16 matches found
CVE-2024-34690
SAP Student Life Cycle Management SLcM fails to conduct proper authorization checks for authenticated users, leading to the potential escalation of privileges. On successful exploitation it could allow an attacker to access and edit non-sensitive report variants that are typically restricted,...
EUVD-2024-39578
Malicious code in bioql PyPI...
CVE-2024-42373
SAP Student Life Cycle Management SLcM fails to conduct proper authorization checks for authenticated users, leading to the potential escalation of privileges. On successful exploitation it could allow an attacker to delete non-sensitive report variants that are typically restricted, causing...
CVE-2024-45284 Missing authorization check in SAP Student Life Cycle Management (SLcM)
An authenticated attacker with high privilege can use functions of SLCM transactions to which access should be restricted. This may result in an escalation of privileges causing low impact on integrity of the application...
CVE-2024-45284 Missing authorization check in SAP Student Life Cycle Management (SLcM)
An authenticated attacker with high privilege can use functions of SLCM transactions to which access should be restricted. This may result in an escalation of privileges causing low impact on integrity of the application...
SAP Student Life Cycle Management 安全漏洞
SAP Student Life Cycle Management is a student life cycle management system from SAP, Germany. A security vulnerability exists in SAP Student Life Cycle Management, which results from an authenticated attacker with elevated privileges being able to use SLCM transaction functions to which access...
SAP Student Life Cycle Management Authorization Issue Vulnerability
SAP Student Life Cycle Management is a student life cycle management system from SAP. An authorization issue vulnerability exists in SAP Student Life Cycle Management that stems from a failure to perform proper authorization checks on authenticated users, which could be exploited by an attacker t...
CVE-2024-42373 Missing Authorization Check in SAP Student Life Cycle Management (SLcM)
SAP Student Life Cycle Management SLcM fails to conduct proper authorization checks for authenticated users, leading to the potential escalation of privileges. On successful exploitation it could allow an attacker to delete non-sensitive report variants that are typically restricted, causing...
CVE-2024-42373 Missing Authorization Check in SAP Student Life Cycle Management (SLcM)
SAP Student Life Cycle Management SLcM fails to conduct proper authorization checks for authenticated users, leading to the potential escalation of privileges. On successful exploitation it could allow an attacker to delete non-sensitive report variants that are typically restricted, causing...
CVE-2024-34690 Missing Authorization check in SAP Student Life Cycle Management (SLcM)
SAP Student Life Cycle Management SLcM fails to conduct proper authorization checks for authenticated users, leading to the potential escalation of privileges. On successful exploitation it could allow an attacker to access and edit non-sensitive report variants that are typically restricted,...
Distribution of reserved tokens may run out of gas
Lines of code Vulnerability details Impact If there are enough entries in the splits array, the function that distributes the reserved tokens will run out of gas, and the reserved tokens will be un-distributable until the current cycle is over, and the splits are changed. If cycles are long, the...
CVE-2021-41744
All versions of yongyou PLM are affected by a command injection issue. UFIDA PLM Product Life Cycle Management is a strategic management method. It applies a series of enterprise application systems to support the entire process from conceptual design to the end of product life, and the...
NOTICE-OF-CHANGE ANNOUNCEMENT FOR CITRIX SD-WAN 5100 Standard Edition and 800 WANOP Edition
Citrix Systems, Inc. announces a Notice of Status Change for the Citrix SD-WAN 5100 Standard Edition and 800 WANOP Edition platforms. The tables below explain the Citrix SD-WAN life cycle management milestones as well as important information regarding dates and options during this period. The...
Cross-site scripting vulnerability in multiple IBM products (CNVD-2017-11422)
IBM Rational Collaborative Lifecycle Management CLM and Rational Quality Manager RQM are both products of the U.S. company IBM. The former is a collaborative lifecycle management solution, the latter is a collaborative, Web-based quality management solution. A cross-site scripting vulnerability...
IBM WebSphere Service Registry and Repository Installed
IBM WebSphere Service Registry and Repository, a software life cycle management application, is installed on the remote Windows host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid70069; scriptversion"1.13"; scriptsetattributeattribute:"pluginmodificationdate",...
HP Systems Insight Dynamics Detection
HP Systems Insight Dynamics is a infrastructure life cycle management suite that allows you to adjust, provision, and modify many different aspects of infrastructure. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid50540; scriptversion"1.9"; scriptcvsdate"Date:...