4667 matches found
Facebook illegally processed user data, says court
The Amsterdam court has ruled that Facebook illegally processed user data in a case started by the Dutch Data Privacy Stichting DPS, a foundation that acts on behalf of victims of privacy violations in the Netherlands. According to the ruling, Facebook used personal data for advertising purposes ...
PT-2023-18221 · Unknown · Softsim Ta
Name of the Vulnerable Software and Affected Versions: SoftSim TA versions prior to SMR Mar-2023 Release 1 Description: The issue is related to improper input validation, which allows local attackers to access protected data. Recommendations: For versions prior to SMR Mar-2023 Release 1, update t...
Gain flexibility and scale with a cloud-native DLP solution
We’re living in a seismic era for data security. Chief information security officers CISOs have to contend with a digital landscape that seems to shift daily as more organizations move to remote and hybrid work, redrawing the boundaries for how data is used and shared. The cloud has enabled...
Gain flexibility and scale with a cloud-native DLP solution
We’re living in a seismic era for data security. Chief information security officers CISOs have to contend with a digital landscape that seems to shift daily as more organizations move to remote and hybrid work, redrawing the boundaries for how data is used and shared. The cloud has enabled...
SUSE-SU-2023:0738-1 Security update for nodejs18
This update for nodejs18 fixes the following issues: Update to NodeJS 18.14.2 LTS: - CVE-2023-23918: Fixed permissions policies that could have been bypassed via process.mainModule bsc1208481. - CVE-2023-23919: Fixed OpenSSL error handling issues in nodejs crypto library bsc1208483. -...
The vulnerability of the ColdFusion software platform, related to insufficient protection of operational data, allows attackers to gain unauthorized access to protected information.
The vulnerability of the ColdFusion software platform is related to insufficient protection for operational data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...
PT-2023-1765 · Microsoft · Onedrive
Name of the Vulnerable Software and Affected Versions: Microsoft OneDrive for Android affected versions not specified Description: The issue is related to insufficient protection of service data in the file hosting service. Exploitation of this issue may allow an attacker to gain unauthorized...
PT-2023-1722 · Microsoft · Postscript/Pcl6 Class Printer Driver +1
Name of the Vulnerable Software and Affected Versions: Microsoft PostScript and PCL6 Class Printer Driver affected versions not specified Description: The issue is related to insufficient protection of service data in the PCL6 Class Printer driver for Windows operating systems. It allows a remote...
PT-2023-1729 · Microsoft · Postscript/Pcl6 Class Printer Driver +1
Name of the Vulnerable Software and Affected Versions: Microsoft PostScript and PCL6 Class Printer Driver affected versions not specified Description: The issue is related to insufficient protection of service data in the PCL6 Class Printer driver for Windows operating systems. This can allow a...
PT-2023-1746 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Windows Client Server Run-Time Subsystem CSRSS affected versions not specified Description: The vulnerability is related to the lack of protection for service data in the Windows operating system. It allows an attacker to obtain sensitive...
PT-2023-1771 · Microsoft · Postscript/Pcl6 Class Printer Driver +1
Name of the Vulnerable Software and Affected Versions: Microsoft PostScript and PCL6 Class Printer Driver affected versions not specified Description: The issue is related to a lack of protection for service data in the PCL6 Printer driver for Windows operating systems. This can be exploited by a...
PT-2023-1787 · Microsoft · Postscript/Pcl6 Class Printer Driver +1
Name of the Vulnerable Software and Affected Versions: Microsoft PostScript and PCL6 Class Printer Driver affected versions not specified Description: The issue is related to insufficient protection of service data in the PCL6 Class Printer driver for Windows operating systems. It allows a remote...
PT-2023-1770 · Microsoft · Postscript/Pcl6 Class Printer Driver +1
Name of the Vulnerable Software and Affected Versions: Microsoft PostScript and PCL6 Class Printer Driver affected versions not specified Description: The issue is related to insufficient protection of service data in the PCL6 Class Printer driver for Windows operating systems. This can allow a...
PT-2023-1788 · Microsoft · Postscript/Pcl6 Class Printer Driver +1
Name of the Vulnerable Software and Affected Versions: Microsoft PostScript and PCL6 Class Printer Driver affected versions not specified Description: The issue is related to insufficient protection of service data in the PCL6 Class Printer driver for Windows operating systems. It may allow a...
PT-2023-1747 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Windows Client Server Run-Time Subsystem CSRSS affected versions not specified Description: The vulnerability is related to a lack of protection for system data in the Windows operating system. It allows attackers to obtain sensitive...
The vulnerability of the TrueConf Server software, related to insufficient protection of operational data, allows a intruder to gain unauthorized access to protected information.
The vulnerability of the TrueConf Server software is related to insufficient protection of operational data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information through a specially crafted HTTPS request...
Moderate: Red Hat Security Advisory: OpenShift API for Data Protection (OADP) 1.1.2 security and bug fix update
OpenShift API for Data Protection OADP 1.1.2 is now available. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...
Imperva Announces Joining the EDB GlobalConnect Technology Partner Program and Certification of Imperva’s DSF Agents to Support EDB Postgres Advanced Server and Community PostgreSQL Databases
It’s official, Imperva has joined the EnterpriseDB EDB GlobalConnect Technology Partner Program. While Imperva has supported and protected the EDB Postgres Advanced Server and community PostgreSQL databases, it is now an EDB Certified security solution. Imperva’s Data Security Fabric DSF agents a...
PT-2023-1860 · Fortinet · Fortiproxy +1
Name of the Vulnerable Software and Affected Versions: FortiProxy versions 7.0.0 through 7.0.7 FortiProxy versions 7.2.0 through 7.2.1 FortiOS versions 7.0.0 through 7.0.9 FortiOS versions 7.2.0 through 7.2.3 Description: The issue is related to insufficient protection of internal data in the...
The vulnerability of embedded software developed by Qualcomm, related to the lack of protection for service data, allows attackers to disclose the protected information.
The vulnerability of embedded software developed by Qualcomm relates to the lack of protection for operational data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to disclose the protected information...