Pioneer DMH-WT7600NEX 数据伪造问题漏洞

The Pioneer DMH-WT7600NEX is a multimedia digital media receiver from Pioneer. The Pioneer DMH-WT7600NEX suffers from a Data Forgery Issue vulnerability that stems from insufficient validation of software updates and could lead to the execution of arbitrary code...

rfc3161-client 数据伪造问题漏洞

rfc3161-client is a Trail of Bits open source software. A data forgery issue vulnerability exists in rfc3161-client versions prior to 1.0.3, which stems from a flaw in the timestamp response signature validation logic that could lead to insufficient signature validation...

BlueRiSC WindowsSCOPE Cyber Forensics 数据伪造问题漏洞

BlueRiSC WindowsSCOPE Cyber Forensics is a GUI-based memory forensic capture and analysis toolkit from BlueRiSC. BlueRiSC WindowsSCOPE Cyber Forensics suffers from a Data Forgery Issue vulnerability that stems from a lack of constraints in the rv32im circuit, which could lead to a malicious prove...

Microsoft Windows 数据伪造问题漏洞

Microsoft Windows is a suite of operating systems for use on personal devices from Microsoft Corporation USA. A data forgery vulnerability exists in Microsoft Windows. An attacker could exploit this vulnerability to bypass certain functionality. The following products and versions are...

Deno 数据伪造问题漏洞

Deno is a simple, modern and secure JavaScript and TypeScript runtime environment from Deno Open Source. A data forgery issue vulnerability exists in Deno versions 1.46.0 through 2.1.6, which stems from the AES-256-GCM and AES-128-GCM unvalidated authentication tags, and could lead to a failure o...

Siemens SiPass integrated AC5102和Siemens SiPass integrated ACC-AP 数据伪造问题漏洞

The Siemens SiPass integrated AC5102 and Siemens SiPass integrated ACC-AP are both products of Siemens AG, Germany.The Siemens SiPass integrated AC5102 is an advanced centralized controller.The Siemens SiPass integrated ACC-AP is an access control controller. The Siemens SiPass integrated ACC-AP ...

OpenPGP.js 数据伪造问题漏洞

OpenPGP.js is an open source OpenPGP encryption algorithm library implemented in JavaScript by OpenPGP.js Open Source. A data forgery issue vulnerability exists in OpenPGP.js versions prior to 5.11.3 and 6.1.1, which stems from a maliciously modified message that could result in signature...

samlify 数据伪造问题漏洞

samlify is a Node.js library for SAML SSO by tngan individual developer. A data forgery issue vulnerability exists in samlify versions prior to 2.10.0, which stems from a signature wrapping attack that could lead to a forged SAML response...

Microsoft Azure Functions Data Forgery Issue Vulnerability

Microsoft Azure Functions is a hosted Platform-as-a-Service PaaS provider from Microsoft Corporation USA that provides event-driven and scheduled compute resources for Azure cloud services. Microsoft Azure Functions has a data forgery issue vulnerability that stems from improper cryptographic...

Cisco IOS 数据伪造问题漏洞

Cisco IOS is an operating system developed by Cisco for its network devices. A data forgery vulnerability exists in Cisco IOS that stems from a lack of signature verification and could lead to the execution of arbitrary code...

Microsoft Azure Functions 数据伪造问题漏洞

Microsoft Azure Functions is a hosted Platform-as-a-Service PaaS provider from Microsoft Corporation USA that provides event-driven and scheduled compute resources for Azure cloud services. Microsoft Azure Functions has a data forgery issue vulnerability that stems from improper cryptographic...

react-router 数据伪造问题漏洞

react-router is a declarative routing for React open-sourced by Remix. A data forgery issue vulnerability exists in versions of react-router prior to 7.5.2, which stems from the possible modification of pre-rendered data by adding a request header...

CarlinKit CPC200-CCPA 数据伪造问题漏洞

The CarlinKit CPC200-CCPA is a wireless CarPlay and Android Auto adapter from CarlinKit. The CarlinKit CPC200-CCPA suffers from a Data Forgery Issue vulnerability that stems from a failure to validate cryptographic signatures during USB update packet processing, which could lead to arbitrary code...

CarlinKit CPC200-CCPA 数据伪造问题漏洞

CarlinKit CPC200-CCPA is a wireless CarPlay and Android Auto adapter from CarlinKit. The CarlinKit CPC200-CCPA suffers from a Data Forgery Issue vulnerability that stems from update.cgi processing update packages without verifying cryptographic signatures, which could lead to arbitrary code...

Cisco Secure Network Analytics Data Forgery Issue Vulnerability

Cisco Secure Network Analytics is a network security solution designed to provide enterprise-wide network visibility and advanced threat detection and response capabilities. Cisco Secure Network Analytics is vulnerable to a data forgery issue, which can be exploited by a remote attacker to submit...

Cisco Secure Network Analytics 数据伪造问题漏洞

Cisco Secure Network Analytics is a network security solution designed to provide enterprise-wide network visibility and advanced threat detection and response capabilities. Cisco Secure Network Analytics is vulnerable to a data forgery issue, which can be exploited by a remote attacker to submit...

Suricata 数据伪造问题漏洞

Suricata is a network IDS, IPS, and NSM engine from the Open Information Security Foundation. Suricata suffers from a data forgery issue vulnerability that stems from a default configuration issue that could lead to packet truncation...

Microsoft Windows Virtualization-Based Security Enclave 数据伪造问题漏洞

Microsoft Windows Virtualization-Based Security Enclave Microsoft Windows VBS Enclave is a software-based trusted execution environment in the host application address space from Microsoft Corporation USA. Microsoft Windows Virtualization-Based Security Enclave Microsoft Windows VBS Enclave is...

MinIO 数据伪造问题漏洞

MinIO is an open source object storage server from the US-based MinIO. The product supports building infrastructures for machine learning, analytics, and application data workloads. MinIO suffers from a data forgery issue vulnerability that stems from a potentially invalid authorization signature...

Cisco IOS XR Data Forgery Issue Vulnerability

Cisco IOS XR is a set of operating systems developed by the American company Cisco Cisco for its network equipment. Cisco IOS XR suffers from a data forgery vulnerability that stems from insufficient module validation during software loading, which could be exploited by an attacker to launch...