68 matches found
CVE-2019-8580
Source-routed IPv4 packets were disabled by default. This issue is fixed in AirPort Base Station Firmware Update 7.8.1, AirPort Base Station Firmware Update 7.9.1. Source-routed IPv4 packets may be unexpectedly accepted...
CVE-2019-8580
CVE-2019-8580 affects Apple AirPort Base Station Firmware (AirPort Extreme/Time Capsule).}}
About the security content of AirPort Base Station Firmware Update 7.9.1
About the security content of AirPort Base Station Firmware Update 7.9.1 This document describes the security content of AirPort Base Station Firmware Update 7.9.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an...
CVE-2018-15530
Cross-site scripting XSS in the web interface of the Xerox ColorQube 8580 allows remote persistent injection of custom HTML / JavaScript code...
Cross site scripting
Cross-site scripting XSS in the web interface of the Xerox ColorQube 8580 allows remote persistent injection of custom HTML / JavaScript code...
CVE-2018-15530
Technical details about CVE-2018-15530 are not publicly provided in the supplied documents. Please monitor for updates from vendors and security advisories.
CVE-2018-15530
Cross-site scripting XSS in the web interface of the Xerox ColorQube 8580 allows remote persistent injection of custom HTML / JavaScript code...
CVE-2018-8580
creationtimestamp| type| source ---|---|--- 2019-02-01 12:53:41+00:00| seen| MISP/5c543c87-503c-4622-a292-0aa6ac12042b 2020-10-09 15:53:03+00:00| seen| MISP/0b0f374b-39b1-4229-891b-2defd31fe736 2025-01-28 21:01:59+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lgte2h2saz27...
CVE-2018-8580
CVE-2018-8580 is an information-disclosure vulnerability in Microsoft SharePoint Server where certain search modes are vulnerable to a CSRF-like cross-site search attack. An attacker can induce queries as a logged-in user to infer whether documents are present in search results, without exposing ...
Microsoft Windows Server 2012 Multiple Vulnerabilities (KB4025343)
This host is missing a critical security update according to Microsoft KB4025343 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2017-8580
Win32k in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an elevation of privilege vulnerability when it fails to properly handle objects in memory, ak...
Privilege escalation
Win32k in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an elevation of privilege vulnerability when it fails to properly handle objects in memory, ak...
CVE-2017-8580
Technical details for CVE-2017-8580 are not publicly available in the provided connected documents. Monitor for updates from authoritative sources to confirm affected products, root cause, impact, and any available mitigations or patches.
Microsoft Windows Kernel 'Win32k.sys' CVE-2017-8580 Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to execute arbitrary code with elevated privileges. Failed exploit attempts may result in a denial of service condition; this can result in the attacker gaining complete contro...
Alienvault OSSIMUSM 5.3.1 - PHP Object Injection
Alienvault OSSIMUSM 5.3.1 - PHP Object Injection Details ======= Product: Alienvault OSSIM/USM Vulnerability: PHP Object Injection Author: Peter Lapp, lappsec gmail com CVE: CVE-2016-8580 Vulnerable Versions: =5.3.1 Fixed Version: 5.3.2 Vulnerability Details ===================== A PHP object...
Alienvault OSSIM/USM 5.3.1 - PHP Object Injection Vulnerability
Exploit for php platform in category web applications Details ======= Product: Alienvault OSSIM/USM Vulnerability: PHP Object Injection Author: Peter Lapp, lappsec gmail com CVE: CVE-2016-8580 Vulnerable Versions: =5.3.1 Fixed Version: 5.3.2 Vulnerability Details ===================== A PHP objec...
Alienvault OSSIM/USM 5.3.1 PHP Object Injection
Details ======= Product: Alienvault OSSIM/USM Vulnerability: PHP Object Injection Author: Peter Lapp, lappsec gmail com CVE: CVE-2016-8580 Vulnerable Versions: =5.3.1 Fixed Version: 5.3.2 Vulnerability Details ===================== A PHP object injection vulnerability exists in multiple widget...
Alienvault OSSIM/USM 5.3.1 - PHP Object Injection
Details ======= Product: Alienvault OSSIM/USM Vulnerability: PHP Object Injection Author: Peter Lapp, lappsec gmail com CVE: CVE-2016-8580 Vulnerable Versions: =5.3.1 Fixed Version: 5.3.2 Vulnerability Details ===================== A PHP object injection vulnerability exists in multiple widget...
CVE-2016-8580
creationtimestamp| type| source ---|---|--- 2016-11-02 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/40682 2016-11-02 00:52:03+00:00| published-proof-of-concept| https://t.me/FullDisclosure/224...
CVE-2016-8580
Summary (concrete details): AlienVault OSSIM/USM before 5.3.2 is affected by a PHP object injection vulnerability caused by unsafe unserialize() usage in multiple widgets (flow_chart.php, gauge.php, honeypot.php, image.php, inventory.php, otx.php, rss.php, security.php, siem.php, taxonomy.php, ti...