Nextcloud 数据伪造问题漏洞

Nextcloud is a suite of open source, self-hosted file synchronization and sharing communication application platform from Nextcloud Germany. A data forgery issue vulnerability exists in Nextcloud Server versions prior to 21.0.8, 22.2.4, and 23.0.1. An attacker exploiting this vulnerability could...

Red Lion DA50N Data Forgery Issue Vulnerability

The Red Lion DA50N is a series of secure edge network gateways from Red Lion, U.S.A. The Red Lion DA50N is vulnerable to a data forgery issue that stems from the possibility that an authorized user could install a maliciously modified package file when updating the device via the Web UI, and that...

Yubico ykneo-openpgp data forgery issue vulnerability

Yubico ykneo-openpgp is an open source security product from the Swedish company Yubico. It implements the OpenPGP card functionality used on YubiKey NEO devices sold by Yubico. A data forgery issue vulnerability exists in versions prior to Yubico ykneo-openpgp 1.0.10. The vulnerability stems fro...

Red Lion DA50N 数据伪造问题漏洞

The Red Lion DA50N is a series of secure edge network gateways from Red Lion, U.S.A. The Red Lion DA50N is vulnerable to a data forgery issue that stems from the possibility that an authorized user could install a maliciously modified package file when updating the device via the Web UI, and that...

Yubico ykneo-openpgp 数据伪造问题漏洞

Yubico ykneo-openpgp is an open source security product from the Swedish company Yubico. It implements the OpenPGP card functionality used on YubiKey NEO devices sold by Yubico. A data forgery issue vulnerability exists in versions prior to Yubico ykneo-openpgp 1.0.10. The vulnerability stems fro...

Digital Bazaar Forge Data Forgery Issue Vulnerability (CNVD-2022-22656)

Digital Bazaar Forge is a native implementation of Tls in Javascript and an open source tool for writing encryption-based and network-intensive Web applications from Digital Bazaar, Inc. A data forgery issue vulnerability exists in versions prior to Digital Bazaar Forge 1.3.0, which originated in...

Digital Bazaar Forge Data Forgery Issue Vulnerability

Digital Bazaar Forge is a native implementation of Tls in Javascript and an open source tool for writing encryption-based and network-intensive Web applications from Digital Bazaar, Inc. digitalbazaar Forge versions prior to 1.3.0 are vulnerable to a data forgery issue that originates from RSA PK...

Digital Bazaar Forge 数据伪造问题漏洞

Digital Bazaar Forge is a native implementation of Digital Bazaar's Tls in Javascript and an open source tool for writing cryptographic and web-intensive web applications. Prior to Digital Bazaar Forge version 1.3.0, a data forgery vulnerability exists in RSA PKCS, which stems from the loose...

Digital Bazaar Forge 数据伪造问题漏洞

Digital Bazaar Forge is a native implementation of Tls in Javascript and an open source tool for writing encryption-based and network-intensive Web applications from Digital Bazaar, Inc. A data forgery issue vulnerability exists in versions prior to Digital Bazaar Forge 1.3.0, which originated in...

Digital Bazaar Forge 数据伪造问题漏洞

Digital Bazaar Forge is a native implementation of Tls in Javascript and an open source tool for writing encryption-based and network-intensive Web applications from Digital Bazaar, Inc. digitalbazaar Forge versions prior to 1.3.0 are vulnerable to a data forgery issue that originates from RSA PK...

Syltek application 数据伪造问题漏洞

Syltek application is an application. A security vulnerability previously existed in the Syltek application version 10.22.00 that allowed an attacker to spoof a request and bypass the payment system by marking the item as paid without any authentication...

ChainSafe js-libp2p-noise 数据伪造问题漏洞

ChainSafe js-libp2p-noise is an open source implementation of TypeScript containing the noise protocol from ChainSafe Canada. ChainSafe js-libp2p-noise is vulnerable to a data forgery issue that allows a man-in-the-middle to impersonate other peers and disable those peers...

Wire 数据伪造问题漏洞

Wire is a chat program from the German company Wire. The program supports Web, WindowsiOS, Android, and OS X platforms, has a group feature, allows voice calls, sends photos, and its original greeting method, PING. A data forgery vulnerability exists in Wire Wire-server, which stems from the...

STMicroelectronics STSAFE-J 数据伪造问题漏洞

The STMicroelectronics STSAFE-J is a highly secure solution from STMicroelectronics Switzerland. It acts as a security element by providing authentication, data management and encryption services to local or remote hosts. A data forgery issue vulnerability exists in the STMicroelectronics STSAFE-...

Octobercms 数据伪造问题漏洞

Octobercms is a Php-based Cms website builder from Octobercms, Inc. A data forgery issue vulnerability exists in Octobercms that stems from an input validation error when handling directory traversal sequences in filenames in zip archives. A remote user can upload a specially crafted zip archive...

Acronis True Image Data Forgery Issue Vulnerability

Acronis True Image is a well-known data backup and restore software from Singapore-based Acronis. The software can be used to create drive and disk images and can restore images when a clean system is needed.Acronis True Image is vulnerable to a data forgery issue that stems from unrestricted...

Huawei HarmonyOS Data Forgery Issue Vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A security vulnerability exists in Huawei HarmonyOS, which stems from a vulnerability in the Wearables recovery upgrade system where the signature validation...

Acronis True Image 数据伪造问题漏洞

Acronis True Image is a well-known data backup and restore software from Singapore-based Acronis. The software can be used to create drive and disk images and can restore images when a clean system is needed.Acronis True Image is vulnerable to a data forgery issue that stems from unrestricted...

Samba 数据伪造问题漏洞

Samba is a standard Windows interoperability program suite for Linux and Unix. A data forgery vulnerability exists in Samba that stems from a failure of the product's vfsfruit module to properly handle memory operations. An attacker could cause a denial of service via this vulnerability...

Reolink RLC-410W Data Forgery Issue Vulnerability

Reolink Rlc-410W is a Wifi security camera from Reolink China.Reolink RLC-410W version v3.0.0.13620121102 is vulnerable to a data forgery issue, which stems from a network system or product that does not adequately verify the origin or authenticity of data. An attacker using this vulnerability ca...