273 matches found
Intel Binary Configuration Tool 安全漏洞
Intel Binary Configuration Tool is a utility program from Intel Corporation that is used to change configuration settings embedded in Intel FSP Firmware Support Package binaries. A security vulnerability exists in Intel Binary Configuration Tool versions prior to 3.4.5 that stems from incorrect...
Intel Binary Configuration Tool 代码问题漏洞
Intel Binary Configuration Tool is an Intel Corporation utility program for changing configuration settings embedded in Intel FSP Firmware Support Package binaries. A code issue vulnerability exists in Intel Binary Configuration Tool versions prior to 3.4.5 that stems from an uncontrolled search...
Intel® Binary Configuration Tool Software Advisory
Summary: Potential security vulnerabilities in some Intel® Binary Configuration Tool software may allow escalation of privilege. Intel is releasing software updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2024-25647 Description: Incorrect default permissions...
The vulnerability of the TMOS Shell configuration tool, which is used for managing monitors in the BIG-IP Access Policy Manager, as well as in programs like BIG-IP Advanced Firewall Manager, BIG-IP Advanced Web Application Firewall, BIG-IP Analytics, BIG-IP Application Acceleration Manager, BIG-IP Application Security Manager, BIG-IP Application Visibility and Reporting (AVR), BIG-IP Camer-Grade NAT (CGNAT), BIG-IP DDos Hybrid Defender, BIG-IP Domain Name System, BIG-IP Edge Gateway, BIG-IP Fraud Protection Service, BIG-IP Global Traffic Manager, BIG-IP Link Controller, BIG-IP Local Traffic Manager, BIG-IP Policy Inforcement Manager, BIG-IP SSL Orchestrator, BIG-IP Webaccelerator, and BIG-IP WebSafe, allows a perpetrator to increase their privileges.
The vulnerability of the TMOS Shell configuration tool, which is used for managing monitors in the BIG-IP Access Policy Manager, as well as programs like BIG-IP Advanced Firewall Manager, BIG-IP Advanced Web Application Firewall, BIG-IP Analytics, BIG-IP Application Acceleration Manager, BIG-IP...
The vulnerability of the Rails Html Sanitizer configuration tool for Rails applications stems from improper handling of input data during web page generation. This allows attackers to perform cross-site scripting attacks.
The vulnerability of the Rails Html Sanitizer configuration tool for Rails applications is related to the use of Rails in conjunction with Loofah. Exploiting this vulnerability allows a remote attacker to perform cross-site scripting attacks...
The software for configuring and managing Accutech Manager is vulnerable; this vulnerability stems from copying buffers without checking the size of the input data, which can lead to service failures.
The vulnerability of the software for configuring and managing Accutech Manager lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to cause service failures by sending specially crafted...
Error: "Cannot upgrade Citrix StoreFront with Receiver for HTML5" when upgrading to StoreFront 2.x
The following error is generated whenupgrading to StoreFront 2.x: "Error Cannot upgrade Storefront for Receiver for HTML5 Use the Citrix HTML5 HDX Engine Configuration tool to remove Receiver from HTML5 from all currently configured Receiver for Web sites. Then, uninstall Receiver for HTML5 and t...
CVE-2024-5176
Insufficiently Protected Credentials vulnerability in Baxter Welch Allyn Configuration Tool may allow Remote Services with Stolen Credentials.This issue affects Welch Allyn Configuration Tool: versions 1.9.4.1 and prior...
CVE-2024-5176 Vulnerability in Welch Allyn Configuration Tool Software
Insufficiently Protected Credentials vulnerability in Baxter Welch Allyn Configuration Tool may allow Remote Services with Stolen Credentials.This issue affects Welch Allyn Configuration Tool: versions 1.9.4.1 and prior...
CVE-2024-5176 Vulnerability in Welch Allyn Configuration Tool Software
Insufficiently Protected Credentials vulnerability in Baxter Welch Allyn Configuration Tool may allow Remote Services with Stolen Credentials.This issue affects Welch Allyn Configuration Tool: versions 1.9.4.1 and prior...
Baxter Welch Allyn Configuration Tool Security Vulnerability
The Baxter Welch Allyn Configuration Tool is a monitor from Baxter, Inc. A security vulnerability exists in Baxter Welch Allyn Configuration Tool version 1.9.4.1 and prior versions, which stems from insufficient credential protection in the Configuration Tool and could allow remote servicing with...
Baxter Welch Allyn Configuration Tool
View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.4 ATTENTION : Exploitable remotely Vendor : Baxter Equipment : Welch Allyn Configuration Tool Vulnerability : Insufficiently Protected Credentials 2. RISK EVALUATION Successful exploitation of this vulnerability could lead to the unintended exposure of...
CVE-2023-46280
CVE-2023-46280 is an out-of-bounds read vulnerability reported in Siemens products (SCT, SIMATIC tools, WinCC OA, WinCC Runtime/Portal, S7 tools, PDM, TIA Portal components, SINEC NMS, etc.). The flaw can lead to a Blue Screen of Death by corrupting kernel state on Windows when exploited locally ...
Siemens多款产品 缓冲区错误漏洞
S7 PCT Port Configuration Tool is a PC-based software for parameterizing Siemens IO link master modules and third-party IO link devices.Security Configuration Tool SCT is an engineering software for security devices such as the SCALANCE-S or CP 443- 1Advanced.SIMATIC Automation Tool allows...
The vulnerability of the Intel Binary Configuration Tool’s configuration modification utility lies in its uncontrolled search path, which allows an attacker to exploit their privileges.
The vulnerability of the Intel Binary Configuration Tool’s configuration modification utility is related to an uncontrolled element in the search process. Exploiting this vulnerability could allow a attacker to enhance their privileges...
CVE-2023-24591
Uncontrolled search path in some IntelR Binary Configuration Tool software before version 3.4.4 may allow an authenticated user to potentially enable escalation of privilege via local access...
Design/Logic Flaw
Uncontrolled search path in some IntelR Binary Configuration Tool software before version 3.4.4 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2023-24591
Uncontrolled search path in some IntelR Binary Configuration Tool software before version 3.4.4 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2023-24591
CVE-2023-24591 affects Intel® Binary Configuration Tool (BCT) software prior to version 3.4.4. The root cause is an uncontrolled search path vulnerability in the tool, which could allow an authenticated local user to escalate privileges. Impact is local privilege escalation with high confidential...
Intel Binary Configuration Tool Security Vulnerability
Intel Binary Configuration Tool is an Intel Corporation utility program for changing configuration settings embedded in Intel FSP Firmware Support Package binaries. A security vulnerability previously existed in version 3.4.4 of the Intel Binary Configuration Tool software, which stemmed from an...