121 matches found
The vulnerability of the software, which provides a DHCP dynamic configuration service on the network, is related to the escape from memory buffers. This allows an attacker to cause a service failure.
The vulnerability of the software, which provides a dynamic configuration service for DHCP hosts on the network, is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...
Microsoft Windows WLAN AutoConfig Service 安全特征问题漏洞
Microsoft Windows WLAN AutoConfig Service is a wireless network card configuration service for Windows Vista and above operating systems from Microsoft Corporation USA. The Microsoft Windows WLAN AutoConfig Service is vulnerable to a security feature issue. Windows 10 Version 1809 for x64-based...
SAP NetWeaver Knowledge Management Configuration Service Insecure Deserialization Vulnerability
SAP NetWeaver Knowledge Management Configuration Service is a knowledge management solution configuration service from SAP. A security vulnerability exists in SAP NetWeaver Knowledge Management Configuration Service versions 7.01, 7.02, 7.30, 7.31, 7.40, 7.50, which allows remote attackers with...
SAP NetWeaver Knowledge Management Configuration Service 代码问题漏洞
SAP NetWeaver Knowledge Management Configuration Service is a knowledge management solution configuration service from SAP. A security vulnerability exists in SAP NetWeaver Knowledge Management Configuration Service versions 7.01, 7.02, 7.30, 7.31, 7.40, 7.50, which allows remote attackers with...
How to check the number of registered service instances per FMA service
This article is intended for use when troubleshooting issues related to missing service instances of any Citrix FMA service with Central configuration service. All the FMA services have to registered with the Central configuration service for a CVAD site to function properly...
Mersive Solstice Pod Security Vulnerability
Mersive Solstice Pod is a software application for conference screen sharing from Mersive USA. A security vulnerability exists in Solstice Pod versions prior to 3.3.0 or Open4.3, which stems from the ability to enumerate administrator passwords using a brute force attack via the configuration...
SAP Solution Manager Missing Authentication Check Vulnerability (CNVD-2020-62930)
SAP Solution Manager is a set of system monitoring, SAP support desktop, self-service, ASAP implementation and other functions of the German SAP company as one of the system management platform. The platform can help customers establish SAP solution lifecycle management, and provide system...
CVE-2020-26822
SAP Solution Manager JAVA stack, version - 7.20, allows an unauthenticated attacker to compromise the system because of missing authorization checks in the Outside Discovery Configuration Service, this has an impact to the integrity and availability of the service...
Authorization
SAP Solution Manager JAVA stack, version - 7.20, allows an unauthenticated attacker to compromise the system because of missing authorization checks in the Outside Discovery Configuration Service, this has an impact to the integrity and availability of the service...
CVE-2020-26822
SAP Solution Manager JAVA stack, version - 7.20, allows an unauthenticated attacker to compromise the system because of missing authorization checks in the Outside Discovery Configuration Service, this has an impact to the integrity and availability of the service...
Palo Alto Networks PAN-OS Input Validation Error Vulnerability
Palo Alto Networks PAN-OS is an operating system developed by Palo Alto Networks for its firewall appliances. An input validation error vulnerability exists in the configuration daemon in Palo Alto Networks PAN-OS. An attacker could exploit this vulnerability with a specially crafted request to...
CVE-2020-2011
An improper input validation vulnerability in the configuration daemon of Palo Alto Networks PAN-OS Panorama allows for a remote unauthenticated user to send a specifically crafted registration request to the device that causes the configuration service to crash. Repeated attempts to send this...
PAN-OS: Panorama registration denial of service
An improper input validation vulnerability in the configuration daemon of Palo Alto Networks PAN-OS Panorama allows for a remote unauthenticated user to send a specifically crafted registration request to the device that causes the configuration service to crash. Repeated attempts to send this...
CVE-2019-17645
An issue was discovered in Centreon before 2.8.31, 18.10.9, 19.04.6, and 19.10.3. It provides sensitive information via an unauthenticated direct request for include/configuration/configObject/service/refreshMacroAjax.php...
CVE-2014-2914
fish aka fish-shell 2.0.0 before 2.1.1 does not restrict access to the configuration service aka fishconfig, which allows remote attackers to execute arbitrary code via unspecified vectors, as demonstrated by setprompt...
DEBIAN-CVE-2014-2914
fish aka fish-shell 2.0.0 before 2.1.1 does not restrict access to the configuration service aka fishconfig, which allows remote attackers to execute arbitrary code via unspecified vectors, as demonstrated by setprompt...
CVE-2014-2914
fish aka fish-shell 2.0.0 before 2.1.1 does not restrict access to the configuration service aka fishconfig, which allows remote attackers to execute arbitrary code via unspecified vectors, as demonstrated by setprompt...
CVE-2014-2914
fish aka fish-shell 2.0.0 before 2.1.1 does not restrict access to the configuration service aka fishconfig, which allows remote attackers to execute arbitrary code via unspecified vectors, as demonstrated by setprompt...
Code injection
fish aka fish-shell 2.0.0 before 2.1.1 does not restrict access to the configuration service aka fishconfig, which allows remote attackers to execute arbitrary code via unspecified vectors, as demonstrated by setprompt...
CVE-2014-2914
fish aka fish-shell 2.0.0 before 2.1.1 does not restrict access to the configuration service aka fishconfig, which allows remote attackers to execute arbitrary code via unspecified vectors, as demonstrated by setprompt...