EUVD-2020-12598

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2020-1773

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An attacker with the ability to generate session IDs or password reset tokens, either by being able to authenticate or by exploiting OSA-2020-09, may be able to...

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization in the workflow component. An attacker can gain unauthorized access to modify workflow definitions and execute arbitrary code by exploiting insufficient permission checks via the headless API. Remediation Upgrade...

.NET 6.0 security update

6.0.126-1.0.1 - Add support for Oracle Linux 6.0.126-1 - Update to .NET SDK 6.0.126 and Runtime 6.0.26 6.0.125-1 - Update to .NET SDK 6.0.125 and Runtime 6.0.25...

2024-01 .NET 6.0.26 Security Update for ARM64 Client (KB5033733)

2024-01 .NET 6.0.26 Security Update for ARM64 Client KB5033733...

2024-01 .NET 6.0.26 Security Update for x86 Client (KB5033733)

2024-01 .NET 6.0.26 Security Update for x86 Client KB5033733...

2024-01 .NET 6.0.26 Security Update for x64 Client (KB5033733)

2024-01 .NET 6.0.26 Security Update for x64 Client KB5033733...

SUSE CVE-2010-1157

Apache Tomcat 5.5.0 through 5.5.29 and 6.0.0 through 6.0.26 might allow remote attackers to discover the server's hostname or IP address by sending a request for a resource that requires 1 BASIC or 2 DIGEST authentication, and then reading the realm field in the WWW-Authenticate header in the rep...

CVE-2020-1771

Attacker is able craft an article with a link to the customer address book with malicious content JavaScript. When agent opens the link, JavaScript code is executed due to the missing parameter encoding. This issue affects: OTRS Community Edition: 6.0.26 and prior versions. OTRS: 7.0.15 and prior...

CVE-2020-1773

An attacker with the ability to generate session IDs or password reset tokens, either by being able to authenticate or by exploiting OSA-2020-09, may be able to predict other users session IDs, password reset tokens and automatically generated passwords. This issue affects OTRS Community Edition:...

CVE-2020-1773

An attacker with the ability to generate session IDs or password reset tokens, either by being able to authenticate or by exploiting OSA-2020-09, may be able to predict other users session IDs, password reset tokens and automatically generated passwords. This issue affects OTRS Community Edition:...

PT-2020-15048 · Otrs +2 · Otrs +3

Name of the Vulnerable Software and Affected Versions: OTRS Community Edition versions 6.0.26 and prior OTRS versions 7.0.15 and prior Description: The issue allows an attacker to craft an article with a link to the customer address book containing malicious JavaScript content. When an agent open...

Security fix for the ALT Linux 5 package tomcat6 version 0:6.0.26-alt2_11jpp6

Oct. 18, 2010 Igor Vlasenko 0:6.0.26-alt211jpp6 - CVE-2010-2227 fix closes: 23779...

Fixed in Apache Tomcat 6.0.28

Important: Remote Denial Of Service and Information Disclosure Vulnerability CVE-2010-2227 Several flaws in the handling of the 'Transfer-Encoding' header were found that prevented the recycling of a buffer. A remote attacker could trigger this flaw which would cause subsequent requests to fail...