366 matches found
ThinkPHP 代码问题漏洞
Top Think Information Technology ThinkPHP is a PHP-based, open source, lightweight web application development framework from China's Top Think Information Technology Company. A code issue vulnerability exists in ThinkPHP version 5.1.41 and 5.0.24, which stems from the presence of a code logic...
KubeVela 代码问题漏洞
KubeVela is a modern application delivery platform open-sourced by KubeVela. A code issue vulnerability exists in KubeVela. An attacker exploits this vulnerability to perform a server-side request forgery attack...
Eaton Foreseer EPMS 代码问题漏洞
Eaton Foreseer EPMS is a highly customizable web-based software platform from Eaton Corporation. A code issue vulnerability exists in Eaton Foreseer EPMS versions prior to v7.6, where a malicious attacker could upload arbitrary files using the file upload feature...
Simple Exam Reviewer Management System 代码问题漏洞
Simple Exam Reviewer Management System is a Simple Exam Reviewer Management System by Carlo Montero Personal Developer. A security vulnerability exists in Simple Exam Reviewer Management System that originates from vulnerability to unsecured file uploads...
Feishu 代码问题漏洞
ByteDance Feishu is an enterprise collaboration and management platform from China's ByteDance. A code issue vulnerability exists in Feishu version v3.40.3, which stems from the inclusion of an untrusted search path vulnerability...
Heimdal Software Kerberos 5 代码问题漏洞
Heimdal is a Kerberos implementation and security program from Heimdal Open Source. A code issue vulnerability exists in Heimdal Software Kerberos 5 that stems from a null pointer dereference that causes the application to crash...
Juniper Networks Junos OS 代码问题漏洞
Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The operating system provides a secure programming interface and the Junos SDK. A security vulnerability exists in Juniper Networks Junos OS. No information about this vulnerability is...
Trellix ePolicy Orchestrator 代码问题漏洞
Trellix ePolicy Orchestrator is a centralized security management platform from Trellix. A security vulnerability exists in Trellix ePolicy Orchestrator. No information about this vulnerability is available at this time, please stay tuned to CNNVD or the vendor announcement...
Huawei HarmonyOS 代码问题漏洞
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from a code issue vulnerability that stems from a possible heap overflow/out-of-bounds read/null pointer issue in cell phone product...
IBM WebSphere Application Server 代码问题漏洞
IBM WebSphere Application Server WAS is an application server product from International Business Machines IBM. The product is a platform for JavaEE and Web services applications and is the foundation of the IBM WebSphere software platform. A code issue vulnerability exists in IBM WebSphere...
Google TensorFlow code issue vulnerability (CNVD-2023-10610)
Google TensorFlow is an end-to-end open source platform for machine learning from Google USA. Google TensorFlow suffers from a code issue vulnerability that stems from when "mlir::tfg::GraphDefImporter:: ConvertNodeDef" attempts to convert a nodedef with an unoperated name, it crashes, and an...
LIEF 代码问题漏洞
LIEF is a cross-platform library from the individual developer Romain Thomas. It is used to parse, modify and abstract Elf, Pe and MachO formats. LIEF suffers from a code issue vulnerability that stems from a segmentation violation found in the LIEF::MachO::SegmentCommand::fileoffset function in...
Simple and Nice Shopping Cart Script 代码问题漏洞
Simple and Nice Shopping Cart Script is simple and nice PHP shopping cart script. Simple and Nice Shopping Cart Script suffers from a code issue vulnerability that stems from an unknown function in /mkshop/Men/profile.php, which can be exploited by an attacker to upload arbitrary files...
NVIDIA vGPU Software Code Issue Vulnerability
NVIDIA vGPU Software is a management software from NVIDIA that is used to provide GPU capabilities to virtual machines. A code issue vulnerability exists in NVIDIA vGPU software, which can be exploited by attackers to cause a denial of service...
NVIDIA vGPU Software 代码问题漏洞
NVIDIA vGPU Software is a management software from NVIDIA that is used to provide GPU capabilities to virtual machines. A code issue vulnerability exists in NVIDIA vGPU software, which can be exploited by attackers to cause a denial of service...
Inductive Automation Ignition Code Issue Vulnerability
Inductive Automation Ignition is a comprehensive platform for industrial automation that provides scalable solutions for monitoring, control, data collection, and analytics.Ignition was developed by Inductive Automation to help users build and deploy automation systems that meet the specific need...
Juniper Networks Junos OS 代码问题漏洞
Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The OS provides a secure programming interface and the Junos SDK. Juniper Networks Junos OS has a code issue vulnerability that originates from an attacker being able to cause a denial of...
Microsoft Windows Server 代码问题漏洞
Microsoft Windows Server is a suite of server operating systems from Microsoft Corporation USA. A code issue vulnerability exists in Microsoft Windows Server Service. The following products and editions are affected:Windows 10 Version 21H1 for x64-based Systems,Windows 10 Version 21H1 for...
Gentics Software Gentics CMS 代码问题漏洞
Gentics Software Gentics CMS is a digital publishing and content management system from the Austrian company Gentics Software. A code issue vulnerability exists in Gentics CMS version 5.36.29, which can be exploited by an attacker to gain access to the RCE chain...
JGraph draw.io 代码问题漏洞
JGraph draw.io is a configurable chart/whiteboard visualization application from JGraph. A security vulnerability exists in JGraph draw.io prior to version 18.1.2 that originates from exposing sensitive information to an unauthorized Actor...