20 matches found
CVE-2023-7325 Mingyu Operations and Maintenance Audit and Risk Control System xmlrpc.sock SSRF
Anheng Mingyu Operation and Maintenance Audit and Risk Control System up to 2023-08-10 contains a server-side request forgery SSRF vulnerability in the xmlrpc.sock handler. The product accepts specially crafted XML-RPC requests that can be used to instruct the server to connect to internal unix...
EUVD-2016-7989
Malware in sbrugna...
EUVD-2016-7988
Malware in sbrugna...
Unauthorized Access Vulnerability in the Operations and Maintenance Audit System of Xinhua San Technologies Co.
Xinhua San Technology Co., Ltd. is committed to becoming the most reliable partner for customers' business innovation and digital transformation. The main products are routers, big data, switches, IoT, cloud computing, servers and so on. An unauthorized access vulnerability exists in the Operatio...
Huawei UMA Product SQL Injection Vulnerability
Huawei UMA Unified Maintenance Audit is a unified audit system. It provides a unified O&M operation portal to control and record the O&M operations performed by users, and supports auditing by command view and video playback. A SQL injection vulnerability exists in the Huawei UMA product, as the...
Huawei UMA Product Cross-Site Scripting Vulnerability
Huawei Unified Maintenance Audit UMA is a unified IT core resource operation and maintenance management and security audit platform designed for carriers, government, finance, electric power and large enterprises. A cross-site scripting vulnerability exists in the Huawei UMA product. Due to...
Huawei UMA Product Information Disclosure Vulnerability (CNVD-2017-12922)
Huawei Unified Maintenance Audit UMA is a unified IT core resource operation and maintenance management and security audit platform designed for carriers, government, finance, electric power and large enterprises. Huawei UMA products have information leakage vulnerabilities, which can be exploite...
Huawei UMA Product Elevation of Privilege Vulnerability (CNVD-2017-12926)
Huawei Unified Maintenance Audit UMA is a unified IT core resource operation and maintenance management and security audit platform designed for carriers, government, finance, electric power and large enterprises. An elevation of privilege vulnerability exists in the Huawei UMA product. Due to...
Huawei UMA Product Elevation of Privilege Vulnerability (CNVD-2017-12925)
Huawei Unified Maintenance Audit UMA is a unified IT core resource operation and maintenance management and security audit platform designed for carriers, government, finance, electric power and large enterprises. An elevation of privilege vulnerability exists in the Huawei UMA product. Due to...
Huawei UMA Product Elevation of Privilege Vulnerability (CNVD-2017-12927)
Huawei Unified Maintenance Audit UMA is a unified IT core resource operation and maintenance management and security audit platform designed for carriers, government, finance, electric power and large enterprises. An elevation of privilege vulnerability exists in the Huawei UMA product. Due to...
Huawei UMA Product Elevation of Privilege Vulnerability (CNVD-2017-12929)
Huawei Unified Maintenance Audit UMA is a unified IT core resource operation and maintenance management and security audit platform designed for carriers, government, finance, electric power and large enterprises. An elevation of privilege vulnerability exists in the Huawei UMA product. Due to...
Huawei UMA Product Information Disclosure Vulnerability
Huawei Unified Maintenance Audit UMA is a unified IT core resource operation and maintenance management and security audit platform designed for carriers, government, finance, electric power and large enterprises. Huawei UMA products have information leakage vulnerabilities, which can be exploite...
Huawei UMA Product Information Disclosure Vulnerability (CNVD-2017-12923)
Huawei Unified Maintenance Audit UMA is a unified IT core resource operation and maintenance management and security audit platform designed for carriers, government, finance, electric power and large enterprises. Huawei UMA products have information leakage vulnerabilities, which can be exploite...
Huawei UMA Product Elevation of Privilege Vulnerability (CNVD-2017-12930)
Huawei Unified Maintenance Audit UMA is a unified IT core resource operation and maintenance management and security audit platform designed for carriers, government, finance, electric power and large enterprises. An elevation of privilege vulnerability exists in the Huawei UMA product. Due to...
CVE-2016-7110
Huawei Unified Maintenance Audit UMA before V200R001C00SPC200 allows remote attackers to execute arbitrary commands via "special characters," a different vulnerability than CVE-2016-7109...
CVE-2016-7109
Huawei Unified Maintenance Audit UMA before V200R001C00SPC200 allows remote attackers to execute arbitrary commands via "special characters," a different vulnerability than CVE-2016-7110...
CVE-2016-7109
Huawei Unified Maintenance Audit UMA before V200R001C00SPC200 allows remote attackers to execute arbitrary commands via "special characters," a different vulnerability than CVE-2016-7110...
Design/Logic Flaw
Huawei Unified Maintenance Audit UMA before V200R001C00SPC200 allows remote attackers to execute arbitrary commands via "special characters," a different vulnerability than CVE-2016-7109...
Code injection
Huawei Unified Maintenance Audit UMA before V200R001C00SPC200 SPH206 allows remote authenticated users to obtain the MD5 hashes of arbitrary user passwords via unspecified vectors...
Huawei UMA suffers from command line injection vulnerability (CNVD-2016-06968)
Huawei UMA Unified Maintenance Audit is a unified audit system. It provides a unified O&M operation portal, controls and records O&M operations performed by users, and supports auditing by command view and video playback. A command execution vulnerability exists in Huawei UMA. As the system does...