
CVE-2022-30216 is a Windows Server Service Tampering vulnerability caused by an off-by-one error in the Windows Server Service, enabling authentication coercion that, per Akamai, could lead to domain controller access. Public writeups describe the issue as affecting Windows Server/Server Service ...
CVE-2021-30216
...
CVE-2021-30216
CVE-2021-30216 entry is rejected/not used; it does not represent an active vulnerability.