PT-2021-1896 · Microsoft · Sharepoint Server +1

Name of the Vulnerable Software and Affected Versions: Microsoft SharePoint Server affected versions not specified Microsoft SharePoint Foundation affected versions not specified Microsoft SharePoint Enterprise Server affected versions not specified Description: The issue is related to insecure...

McAfee Network Security Manager Cross-Site Request Forgery Vulnerability

McAfee Network Security Manager NSM is a network security solution from McAfee that enables real-time monitoring of deployed McAfee intrusion prevention systems across the network. A cross-site request forgery vulnerability exists in McAfee Network Security Manager. An attacker could exploit this...

Mcafee McAfee Network Security Management 跨站请求伪造漏洞

McAfee Network Security Manager NSM is a network security solution from McAfee that enables real-time monitoring of deployed McAfee intrusion prevention systems across the network. A cross-site request forgery vulnerability exists in McAfee Network Security Manager. An attacker could exploit this...

Logic Flaw Vulnerability in Spectranet 4G LTE Mobile Router

Spectranet 4G LTE Mobile Router is a mobile router. A logic flaw vulnerability exists in the Spectranet 4G LTE Mobile Router. An attacker can exploit the vulnerability to obtain sensitive information, make arbitrary configuration changes, and override reboot commands...

Siemens LOGO! 8 BM Information Disclosure Vulnerability

Siemens LOGO! 8 BM is a programming software for industrial environments for the Windows platform from Siemens Germany. Siemens LOGO! 8 BM is vulnerable to an information disclosure vulnerability that could be exploited by an attacker to make unauthorized password or configuration changes to any...

Siemens LOGO! 8 BM Static Key Replay Attack Vulnerability

Siemens LOGO! 8 BM is a programming software for industrial environments for the Windows platform from Siemens Germany. A security vulnerability exists in Siemens LOGO! 8 BM. An attacker could exploit this vulnerability by performing a replay attack to make unauthorized changes to passwords or...

Siemens LOGO! 8 BM 安全漏洞

Siemens LOGO! 8 BM is a programming software for industrial environments for the Windows platform from Siemens Germany. Siemens LOGO! 8 BM is vulnerable to an information disclosure vulnerability that could be exploited by an attacker to make unauthorized password or configuration changes to any...

Siemens LOGO! 8 BM

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Siemens Equipment: LOGO! 8 BM Vulnerabilities: Missing Authentication for Critical Function, Use of Hard-coded Cryptographic Key, Use of a Broken or Risky Cryptographic Algorithm, Insufficiently...

Siemens LOGO! 8 BM 信任管理问题漏洞

Siemens LOGO! 8 BM is a programming software for industrial environments for the Windows platform from Siemens Germany. A security vulnerability exists in Siemens LOGO! 8 BM. An attacker could exploit this vulnerability by performing a replay attack to make unauthorized changes to passwords or...

HPE Edgeline Infrastructure Management Authorization Issues Vulnerability

HPE Edgeline Infrastructure Management is a software from Hewlett-Packard HPE for data center environments to manage Edge devices. A security vulnerability exists in HPE Edgeline Infrastructure Manager. An attacker could exploit the vulnerability to bypass remote authentication to execute arbitra...

CVE-2020-7199

A security vulnerability has been identified in the HPE Edgeline Infrastructure Manager, also known as HPE Edgeline Infrastructure Management Software. The vulnerability could be remotely exploited to bypass remote authentication leading to execution of arbitrary commands, gaining privileged...

HPE Edgeline Infrastructure Management 授权问题漏洞

HPE Edgeline Infrastructure Management is a software from Hewlett-Packard HPE for data center environments to manage Edge devices. A security vulnerability exists in HPE Edgeline Infrastructure Manager. An attacker could exploit the vulnerability to bypass remote authentication to execute arbitra...

Security update for neomutt (moderate)

openSUSE Security Update: Security update for neomutt Announcement ID: openSUSE-SU-2020:2127-1 Rating: moderate References: 1172906 1172935 1173197 1179035 1179113 Cross-References: CVE-2020-14093 CVE-2020-14154 CVE-2020-14954 CVE-2020-28896 Affected Products: openSUSE Leap 15.2 openSUSE Leap 15....

Cisco Integrated Management Controller Authorization Bypass Vulnerability

The Cisco Integrated Management Controller IMC is a baseboard management controller that provides embedded server management for Cisco UCS C-Series rackmount servers and Cisco S-Series storage servers. An authorization bypass vulnerability exists in the API endpoints of Cisco Integrated Managemen...

Cisco Firepower Threat Defense Software Hidden Commands (cisco-sa-ftd-hidcmd-pFDeWVBd)

According to its self-reported version, Cisco Firepower Threat Defense Software is affected by a vulnerability in its CLI component which allows access to hidden commands. An authenticated, local attacker could exploit this to access these commands and make configuration changes to various sectio...

CVE-2020-3352

A vulnerability in the CLI of Cisco Firepower Threat Defense FTD Software could allow an authenticated, local attacker to access hidden commands. The vulnerability is due to the presence of undocumented configuration commands. An attacker could exploit this vulnerability by performing specific...

CVE-2020-3352 Cisco Firepower Threat Defense Software Hidden Commands Vulnerability

A vulnerability in the CLI of Cisco Firepower Threat Defense FTD Software could allow an authenticated, local attacker to access hidden commands. The vulnerability is due to the presence of undocumented configuration commands. An attacker could exploit this vulnerability by performing specific...

Cisco Vision Dynamic Signage Director Authentication Missing Vulnerability

Cisco Vision Dynamic Signage Director is a core component of the Cisco Vision Dynamic Signage solution that gives you the flexibility to coordinate, manage, and orchestrate the delivery of compelling, customized digital content to hundreds or even thousands of TV displays throughout your venue. A...

Design/Logic Flaw

Jenkins Maven Cascade Release Plugin 1.3.2 and earlier does not perform permission checks in several HTTP endpoints, allowing attackers with Overall/Read permission to start cascade builds and layout builds, and reconfigure the plugin...

CVE-2020-3598

A vulnerability in the web-based management interface of Cisco Vision Dynamic Signage Director could allow an unauthenticated, remote attacker to access confidential information or make configuration changes. The vulnerability is due to missing authentication for a specific section of the web-bas...