Ever Gauzy Platform 数据伪造问题漏洞

Ever Gauzy Platform is an open source business management platform from Ever. A Data Forgery Issue vulnerability exists in Ever Gauzy Platform version v0.281.9, which stems from an improper implementation of JWT authentication that could lead to unauthorized access...

Siemens SiPass integrated AC5102和Siemens SiPass integrated ACC-AP 数据伪造问题漏洞

The Siemens SiPass integrated AC5102 and Siemens SiPass integrated ACC-AP are both products of Siemens AG, Germany.The Siemens SiPass integrated AC5102 is an advanced centralized controller.The Siemens SiPass integrated ACC-AP is an access control controller. The Siemens SiPass integrated ACC-AP ...

AWS Cloud Development Kit 数据伪造问题漏洞

AWS Cloud Development Kit is an open source software development framework open sourced by Amazon Web Services for defining cloud infrastructure in code and configuring it via AWS CloudFormation. A data forgery vulnerability exists in AWS Cloud Development Kit, which stems from the fact that it...

ABB多款产品 数据伪造问题漏洞

ABB Relion Protection Relays and others are products of ABB Switzerland.ABB Relion Protection Relays are a compact, multifunctional solution for utility and industrial power distribution systems.ABB REX610 is a flexibly configurable all-in-one protection relay.ABB REX615 is ABB REX615 is a flexib...

Microsoft Teams 数据伪造问题漏洞

Microsoft Teams is a software for online meetings, chat, and cloud storage capabilities from Microsoft USA. A data forgery issue vulnerability exists in Microsoft Teams version 24046.2813.2770.1094, which stems from a specially crafted library in the macOS version that can be exploited to gain...

Microsoft Windows Print Spooler Components 数据伪造问题漏洞

Microsoft Windows Print Spooler Components is a printing backend handler component from Microsoft Corporation USA. A data forgery vulnerability exists in Microsoft Windows Print Spooler Components. An attacker could exploit the vulnerability to elevate privileges. The following products and...

Palo Alto Networks Cortex Xsoar 数据伪造问题漏洞

Palo Alto Networks Cortex Xsoar is a Security Orchestration Automation and Response Soar platform from Palo Alto Networks, USA. Palo Alto Networks Cortex Xsoar suffers from a data forgery issue vulnerability that originates from a local elevation of privilege PE, which allows a local attacker wit...

Emerson Proficy Machine Edition 数据伪造问题漏洞

Emerson Proficy Machine Edition is an application from Emerson, Inc. an automation solution. A data forgery issue vulnerability exists in Emerson Proficy Machine Edition version 9.00 and prior versions, which stems from the lack of authentication or authorization of packets after a connection is...

多款Schneider Electric产品数据伪造问题漏洞

The Schneider Electric OPC UA Modicon Communication Module and the Schneider Electric X80 advanced RTU Communication Module are both products of the French company Schneider Electric. The Schneider Electric OPC UA Modicon Communication Module is an Ethernet communication module with an embedded O...

LibreOffice 数据伪造问题漏洞

LibreOffice is an open source office software suite from The Document Foundation. LibreOffice suffers from a Data Forgery Problem vulnerability that stems from the application not properly checking the digital signatures of ODF documents. An attacker could use the vulnerability to change the...

UPnP 数据伪造问题漏洞

UPnP is a Universal Plug and Play protocol from the Open Connectivity Foundation. A data forgery vulnerability exists in Portable SDK version 1.14.6 and later in UPnP Devices because it does not check the value of the "host" header...

Luke Jordan Grassroot Platform 数据伪造问题漏洞

Luke Jordan grassroot-platform is an open source application by Luke Jordan. An application that makes it faster, cheaper and easier to sustainably organize and mobilize people in low-income communities. A security vulnerability exists in Luke Jordan Grassroot Platform that allows for the forgery...

Google Chrome Developer Tools Data Forgery Issue Vulnerability

Google Chrome is a web browser from Google, and Developer Tools is one of the developer tools components. A data forgery vulnerability exists in Google Chrome Developer Tools. The vulnerability can be exploited to execute arbitrary code via specially crafted HTML pages...