71 matches found
PYSEC-2021-277
TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can trigger a read from outside of bounds of heap allocated data by sending invalid arguments to tf.rawops.ResourceScatterUpdate. The implementation has an incomplete validation of the...
PYSEC-2021-712
TensorFlow is an end-to-end open source platform for machine learning. Optimized pooling implementations in TFLite fail to check that the stride arguments are not 0 before calling...
CVE-2020-29536
Archer before 6.8 P2 6.8.0.2 is affected by a path exposure vulnerability. A remote authenticated malicious attacker with access to service files may obtain sensitive information to use it in further attacks...
Unspecified Vulnerability in IBM QRadar SIEM (CNVD-2020-47949)
IBM QRadar SIEM is an IBM USA solution that utilizes security intelligence to protect assets and information from advanced threats. The solution provides oversight of the entire scope of the IT architecture, generates detailed reports on data access and user activity, and more. A security...
IBM QRadar SIEM XML Entity Injection Vulnerability
IBM QRadar SIEM is an IBM USA solution that utilizes security intelligence to protect assets and information from advanced threats. The solution provides oversight of the entire scope of the IT architecture, generates detailed reports on data access and user activity, and more. A security...
IBM QRadar SIEM Operating System Command Injection Vulnerability
IBM QRadar SIEM is an IBM USA solution that utilizes security intelligence to protect assets and information from advanced threats. The solution provides oversight of the entire scope of the IT architecture, generates detailed reports on data access and user activity, and more. A security...
NetApp OnCommand System Manager Cross-Site Scripting Vulnerability
NetApp OnCommand System Manager is a suite of storage management tools from NetApp, USA. The tool supports simplifying, controlling, and automating the setup and ongoing management of NetApp storage systems. A cross-site scripting vulnerability in NetApp OnCommand System Manager version 9.3 prior...
Dell EMC RSA Archer Authorization Issues Vulnerability
Dell EMC RSA Archer is an enterprise IT governance and compliance governance product from Dell USA. The product enables the development of eGRC programs for managing enterprise risk, automating business processes, and more. An authorization issue vulnerability exists in versions prior to Dell EMC...
pfSense cross-site scripting vulnerability (CNVD-2019-19311)
pfSense is a set of network firewalls based on FreeBSD Linux. A cross-site scripting vulnerability exists in pfSense versions 2.4.4-p2 and 2.4.4-p3. The vulnerability stems from the lack of proper validation of client data by the WEB application. An attacker can exploit the vulnerability to execu...
BMC Server Automation Authentication Bypass Vulnerability
BMC Server Automation is a suite of platforms for managing, controlling, and enforcing configuration changes in data centers from BMC Software, USA. An authentication bypass vulnerability exists in BMC Server Automation version 8.7 Patch 2 and earlier. An attacker could exploit this vulnerability...
CVE-2023-3353
CVE-2023-3353 is rejected/not used; CVE-2023-3352 is the active entry.