14 matches found
SUSE CVE-2017-1000065
Multiple Cross-site scripting XSS vulnerabilities in rpc.php in OpenMediaVault release 2.1 in Access Rights ManagementUsers functionality allows attackers to inject arbitrary web scripts and execute malicious scripts within an authenticated client's browser...
EUVD-2017-4614
Malware in sbrugna...
EUVD-2017-4610
Malware in sbrugna...
EUVD-2017-1385
Malware in sbrugna...
Portier encryption vulnerability
Portier is an access rights management application. Portier has an encryption vulnerability. An attacker can exploit the access encryption password to gain privileges...
CVE-2017-13096
The P1735 IEEE standard describes flawed methods for encrypting electronic-design intellectual property IP, as well as the management of access rights for such IP, including modification of Rights Block to remove or relax access control. The methods are flawed and, in the most egregious cases,...
CVE-2017-13097
The P1735 IEEE standard describes flawed methods for encrypting electronic-design intellectual property IP, as well as the management of access rights for such IP, including modification of Rights Block to remove or relax license requirement. The methods are flawed and, in the most egregious case...
CVE-2017-13096
CVE-2017-13096 concerns the IEEE P1735 standard where the Rights Block (RSA-encrypted AES key) can be modified to remove or relax access control. The connected sources document a cryptographic design flaw that enables an attacker with access to EDA tools or to the standard’s workflow to alter rig...
CVE-2017-13094
The CVE-2017-13094 entry concerns flaws in the IEEE P1735 cryptographic workflow for encrypting electronic-design IP. The available documents describe that the standard enables manipulation of the encryption key and insertion of hardware trojans into IP, potentially allowing an attacker to recove...
CVE-2017-1000065
Multiple Cross-site scripting XSS vulnerabilities in rpc.php in OpenMediaVault release 2.1 in Access Rights ManagementUsers functionality allows attackers to inject arbitrary web scripts and execute malicious scripts within an authenticated client's browser...
CVE-2017-1000065
Multiple Cross-site scripting XSS vulnerabilities in rpc.php in OpenMediaVault release 2.1 in Access Rights ManagementUsers functionality allows attackers to inject arbitrary web scripts and execute malicious scripts within an authenticated client's browser...
Cross site scripting
Multiple Cross-site scripting XSS vulnerabilities in rpc.php in OpenMediaVault release 2.1 in Access Rights ManagementUsers functionality allows attackers to inject arbitrary web scripts and execute malicious scripts within an authenticated client's browser...
CVE-2017-1000065
Multiple Cross-site scripting XSS vulnerabilities in rpc.php in OpenMediaVault release 2.1 in Access Rights ManagementUsers functionality allows attackers to inject arbitrary web scripts and execute malicious scripts within an authenticated client's browser...
CVE-2017-1000065
CVE-2017-1000065 involves multiple cross-site scripting (XSS) vulnerabilities in the OpenMediaVault 2.1 rpc.php component (Access Rights Management/Users). The affected element is not explicitly enumerated beyond rpc.php in OpenMediaVault 2.1; the root cause is described as XSS allowing an attack...