8 matches found
CVE-2024-34706 @valtimo/components exposes access token to form.io
Valtimo is an open source business process and case management platform. When opening a form in Valtimo, the access token JWT of the user is exposed to api.form.io via the the x-jwt-token header. An attacker can retrieve personal information from this token, or use it to execute requests to the...
CVE-2022-34706
Windows Local Security Authority LSA Elevation of Privilege Vulnerability...
CVE-2022-34706 Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability
...
CVE-2022-34706
Technical details about CVE-2022-34706 (affected products, root cause, impact, fixes) are not provided in the connected documents. Monitor for authoritative updates from Microsoft and CVE repositories.
CVE-2021-34706
creationtimestamp| type| source ---|---|--- 2021-10-07 00:32:37+00:00| seen| https://t.me/cibsecurity/30123...
CVE-2021-34706
CVE-2021-34706 concerns the Cisco Identity Services Engine (ISE) web-based management interface. The vulnerability is an XML External Entity (XXE) injection in the XML parser, allowing an authenticated, remote attacker to upload crafted XML to trigger external entity references. Reported impacts ...
CVE-2025-34706
...
CVE-2025-34706
This CVE entry is rejected/not used and does not represent an active vulnerability.