23 matches found
Astra Linux – Vulnerability in bluez
BlueZ before version 5.59 allows physically nearby attackers to cause a denial of service, as malformed and invalid capabilities can be processed in the profiles/audio/avdtp.c file...
BIT-CIVICRM-2023-25440
Stored Cross Site Scripting XSS vulnerability in the add contact function CiviCRM 5.59.alpha1, allows attackers to execute arbitrary code in first/second name field...
Cross site scripting
Stored Cross Site Scripting XSS vulnerability in the add contact function CiviCRM 5.59.alpha1, allows attackers to execute arbitrary code in first/second name field...
PT-2023-20063 · Civicrm +1 · Civicrm +1
Name of the Vulnerable Software and Affected Versions: CiviCRM version 5.59.alpha1 Description: A Stored Cross Site Scripting XSS issue exists in the add contact function, allowing attackers to execute arbitrary code in the first/second name field. Recommendations: For CiviCRM version 5.59.alpha1...
CVE-2023-25440
Stored Cross Site Scripting XSS vulnerability in the add contact function CiviCRM 5.59.alpha1, allows attackers to execute arbitrary code in first/second name field...
CVE-2023-25440
Stored Cross Site Scripting XSS vulnerability in the add contact function CiviCRM 5.59.alpha1, allows attackers to execute arbitrary code in first/second name field...
CVE-2023-25440
CVE-2023-25440 affects CiviCRM 5.59.alpha1. The vulnerability is a Stored Cross-Site Scripting (XSS) in the Add Contact function, exploitable via the first/second name fields, enabling an attacker to execute arbitrary scripts when the page loads. Multiple connected sources confirm the issue and r...
CVE-2023-25440
Stored Cross Site Scripting XSS vulnerability in the add contact function CiviCRM 5.59.alpha1, allows attackers to execute arbitrary code in first/second name field...
CiviCRM 跨站脚本漏洞
CiviCRM is an open source, cloud-based member relationship management CRM system developed specifically to meet the needs of nonprofit and association-based organizations. A cross-site scripting vulnerability exists in CiviCRM version 5.59 that stems from the presence of a cross-site scripting XS...
SUSE CVE-2018-2813
Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: DDL. Supported versions that are affected are 5.5.59 and prior, 5.6.39 and prior and 5.7.21 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to...
UBUNTU-CVE-2022-39177
BlueZ before 5.59 allows physically proximate attackers to cause a denial of service because malformed and invalid capabilities can be processed in profiles/audio/avdtp.c...
CVE-2022-39176
BlueZ before 5.59 allows physically proximate attackers to obtain sensitive information because profiles/audio/avrcp.c does not validate paramslen...
CVE-2022-39177
BlueZ before 5.59 allows physically proximate attackers to cause a denial of service because malformed and invalid capabilities can be processed in profiles/audio/avdtp.c...
CVE-2022-39176
BlueZ before 5.59 allows physically proximate attackers to obtain sensitive information because profiles/audio/avrcp.c does not validate paramslen...
CVE-2022-39177
BlueZ before 5.59 allows physically proximate attackers to cause a denial of service because malformed and invalid capabilities can be processed in profiles/audio/avdtp.c...
CVE-2022-39176
BlueZ before 5.59 allows physically proximate attackers to obtain sensitive information because profiles/audio/avrcp.c does not validate paramslen...
CVE-2022-39176
BlueZ before 5.59 allows physically proximate attackers to obtain sensitive information because profiles/audio/avrcp.c does not validate paramslen...
CVE-2022-39177
BlueZ before 5.59 allows physically proximate attackers to cause a denial of service because malformed and invalid capabilities can be processed in profiles/audio/avdtp.c...
BlueZ 安全漏洞
BlueZ is a Bluetooth protocol stack written in C, which is primarily used to provide support for the core Bluetooth layer and protocol. versions prior to BlueZ 5.59 have an input validation error vulnerability that stems from the failure of the profiles/audio/avrcp.c component to validate...
PT-2022-6907 · Bluez +3 · Bluez +3
Name of the Vulnerable Software and Affected Versions: BlueZ versions prior to 5.59 Description: The issue is related to insufficient input validation in the profiles/audio/avdtp.c component of the BlueZ package. This can be exploited by physically proximate attackers to cause a denial of service...