The vulnerability of the XWiki platform, caused by deficiencies in the authentication process, allows unauthorized users to gain access to protected information.

The vulnerability of the XWiki platform stems from deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the system administration program Sudo, related to deficiencies in the authentication process, allows attackers to escalate their privileges.

The vulnerability of the system administration program Sudo is related to deficiencies in the authentication process. Exploiting this vulnerability can allow attackers to increase their privileges...

PT-2023-6938 · Zoom · Zoom

Name of the Vulnerable Software and Affected Versions: Zoom affected versions not specified Description: The issue is related to improper authorization in some Zoom clients, which may allow an authorized user to conduct an escalation of privilege via network access. This is due to deficiencies in...

The vulnerability of the SAP CommonCryptoLib library, related to deficiencies in authentication procedures, allows attackers to read, modify, or delete data with limited access.

The vulnerability of the SAP CommonCryptoLib library is related to deficiencies in the authentication process. Exploiting this vulnerability could allow an attacker, operating remotely, to read, modify, or delete data with limited access...

The vulnerability of the software platforms for developing and managing Magento Open Source and Adobe Commerce online stores lies in the lack of authentication mechanisms. This allows attackers to access information about arbitrary user accounts.

The vulnerability of the Magento Open Source and Adobe Commerce software platforms for developing and managing online stores is related to deficiencies in authentication mechanisms. Exploiting this vulnerability could allow a malicious actor to access and disclose information about arbitrary user...

The vulnerability of the EisBaer SCADA system, caused by deficiencies in the authentication process, allows a intruder to execute arbitrary commands.

The vulnerability of the SCADA system EisBaer is due to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely...

The vulnerability of the software platforms for developing and managing Magento Open Source and Adobe Commerce online stores lies in the lack of authentication procedures, which allow attackers to circumvent existing security restrictions.

The vulnerability of the software platforms for developing and managing Magento Open Source and Adobe Commerce online stores is related to deficiencies in authentication procedures. Exploiting this vulnerability can allow a malicious actor to circumvent existing security restrictions remotely...

The administration panel of the Ivanti Sentry integrated mobile security firewall has vulnerabilities. These vulnerabilities allow a intruder to modify configurations, execute system commands, or write files to the system.

The vulnerability of the administration panel of the Ivanti Sentry integrated mobile security gateway is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor to modify configurations, execute system commands, or write files to the syst...

The vulnerability of the Libraries component of the Oracle Java SE software platform and the Oracle GraalVM Enterprise Edition virtual machine allows attackers to disclose protected information.

The vulnerability of the Libraries component of the Oracle Java SE software platform and the Oracle GraalVM Enterprise Edition virtual machine is related to deficiencies in the authentication process. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information...

The vulnerability of SAP NetWeaver AS ABAP and SAP NetWeaver ABAP integration platforms lies in the lack of authentication procedures, which allow attackers to escalate their privileges and gain unauthorized access to protected information.

The vulnerability of SAP NetWeaver AS ABAP and SAP NetWeaver ABAP software integration platforms is related to deficiencies in the authentication process. Exploiting this vulnerability can allow attackers to remotely enhance their privileges and gain unauthorized access to protected information...

The vulnerability of the TCP/IP protocol implementation in Windows operating systems allows attackers to carry out TCP/IP hijacking attacks.

The vulnerability of the TCP/IP protocol implementation in Windows operating systems is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to carry out a TCP/IP hijacking attack remotely...

The vulnerability of the EMUI operating system of HarmonyOS, related to deficiencies in the authentication process, allows a hacker to execute the display of advertisements or other random windows at any time.

The vulnerability of the EMUI operating system of HarmonyOS is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to initiate the display of advertisements or other random windows at any time...

The vulnerability of the TCP-AO protocol implementation in Juniper Networks’ Junos operating system allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the TCP-AO protocol implementation in Juniper Networks’ Junos operating system is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected...

The vulnerability of the application software interface of D-Link DIR-2150 router software allows a hacker to circumvent existing security restrictions.

The vulnerability of the application software interface for D-Link DIR-2150 routers is related to deficiencies in authentication procedures. Exploiting this vulnerability could allow a malicious actor to circumvent existing security restrictions remotely...

The vulnerability of the microprogramming software of the D-Link DIR-809 A1 and D-Link DIR-809 A2 lies in the lack of authentication procedures. This allows attackers to circumvent existing security restrictions and download the configuration file.

The vulnerability of the microprogramming software of the D-Link DIR-809 A1 and D-Link DIR-809 A2 is related to deficiencies in authentication procedures. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions and download the configuration file remotely...

The vulnerability of Backup Exec’s software for backup and data restoration lies in its lack of authentication procedures. This allows attackers to elevate their privileges and execute arbitrary commands.

The vulnerability of Backup Exec’s backup and recovery software is related to deficiencies in authentication procedures when using the SHA cryptographic algorithm. Exploiting this vulnerability allows a malicious actor to enhance their privileges and execute arbitrary commands...

The vulnerability of the Device-Gateway service of the Delta Electronics InfraSuite Device Master software for real-time device monitoring allows a perpetrator to increase their privileges.

The vulnerability of the Device-Gateway service of the Delta Electronics InfraSuite Device Master software for real-time device monitoring is related to deficiencies in the authentication mechanism. Exploiting this vulnerability could allow a malicious actor to enhance their privileges by utilizi...

The vulnerability of the application software interface of Hitachi Energy System Data Manager SDM600 allows a malicious actor to read data from the data storage.

The vulnerability of the application software interface of Hitachi Energy System Data Manager SDM600 is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor, operating remotely, to read data from the data storage...

The vulnerability of the software interface of the Hitachi Energy System Data Manager SDM600, which allows a perpetrator to compromise the confidentiality and integrity of information.

The vulnerability of the software interface of the Hitachi Energy System Data Manager SDM600 lies in deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality and integrity of information...

The vulnerability of the SAP NetWeaver AS for Java software platform, related to deficiencies in authentication procedures, allows attackers to gain read, modify, or delete access to data, or to cause service interruptions.

The vulnerability of the SAP NetWeaver AS for Java software platform is related to deficiencies in the authentication process. Exploiting this vulnerability can allow an attacker to gain read, modify, or delete access to data, or cause service interruptions...