Lucene search
K

102 matches found

Positive Technologies
Positive Technologies
added 2024/03/09 12:0 a.m.5 views

PT-2024-10208 · Ibm · Ibm Security Reaqta

Name of the Vulnerable Software and Affected Versions: IBM Security ReaQta version 3.12 Description: The issue is related to weaknesses in the authentication procedure of IBM Security ReaQta, which could allow a remote attacker to disclose protected information. Specifically, IBM Security ReaQta...

5.3CVSS5AI score0.00308EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2024/02/15 12:0 a.m.5 views

The vulnerability of QTS and QuTScloud network devices from QNAP operating systems stems from deficiencies in authentication procedures, allowing attackers to escalate their privileges.

The vulnerabilities of QTS and QuTScloud network devices from QNAP are related to deficiencies in authentication procedures. Exploiting these vulnerabilities can allow attackers to gain increased privileges remotely...

6.8CVSS6.6AI score0.00329EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2024/01/11 12:0 a.m.5 views

The vulnerability of the sbcast subsystem of the Slurm resource manager allows attackers to circumvent existing security restrictions.

The vulnerability of the sbcast subsystem in the Slurm resource management manager is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to circumvent existing security restrictions remotely...

8.5CVSS7.4AI score0.00749EPSS
Exploits0References5Affected Software3
BDU FSTEC
BDU FSTEC
added 2023/12/04 12:0 a.m.5 views

The vulnerability of the admin_init() function in the Swift Performance Lite plugin for WordPress content management system allows a hacker to gain unauthorized access to protected information.

The vulnerability of the admininit function in the Swift Performance Lite plugin of the WordPress content management system is related to deficiencies in the authentication process. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

5.3CVSS6.4AI score0.00916EPSS
Exploits3References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/11/11 12:0 a.m.4 views

The vulnerability of the CUPS printing server stems from deficiencies in the authentication process, allowing attackers to gain access to confidential data.

The vulnerability of the CUPS printing server is related to deficiencies in the authentication process. Exploiting this vulnerability can allow an attacker to gain access to confidential data...

5.5CVSS6.1AI score0.00347EPSS
Exploits0References15Affected Software7
BDU FSTEC
BDU FSTEC
added 2023/11/10 12:0 a.m.5 views

The vulnerability of the microprogrammed software of the remote terminal block INEA ME RTU, related to deficiencies in authentication procedures, allows a intruder to gain unauthorized access to the device.

The vulnerability of the microprogrammed remote terminal block INEA ME RTU is related to deficiencies in authentication procedures. Exploiting this vulnerability could allow an attacker operating remotely to gain unauthorized access to the device...

10CVSS7.8AI score0.00862EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/10/30 12:0 a.m.4 views

The vulnerability of the Passcode component in the watchOS operating system allows a intruder to compromise the integrity of the protected information.

The vulnerability of the Passcode component in the watchOS operating system is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a perpetrator to compromise the integrity of the protected information...

5.5CVSS5.9AI score0.00316EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/10/28 12:0 a.m.4 views

The vulnerability of the cloud-based messaging and streaming transmission platform Apache Pulsar, related to authentication procedures that lack sufficient protection, allows attackers to compromise the integrity of the protected information.

The vulnerability of the cloud-based messaging and streaming communication platform Apache Pulsar is related to deficiencies in authentication procedures. Exploiting this vulnerability could allow a malicious actor to compromise the integrity of the protected information...

6.8CVSS6.5AI score0.00722EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/10/03 12:0 a.m.4 views

The vulnerability of the Tauri framework for creating cross-platform desktop applications lies in its authentication procedures’ shortcomings, which allow attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the Tauri framework for creating cross-platform desktop applications is related to deficiencies in its authentication procedures. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected...

10CVSS7.7AI score0.00647EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/09/21 12:0 a.m.5 views

The vulnerability of the InPlant SCADA system, related to deficiencies in authentication procedures, allows attackers to increase their privileges.

The vulnerability of the InPlant SCADA system is related to deficiencies in the authentication process when loading project files. Exploiting this vulnerability can allow attackers to enhance their privileges...

7.8CVSS6.6AI score0.00356EPSS
Exploits1References5Affected Software1
Positive Technologies
Positive Technologies
added 2023/08/08 12:0 a.m.5 views

PT-2023-4355 · Inductive Automation · Inductive Automation Ignition

Name of the Vulnerable Software and Affected Versions: Inductive Automation Ignition affected versions not specified Description: The issue is related to the ParameterVersionJavaSerializationCodec class in Inductive Automation Ignition, which is associated with weaknesses in the authentication...

10CVSS9.7AI score0.03121EPSS
Exploits0References10
BDU FSTEC
BDU FSTEC
added 2023/08/03 12:0 a.m.6 views

The vulnerabilities of SAP NetWeaver AS ABAP and SAP NetWeaver ABAP software integration platforms are related to deficiencies in authentication procedures. These deficiencies allow attackers to circumvent security restrictions, enhance their privileges, and gain unauthorized access to protected information.

The vulnerability of SAP NetWeaver AS ABAP and SAP NetWeaver ABAP integration platforms is related to deficiencies in the authentication process due to incorrect processing of user information via RFC messages, thereby compromising the security between SAP systems. Exploiting this vulnerability...

9CVSS7.4AI score0.01583EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2023/07/10 12:0 a.m.3 views

The vulnerability of operating systems for managing cloud applications, such as Sealos, stems from deficiencies in authentication procedures. This allows attackers to escalate their privileges and gain full control over the application.

The vulnerability of operating systems for managing cloud applications related to Sealos stems from deficiencies in authentication procedures due to the use of Role-Based Access Control RBAC policies. Exploiting this vulnerability allows a malicious actor to enhance their privileges and gain full...

10CVSS7.8AI score0.00591EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2023/06/20 12:0 a.m.6 views

PT-2023-3555 · Ibm · Ibm Robotic Process Automation

Name of the Vulnerable Software and Affected Versions: IBM Robotic Process Automation versions 21.0.0 through 21.0.7.6 IBM Robotic Process Automation versions 23.0.0 through 23.0.6 Description: The issue is related to weaknesses in the authentication procedure of the software. Exploitation of thi...

5.3CVSS5.1AI score0.00394EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2023/05/10 12:0 a.m.5 views

The vulnerability of Backup Exec’s software for backup and data restoration lies in its lack of authentication procedures. This allows attackers to bypass security restrictions and execute arbitrary commands.

The vulnerability of Backup Exec’s backup and recovery software is related to deficiencies in authentication procedures when using the SHA cryptographic algorithm. Exploiting this vulnerability allows a malicious actor to bypass security restrictions and execute arbitrary commands...

8.5CVSS8.4AI score0.6491EPSS
Exploits4References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/03/28 12:0 a.m.7 views

The vulnerability of the collaboration data application for VMware Workspace ONE Content, related to authentication procedures that allow attackers to bypass the authentication process

The vulnerability of the collaboration data application for VMware Workspace ONE Content is related to deficiencies in the authentication process. Exploiting this vulnerability can allow attackers to bypass the authentication process...

6.3CVSS6.7AI score0.00919EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/11/22 12:0 a.m.4 views

The vulnerability of open-source development environments for UEFI EDK2, related to deficiencies in authentication procedures, allows attackers to gain access to confidential data.

The vulnerability of open-source development environments for UEFI EDK2 is related to deficiencies in authentication procedures. Exploiting this vulnerability allows a remote attacker to gain access to confidential data...

6.8CVSS6.7AI score0.01366EPSS
Exploits0References8Affected Software3
BDU FSTEC
BDU FSTEC
added 2022/08/18 12:0 a.m.5 views

The vulnerability of the mboximport function in the Zimbra Collaboration Suite email management system allows a hacker to execute arbitrary code.

The vulnerability of the mboximport function in the Zimbra Collaboration Suite email management system is related to authentication deficiencies. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

10CVSS8.5AI score0.88256EPSS
Exploits8References4
BDU FSTEC
BDU FSTEC
added 2022/08/17 12:0 a.m.5 views

The vulnerability of the HPE OneView IT infrastructure management system, related to deficiencies in authentication procedures, allows attackers to circumvent existing security restrictions.

The vulnerability of the HPE OneView IT infrastructure management system is related to deficiencies in authentication procedures. Exploiting this vulnerability could allow attackers to circumvent existing security restrictions...

7.8CVSS7.2AI score0.00276EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2022/08/01 12:0 a.m.3 views

PT-2022-4923 · Dell Emc · Dell Emc Cloudlink

Name of the Vulnerable Software and Affected Versions: Dell EMC CloudLink versions prior to 7.1.2 Description: The issue is related to weaknesses in the authentication procedure, allowing a remote attacker with knowledge of active directory usernames to potentially gain unauthorized access to the...

9.8CVSS9.1AI score0.00852EPSS
Exploits0References6
Rows per page
Query Builder