19 matches found
EUVD-2020-16002
Malware in sbrugna...
EUVD-2020-16001
Malware in sbrugna...
EUVD-2023-12764
Malicious code in bioql PyPI...
CVE-2020-23249
GigaVUE-OS GVOS 5.4 - 5.9 stores a Redis database password in plaintext...
CVE-2020-23250
GigaVUE-OS GVOS 5.4 - 5.9 uses a weak algorithm for a hash stored in internal database...
CVE-2023-0746
The help page in GigaVUE-FM, when using GigaVUE-OS software version 5.0 202, does not require an authenticated user. An attacker could enforce a user into inserting malicious JavaScript code into the URI, that could lead to a Reflected Cross site Scripting...
Cross site scripting
The help page in GigaVUE-FM, when using GigaVUE-OS software version 5.0 202, does not require an authenticated user. An attacker could enforce a user into inserting malicious JavaScript code into the URI, that could lead to a Reflected Cross site Scripting...
CVE-2023-0746
The CVE-2023-0746 entry describes a Reflected Cross-Site Scripting vulnerability in Gigamon GigaVUE-FM when operating with GigaVUE-OS 5.0 202. The issue arises on the help page, where an unauthenticated user could trigger JavaScript in a URI, leading to client-side script execution. Affected prod...
CVE-2023-0746 XSS Vulnerability in GigaVue-FM
The help page in GigaVUE-FM, when using GigaVUE-OS software version 5.0 202, does not require an authenticated user. An attacker could enforce a user into inserting malicious JavaScript code into the URI, that could lead to a Reflected Cross site Scripting...
Gigamon GigaVUE-OS 跨站脚本漏洞
Gigamon GigaVUE-OS is an operating system for GigaVUE network devices from Gigamon Corporation, USA. A security vulnerability exists in Gigamon GigaVUE-OS version 5.0 202, which stems from a discovery containing a Reflective Cross-Site Scripting XSS vulnerability. An attacker could exploit the...
CVE-2020-23249
GigaVUE-OS GVOS 5.4 - 5.9 stores a Redis database password in plaintext...
CVE-2020-23250
GigaVUE-OS GVOS 5.4 - 5.9 uses a weak algorithm for a hash stored in internal database...
Design/Logic Flaw
GigaVUE-OS GVOS 5.4 - 5.9 stores a Redis database password in plaintext...
Code injection
GigaVUE-OS GVOS 5.4 - 5.9 uses a weak algorithm for a hash stored in internal database...
CVE-2020-23249
CVE-2020-23249 affects GigaVUE-OS (GVOS) versions 5.4–5.9, where the Redis database password is stored in plaintext. The root cause is insecure storage of the Redis password, which could allow an attacker to obtain the database password and potentially perform further attacks. The connected docum...
CVE-2020-23249
GigaVUE-OS GVOS 5.4 - 5.9 stores a Redis database password in plaintext...
CVE-2020-23250
GigaVUE-OS (GVOS) versions 5.4–5.9 are affected by a vulnerability stemming from the use of a weak hashing algorithm for data stored in the internal database. Root cause: weak hash algorithm. Documented impact is low (CVSS v3.1: 2.3) with local access required and no user interaction. No exploit ...
CVE-2020-23250
GigaVUE-OS GVOS 5.4 - 5.9 uses a weak algorithm for a hash stored in internal database...
Gigamon GigaVUE-OS 安全漏洞
Gigamon GigaVUE-OS is an operating system for GigaVUE network devices from Gigamon, USA. A security vulnerability exists in GigaVUE-OS GVOS versions 5.4 - 5.9, which originates from Redis database passwords stored in clear text. An attacker could use this vulnerability to obtain the database...