CVE-2023-41800

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in UniConsent UniConsent CMP for GDPR CPRA GPP TCF plugin = 1.4.2 versions...

The vulnerability of the keyinstall component in MediaTek’s microprogramming software allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the keyinstall component in MediaTek’s microprogramming software is related to insufficient protection of sensitive data due to incorrect validation of input data. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected information...

CVE-2023-4129

Dell Data Protection Central, version 19.9, contains an Inadequate Encryption Strength Vulnerability. An unauthenticated network attacker could potentially exploit this vulnerability, allowing an attacker to recover plaintext from a block of ciphertext...

CVE-2023-4129

Dell Data Protection Central, version 19.9, contains an Inadequate Encryption Strength Vulnerability. An unauthenticated network attacker could potentially exploit this vulnerability, allowing an attacker to recover plaintext from a block of ciphertext...

Code injection

Dell Data Protection Central, version 19.9, contains an Inadequate Encryption Strength Vulnerability. An unauthenticated network attacker could potentially exploit this vulnerability, allowing an attacker to recover plaintext from a block of ciphertext...

CVE-2023-4129

Dell Data Protection Central, version 19.9, contains an Inadequate Encryption Strength Vulnerability. An unauthenticated network attacker could potentially exploit this vulnerability, allowing an attacker to recover plaintext from a block of ciphertext...

CVE-2023-4129

CVE-2023-4129 affects Dell Data Protection Central, version 19.9, with an inadequate encryption strength issue. An unauthenticated network attacker could potentially recover plaintext from a block of ciphertext. The connected documents confirm the affected product/version and the underlying cause...

CVE-2023-4129

Dell Data Protection Central, version 19.9, contains an Inadequate Encryption Strength Vulnerability. An unauthenticated network attacker could potentially exploit this vulnerability, allowing an attacker to recover plaintext from a block of ciphertext...

CVE-2023-44158

CVE-2023-44158 affects Acronis Cyber Protect 15 (Linux, Windows) prior to build 35979. The root cause is insufficient masking of the token field, leading to potential disclosure of sensitive information. The CVE entry indicates a high confidentiality impact but does not detail exploitability; exp...

Dell Data Protection Central 加密问题漏洞

Dell Data Protection Central is a suite of data protection solutions from Dell USA. The product provides single sign-on, dashboards, and system monitoring. A vulnerability exists in Dell Data Protection Central version 19.9 due to an encryption issue that stems from insufficient encryption...

PT-2023-27884 · Dell · Dell Emc Data Protection Central

Name of the Vulnerable Software and Affected Versions: Dell Data Protection Central version 19.9 Description: The issue is related to inadequate encryption strength, allowing an unauthenticated network attacker to potentially recover plaintext from a block of ciphertext. This could be exploited b...

Essential Guide to Cybersecurity Compliance

SOC 2, ISO, HIPAA, Cyber Essentials – all the security frameworks and certifications today are an acronym soup that can make even a compliance expert's head spin. If you're embarking on your compliance journey, read on to discover the differences between standards, which is best for your business...

PT-2023-6034 · Apple · Ios +3

Name of the Vulnerable Software and Affected Versions: watchOS versions prior to 10 iPadOS versions prior to 17 macOS versions prior to Sonoma 14 iOS versions prior to 17 Description: The issue is related to a lack of protection for service data in the TCC component of the mentioned operating...

PT-2023-8474 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 14 Description: The issue is related to a lack of protection for service data in the FileProvider component of the macOS operating system. This may allow an attacker to disclose protected information. An app may be abl...

PT-2023-27587 · Unknown · Lasso Simple Urls

Name of the Vulnerable Software and Affected Versions: Lasso Simple URLs plugin versions = 117 Description: The issue is an Unauth. Reflected Cross-Site Scripting XSS vulnerability. This means that an attacker can inject malicious scripts into a website, potentially allowing them to steal user da...

PT-2023-8483 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 14 Description: The issue is related to a lack of protection for service data in the printing component of the macOS operating system. This could allow an attacker to disclose protected information. An app may be able ...

The vulnerability of the IBM Robotic Process Automation software lies in the insufficient protection of registration data, allowing attackers to gain access to protected information.

The vulnerability of the IBM Robotic Process Automation software lies in the insufficient protection of registration data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain access to protected information...

The vulnerability of the IBM Robotic Process Automation software lies in the insufficient protection of registration data, allowing attackers to gain access to protected information.

The vulnerability of the IBM Robotic Process Automation software lies in the insufficient protection of registration data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain access to protected information...

The vulnerability of the IBM Robotic Process Automation software lies in the lack of protection for operational data, which allows attackers to disclose protected information.

The vulnerability of the IBM Robotic Process Automation software lies in the lack of protection for operational data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to disclose the protected information...

The vulnerability of backup and data recovery software on computers and servers with Acronis Agent and Acronis CyberProtect 15 software lies in the lack of protection for operational data, allowing attackers to access confidential information.

The vulnerability of backup and data recovery software on computers and servers with Acronis Agent and Acronis CyberProtect 15 data protection software lies in the lack of protection for operational data. Exploiting this vulnerability can allow unauthorized actors to gain access to confidential...