Apache Solr Authentication Error Vulnerability

Apache Solr is the United States Apache Apache Foundation of a search server based on Lucene a full-text search engine. The product supports level search , vertical search , highlighting search results and so on. An authentication error vulnerability exists in Apache Solr that stems from the...

Siemens SENTRON PAC Meter Authentication Error Vulnerability

The SENTRON PAC Meter is a power measurement device for precise energy management and transparent information acquisition. An authentication error vulnerability exists in the Siemens SENTRON PAC Meter, which can be exploited by an attacker to bypass authentication via brute force attack or by...

PT-2024-6919 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to a spoofing vulnerability in the Windows Secure Channel component, which is associated with errors in the certificate authentication procedure. This vulnerability can...

Accessing Confluence using PAT Token fails intermittently when multiple users access concurrently

h3. Issue Summary This issue is similar to the one reported in Jira side under JRASERVER-76340|https://jira.atlassian.com/browse/JRASERVER-76340 This is reproducible on Data Center: Yes h3. Steps to Reproduce Provision a new Confluence environment Create two new users: "usera" and "userb" For eac...

IBM Planning Analytics Local Authentication Error Vulnerability

IBM Planning Analytics Local is a web-based local architecture from International Business Machines IBM. An authentication error vulnerability exists in IBM Planning Analytics Local versions 2.0 and 2.1 that originates from a connection to a MongoDB server that does not require password...

Progress Software MOVEit Transfer 安全漏洞

Progress Software MOVEit Transfer is a suite of automated file transfer software from Progress Software, USA. The software supports file transfer and provides file transfer activity monitoring. A security vulnerability exists in Progress Software MOVEit Transfer that stems from the presence of an...

IBM FlashSystem 5300 Authentication Error Vulnerability

The IBM FlashSystem 5300 is an IBM storage enterprise system from International Business Machines IBM that stores data on flash memory. The IBM FlashSystem 5300 suffers from an authentication error vulnerability that could be exploited by an attacker to cause loss of access to data using a USB po...

IBM FlashSystem 5300 安全漏洞

The IBM FlashSystem 5300 is an IBM storage enterprise system from International Business Machines IBM that stores data on flash memory. The IBM FlashSystem 5300 suffers from an authentication error vulnerability that could be exploited by an attacker to cause loss of access to data using a USB po...

WordPress plugin JupiterX Core security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security...

Rockwell Automation FactoryTalk View SE Authentication Error Vulnerability

Rockwell Automation FactoryTalk View SE is an industrial automation system view interface from Rockwell Automation. An authentication error vulnerability exists in Rockwell Automation FactoryTalk View SE, which can be exploited by an attacker to send packets to a customer's server from a remote...

Rockwell Automation FactoryTalk View SE Authentication Error Vulnerability (CNVD-2024-30909)

Rockwell Automation FactoryTalk View SE is an industrial automation system view interface from Rockwell Automation. An authentication error vulnerability exists in Rockwell Automation FactoryTalk View SE, which can be exploited by an attacker to send packets to a customer's server from a remote...

Adobe Framemaker Publishing Server Authentication Error Vulnerability (CNVD-2024-38538)

Adobe Framemaker is the United States of America Odooby Adobe company's set of page layout software for writing and editing large or complex documents including structured documents. An authentication error vulnerability exists in Adobe Framemaker Publishing Server, which could be exploited by an...

Adobe Commerce Authentication Error Vulnerability

Adobe Commerce is the United States of America Odobie Adobe company's a business and brand-oriented global leader in digital commerce solutions. Adobe Commerce suffers from an authentication error vulnerability that can be exploited by an attacker to gain unauthorized access or elevated privilege...

Rockwell Automation FactoryTalk View SE 安全漏洞

Rockwell Automation FactoryTalk View SE is an industrial automation system view interface from Rockwell Automation. An authentication error vulnerability exists in Rockwell Automation FactoryTalk View SE, which can be exploited by an attacker to send packets to a customer's server from a remote...

Siemens PowerSys Authentication Error Vulnerability

PowerSys is a service program for commissioning, maintenance and diagnostics of PowerLink 50/100 or SWT 3000 devices. An authentication error vulnerability exists in Siemens PowerSys, which can be exploited by a local attacker to bypass authentication and gain administrative privileges to a manag...

Siemens PowerSys 授权问题漏洞

PowerSys is a service program for commissioning, maintenance and diagnostics of PowerLink 50/100 or SWT 3000 devices. An authentication error vulnerability exists in Siemens PowerSys, which can be exploited by a local attacker to bypass authentication and gain administrative privileges to a manag...

The vulnerability of the “nimble refresh” function in the Nimble programming language’s package manager allows attackers to execute a “man-in-the-middle” attack or execute arbitrary code.

The vulnerability of the “nimble refresh” function in the Nimble programming language package manager is related to the lack of checks on the loaded packages due to an error in the authentication process. Exploiting this vulnerability allows a malicious actor to execute a “man-in-the-middle” atta...

WordPress plugin Premium Addons for Elementor security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security vulnerability exists in...

Adobe FrameMaker Publishing Server Authentication Error Vulnerability

Adobe Framemaker is the United States of America Odooby Adobe company's set of page layout software for writing and editing large or complex documents including structured documents. An authentication error vulnerability exists in Adobe FrameMaker Publishing Server, which can be exploited by an...

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux Kernel that stems from the fact that if a client sends an invalid mechanical token in a session setup request, ksmbd validates it a...