4667 matches found
PT-2024-24718 · Unknown · Dsgvo Youtube
Name of the Vulnerable Software and Affected Versions: DSGVO Youtube versions 1.4.5 and earlier Description: The issue is related to improper neutralization of input during web page generation, also known as Cross-site Scripting. This allows for Stored XSS attacks. Recommendations: For versions...
The vulnerability in the implementation of the Secure Boot protocol for operating systems with security features allows a perpetrator to circumvent security restrictions.
The vulnerability of the Secure Boot protocol for operating systems running Windows is related to a breach in the data protection mechanism. Exploiting this vulnerability could allow an attacker to circumvent security restrictions...
The vulnerability of the Adobe Experience Manager (AEM) content and media data management system, related to insufficient protection of operational data, allows a hacker to disclose protected information.
The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of operational data. Exploiting this vulnerability could allow a malicious actor to disclose protected information remotely...
Enforce and Report on PCI DSS v4 Compliance with Rapid7
The PCI Security Standards Council PCI SSC is a global forum that connects stakeholders from the payments and payment processing industries to craft and facilitate adoption of data security standards and relevant resources that enable safe payments worldwide. According to the PCI SSC website, “PC...
PT-2024-3244 · Mitel · Mitel 6900 Series +3
Name of the Vulnerable Software and Affected Versions: Mitel 6800 Series versions through 6.3 SP3 HF4 Mitel 6900 Series versions through 6.3 SP3 HF4 Mitel 6900w Series SIP Phone versions through 6.3.3 Mitel 6970 Conference Unit versions through 5.1.1 SP8 Description: The issue is related to...
Moderate: Red Hat Security Advisory: OpenShift API for Data Protection (OADP) 1.3.1 security and bug fix update
OpenShift API for Data Protection OADP 1.3.1 is now available. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...
PT-2024-3198 · Oracle · Oracle Webcenter Portal
Name of the Vulnerable Software and Affected Versions: Oracle WebCenter Portal version 12.2.1.4.0 Description: The vulnerability in the Oracle WebCenter Portal product is related to insufficient protection of internal data. It allows a remote attacker to gain unauthorized access to read, add,...
PT-2024-3723 · Oracle +1 · Oracle Graalvm Enterprise Edition +2
Name of the Vulnerable Software and Affected Versions: Oracle GraalVM for JDK versions 17.0.10, 21.0.2, 22 Oracle GraalVM Enterprise Edition versions 20.3.13, 21.3.9 Description: The issue is related to insufficient protection of internal data in the Compiler component of Oracle GraalVM for JDK a...
PT-2024-3197 · Oracle · Oracle Http Server
Name of the Vulnerable Software and Affected Versions: Oracle HTTP Server version 12.2.1.4.0 Description: The issue is related to insufficient protection of service data in the Web Listener component of Oracle HTTP Server, allowing an unauthenticated attacker with network access via HTTP to...
The vulnerability in the implementation of the Secure Boot protocol for operating systems with security features allows a perpetrator to circumvent security restrictions.
The vulnerability of the Secure Boot protocol for operating systems running Windows is related to a breach in the data protection mechanism. Exploiting this vulnerability could allow an attacker to circumvent security restrictions...
The vulnerability of BitLocker’s data protection function in the Microsoft Windows operating system allows attackers to circumvent existing security restrictions.
The vulnerability of BitLocker’s data protection function in the Microsoft Windows operating system is related to a breach of the data protection mechanism. Exploiting this vulnerability could allow an attacker to circumvent existing security restrictions...
The vulnerability in the implementation of the Secure Boot protocol for operating systems with security features allows a perpetrator to circumvent security restrictions.
The vulnerability of the Secure Boot protocol for operating systems running Windows is related to a breach in the data protection mechanism. Exploiting this vulnerability could allow an attacker to circumvent security restrictions...
The vulnerability of the programming tools for programmable logic controllers (PLCs), EcoStruxure Control Expert and EcoStruxure Process Expert, arises from insufficient protection of registration data. This allows a malicious individual to gain unauthorized access to the project file.
The vulnerability of the programming tools for programmable logic controllers PLCs, EcoStruxure Control Expert and EcoStruxure Process Expert, is related to insufficient protection of registration data. Exploiting this vulnerability can allow an intruder to gain unauthorized access to the project...
The vulnerability in the implementation of the Secure Boot protocol for operating systems with Windows, which allows attackers to circumvent existing security restrictions.
The vulnerability of the Secure Boot protocol for operating systems running Windows is related to a breach in the data protection mechanism. Exploiting this vulnerability could allow an attacker to circumvent existing security restrictions...
The vulnerability in the implementation of the Secure Boot protocol for operating systems with Windows, which allows attackers to circumvent existing security restrictions.
The vulnerability of the Secure Boot protocol for operating systems running Windows is related to a breach in the data protection mechanism. Exploiting this vulnerability could allow an attacker to circumvent existing security restrictions...
The vulnerability in the implementation of the Secure Boot protocol for operating systems with Windows, which allows attackers to circumvent existing security restrictions.
The vulnerability of the Secure Boot protocol for operating systems running Windows is related to a breach in the data protection mechanism. Exploiting this vulnerability could allow an attacker to circumvent existing security restrictions...
The vulnerability of Acronis Cyber Protect Cloud’s cloud-based data protection software lies in its authentication procedures, which allow attackers to gain unauthorized access to protected information.
The vulnerability of Acronis Cyber Protect Cloud data protection software is related to deficiencies in the authentication process. Exploiting this vulnerability could allow attackers to gain unauthorized access to protected information...
PT-2024-4764 · Энтек · Энтек
Name of the Vulnerable Software and Affected Versions: ЭНТЕК affected versions not specified Description: The issue is related to the use of flawed cryptographic algorithms in the SCADA system, which could allow an attacker to gain unauthorized access to protected information. Recommendations: At...
WordPress Plugin DSGVO All in one for WP 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. WordPress Plugin DSGVO All in one for WP A...
CVE-2024-31999
@festify/secure-session creates a secure stateless cookie session for Fastify. At the end of the request handling, it will encrypt all data in the session with a secret key and attach the ciphertext as a cookie value with the defined cookie name. After that, the session on the server side is...