1853 matches found
PT-2023-6998 · Siemens · Simatic Pcs Neo
Name of the Vulnerable Software and Affected Versions: SIMATIC PCS neo versions prior to V4.1 Description: The issue is related to a lack of authentication for a critical function in the administrative console of the SIMATIC PCS neo web system management technology process. This could allow a...
PT-2023-32468 · Yugabyte · Yugabytedb Anywhere
Name of the Vulnerable Software and Affected Versions: YugabyteDB Anywhere affected versions not specified Description: The issue concerns Prometheus metrics being available without authentication, exposing detailed and sensitive information about the YugabyteDB Anywhere environment...
PT-2023-7408
Name of the Vulnerable Software and Affected Versions ASUS RT-AX55 affected versions not specified ASUS RT-AC86U affected versions not specified Description The authentication-related function in the affected devices has a vulnerability due to insufficient filtering of special characters within i...
CVE-2023-42845
An authentication issue was addressed with improved state management. This issue is fixed in macOS Sonoma 14.1, iOS 17.1 and iPadOS 17.1. Photos in the Hidden Photos Album may be viewed without authentication...
CVE-2023-42845
CVE-2023-42845 is an authentication issue in Apple platforms where Photos in the Hidden Photos Album could be viewed without authentication. The vulnerability is addressed by improved state management and is fixed in macOS Sonoma 14.1, iOS 17.1, and iPadOS 17.1. No exploitation details are provid...
CVE-2023-40401
The issue was addressed with additional permissions checks. This issue is fixed in macOS Ventura 13.6.1. An attacker may be able to access passkeys without authentication...
PT-2023-29731 · Google · Android Client
Name of the Vulnerable Software and Affected Versions: Android Client affected versions not specified Description: The issue allows an attacker to force the Android Client application to connect to a malicious MQTT broker. This enables the attacker to send fake messages to the HMI device, as the...
PT-2023-20745 · Idweb · Idweb
Name of the Vulnerable Software and Affected Versions: IDWeb application version 3.1.013 Description: The issue concerns missing authentication in the DeleteStaff method, allowing unauthenticated attackers to delete staff information. Recommendations: For version 3.1.013, ensure proper...
IDAttend IDWeb Access Control Error Vulnerability
IDAttend IDWeb is a web-based module from IDAttend, Inc. A security vulnerability exists in the IDAttend IDWeb application version 3.1.052 and prior versions, which stems from a lack of authentication in the SearchStudentsRFID method...
PT-2023-8353 · Apple · Ios +2
Name of the Vulnerable Software and Affected Versions: macOS versions prior to 14.1 iOS versions prior to 17.1 iPadOS versions prior to 17.1 Description: The issue is related to an authentication problem in the Photos component of iOS, macOS, and iPadOS, which allows an attacker to view photos in...
PT-2023-6569 · Apple · Ios +2
Name of the Vulnerable Software and Affected Versions: macOS versions prior to 14.1 iOS versions prior to 17.1 iPadOS versions prior to 17.1 Description: The issue is related to errors in authentication within the Passkey Handler component of Apple's operating systems. It may allow a remote...
PT-2023-6005 · Fortinet · Fortios
Name of the Vulnerable Software and Affected Versions: Fortinet FortiOS versions 7.0.0 through 7.0.11 Fortinet FortiOS versions 7.2.0 through 7.2.4 Description: The issue is related to an improper authorization vulnerability in Fortinet FortiOS, which may allow an attacker belonging to the...
Debian dla-3594 : cups - security update
The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3594 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3594-1 [email protected]...
CVE-2023-41066
An authentication issue was addressed with improved state management. This issue is fixed in macOS Sonoma 14. An app may be able to unexpectedly leak a user's credentials from secure text fields...
CVE-2023-41066
An authentication issue was addressed with improved state management. This issue is fixed in macOS Sonoma 14. An app may be able to unexpectedly leak a user's credentials from secure text fields...
CVE-2023-40418
An authentication issue was addressed with improved state management. This issue is fixed in watchOS 10. An Apple Watch Ultra may not lock when using the Depth app...
CVE-2023-40418
An authentication issue was addressed with improved state management. This issue is fixed in watchOS 10. An Apple Watch Ultra may not lock when using the Depth app...
CVE-2023-41066
An authentication issue was addressed with improved state management. This issue is fixed in macOS Sonoma 14. An app may be able to unexpectedly leak a user's credentials from secure text fields...
CVE-2023-41066
An authentication issue was addressed with improved state management. This issue is fixed in macOS Sonoma 14. An app may be able to unexpectedly leak a user's credentials from secure text fields...
CVE-2023-41066
CVE-2023-41066 concerns an authentication issue in macOS that was fixed with improved state management. The vulnerability could allow an app to unexpectedly leak a user’s credentials from secure text fields. Affected: macOS Sonoma 14. Impact/impl: credential leakage within secure text fields due ...