1235 matches found
GHSA-QM7X-RC44-RRQW Cross-site Scripting Vulnerability in GraphQL Playground (distributed by Apollo Server)
Impact In certain configurations, Apollo Server serves the client-side web app "GraphQL Playground" from the same web server that executes GraphQL operations. This web app has access to cookies and other credentials associated with the web server's operations. There is a cross-site scripting...
Cross-site Scripting Vulnerability in GraphQL Playground (distributed by Apollo Server)
Impact In certain configurations, Apollo Server serves the client-side web app "GraphQL Playground" from the same web server that executes GraphQL operations. This web app has access to cookies and other credentials associated with the web server's operations. There is a cross-site scripting...
DEBIAN-CVE-2021-39880
A Denial Of Service vulnerability in the apollouploadserver Ruby gem in GitLab CE/EE all versions starting from 11.9 before 14.0.9, all versions starting from 14.1 before 14.1.4, and all versions starting from 14.2 before 14.2.2 allows an attacker to deny access to all users via specially crafted...
UBUNTU-CVE-2021-39880
A Denial Of Service vulnerability in the apollouploadserver Ruby gem in GitLab CE/EE all versions starting from 11.9 before 14.0.9, all versions starting from 14.1 before 14.1.4, and all versions starting from 14.2 before 14.2.2 allows an attacker to deny access to all users via specially crafted...
GitLab 安全漏洞
GitLab is an open source, end-to-end software development platform from GitLab, Inc. with built-in version control, issue tracking, code review, CI/CD Continuous Integration and Continuous Delivery, and other features. A security vulnerability exists in GitLab CE/EE 11.11 and later that allows an...
PT-2021-22726 · Gitlab +1 · Gitlab Ce/Ee +2
Name of the Vulnerable Software and Affected Versions: GitLab CE/EE versions 11.9 through 14.0.8 GitLab CE/EE versions 14.1 through 14.1.3 GitLab CE/EE versions 14.2 through 14.2.1 Description: A Denial Of Service issue in the apollo upload server Ruby gem allows an attacker to deny access to all...
@apollosproject/data-connector-passes (>=0.8.7 <=1.7.1-alpha.8) potentially affected by CVE-2021-32691 via @apollosproject/data-connector-rock (>=0.8.7 <=1.8.0)
@apollosproject/data-connector-rock NPM version =0.8.7, =0.8.7, =1.7.1-alpha.8 Source cves: CVE-2021-32691 Source advisory: OSV:GHSA-R578-PJ6F-R4FF...
Directory Traversal Vulnerability in Apollo of Baidu Online Network Technology (Beijing) Co.
Apollo is an autonomous driving program released by Baidu that includes an open platform and an enterprise version of the solution. A directory traversal vulnerability exists in Apollo of Baidu Online Network Technology Beijing Co. that can be exploited by attackers to obtain sensitive informatio...
HPE Apollo 70 Buffer Overflow Vulnerability
The HPE Apollo 70 system is an Arm-based platform that delivers the density and scalability required for large HPC cluster deployments. A local buffer overflow vulnerability exists in the libifc.so uploadsshkey function in the Baseboard Management Controller BMC firmware in HPE Apollo 70 versions...
HPE Apollo 70 Command Injection Vulnerability
The HPE Apollo 70 system is an Arm-based platform that provides the density and scalability required for large HPC cluster deployments. A command injection vulnerability exists in the libifc.so uploadsshkey function in the Baseboard Management Controller BMC firmware in HPE Apollo 70 versions pri...
HPE Apollo 70 Path Traversal Vulnerability
The HPE Apollo 70 system is an Arm-based platform that provides the density and scalability required for large HPC cluster deployments. A path traversal vulnerability exists in the libifc.so webdeletesolvideofile function in the Baseboard Management Controller BMC firmware in HPE Apollo 70 versio...
HPE Apollo 70 Path Traversal Vulnerability (CNVD-2021-10582)
The HPE Apollo 70 system is an Arm-based platform that provides the density and scalability required for large HPC cluster deployments. A path traversal vulnerability exists in the libifc.so webdeletevideofile function in the Baseboard Management Controller BMC firmware in HPE Apollo 70 versions...
HPE Apollo 70 Buffer Overflow Vulnerability (CNVD-2021-10583)
The HPE Apollo 70 system is an Arm-based platform that provides the density and scalability required for large HPC cluster deployments. A local buffer overflow vulnerability exists in the libifc.so webgeneratesslcfg function in the Baseboard Management Controller BMC firmware in HPE Apollo 70...
HPE Apollo 70 Buffer Overflow Vulnerability (CNVD-2021-10580)
The HPE Apollo 70 system is an Arm-based platform that provides the density and scalability required for large HPC cluster deployments. A local buffer overflow vulnerability exists in the libifc.so webgetactivexcfg function in the Baseboard Management Controller BMC firmware in HPE Apollo 70...
HPE Apollo 70 Buffer Overflow Vulnerability (CNVD-2021-10581)
The HPE Apollo 70 system is an Arm-based platform that delivers the density and scalability required for large HPC cluster deployments. A local buffer overflow vulnerability exists in the libifc.so webgetactivexcfg function in the Baseboard Management Controller BMC firmware in HPE Apollo 70...
HPE Apollo 70 Buffer Overflow Vulnerability (CNVD-2021-10579)
The HPE Apollo 70 system is an Arm-based platform that provides the density and scalability required for large HPC cluster deployments. A local buffer overflow vulnerability exists in the libifc.so webifcsetadconfig function in the Baseboard Management Controller BMC firmware in HPE Apollo 70...
HPE Apollo 70 Command Injection Vulnerability (CNVD-2021-10577)
The HPE Apollo 70 system is an Arm-based platform that provides the density and scalability required for large HPC cluster deployments. A command injection vulnerability exists in the libifc.so websetdefaultlangcfg function in the Baseboard Management Controller BMC firmware in HPE Apollo 70...
HPE Apollo 70 Buffer Overflow Vulnerability (CNVD-2021-10578)
The HPE Apollo 70 system is an Arm-based platform that provides the density and scalability required for large HPC cluster deployments. A local buffer overflow vulnerability exists in the libifc.so websetlicensecfg function in the Baseboard Management Controller BMC firmware in HPE Apollo 70...
HPE Apollo 70 Buffer Overflow Vulnerability (CNVD-2021-10576)
The HPE Apollo 70 system is an Arm-based platform that provides the density and scalability required for large HPC cluster deployments. A local buffer overflow vulnerability exists in the libifc.so websetremoteimageinfo function in the Baseboard Management Controller BMC firmware in HPE Apollo 70...
HPE Apollo 70 Buffer Overflow Vulnerability (CNVD-2021-10574)
The HPE Apollo 70 system is an Arm-based platform that provides the density and scalability required for large HPC cluster deployments. A local buffer overflow vulnerability exists in the libifc.so websetservicecfg function in the Baseboard Management Controller BMC firmware in HPE Apollo 70...