89 matches found
CVE-2022-35866
This vulnerability allows remote attackers to bypass authentication on affected installations of Vinchin Backup and Recovery 6.5.0.17561. Authentication is not required to exploit this vulnerability. The specific flaw exists within the configuration of the MySQL server. The server uses a hard-cod...
Emerson WirelessHART Gateway 访问控制错误漏洞
The Emerson WirelessHART Gateway is a wireless gateway from Emerson USA. An access control error vulnerability exists in Emerson WirelessHART Gateway that stems from a lack of privilege validation on system backup recovery. An attacker could use this vulnerability to take over an account and chan...
The vulnerability of the implementation of backup and recovery operations for software that manages virtual infrastructure like VMware vCenter Server allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the implementation of backup and recovery operations for software that manages virtual infrastructure like VMware vCenter Server Appliance is related to deficiencies in verifying the authenticity of certificates. Exploiting this vulnerability can allow an attacker, operating...
The vulnerability of the implementation of backup and recovery operations for software that manages virtual infrastructure like VMware vCenter Server allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the implementation of backup and data restoration operations for software that manages virtual infrastructure like VMware vCenter Server Appliance is related to deficiencies in verifying the authenticity of certificates. Exploiting this vulnerability can allow an attacker,...
IBM Spectrum Protect Clickjacking Vulnerability
IBM Spectrum Protect formerly known as Tivoli Storage Manager is a suite of data protection platforms from IBM in the United States. The platform provides organizations with a single point of control and management, and supports backup and recovery for virtual, physical and cloud environments of...
Entity Backup - Critical - Module Unsupported - SA-CONTRIB-2018-012
The main purpose of the Entity Backup module is to keep a backup of deleted Drupal core entities and perform recovery of them. The security team is marking this module unsupported. There is a known security issue with the module that has not been fixed by the maintainer. If you would like to...
Oracle SuperCluster Specific Software Local Vulnerability
Supercluster is a hardware and software integrated product that incorporates networking and relies on virtualization technology to provide different application platforms. A local vulnerability exists in Oracle SuperCluster Specific Software. An attacker could exploit the vulnerability to...
SSH Brute Force Logins With Default Credentials Reporting
It was possible to login into the remote SSH server using default credentials. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Symantec Encryption Management Server Local Command Injection Vulnerability
Symantec Encryption Management Server is a single console for managing multiple encryption applications in the PGP platform. A command injection vulnerability exists in Symantec Encryption Management Server's handling of database backup recovery, which could be exploited by a remote attacker to...