743 matches found
CVE-2021-4031 Syltek Insufficient Verification of Data Authenticity
Syltek application before its 10.22.00 version, does not correctly check that a product ID has a valid payment associated to it. This could allow an attacker to forge a request and bypass the payment system by marking items as payed without any verification...
The vulnerability of BIOS microprogramming systems in Dell laptops, related to insufficient verification of data authenticity, allows attackers to gain unauthorized access to protected information.
The vulnerability of BIOS microprogramming systems in Dell laptops is related to insufficient verification of data authenticity. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...
Dell Client Commercial Data Forgery Issue Vulnerability
Dell Client Commercial is a line of workstation equipment from Dell, Inc. The Dell Client Commercial has a security vulnerability that stems from the device's susceptibility to an insufficient data authentication vulnerability. An authenticated attacker could use this vulnerability to install...
CVE-2022-22567
Select Dell Client Commercial and Consumer platforms are vulnerable to an insufficient verification of data authenticity vulnerability. An authenticated malicious user may exploit this vulnerability in order to install modified BIOS firmware...
CVE-2022-22567
Select Dell Client Commercial and Consumer platforms are vulnerable to an insufficient verification of data authenticity vulnerability. An authenticated malicious user may exploit this vulnerability in order to install modified BIOS firmware...
Design/Logic Flaw
Select Dell Client Commercial and Consumer platforms are vulnerable to an insufficient verification of data authenticity vulnerability. An authenticated malicious user may exploit this vulnerability in order to install modified BIOS firmware...
CVE-2022-22567
CVE-2022-22567 affects Dell Client Commercial (and Consumer) platforms and is caused by insufficient verification of data authenticity, enabling an authenticated attacker to install modified BIOS firmware. The connected records confirm the vulnerability targets Dell client platforms and involve B...
The vulnerability of the Samba network file system, related to insufficient verification of data authenticity, allows a perpetrator to cause service interruptions.
The vulnerability of the Samba network file system is related to insufficient verification of data authenticity. Exploiting this vulnerability can allow an attacker to cause a service failure...
CVE-2022-22567
Select Dell Client Commercial and Consumer platforms are vulnerable to an insufficient verification of data authenticity vulnerability. An authenticated malicious user may exploit this vulnerability in order to install modified BIOS firmware...
cryptsetup 数据伪造问题漏洞
Cryptsetup is a utility to easily set up disk encryption based on the DMCrypt kernel module. A security vulnerability exists in cryptsetup that stems from the software's lack of effective validation of data authenticity. A specially crafted LUKS header can trick cryptsetup into disabling encrypti...
The vulnerability in the implementation of the SDP service for the Bluetooth protocol stack for the Linux BlueZ operating system allows a attacker to disclose protected information.
The vulnerability of the SDP service implementation for the Bluetooth protocol stack for the Linux BlueZ operating system is related to insufficient verification of data authenticity. Exploiting this vulnerability can allow a malicious actor, operating remotely, to disclose protected information...
CVE-2021-26103
An insufficient verification of data authenticity vulnerability CWE-345 in the user interface of FortiProxy verison 2.0.3 and below, 1.2.11 and below and FortiGate verison 7.0.0, 6.4.6 and below, 6.2.9 and below of SSL VPN portal may allow a remote, unauthenticated attacker to conduct a cross-sit...
Protect
An insufficient verification of data authenticity vulnerability CWE-345 in the user interface of FortiProxy and FortiGate SSL VPN portal may allow a remote, unauthenticated attacker to conduct a cross-site request forgery CSRF attack . Only SSL VPN in web mode or full mode are impacted by this...
CVE-2020-23906
FFmpeg N-98388-g76a3ee996b allows attackers to cause a denial of service DoS via a crafted audio file due to insufficient verification of data authenticity...
DEBIAN-CVE-2020-23906
FFmpeg N-98388-g76a3ee996b allows attackers to cause a denial of service DoS via a crafted audio file due to insufficient verification of data authenticity...
CVE-2020-23906
FFmpeg N-98388-g76a3ee996b allows attackers to cause a denial of service DoS via a crafted audio file due to insufficient verification of data authenticity...
CVE-2020-23906
FFmpeg N-98388-g76a3ee996b allows attackers to cause a denial of service DoS via a crafted audio file due to insufficient verification of data authenticity...
FFmpeg 数据伪造问题漏洞
FFmpeg is a complete solution for recording, converting, and streaming audio and video from the FFmpeg Ffmpeg team. FFmpeg N-98388-g76a3ee996b contains a security vulnerability that could be exploited by an attacker to cause a denial of service DoS via a crafted audio file due to insufficient...
HarmonyOS Security Bypass Vulnerability (CNVD-2021-87048)
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A security bypass vulnerability exists in HarmonyOS versions prior to 2.0, where a component of HarmonyOS does not adequately validate data authenticity...
CVE-2021-22460
A component of the HarmonyOS has a Insufficient Verification of Data Authenticity vulnerability. Local attackers may exploit this vulnerability to bypass the control mechanism...