113 matches found
The vulnerability of the NodeManagerOpcUa object handler of the Unified Automation UaGateway software migration tool allows a attacker to execute arbitrary code.
The vulnerability of the NodeManagerOpcUa object handler in the Unified Automation UaGateway migration software lies in the possibility of exploiting memory after it is released. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
Liberapay: Email Address Exposure via Gratipay Migration Tool
Through the /migrate route, an attacker can input the username of any user on the site and retrieve their primary email address without any authorization required. Steps to reproduce: Note: This cannot be performed with hackerone-target, because that account seems to return a None as an email. 1...
Trend Micro Apex One and OfficeScan Remote Code Execution Vulnerability
Trend Micro Apex One and OfficeScan contain an unspecified vulnerability within a migration tool component that allows for remote code execution...
CVE-2021-28132
LUCY Security Awareness Software through 4.7.x allows unauthenticated remote code execution because the Migration Tool in the Support section allows upload of .php files within a system.tar.gz file. The .php file becomes accessible with a public/system/static URI...
CVE-2021-28132
LUCY Security Awareness Software through 4.7.x allows unauthenticated remote code execution because the Migration Tool in the Support section allows upload of .php files within a system.tar.gz file. The .php file becomes accessible with a public/system/static URI...
CVE-2021-28132
LUCY Security Awareness Software through 4.7.x allows unauthenticated remote code execution because the Migration Tool in the Support section allows upload of .php files within a system.tar.gz file. The .php file becomes accessible with a public/system/static URI...
Remote code execution
LUCY Security Awareness Software through 4.7.x allows unauthenticated remote code execution because the Migration Tool in the Support section allows upload of .php files within a system.tar.gz file. The .php file becomes accessible with a public/system/static URI...
CVE-2021-28132
LUCY Security Awareness Software through 4.7.x allows unauthenticated remote code execution because the Migration Tool in the Support section allows upload of .php files within a system.tar.gz file. The .php file becomes accessible with a public/system/static URI...
Session Recording Migration Tool
Description Use the Session Recording migration tool to facilitate the migration from SmartAuditor to Session Recording. The tool processes the SmartAuditor legacy recording files, and extracts and rebuilds metadata in the Session Recording Database to support the search and playback of the legac...
MGASA-2020-0378 Updated Thunderbird packages fix security vulnerabilities
AppCache manifest poisoning due to url encoded character processing CVE-2020-12415. Use-after-free in WebRTC VideoBroadcaster CVE-2020-12416. Integer overflow in nsJPEGEncoder::emptyOutputBuffer CVE-2020-12422. WebRTC permission prompt could have been bypassed by a compromised content process...
CVE-2020-25774
A vulnerability in the Trend Micro Apex One ServerMigrationTool component could allow an attacker to trigger an out-of-bounds red information disclosure which would disclose sensitive information to an unprivileged account. User interaction is required to exploit this vulnerability in that the...
CVE-2020-25773
A vulnerability in the Trend Micro Apex One ServerMigrationTool component could allow an attacker to execute arbitrary code on affected products. User interaction is required to exploit this vulnerability in that the target must import a corrupted configuration file...
Trend Micro Apex One Remote Code Execution Vulnerability
Trend Micro Apex One is an endpoint protection solution that offers the broadest range of protection capabilities, including high-accuracy machine learning and advanced ransomware protection. A remote code execution vulnerability exists in DAT file parsing in the ServerMigrationTool component of...
Trend Micro Apex One Information Disclosure Vulnerability (CNVD-2020-58784)
Trend Micro Apex One is an endpoint protection solution that offers the broadest range of protection capabilities, including high-accuracy machine learning and advanced ransomware protection. An information disclosure vulnerability exists in the parsing of ZIP files in the ServerMigrationTool...
The vulnerability of the Configuration The Expedition Migration tool, which involves manipulating cross-site requests, allows a hacker to replace the user during a session and execute arbitrary code.
The vulnerability of the The Expedition Migration tool relates to the manipulation of cross-site requests. Exploiting this vulnerability allows a malicious actor to replace the user during an session and execute arbitrary code...
How to Troubleshoot Workspace Environment Management (WEM) Database Migration to Citrix Cloud
The October 2018 release of the Workspace Environment Management service included the Citrix WEM Migration Tool. The purpose of this tool is to allow customers to migrate their on-premise WEM deployment database to the Workspace Environment Management service in Citrix Cloud. Note: Before using...
Unspecified vulnerability in Trend Micro Apex One and OfficeScan XG migration tool components
Trend Micro OfficeScan XG, etc. are all products of Trend Micro, Inc. Trend Micro OfficeScan XG is a suite of distributed anti-virus software.Apex One is a suite of endpoint security protection software that provides automated threat detection and response capabilities. A security vulnerability...
CVE-2020-8467
A migration tool component of Trend Micro Apex One 2019 and OfficeScan XG contains a vulnerability which could allow remote attackers to execute arbitrary code on affected installations RCE. An attempted attack requires user authentication...
CVE-2020-8467
A migration tool component of Trend Micro Apex One 2019 and OfficeScan XG contains a vulnerability which could allow remote attackers to execute arbitrary code on affected installations RCE. An attempted attack requires user authentication...
Design/Logic Flaw
A migration tool component of Trend Micro Apex One 2019 and OfficeScan XG contains a vulnerability which could allow remote attackers to execute arbitrary code on affected installations RCE. An attempted attack requires user authentication...