331 matches found
CVE-2018-2656
Vulnerability in the Oracle General Ledger component of Oracle E-Business Suite subcomponent: Data Manager Server. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows unauthenticated attacker with...
CVE-2018-2656
CVE-2018-2656 affects Oracle E-Business Suite’s Oracle General Ledger component, specifically the Data Manager Server. Affected versions include 12.1.1, 12.1.2, 12.1.3, 12.2.3–12.2.7. The flaw is actionable by an unauthenticated attacker over HTTP with network access, enabling unauthorized creati...
CVE-2018-2656
Vulnerability in the Oracle General Ledger component of Oracle E-Business Suite subcomponent: Data Manager Server. Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows unauthenticated attacker with...
Unspecified Vulnerability in Oracle E-Business Suite (CNVD-2018-02405)
Oracle E-Business Suite is based on the original Application ERP expansion, including ERP Enterprise Resource Planning, HR Human Resource Management, CRM Customer Relationship Management, and so on a variety of management software collection, is a seamless integration of a management suite. An...
CVE-2017-9944
A vulnerability has been identified in Siemens 7KT PAC1200 data manager 7KT1260 in all versions V2.03. The integrated web server port 80/tcp of the affected devices could allow an unauthenticated remote attacker to perform administrative operations over the network...
CVE-2017-9944
A vulnerability has been identified in Siemens 7KT PAC1200 data manager 7KT1260 in all versions V2.03. The integrated web server port 80/tcp of the affected devices could allow an unauthenticated remote attacker to perform administrative operations over the network...
Design/Logic Flaw
A vulnerability has been identified in Siemens 7KT PAC1200 data manager 7KT1260 in all versions V2.03. The integrated web server port 80/tcp of the affected devices could allow an unauthenticated remote attacker to perform administrative operations over the network...
CVE-2017-9944
A vulnerability has been identified in Siemens 7KT PAC1200 data manager 7KT1260 in all versions V2.03. The integrated web server port 80/tcp of the affected devices could allow an unauthenticated remote attacker to perform administrative operations over the network...
EMC ScaleIO for Linux Information Disclosure Vulnerability
EMC ScaleIO for Linux is a software-defined solution for converting DAS storage to shared data block storage based on the Linux platform from EMC. An information disclosure vulnerability exists in EMC ScaleIO version 2.0.1.x for Linux-based platforms, which originates when the program saves the...
Siemens 7KT PAC1200 Data Manager Authentication Bypass Vulnerability
The 7KT PAC1200 data manager 7KT1260 from the SENTRON portfolio is a fully integrated smart meter with a Web interface. An authentication bypass vulnerability exists in the 7KT PAC1200 data manager from the SENTRON portfolio, which could allow a remote attacker to bypass the authentication...
Siemens 7KT PAC1200 Data Manager
CVSS v3 9.8 ATTENTION: Remotely exploitable/low skill level to exploit. Vendor: Siemens Equipment: 7KT PAC1200 data manager Vulnerability: Authentication Bypass Using an Alternate Path or Channel AFFECTED PRODUCTS Siemens reports that the vulnerability affects the following versions of the 7KT...
CVE-2017-1249
IBM Rhapsody DM 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session...
SIEMENS SIMATIC Logon Certification Bypass Vulnerability
SIMATIC WinCC, SIMATIC PCS 7, SIMATIC PDM and SIMATIC IT are industrial automation products from Siemens. An authentication bypass vulnerability exists in SIEMENS SIMATIC Logon. An attacker can exploit the vulnerability to bypass the authentication mechanism and perform unauthorized operations...
My Data Manager - Data Usage - Customized SSL, Exported components, External URLs vulnerabilities
HackApp vulnerability scanner discovered that application My Data Manager - Data Usage published at the 'play' market has multiple vulnerabilities...
CVE-2015-6468
Cross-site request forgery CSRF vulnerability in Resource Data Management Data Manager before 2.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in Resource Data Management Data Manager before 2.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...
CVE-2015-6468
Cross-site request forgery CSRF vulnerability in Resource Data Management Data Manager before 2.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...
CVE-2015-6470
Resource Data Management’s Data Manager prior to version 2.2 is affected by a privilege-escalation vulnerability (CWE-269) that allows a valid authenticated user to change passwords for other users, including administrators, via unspecified vectors. Public records indicate remote access and passw...
CVE-2015-6468
CVE-2015-6468 is a CSRF vulnerability in Resource Data Management’s Web-based Data Manager, affected versions prior to 2.2. The issue enables an attacker to hijack an authenticated user’s session and perform unintended actions on trusted pages via CSRF vectors (details not specified in the provid...
Resource Data Management Privilege Escalation Vulnerability
OVERVIEW Independent researcher Maxim Rupp has identified two vulnerabilities in Resource Data Management’s Data Manager application. Resource Data Management has produced a new version to mitigate these vulnerabilities. These vulnerabilities could be exploited remotely. AFFECTED PRODUCTS Resourc...