6 matches found
CVE-2023-42857
CVE-2023-42857 describes a privacy issue where private data redaction for log entries was improved. Affected platforms: macOS Sonoma 14.1, iOS 17.1, and iPadOS 17.1. Root cause: leakage of sensitive user data through logs due to insufficient redaction. Impact: an app may be able to access sensiti...
CVE-2022-42857
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2022. Notes: none...
CVE-2021-42857
creationtimestamp| type| source ---|---|--- 2022-03-10 20:18:56+00:00| seen| https://t.me/cibsecurity/38674...
CVE-2021-42857 Directory Traversal Partial Write at AgentDaServlet
It was discovered that the SteelCentral AppInternals Dynamic Sampling Agent's DSA AgentDaServlet has directory traversal vulnerabilities at the "/api/appInternals/1.0/agent/da/pcf" API. The affected endpoint does not have any validation of the user's input that allows a malicious payload to be...
CVE-2021-42857
The CVE-2021-42857 issue affects SteelCentral AppInternals Dynamic Sampling Agent (DSA) – AgentDaServlet. Affected component: the API at /api/appInternals/1.0/agent/da/pcf. Root cause: input in this endpoint is not validated, enabling directory traversal and potential injection of malicious paylo...
CVE-2022-42857
CVE-2022-42857 entry is rejected/not used; not an active vulnerability entry.