Lucene search
K

484 matches found

CNNVD
CNNVD
added 2021/05/28 12:0 a.m.4 views

OpenStack 数据伪造问题漏洞

OpenStack is a cloud platform management program developed by the National Aeronautics and Space Administration NASA in collaboration with Rackspace in the United States. Openstack Neutron is vulnerable to a Data Forgery Issue vulnerability that stems from a flaw found in the default Open vSwitch...

7.1CVSS6.4AI score0.01015EPSS
Exploits0References3
CNVD
CNVD
added 2021/05/26 12:0 a.m.29 views

Apache Pulsar Data Forgery Issue Vulnerability

Apache Pulsar is an Apache Foundation distributed messaging platform for cloud environments that integrates messaging, storage, and lightweight functional computing. The software supports multi-tenancy, persistent storage, multi-room cross-regional data replication, with strong consistency, high...

9.8CVSS1.2AI score0.52926EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/05/25 12:0 a.m.5 views

Apache Pulsar 数据伪造问题漏洞

Apache Pulsar is an Apache Foundation distributed messaging platform for cloud environments that integrates messaging, storage, and lightweight functional computing. The software supports multi-tenancy, persistent storage, multi-room cross-regional data replication, with strong consistency, high...

9.8CVSS5.6AI score0.52926EPSS
Exploits0References12
CNNVD
CNNVD
added 2021/05/20 12:0 a.m.4 views

Homee Brain Cube 数据伪造问题漏洞

Homee Brain Cube is a smart home central control unit from Homee, Germany. A security vulnerability exists in the homee Brain Cube v2, which stems from insufficient validation of the firmware image file and could lead to code execution on the device...

7.2CVSS7.2AI score0.0024EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/04/28 12:0 a.m.4 views

Huawei Manageone 数据伪造问题漏洞

Huawei Manageone, a cloud data center management solution from Huawei of China, suffers from a denial-of-service vulnerability that could be exploited by attackers to cause certain service anomalies...

6.5CVSS5.6AI score0.00283EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/04/27 12:0 a.m.6 views

Apple watchOS 数据伪造问题漏洞

Apple watchOS is an operating system for smartwatches from Apple. A data forgery vulnerability exists in watchOS, which stems from improper signature verification in the AppleMobileFileIntegrity component. The following products and versions are affected: watchOS: 7.0 18R382, 7.0.1 18R395, 7.0.2...

7.5CVSS7.2AI score0.00951EPSS
Exploits0References9
CNNVD
CNNVD
added 2021/04/20 12:0 a.m.6 views

UPnP 数据伪造问题漏洞

UPnP is a Universal Plug and Play protocol from the Open Connectivity Foundation. A data forgery vulnerability exists in Portable SDK version 1.14.6 and later in UPnP Devices because it does not check the value of the "host" header...

9.8CVSS8.3AI score0.00627EPSS
Exploits0References5
CNNVD
CNNVD
added 2021/04/19 12:0 a.m.6 views

Luke Jordan Grassroot Platform 数据伪造问题漏洞

Luke Jordan grassroot-platform is an open source application by Luke Jordan. An application that makes it faster, cheaper and easier to sustainably organize and mobilize people in low-income communities. A security vulnerability exists in Luke Jordan Grassroot Platform that allows for the forgery...

7.5CVSS5.8AI score0.00757EPSS
Exploits0References4
CNNVD
CNNVD
added 2021/04/09 12:0 a.m.4 views

Mozilla Thunderbird 数据伪造问题漏洞

Mozilla Thunderbird is the United States Mozilla Foundation's set of independent from the Mozilla Application Suite e-mail client software. The program supports IMAP, POP mail protocols and HTML mail format. A denial of service vulnerability exists in Mozilla Thunderbird, which can be exploited b...

6.5CVSS7.3AI score0.00427EPSS
Exploits0References14
CNVD
CNVD
added 2021/04/08 12:0 a.m.7 views

UnionPay Data Forgery Issue Vulnerability

UnionPay is an application system of China UnionPay Corporation UnionPay. A data forgery issue vulnerability exists in UnionPay for android versions prior to 3.4.93.4.9, which stems from not properly verifying cryptographic signatures, and can be exploited by an attacker to make free purchases on...

7.5CVSS7.2AI score0.00904EPSS
Exploits0References1
CNVD
CNVD
added 2021/04/08 12:0 a.m.7 views

Terrafrost phpseclib data forgery issue vulnerability

Terrafrost phpseclib is a Terrafrost open source application. pure PHP implementation of the MIT license. A data forgery issue vulnerability exists in Terrafrost phpseclib versions prior to 2.0.31 and 3.x series versions prior to 3.0.7, which stems from incorrectly handling the RSA PKCS.No detail...

7.5CVSS6.5AI score0.01055EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/04/06 12:0 a.m.5 views

UnionPay android 数据伪造问题漏洞

UnionPay is an application system of China UnionPay Corporation UnionPay. A data forgery issue vulnerability exists in UnionPay for android versions prior to 3.4.93.4.9, which stems from not properly verifying cryptographic signatures, and can be exploited by an attacker to make free purchases on...

7.5CVSS5.8AI score0.00904EPSS
Exploits0References4
CNNVD
CNNVD
added 2021/04/06 12:0 a.m.12 views

Terrafrost phpseclib 数据伪造问题漏洞

Terrafrost phpseclib is a Terrafrost open source application. pure PHP implementation of the MIT license. A data forgery issue vulnerability exists in Terrafrost phpseclib versions prior to 2.0.31 and 3.x series versions prior to 3.0.7, which stems from incorrectly handling the RSA PKCS.No detail...

7.5CVSS5.6AI score0.01055EPSS
Exploits0References7
CNNVD
CNNVD
added 2021/03/24 12:0 a.m.7 views

Cisco IOS XE 数据伪造问题漏洞

Cisco IOS XE Software is an operating system from Cisco, Inc. A single operating system for enterprise wired and wireless access, aggregation, core, and WAN, Cisco IOS XE reduces business and network complexity. Cisco IOS XE Software suffers from a Data Forgery Issue vulnerability that stems from...

7.4CVSS6.9AI score0.006EPSS
Exploits0References6
CNNVD
CNNVD
added 2021/03/17 12:0 a.m.2 views

Red Hat libdnf 数据伪造问题漏洞

Red Hat libdnf is an application from Red Hat USA. provides a library that provides a simplified C and Python API for libsolv. A data forgery vulnerability exists in libdnf, which arises from the signature feature allowing an attacker to achieve code execution...

7.5CVSS7.1AI score0.01117EPSS
Exploits0References29
CNNVD
CNNVD
added 2021/03/12 12:0 a.m.5 views

Red Hat Package Manager 数据伪造问题漏洞

Red Hat Package Manager is a packaging and installation tool for Internet downloadable packages from Red Hat. It is included in some Linux distributions. It generates files with the .RPM extension. Similar to Dpkg. Red Hat Package Manager suffers from a Data Forgery Problem vulnerability that...

7CVSS7.2AI score0.00827EPSS
Exploits0References65
CNNVD
CNNVD
added 2021/03/12 12:0 a.m.5 views

Red Hat Package Manager 数据伪造问题漏洞

Red Hat Package Manager is a packaging and installation tool for Internet downloadable packages from Red Hat USA. It is included in some Linux distributions. It generates files with the .RPM extension. It is similar to Dpkg. Red Hat Package Manager suffers from a data forgery issue vulnerability...

5.5CVSS6.7AI score0.00701EPSS
Exploits0References16
CNNVD
CNNVD
added 2021/03/03 12:0 a.m.9 views

Cisco SD-WAN vEdge Router 数据伪造问题漏洞

The Cisco SD-WAN vEdge Routers is a router from Cisco USA. The device provides basic WAN, security, and multi-cloud capabilities for Cisco SD-WAN solutions. The Cisco SD-WAN vEdge Router suffers from a Data Forgery Issue vulnerability, which can be exploited by an attacker to escalate his...

4.9CVSS5.6AI score0.00398EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/02/10 12:0 a.m.11 views

Prisma Cloud Compute Data Forgery Issue Vulnerability

A data forgery issue vulnerability exists in Prisma Cloud Compute that arises from a network system or product that does not adequately validate the origin or authenticity of data. An attacker could exploit the falsified data to conduct an attack...

9.8CVSS7.3AI score0.01211EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/02/03 12:0 a.m.7 views

Multiple Cisco Products Data Forgery Issue Vulnerabilities

The Cisco 8000 Series Router and the Cisco Network Convergence System 540 Series Routers are both router devices from Cisco USA. A data forgery vulnerability exists in Cisco IOS XR on multiple Cisco routers. The vulnerability is due to an unsigned script in the ISO that is verified without...

6.7CVSS7.1AI score0.00204EPSS
Exploits0References3
Rows per page
Query Builder