Petwant PF-103 and Petalk AI Data Forgery Issue Vulnerabilities

Petwant PF-103 is an automated pet feeder from Petwant Pet Products China.Petalk AI is an automated pet feeder with monitoring function. A data forgery issue vulnerability exists in Petalk AI and PF-103, which arises from the program's use of the unencrypted HTTP protocol to perform firmware...

Multiple Huawei Products Data Forgery Issue Vulnerability

The Huawei AR1200, among others, is an enterprise router from Huawei, a Chinese company. A data forgery vulnerability exists in a number of Huawei products. The vulnerability stems from the program failing to adequately verify some fields in a message, which can be exploited by an attacker to cau...

Decentralized Anonymous Payment System Data Forgery Issue Vulnerability

Decentralized Anonymous Payment System DAPS is a decentralized anonymous payment system. A Data Forgery Issue vulnerability exists in DAPS 2019-08-26 and prior versions, which stems from the program's use of a weak signature mechanism that can be exploited by an attacker to reuse signatures...

Advanced Packaging Tools Data Forgery Issue Vulnerability

Advanced Packaging Tools APT is a package manager that automatically downloads, configures, and installs packages in binary or source code format. There is a data forgery problem vulnerability in apt-key in APT, which can be exploited by an attacker to execute a man-in-the-middle attack...

Red Hat redhat-upgrade-tool data forgery issue vulnerability

Red Hat redhat-upgrade-tool is a system upgrade tool from Red Hat USA. A data forgery issue vulnerability exists in Red Hat redhat-upgrade-tool, which can be exploited by an attacker to conduct an attack with forged data...

SAP NetWeaver Process Integration Data Forgery Issue Vulnerability

SAP NetWeaver Process Integration PI is an SAP enterprise application integration software from SAP, Germany, and is a component of the NetWeaver product group. The component is mainly used for the exchange of information between the internal system and the external. A vulnerability exists in SAP...

CVE-2019-6475

Mirror zones are a BIND feature allowing recursive servers to pre-cache zone data provided by other servers. A mirror zone is similar to a zone of type secondary, except that its data is subject to DNSSEC validation before being used in answers, as if it had been looked up via traditional...

Cisco Catalyst 3850 Series Switches and 9300 Series Switches IOS XE Data Forgery Issue Vulnerability

Cisco Catalyst 3850 Series Switches and Cisco Catalyst 9300 Series Switches are both products of Cisco Systems. the Cisco Catalyst 3850 Series Switches is a 3850 Series Switch. Cisco Catalyst 9300 Series Switches is a 9300 series switch.IOS XE is an operating system developed for its network...

Cisco NX-OS and Cisco IOS XE Data Forgery Issue Vulnerabilities

Cisco NX-OS Software and IOS XE are both products of Cisco Corporation.Cisco NX-OS Software is a set of data center-grade operating system software used by switches.IOS XE is a set of operating systems developed for use with its network devices. Cisco NX-OS and Cisco IOS XE in the data forgery...

IcedTea-Web Data Forgery Issue Vulnerability

IcedTea-Web is an open source implementation of JSR-56 Java Network Launching Protocol and API. IcedTea-Web suffers from a Data Forgery Issue vulnerability that arises from a failure of a network system or product to adequately verify the origin or authenticity of data. An attacker could exploit...

Inateck Technology WP1001 Data Forgery Issue Vulnerability

The Inateck Technology WP1001 is a wireless presentation remote control from Inateck Technology, USA. A vulnerability exists in the Inateck Technology WP1001 v1.3C for data forgery issues. The vulnerability arises from a networked system or product that does not adequately validate the origin or...

Inateck Technology Inateck WP2002 Data Forgery Issue Vulnerability (CNVD-2019-17494)

Inateck Technology The Inateck WP2002 is a wearable wireless presentation remote control from Inateck Technology, USA. A data forgery issue vulnerability exists in the Inateck Technology Inateck WP2002. The vulnerability arises from a networked system or product that does not adequately validate...

Bloop Airmail GPG-PGP Plugin Data Forgery Issue Vulnerability

Bloop Airmail is an email application from Bloop Italy.GPG-PGP Plugin is one of the encryption components. A data forgery issue vulnerability exists in Bloop Airmail GPG-PGP Plugin 1.0 9 and prior versions, which arises from a networked system or product that does not adequately validate the orig...

Cisco NX-OS Software Data Forgery Issue Vulnerability

Cisco NX-OS Software is a set of data center-grade operating system software for switches from the U.S. company Cisco Cisco. A data forgery vulnerability exists in the Image Signature Verification feature in Cisco NX-OS Software. The vulnerability arises from a network system or product that does...

Cisco NX-OS Software Data Forgery Issue Vulnerability (CNVD-2019-14715)

Cisco NX-OS Software is a set of data center-grade operating system software for switches from the U.S. company Cisco Cisco. A data forgery vulnerability exists in the Image Signature Verification feature in Cisco NX-OS Software. The vulnerability arises from a network system or product that does...

FreeBSD : shibboleth-sp -- vulnerable to forged user attribute data (22438240-1bd0-11e8-a2ec-6cc21735f730)

Shibboleth consortium reports : Shibboleth SP software vulnerable to additional data forgery flaws The XML processing performed by the Service Provider software has been found to be vulnerable to new flaws similar in nature to the one addressed in an advisory last month. These bugs involve the us...

shibboleth-sp -- vulnerable to forged user attribute data

Shibboleth consortium reports: Shibboleth SP software vulnerable to additional data forgery flaws The XML processing performed by the Service Provider software has been found to be vulnerable to new flaws similar in nature to the one addressed in an advisory last month. These bugs involve the use...

Milwaukee ONE-KEY Android mobile application trust management vulnerability

Milwaukee ONE-KEY Android mobile application is an automation tool control program based on the Android platform from Milwaukee Tool. A security vulnerability exists in the Milwaukee ONE-KEY Android mobile application, which originates from the program storing the master token in plaintext in the...

A10 AX1030 Information Disclosure Vulnerability

The A10 AX1030 is an application delivery product from A10 Networks that provides comprehensive application capabilities for server load balancing, IPv6 migration and virtualization projects. A security vulnerability exists in A10 AX1030 prior to version 2.7.2-P8. A remote attacker could exploit...

Radware Man-in-the-Middle Attack Vulnerability

Radware is a series of application delivery intelligence solution products developed by Radware Israel. A security vulnerability exists in Radware devices. A remote attacker could exploit the vulnerability to obtain authentication keys and forge data...