892 matches found
Uninitialized Buffer Allocation
Mozilla Firefox is vulnerable to uninitialized buffer allocation vulnerability. The vulnerability exists in the Graphite component in the readglyph function in GlyphCache.cpp related to use of uninitialized memory. An unauthenticated, remote attacker can exploit this to have an unspecified impact...
Denial Of Service (DoS)
Mozilla Firefox is vulnerable to heap-based buffer overflow vulnerability. The vulnerability exists in the Graphite component in the decompress function in Decompressor.cpp due to improper validation of user-supplied input. An unauthenticated, remote attacker can exploit this to cause a denial of...
CVE-2019-1667 Cisco HyperFlex Arbitrary Statistics Write Vulnerability
A vulnerability in the Graphite interface of Cisco HyperFlex software could allow an authenticated, local attacker to write arbitrary data to the Graphite interface. The vulnerability is due to insufficient authorization controls. An attacker could exploit this vulnerability by connecting to the...
CVE-2019-1667
CVE-2019-1667 describes a vulnerability in the Graphite interface of Cisco HyperFlex software where an authenticated, local attacker can write arbitrary data to Graphite due to insufficient authorization controls. A successful exploit could cause invalid statistics to be presented in the Graphite...
CVE-2019-1667 Cisco HyperFlex Arbitrary Statistics Write Vulnerability
A vulnerability in the Graphite interface of Cisco HyperFlex software could allow an authenticated, local attacker to write arbitrary data to the Graphite interface. The vulnerability is due to insufficient authorization controls. An attacker could exploit this vulnerability by connecting to the...
Authorization
A vulnerability in the Graphite interface of Cisco HyperFlex software could allow an authenticated, local attacker to write arbitrary data to the Graphite interface. The vulnerability is due to insufficient authorization controls. An attacker could exploit this vulnerability by connecting to the...
Authentication flaw
A vulnerability in the Graphite service of Cisco HyperFlex software could allow an unauthenticated, remote attacker to retrieve data from the Graphite service. The vulnerability is due to insufficient authentication controls. An attacker could exploit this vulnerability by sending crafted request...
CVE-2019-1667
A vulnerability in the Graphite interface of Cisco HyperFlex software could allow an authenticated, local attacker to write arbitrary data to the Graphite interface. The vulnerability is due to insufficient authorization controls. An attacker could exploit this vulnerability by connecting to the...
CVE-2019-1666
A vulnerability in the Graphite service of Cisco HyperFlex software could allow an unauthenticated, remote attacker to retrieve data from the Graphite service. The vulnerability is due to insufficient authentication controls. An attacker could exploit this vulnerability by sending crafted request...
CVE-2019-1666
A vulnerability in the Graphite service of Cisco HyperFlex software could allow an unauthenticated, remote attacker to retrieve data from the Graphite service. The vulnerability is due to insufficient authentication controls. An attacker could exploit this vulnerability by sending crafted request...
CVE-2019-1667
A vulnerability in the Graphite interface of Cisco HyperFlex software could allow an authenticated, local attacker to write arbitrary data to the Graphite interface. The vulnerability is due to insufficient authorization controls. An attacker could exploit this vulnerability by connecting to the...
CVE-2019-1666
CVE-2019-1666 is a vulnerability in the Graphite service of Cisco HyperFlex software where an unauthenticated, remote attacker could retrieve statistics data due to insufficient authentication controls. Affected versions are prior to 3.5(2a). The impact is data exposure from the Graphite service;...
CVE-2019-1666 Cisco HyperFlex Unauthenticated Statistics Retrieval Vulnerability
A vulnerability in the Graphite service of Cisco HyperFlex software could allow an unauthenticated, remote attacker to retrieve data from the Graphite service. The vulnerability is due to insufficient authentication controls. An attacker could exploit this vulnerability by sending crafted request...
CVE-2019-1666 Cisco HyperFlex Unauthenticated Statistics Retrieval Vulnerability
A vulnerability in the Graphite service of Cisco HyperFlex software could allow an unauthenticated, remote attacker to retrieve data from the Graphite service. The vulnerability is due to insufficient authentication controls. An attacker could exploit this vulnerability by sending crafted request...
The vulnerability in the web interface of the Graphite software for managing policies, billing, and managing subscriber data in the Cisco Policy Suite for Mobile allows a perpetrator to gain access to protected data.
The vulnerability in the web interface of the Graphite software for managing policies, billing, and managing subscriber data in the Cisco Policy Suite for Mobile is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to gain access to protected...
Cisco HyperFlex Authorization Control Vulnerability
Cisco HyperFlex Software is a scalable, distributed file system. Cisco HyperFlex has an authorization control vulnerability in the Graphite interface, which can be exploited by a local attacker to write arbitrary data to Graphite and display invalid statistics in that interface by connecting to t...
Cisco HyperFlex software file access vulnerability
Cisco HyperFlex Software is the United States Cisco Cisco company's set of scalable distributed file system. The system provides unified computing, storage and networking through cloud management, and provides enterprise-class data management and optimization services. A file access vulnerability...
Cisco HyperFlex Arbitrary Statistics Write Vulnerability
A vulnerability in the Graphite interface of Cisco HyperFlex software could allow an authenticated, local attacker to write arbitrary data to the Graphite interface. The vulnerability is due to insufficient authorization controls. An attacker could exploit this vulnerability by connecting to the...
Cisco HyperFlex Unauthenticated Statistics Retrieval Vulnerability
A vulnerability in the Graphite service of Cisco HyperFlex software could allow an unauthenticated, remote attacker to retrieve data from the Graphite service. The vulnerability is due to insufficient authentication controls. An attacker could exploit this vulnerability by sending crafted request...
The vulnerability of the lz4::decompress function in the Graphite library used by Mozilla Firefox and Mozilla Firefox ESR browsers allows a hacker to cause a service failure or execute arbitrary code.
The vulnerability of the lz4::decompress function in the Graphite library of Mozilla Firefox and Mozilla Firefox ESR browsers is caused by a buffer overflow in memory. Exploiting this vulnerability can allow an attacker to cause a service failure or execute arbitrary code...