PT-2023-3933 · Geovision · Geovision Gv-Adr2701

Name of the Vulnerable Software and Affected Versions: GeoVision GV-ADR2701 affected versions not specified Description: The issue is related to errors in the authentication procedure of the GeoVision GV-ADR2701 IP video surveillance system. An attacker could exploit this by editing the login...

Notation 数据伪造问题漏洞

Notation is a collection of libraries open-sourced by the Notary Project to support symbolic notation, validation, push and pull oci artifacts. A data forgery issue vulnerability exists in versions prior to Notation v1.0.0-rc.6, which can be exploited by an attacker to corrupt the registry and...

PT-2022-3853 · Filewave · Filewave

Name of the Vulnerable Software and Affected Versions: FileWave versions prior to 14.6.3 FileWave versions 14.7.x prior to 14.7.2 Description: The issue is related to errors during the authentication procedure in the FileWave platform, which is a cross-platform solution for mobile device...

PT-2022-3284 · Ping Identity · Pingid Windows Login

Name of the Vulnerable Software and Affected Versions: PingID Windows Login versions prior to 2.8 Description: The issue is related to errors in authentication of the connection with a local Java service used to capture security key requests. An attacker with the ability to execute code on the...

PT-2022-2950 · Spacelogic +1 · Spacelogic C-Bus Application Controller +3

Name of the Vulnerable Software and Affected Versions: C-Bus Network Automation Controller - LSS5500NAC versions prior to V1.10.0 Wiser for C-Bus Automation Controller - LSS5500SHAC versions prior to V1.10.0 Clipsal C-Bus Network Automation Controller - 5500NAC versions prior to V1.10.0 Clipsal...

flynn/noise has improper nonce handling yielding potential state DoS

The Go package github.com/flynn/noise, a Noise Protocol implementation, has two bugs in nonce handling in versions prior to v1.0.0. Issue 1: Potential nonce overflow If 264 18.4 quintillion or more messages are encrypted with Encrypt after handshaking, the nonce counter will wrap around, causing...

PT-2022-4183 · Hewlett Packard · Hpe Oneview

Name of the Vulnerable Software and Affected Versions: HPE OneView versions prior to 6.6 Description: The issue is related to authentication errors in the HPE OneView IT infrastructure management system. Exploitation of this issue may allow an attacker to gain unauthorized access to protected...

PT-2021-2984 · Cisco · Cisco Sd-Wan Vmanage

Name of the Vulnerable Software and Affected Versions: Cisco SD-WAN vManage Software affected versions not specified Description: The issue is related to multiple vulnerabilities in the software, which could allow an unauthenticated, remote attacker to execute arbitrary code, gain access to...

PT-2021-2949 · Adobe · Magento

Name of the Vulnerable Software and Affected Versions: Magento versions 2.4.1 and earlier Magento versions 2.4.0-p1 and earlier Magento versions 2.3.6 and earlier Description: The issue is related to an insecure direct object reference IDOR in the product module, which could lead to unauthorized...

PT-2020-3916 · Microsoft · Active Directory Federation Services +1

Name of the Vulnerable Software and Affected Versions: Active Directory Federation Services ADFS affected versions not specified Description: An elevation of privilege issue exists due to improper handling of multi-factor authentication requests by Active Directory Federation Services ADFS. This...

docker-cli docker-engine security update

docker-cli 19.03.11-4 - added patch for registry list 19.03.11-3 - update to 19.03.11 for CVE-2020-13401 19.03.1-1.0.0 - update to 19.03.1 19.03-0.0.1 - update to 19.03 18.09.1-1.0.6 - disable kmem accounting for UEKR4 18.09.1-1.0.5 - apply e4931e664feac6fa8846f3f04268a0cc98822549, fixes...

Microsoft security advisory: Updated support for Diffie-Hellman Key Exchange

Microsoft security advisory: Updated support for Diffie-Hellman Key Exchange Summary Microsoft has released a Microsoft security advisory about this issue for IT professionals. The security advisory contains additional security-related information. To learn more about the vulnerability, see...

MS16-110: Description of the security update for Windows: September 13, 2016

MS16-110: Description of the security update for Windows: September 13, 2016 Summary To learn more about the vulnerability, see Microsoft Security Bulletin MS16-110. More Information Important We recommend that you install this security update on all client and server operating systems listed in...

CURL-CVE-2016-5420 Reusing connections with wrong client cert

libcurl did not consider client certificates when reusing TLS connections. libcurl supports reuse of established connections for subsequent requests. It does this by keeping a few previous connections "alive" in a connection pool so that a subsequent request that can use one of them instead of...

CVE-2016-5797

Tollgrade LightHouse SMS before 5.1 patch 3 provides different error messages for failed authentication attempts depending on whether the username exists, which allows remote attackers to enumerate account names via a series of attempts...

Debian DSA-2979-1 : fail2ban - security update

Two vulnerabilities were discovered in Fail2ban, a solution to ban hosts that cause multiple authentication errors. When using Fail2ban to monitor Postfix or Cyrus IMAP logs, improper input validation in log parsing could enable a remote attacker to trigger an IP ban on arbitrary addresses,...

DSA-2979-1 fail2ban - security update

Bulletin has no description...

Telepark.wiki Multiple Vulnerabilities

This host is running Telepark wiki and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbteleparkwikimultvuln.nasl 4892 2016-12-30 15:39:07Z teissa $ Telepark.wiki Multiple Vulnerabilities Authors: Antu Sanadi Copyright: Copyright c 2009 Greenbone Networks GmbH,...

CVE-2006-2976

Unspecified vulnerability in usermgr.php in Coppermine Photo Gallery before 1.4.7 has unknown impact and remote attack vectors, possibly related to authorization/authentication errors...

CVE-2006-2976

CVE-2006-2976 affects Coppermine Photo Gallery, specifically the file usermgr.php, with the vulnerability present in releases prior to 1.4.7. The available documents describe an unspecified vulnerability with unknown impact and remote attack vectors, potentially tied to authorization/authenticati...