1885 matches found
CVE-2022-28135
Jenkins instant-messaging Plugin 1.41 and earlier stores passwords for group chats unencrypted in the global configuration file of plugins based on Jenkins instant-messaging Plugin on the Jenkins controller where they can be viewed by users with access to the Jenkins controller file system...
Jenkins instant-messaging Plugin 安全漏洞
Jenkins and Jenkins Plugin are both Jenkins open source products. jenkins is an application. Jenkins Plugin is an application that provides hundreds of plugins to support building, deploying, and automating any project. The vulnerability stems from unencrypted group chat passwords stored in the...
PT-2022-18833 · Jenkins · Jenkins Instant-Messaging Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins instant-messaging Plugin versions 1.41 and earlier Description: The issue allows passwords for group chats to be stored unencrypted in the global configuration file of plugins based on Jenkins instant-messaging Plugin on the Jenkins...
The vulnerability of the Adobe Connect instant messaging program, related to the lack of protective measures for the website structure, allows a hacker to execute arbitrary code.
The vulnerability of the Adobe Connect instant messaging program relates to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
The vulnerability of Adobe Connect’s instant messaging program, related to violations of secure design principles, allows attackers to bypass security measures.
The vulnerability of the Adobe Connect instant messaging program relates to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
Hikvision IP Camera - Backdoor Vulnerability
Exploit Title: Hikvision IP Camera - Backdoor Exploit Author: Sobhan Mahmoodi Reference: https://ipvm.com/reports/hik-exploit GitHub: https://github.com/bp2008/HikPasswordHelper/ Hikvision included a magic string that allowed instant access to any camera, regardless of what the admin password was...
The vulnerability of Adobe Connect’s instant messaging program, related to deficiencies in access control, allows attackers to escalate their privileges.
The vulnerability of the Adobe Connect instant messaging program is related to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor to enhance their privileges remotely...
Exploit for Incorrect Authorization in Polkit_Project Polkit
CVE-2021-3560 Polkit Instant Root Exploit You can run one com...
Exploit for Incorrect Authorization in Polkit_Project Polkit
CVE-2021-3560 Polkit Instant Root Exploit You can run one com...
What is XMPP ❓ — Extensible Messaging & Presence Protocol
What is XMPP ❓ — Extensible Messaging & Presence Protocol Introduction In the early 2000s, when the idea of chat applications was shaping, XMPP was allowing developers to construct interactive chat applications. Since its genesis, this protocol has come a long way and is now included in the tech...
[SECURITY] Fedora 34 Update: toxcore-0.2.13-1.fc34
Tox is a peer to peer serverless instant messenger aimed at making security and privacy easy to obtain for regular users. It uses NaCl for its encryption and authentication...
Fedora: Security Advisory for toxcore (FEDORA-2021-8026e9b394)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Oracle Instant Recovery fails with "Database is online. Failed to restore database files."
Challenge Instant Recovery of an Oracle DB with version 12.1-12.2 fails with the following error show in the console: Database is online. Failed to restore database files. Copy Veeam Log Example C:\ProgramData\Veeam\Backup\ExplorerStandByService\Logs\VEOR\InstantRecovery\session.log SSH output 3:...
[SECURITY] Fedora 34 Update: matrix-synapse-1.48.0-1.fc34
Matrix is an ambitious new ecosystem for open federated Instant Messaging and VoIP. Synapse is a reference "homeserver" implementation of Matrix from the core development team at matrix.org, written in Python/Twisted. It is intended to showcase the concept of Matrix and let folks see the spec in...
[SECURITY] Fedora 35 Update: matrix-synapse-1.48.0-1.fc35
Matrix is an ambitious new ecosystem for open federated Instant Messaging and VoIP. Synapse is a reference "homeserver" implementation of Matrix from the core development team at matrix.org, written in Python/Twisted. It is intended to showcase the concept of Matrix and let folks see the spec in...
Fedora: Security Advisory for matrix-synapse (FEDORA-2021-9758549fce)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora: Security Advisory for matrix-synapse (FEDORA-2021-2f9dcdbace)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
The vulnerability of the Wi-Fi Aruba Instant deployment application, related to the operation that occurs outside the buffer in memory, allows a perpetrator to execute arbitrary code.
The vulnerability of the Wi-Fi Aruba Instant deployment application relates to the execution of operations beyond the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending specially crafted packets to port 8211, using the Protocol Applicatio...
CVE-2021-37735
A remote denial of service vulnerability was discovered in Aruba Instant versions: Aruba Instant 6.5.x.x: 6.5.4.18 and below; Aruba Instant 8.5.x.x: 8.5.0.10 and below; Aruba Instant 8.6.x.x: 8.6.0.4 and below. Aruba has released patches for Aruba Instant IAP that address this security...
CVE-2021-37732
A remote arbitrary command execution vulnerability was discovered in HPE Aruba Instant IAP versions: Aruba Instant 6.4.x.x: 6.4.4.8-4.2.4.17 and below; Aruba Instant 6.5.x.x: 6.5.4.18 and below; Aruba Instant 8.5.x.x: 8.5.0.11 and below; Aruba Instant 8.6.x.x: 8.6.0.6 and below; Aruba Instant...