102 matches found
PT-2024-10208 · Ibm · Ibm Security Reaqta
Name of the Vulnerable Software and Affected Versions: IBM Security ReaQta version 3.12 Description: The issue is related to weaknesses in the authentication procedure of IBM Security ReaQta, which could allow a remote attacker to disclose protected information. Specifically, IBM Security ReaQta...
The vulnerability of QTS and QuTScloud network devices from QNAP operating systems stems from deficiencies in authentication procedures, allowing attackers to escalate their privileges.
The vulnerabilities of QTS and QuTScloud network devices from QNAP are related to deficiencies in authentication procedures. Exploiting these vulnerabilities can allow attackers to gain increased privileges remotely...
The vulnerability of the sbcast subsystem of the Slurm resource manager allows attackers to circumvent existing security restrictions.
The vulnerability of the sbcast subsystem in the Slurm resource management manager is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to circumvent existing security restrictions remotely...
The vulnerability of the admin_init() function in the Swift Performance Lite plugin for WordPress content management system allows a hacker to gain unauthorized access to protected information.
The vulnerability of the admininit function in the Swift Performance Lite plugin of the WordPress content management system is related to deficiencies in the authentication process. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...
The vulnerability of the CUPS printing server stems from deficiencies in the authentication process, allowing attackers to gain access to confidential data.
The vulnerability of the CUPS printing server is related to deficiencies in the authentication process. Exploiting this vulnerability can allow an attacker to gain access to confidential data...
The vulnerability of the microprogrammed software of the remote terminal block INEA ME RTU, related to deficiencies in authentication procedures, allows a intruder to gain unauthorized access to the device.
The vulnerability of the microprogrammed remote terminal block INEA ME RTU is related to deficiencies in authentication procedures. Exploiting this vulnerability could allow an attacker operating remotely to gain unauthorized access to the device...
The vulnerability of the Passcode component in the watchOS operating system allows a intruder to compromise the integrity of the protected information.
The vulnerability of the Passcode component in the watchOS operating system is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a perpetrator to compromise the integrity of the protected information...
The vulnerability of the cloud-based messaging and streaming transmission platform Apache Pulsar, related to authentication procedures that lack sufficient protection, allows attackers to compromise the integrity of the protected information.
The vulnerability of the cloud-based messaging and streaming communication platform Apache Pulsar is related to deficiencies in authentication procedures. Exploiting this vulnerability could allow a malicious actor to compromise the integrity of the protected information...
The vulnerability of the Tauri framework for creating cross-platform desktop applications lies in its authentication procedures’ shortcomings, which allow attackers to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the Tauri framework for creating cross-platform desktop applications is related to deficiencies in its authentication procedures. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected...
The vulnerability of the InPlant SCADA system, related to deficiencies in authentication procedures, allows attackers to increase their privileges.
The vulnerability of the InPlant SCADA system is related to deficiencies in the authentication process when loading project files. Exploiting this vulnerability can allow attackers to enhance their privileges...
PT-2023-4355 · Inductive Automation · Inductive Automation Ignition
Name of the Vulnerable Software and Affected Versions: Inductive Automation Ignition affected versions not specified Description: The issue is related to the ParameterVersionJavaSerializationCodec class in Inductive Automation Ignition, which is associated with weaknesses in the authentication...
The vulnerabilities of SAP NetWeaver AS ABAP and SAP NetWeaver ABAP software integration platforms are related to deficiencies in authentication procedures. These deficiencies allow attackers to circumvent security restrictions, enhance their privileges, and gain unauthorized access to protected information.
The vulnerability of SAP NetWeaver AS ABAP and SAP NetWeaver ABAP integration platforms is related to deficiencies in the authentication process due to incorrect processing of user information via RFC messages, thereby compromising the security between SAP systems. Exploiting this vulnerability...
The vulnerability of operating systems for managing cloud applications, such as Sealos, stems from deficiencies in authentication procedures. This allows attackers to escalate their privileges and gain full control over the application.
The vulnerability of operating systems for managing cloud applications related to Sealos stems from deficiencies in authentication procedures due to the use of Role-Based Access Control RBAC policies. Exploiting this vulnerability allows a malicious actor to enhance their privileges and gain full...
PT-2023-3555 · Ibm · Ibm Robotic Process Automation
Name of the Vulnerable Software and Affected Versions: IBM Robotic Process Automation versions 21.0.0 through 21.0.7.6 IBM Robotic Process Automation versions 23.0.0 through 23.0.6 Description: The issue is related to weaknesses in the authentication procedure of the software. Exploitation of thi...
The vulnerability of Backup Exec’s software for backup and data restoration lies in its lack of authentication procedures. This allows attackers to bypass security restrictions and execute arbitrary commands.
The vulnerability of Backup Exec’s backup and recovery software is related to deficiencies in authentication procedures when using the SHA cryptographic algorithm. Exploiting this vulnerability allows a malicious actor to bypass security restrictions and execute arbitrary commands...
The vulnerability of the collaboration data application for VMware Workspace ONE Content, related to authentication procedures that allow attackers to bypass the authentication process
The vulnerability of the collaboration data application for VMware Workspace ONE Content is related to deficiencies in the authentication process. Exploiting this vulnerability can allow attackers to bypass the authentication process...
The vulnerability of open-source development environments for UEFI EDK2, related to deficiencies in authentication procedures, allows attackers to gain access to confidential data.
The vulnerability of open-source development environments for UEFI EDK2 is related to deficiencies in authentication procedures. Exploiting this vulnerability allows a remote attacker to gain access to confidential data...
The vulnerability of the mboximport function in the Zimbra Collaboration Suite email management system allows a hacker to execute arbitrary code.
The vulnerability of the mboximport function in the Zimbra Collaboration Suite email management system is related to authentication deficiencies. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
The vulnerability of the HPE OneView IT infrastructure management system, related to deficiencies in authentication procedures, allows attackers to circumvent existing security restrictions.
The vulnerability of the HPE OneView IT infrastructure management system is related to deficiencies in authentication procedures. Exploiting this vulnerability could allow attackers to circumvent existing security restrictions...
PT-2022-4923 · Dell Emc · Dell Emc Cloudlink
Name of the Vulnerable Software and Affected Versions: Dell EMC CloudLink versions prior to 7.1.2 Description: The issue is related to weaknesses in the authentication procedure, allowing a remote attacker with knowledge of active directory usernames to potentially gain unauthorized access to the...