OESA-2024-1094 gnutls security update

GnuTLS is a secure communications library implementing the SSL, TLS and DTLS protocols and technologies around them. It provides a simple C language application programming interface API to access the secure communications protocols as well as APIs to parse and write X.509, PKCS 12, and other...

PT-2024-1279 · Gnutls +7 · Gnutls +7

Name of the Vulnerable Software and Affected Versions: GnuTLS affected versions not specified Description: A vulnerability was found in GnuTLS, where a cockpit which uses gnuTLS rejects a certificate chain with distributed trust. This issue occurs when validating a certificate chain with...

PT-2022-3954 · Sap · Sap Hana +1

Name of the Vulnerable Software and Affected Versions: SAP Business One and SAP HANA versions prior to 10.0 Description: The issue is related to insufficient access control in the Cockpit component of SAP Business One and SAP HANA systems, allowing a remote attacker to gain unauthorized access to...

CVE-2020-6856

An XML External Entity XEE vulnerability exists in the JOC Cockpit component of SOS JobScheduler 1.12 and 1.13.2 allows attackers to read files from the server via an entity declaration in any of the XML documents that are used to specify the run-time settings of jobs and orders...