Rostelecom CS-C2SHW Data Forgery Issue Vulnerability

Rostelecom CS-C2SHW 5.0.082.1 A data forgery issue vulnerability exists, which stems from a firmware update that will automatically run if a special file is inserted on the SD card...

Idpy Pysaml2 Data Forgery Issue Vulnerability

Idpy Pysaml2 is a Python-based SAML server implementation from the Idpy community. Idpy PySAML2 before 6.5.0 suffers from a Data Forgery Issue vulnerability that stems from the presence of a Cryptographic Signature Validation Error vulnerability. An attacker can exploit this vulnerability to...

Idpy Pysaml2 Data Forgery Issue Vulnerability

Idpy Pysaml2 is a Python-based SAML server implementation from the Idpy community. Idpy PySAML2 before 6.5.0 suffers from a data forgery issue vulnerability that stems from a cryptographic signature validation error...

Huawei smartphone data forgery issue vulnerability

Huawei Emui is an Android-based mobile operating system from China's Huawei Corporation.Honor Magic Ui is an Android-based mobile operating system from China's Honor Corporation. Huawei smartphones are vulnerable to a data forgery issue, successful exploitation of this vulnerability may result in...

Dexidp Dex Data Forgery Issue Vulnerability

Dexidp Dex is a Go-based language used for secure authentication via OpenId by the Dexidp team. Versions of Dex prior to 2.27.0 have security vulnerabilities that stem from faulty XML encoding in the underlying Go libraries, which affects the user's ability to utilize the SAML connector. These...

Hyperledger Indy Node Data Forgery Issue Vulnerability

Indy Node is a distributed Ledger implementation based on indy-plenum Byzantine Fault Tolerance Protocol from the Linux Foundation, USA. Versions of Hyperledger Indy prior to 1.12.4 suffer from a data forgery issue vulnerability that stems from the absence of transaction-specific signature...

Xen Data Forgery Issue Vulnerability

Xen is an open source virtual machine monitor product from the University of Cambridge, UK. The product enables different and incompatible operating systems to run on the same computer and supports runtime migration to ensure uptime and avoid downtime. A security vulnerability exists in the Xen...

HUAWEI ws5800-10 Data Forgery Issue Vulnerability

The Huawei ws5800-10 is a wireless router from Huawei China. A security vulnerability exists in some Huawei home routers. The vulnerability stems from improper validation of specific messages, which can be exploited by an attacker to cause specific functionality anomalies...

Facebook HHVM Data Forgery Issue Vulnerability

Facebook HHVM aka HipHop Virtual Machine is a virtual machine from Facebook that significantly improves the performance of loading dynamic pages in PHP. A data forgery issue vulnerability exists in Facebook HHVM versions prior to 3.9.5, 3.10.0 through 3.12.3, and 3.13.0 through 3.14.1, which stem...

JetBrains Toolbox Data Forgery Issue Vulnerability

JetBrains Toolbox is a JetBrains product management application from the Czech company JetBrains. A security vulnerability exists in version 1.17 of JetBrains ToolBox prior to 1.17.6856. No details of the vulnerability are provided at this time...

Apache HTTP Server Data Forgery Issue Vulnerability

Apache HTTP Server is the United States Apache Software Apache Software Foundation of an open source web server . The server is fast, reliable and can be expanded through a simple API. A data forgery vulnerability exists in Apache HTTP Server. The vulnerability arises from a network system or...

Pritunl-client Data Forgery Issue Vulnerability

Pritunl-client is an open source OpenVPN client application from the American company Pritunl. A security vulnerability exists in pritunl-client versions prior to 1.0.1116.6, which stems from a lack of signature verification in the program. An attacker can exploit this vulnerability to obtain...

grub2 data forgery issue vulnerability

grub2 is a Linux system bootloader from the GNU Project. A data forgery issue vulnerability exists in GRUB2 2.04 and earlier versions. The vulnerability stems from the program not verifying kernel signatures when booting directly without shim. An attacker could exploit this vulnerability to bypas...

Grin Data Forgery Issue Vulnerability

Grin is an implementation of the MimbleWimble protocol. A security vulnerability exists in Grin that stems from the program failing to adequately validate data about Mimblewimble. An attacker could exploit the vulnerability to cause the application to crash...

Tendermint Data Forgery Issue Vulnerability

Tendermint is a Byzantine Fault Tolerant BFT style middleware from Tendermint Inc. in the United States. A data forgery vulnerability exists in Tendermint v0.33.0 and later versions fixed in v0.33.6. The vulnerability arises from a network system or product that does not adequately validate the...

Palo Alto Networks PAN-OS Data Forgery Issue Vulnerability

Palo Alto Networks PAN-OS is an operating system developed by Palo Alto Networks for its firewall appliances. A data forgery issue vulnerability exists in SAML authentication in Palo Alto Networks PAN-OS, which arises from the program failing to properly verify signatures. An attacker could explo...

jsrsasign package data forgery issue vulnerability

jsrsasign package is an open source encryption library from the Japanese software developer Kenji Urashima . A security vulnerability exists in jsrsasign package version 8.0.18 and earlier Node.js. No detailed vulnerability details are provided at this time...

Mattermost Server Data Forgery Issue Vulnerability

Mattermost Server is the United States Mattermost company's set of open source messaging platform. A data forgery vulnerability exists in Mattermost Server versions prior to 5.21.0, which can be exploited by an attacker to cause a denial of service...

Crypt::Perl Data Forgery Issue Vulnerability

Perl is a general-purpose, interpreted, dynamic, cross-platform programming language from the Perl community.Crypt:: Perl is one of the cryptographic modules. A data forgery issue vulnerability exists in Crypt::Perl::ECDSA in versions of Crypt::Perl prior to 0.32 Perl, which stems from a program...

fwupd Data Forgery Issue Vulnerability

fwupd is a plugin that supports firmware updates for session software on Linux platforms. A data forgery issue vulnerability exists in fwupd. The vulnerability stems from a network system or product that does not adequately validate the origin or authenticity of data. An attacker could exploit th...