PT-2021-4166 · Microsoft · Windows Storage Spaces Controller +1

Name of the Vulnerable Software and Affected Versions: Windows Storage Spaces Controller affected versions not specified Description: The issue is related to an elevation-of-privilege vulnerability in the Windows Storage Spaces Controller, which is caused by insecure privilege management. This...

Microsoft Windows Storage Spaces Controller 输入验证错误漏洞

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation USA, Microsoft Windows is an operating system for personal devices, and Microsoft Windows Server is a server operating system. An elevation of privilege vulnerability exists in Storage Spaces Controller in...

Cisco Elastic Services Controller 资源管理错误漏洞

The Cisco Elastic Services Controller ESC is a virtual network function manager VNFM that manages the lifecycle of virtual network functions VNFs. A denial of service vulnerability exists in system resource management in Cisco Elastic Services Controller 5.3.0.94 and earlier. The vulnerability...

CVE-2020-7568

A CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists in Modicon M221 all references, all versions that could allow non sensitive information disclosure when the attacker has captured the traffic between EcoStruxure Machine - Basic software and Modicon M221...

Schneider Electric EcoStruxure Machine Expert-Basic or SoMachine Basic Injection Vulnerability

Schneider Electric EcoStruxure Machine Expert-Basic and SoMachine Basic are both products of Schneider Electric, France.Schneider Electric EcoStruxure Machine Expert-Basic is a PLC configuration application. The program is mainly used for programmable logic controller configuration, programming a...

Denial of Service Vulnerability in Schneider Electric TM218LDAE24DRHN

Schneider Electric TM218LDAE24DRHN is a programmable controller product from Schneider Electric France. A denial of service vulnerability exists in the Schneider Electric TM218LDAE24DRHN, which can be exploited by an attacker to send a specific protocol packet and cause a denial of service attack...

CVE-2019-1900

A vulnerability in the web server of Cisco Integrated Management Controller IMC could allow an unauthenticated, remote attacker to cause the web server process to crash, causing a denial of service DoS condition on an affected system. The vulnerability is due to insufficient validation of...

CVE-2019-1885

A vulnerability in the Redfish protocol of Cisco Integrated Management Controller IMC could allow an authenticated, remote attacker to inject and execute arbitrary commands with root privileges on an affected device. The vulnerability is due to insufficient validation of user-supplied input by th...

CVE-2018-0382

A vulnerability in the session identification management functionality of the web-based interface of Cisco Wireless LAN Controller WLC Software could allow an unauthenticated, remote attacker to hijack a valid user session on an affected system. The vulnerability exists because the affected...

OpenDaylight OpenFlow Plugin and Controller Denial of Service Vulnerability

Opendaylight, a project of the Linux Foundation, is a community-driven, open-source, software-defined networking framework that includes an ensemble of modules to perform networking tasks that need to be done quickly.OpenDaylight OpenFlow is one of the new network switching models; Controller is...

Cisco Elastic Services Controller Elevation of Privilege Vulnerability

Cisco Elastic Services Controller ESC is an open source modular system from Cisco USA. An arbitrary command execution vulnerability exists in Cisco ESC versions prior to 2.3.1.434 and prior to 2.3.2, which originates from a tomcat user on the system that can overwrite arbitrary files on the file...

Juniper Networks NorthStar Controller Authentication Bypass Vulnerability

Juniper Networks NorthStar Controller is a powerful and flexible traffic engineering solution that enables granular visualization and control of IP/MPLS flows in carrier networks. An authentication bypass vulnerability exists in Juniper Networks NorthStar Controller, which can be exploited by...

CVE-2016-6375

Cisco Wireless LAN Controller WLC devices before 8.0.140.0, 8.1.x and 8.2.x before 8.2.121.0, and 8.3.x before 8.3.102.0 allow remote attackers to cause a denial of service device reload by sending crafted Inter-Access Point Protocol IAPP packets and then sending a traffic stream metrics TSM...