2198 matches found
CVE-2017-18857
The NETGEAR Insight application before 2.42 for Android and iOS is affected by password mismanagement...
CVE-2017-18857
The NETGEAR Insight application before 2.42 for Android and iOS is affected by password mismanagement...
Design/Logic Flaw
The NETGEAR Insight application before 2.42 for Android and iOS is affected by password mismanagement...
CVE-2017-18857
The CVE-2017-18857 issue affects the NETGEAR Insight mobile app for Android and iOS prior to version 2.42, caused by password mismanagement in the app. The vulnerability is documented with a high to critical impact (CVSS v3.1: 9.8, CRITICAL; CVSS v2: 7.5, HIGH). Affected product: NETGEAR Insight ...
CVE-2017-18857
The NETGEAR Insight application before 2.42 for Android and iOS is affected by password mismanagement...
VMware vRealize Log Insight 4.x < 8.1.0 XSS Vulnerability (VMSA-2020-0007)
The VMware vRealize Log Insight application running on the remote host is 4.0.0 or later but prior to 8.1.0. It is, therefore, affected by a XSS vulnerability. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid135923; scriptversion"1.3";...
The vulnerability of the vRealize Log Insight log management tool lies in the lack of security measures for the website structure, allowing attackers to perform cross-site scripting attacks.
The vulnerability of the log management tool vRealize Log Insight is related to the lack of security measures for the website structure. Exploiting this vulnerability could allow a malicious actor to perform a cross-site scripting attack remotely...
The vulnerability of the vRealize Log Insight log management tool lies in insufficient validation of input data, allowing a hacker to redirect users to a malicious website.
The vulnerability of the vRealize Log Insight log management tool is related to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to redirect users to a malicious website...
Oracle Real User Experience Insight (Apr 2020 CPU)
The version of Oracle Real User Experience Insight installed on the remote host is missing the April 2020 CPU. It is, therefore, affected by a buffer overflow condition due to insufficient validation of user-supplied input. An unauthenticated, remote attacker can exploit this, by sending speciall...
VMware vRealize Log Insight Input Validation Error Vulnerability
VMware vRealize Log Insight provides real-time log management capabilities for VMware environments. An input validation error vulnerability exists in VMware vRealize Log Insight, which stems from the program's inability to properly validate user input. An attacker could exploit the vulnerability...
VMware vRealize Log Insight Cross-Site Scripting Vulnerability (CNVD-2020-27463)
VMware vRealize Log Insight provides real-time log management capabilities for VMware environments. A cross-site scripting vulnerability exists in VMware vRealize Log Insight that originates from the program's inability to properly validate user input. An attacker could exploit the vulnerability ...
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2020-1396)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2020-3954
Open Redirect vulnerability exists in VMware vRealize Log Insight prior to 8.1.0 due to improper Input validation...
CVE-2020-3954
Open Redirect vulnerability exists in VMware vRealize Log Insight prior to 8.1.0 due to improper Input validation...
CVE-2020-3953
Cross Site Scripting XSS vulnerability exists in VMware vRealize Log Insight prior to 8.1.0 due to improper Input validation...
Open redirect
Open Redirect vulnerability exists in VMware vRealize Log Insight prior to 8.1.0 due to improper Input validation...
CVE-2020-3953
Cross Site Scripting XSS vulnerability exists in VMware vRealize Log Insight prior to 8.1.0 due to improper Input validation...
CVE-2020-3953
CVE-2020-3953 (and CVE-2020-3954) affect VMware vRealize Log Insight prior to 8.1.0 (and 4.x) due to improper input validation. Root cause: input validation failure enabling Cross Site Scripting (XSS) in the UI. Impact described as stored XSS potentially allowing payloads to execute in other user...
CVE-2020-3954
CVE-2020-3954 is an Open Redirect vulnerability in VMware vRealize Log Insight caused by improper input validation. The VMware VMSA-2020-0007 advisory and accompanying tables indicate impact on vRealize Log Insight 8.x (and 4.x) with Open Redirect exploitable via crafted URLs, enabling phishing-s...
CVE-2020-3954
Open Redirect vulnerability exists in VMware vRealize Log Insight prior to 8.1.0 due to improper Input validation...