rustfs 安全漏洞

RustFS is a high-performance object storage system developed by RustFS. Versions of RustFS prior to 1.0.0-alpha.94 contained security vulnerabilities. These vulnerabilities stemmed from a lack of authorization checks for administrator operations at the event notification target management API...

Ercom Cryptobox 安全漏洞

Ercom Cryptobox is an encrypted collaboration platform from the French company Ercom. A security vulnerability exists in Ercom Cryptobox that stems from susceptibility to cross-site request forgery attacks that could lead to an attacker executing operations as an administrator...

EUVD-2023-27570

Malicious code in bioql PyPI...

Putong Online Judge 访问控制错误漏洞

Putong Online Judge is an open source online judging software from acm309. An access control error vulnerability exists in versions prior to Putong Online Judge 2.1.0-beta.1. The vulnerability arises from the ability of an unprivileged user to elevate privileges via a build request, enabling the...

Design/Logic Flaw

A vulnerability in the OpenAPI of Cisco Secure Workload could allow an authenticated, remote attacker with the privileges of a read-only user to execute operations that should require Administrator privileges. The attacker would need valid user credentials. This vulnerability is due to improper...

CVE-2023-20136

A vulnerability in the OpenAPI of Cisco Secure Workload could allow an authenticated, remote attacker with the privileges of a read-only user to execute operations that should require Administrator privileges. The attacker would need valid user credentials. This vulnerability is due to improper...

CVE-2023-23470

IBM i 7.2, 7.3, 7.4, and 7.5 could allow an authenticated privileged administrator to gain elevated privileges in non-default configurations, as a result of improper SQL processing. By using a specially crafted SQL operation, the administrator could exploit the vulnerability to perform additional...

CVE-2023-23470 IBM i privilege escalation

IBM i 7.2, 7.3, 7.4, and 7.5 could allow an authenticated privileged administrator to gain elevated privileges in non-default configurations, as a result of improper SQL processing. By using a specially crafted SQL operation, the administrator could exploit the vulnerability to perform additional...

PT-2022-6667 · Cisco · Cisco Secure Workload

Name of the Vulnerable Software and Affected Versions: Cisco Secure Workload affected versions not specified Description: A vulnerability in the OpenAPI of Cisco Secure Workload could allow an authenticated, remote attacker with the privileges of a read-only user to execute operations that should...

Weak password vulnerability in Riptide IoT platform (CNVD-2021-29220)

Ruijie Networks is a specialized network vendor with a full range of network equipment product lines and solutions, including switches, routers, software, security firewalls, wireless products and storage. A weak password vulnerability exists in Ruijie's IoT platform, which can be exploited by an...

CVE-2005-1422

CVE-2005-1422 affects Raysoft/Raybase Video Cam Server 1.0.0 beta. The vulnerability allows remote attackers to perform administrator operations and trigger a denial of service by sending a direct request to admin.html . The connected documents confirm the affected product and impact but do not p...

CVE-2005-1422

Raysoft/Raybase Video Cam Server 1.0.0 beta allows remote attackers to conduct administrator operations and cause a denial of service server or camera shutdown via a direct request to admin.html...

CVE-2005-1422

Raysoft/Raybase Video Cam Server 1.0.0 beta allows remote attackers to conduct administrator operations and cause a denial of service server or camera shutdown via a direct request to admin.html...