CVE-2016-8517

A cross site scripting vulnerability in HPE Systems Insight Manager in all versions prior to 7.6 was found...

CVE-2016-8516

A remote denial of service vulnerability in HPE Systems Insight Manager in all versions prior to 7.6 was found...

CVE-2016-8518

A remote denial of service vulnerability in HPE Systems Insight Manager in all versions prior to 7.6 was found...

CVE-2016-8517

CVE-2016-8517 is a cross-site scripting vulnerability affecting HPE Systems Insight Manager (SIM) versions prior to 7.6. The issue exists in SIM components handling user input, enabling XSS via a network-accessible vector. CVSS shows MEDIUM base score (v3.0: 6.1) with network attack, low complexi...

CVE-2017-8969

CVE-2017-8969 affects HPE Insight Control 7.6 LR1. The vulnerability stems from improper input validation in the product, enabling potential impact on integrity (I: HIGH) with no confidentiality or availability impact according to CVSSv3, and a network attack vector with low complexity. Exploitat...

CVE-2016-8516

CVE-2016-8516 relates to a remote denial‑of‑service vulnerability in HPE Systems Insight Manager (SIM) . From connected sources, the flaw affects SIM versions before 7.6 and is triggered remotely (no authentication required). The documents indicate an DoS impact on target systems, but do not prov...

Input validation

Bitpay/insight-api Insight-api version 5.0.0 and earlier contains a CWE-20: input validation vulnerability in transaction broadcast endpoint that can result in Full Path Disclosure. This attack appear to be exploitable via Web request...

CVE-2018-1000023

Bitpay/insight-api Insight-api version 5.0.0 and earlier contains a CWE-20: input validation vulnerability in transaction broadcast endpoint that can result in Full Path Disclosure. This attack appear to be exploitable via Web request...

CVE-2018-1000023

Bitpay/insight-api Insight-api version 5.0.0 and earlier contains a CWE-20: input validation vulnerability in transaction broadcast endpoint that can result in Full Path Disclosure. This attack appear to be exploitable via Web request...

CVE-2018-1000023

Bitpay/insight-api Insight-api version 5.0.0 and earlier contains a CWE-20: input validation vulnerability in transaction broadcast endpoint that can result in Full Path Disclosure. This attack appear to be exploitable via Web request...

CVE-2018-1000023

Summary: Bitpay/Insight-api’s Insight-api (versions ≤ 5.0.0) contains a CWE-20 input validation vulnerability in the transaction broadcast endpoint that can disclose full filesystem paths. The issue is described as exploitable via a Web request. The affected product is Bitpay/Insight-api Insight-...

Carbon Black & VMware Announce General Availability of Integrated Solution to Secure the SDDC

Securing your software-defined data center SDDC is fundamentally different than securing your end-user computers. Securing the endpoint is no longer enough - attackers have other angles they can take to wreak havoc on your system - but not securing your endpoints would be a big mistake. That’s wh...

insight-live.com XSS vulnerability

Open Bug Bounty ID: OBB-537480 Description| Value ---|--- Affected Website:| insight-live.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

uk.insight.com XSS vulnerability

Open Bug Bounty ID: OBB-524747 Description| Value ---|--- Affected Website:| uk.insight.com Open Bug Bounty Program:| Not created yet Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N...

HP Insight Control For VMware vCenter Server 7.3 Insecure Permissions Vulnerability

HP Insight Control for VMware vCenter Server version 7.3 allows a low privileged attacker to read sensitive information files, decrypt all configuration server passwords, and gain access to the systems which in turn leads to the compromise of the whole infrastructure. / Exploit Title: HP Insight...

HP Insight Control For VMware vCenter Server 7.3 Insecure Permissions

/ Exploit Title: HP Insight Control for VMware vCenter Server Multiple Vulnerabilities Date: 11/05/2014 Author: Glafkos Charalambous Version: 7.3 Vendor: HP Vendor URL: http://www.hpe.com HP Case: SSRT101619 Product Description: HP Insight Control for VMware vCenter Server Insight Control for...

Women in Tech and Career Spotlight: Inna Shalom

The latest in our series featuring women in tech at Imperva is my interview with Inna Shalom, the data insight team lead at Imperva. She spoke about her professional journey and experience working in the cybersecurity industry. Tell us how you got into cybersecurity. IS: I spent the first six yea...

Web Insight Data Not Visible on NetScaler MAS

AppFlow aka Insight has been enabled for the VServer and Services. Enabled Web Insights on NetScaler MAS no data is displayed. Firewall port UDP 4739 is allowed from the NetScaler NSIP/SNIP to the MAS appliance. ULFD was disabled and server was removed...

Predefined Setting Values Configured on NetScaler MAS

This article list the predefined setting values configured on NetScaler MAS. NetScaler MAS Prune settings Number of days to keep data is default 15 Pruning happens everyday at 00:00 for Events, Audit Log, Task Log tables NetScaler MAS Backup Settings Every 12 hours NetScaler MAS will back up...

The vulnerability of the microprogrammed software of the Philips In.Sight B120/37 wireless video camera lies in the presence of pre-installed accounts, which allow a intruder to gain access to the device.

The vulnerability of the microprogrammed software of the Philips In.Sight B120/37 wireless video camera is related to the presence of preset user accounts for access via Telnet or UART accounts like “root”, “admin”, and “mg3500” with passwords “b120root”, “/ADMIN/”, and “merlin” respectively as...