Sensorweb ScadaBR 代码问题漏洞

Sensorweb ScadaBR is a suite of open source software for developing automated data acquisition and monitoring applications from Sensorweb, Inc. A code issue vulnerability exists in ScadaBR 1.0 / 1.1CE. The vulnerability stems from a lack of effective privilege licensing and access control measure...

OpenIAM Improper Privilege Control Vulnerability

OpenIAM is a fully integrated identity and access management platform. A privilege control impropriety vulnerability exists in OpenIAM versions prior to 4.2.0.3. The vulnerability stems from OpenIAM not verifying that a user has permission to perform /webconsole/rest/api/ administrative operation...

OpenIAM 安全漏洞

OpenIAM is a fully integrated identity and access management platform. A privilege control impropriety vulnerability exists in OpenIAM versions prior to 4.2.0.3. The vulnerability stems from OpenIAM not verifying that a user has permission to perform /webconsole/rest/api/ administrative operation...

The vulnerability of the Kerberos protocol implementation in Samba’s network interaction software packages arises from a lack of privilege control mechanisms and access management tools. This allows attackers to induce service failures.

The vulnerability of the Kerberos protocol in Samba network communication software lies in the lack of privilege control mechanisms and access management tools. Exploiting this vulnerability allows a malicious actor to cause service failures...

The vulnerability of the samba networking interaction software library smbd lies in the lack of privilege control mechanisms and access management tools. This allows attackers to compromise data integrity.

The vulnerability of the samba networking interaction software library smbd is related to the lack of mechanisms for privilege control and access management. Exploiting this vulnerability allows an attacker to compromise data integrity...

The vulnerability of the Active Directory Domain Controller (AD DC) in the Samba networking software package arises from a lack of privilege control mechanisms and access management tools. This vulnerability allows attackers to gain access to confidential data, compromise its integrity, and cause service interruptions.

The vulnerability of the Active Directory Domain Controller AD DC in the Samba networking software package is related to the lack of privilege control mechanisms and access management tools. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its...

IBM Security Guardium Data Encryption Improper Privilege Control Vulnerability

IBM Security Guardium Data Encryption GDE provides a modular set of encryption solutions that help security teams effectively implement data-at-rest security across the organization. An improper privilege control vulnerability exists in IBM Security Guardium Data Encryption 3.0.0.2. An attacker...

IBM Security Guardium Data Encryption 访问控制错误漏洞

IBM Security Guardium Data Encryption GDE provides a modular set of encryption solutions that help security teams effectively implement data-at-rest security across the organization. An improper privilege control vulnerability exists in IBM Security Guardium Data Encryption 3.0.0.2. An attacker...

GitLab Privilege Control Error Vulnerability

GitLab is an open source application developed using Ruby on Rails that implements a self-hosted Git project repository that can be accessed through a web interface for public and private projects. A privilege control error vulnerability exists in GitLab 11.2 and later versions, which can be...

CloudBees Jenkins Perfecto Privilege Control Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company a set of Java-based development of continuous integration tools . The product is mainly used to monitor the continuous software version release/testing project and some timed execution of the task . A privilege control...

McAfee Agent Privilege Control Vulnerability

McAfee Agent MA is a set of client components from McAfee, Inc. that provides secure communications between ePolicy Orchestrator antivirus management platform and managed products. A privilege control vulnerability exists in McAfee Agent. The vulnerability stems from an incorrect programmatic cal...

The vulnerability of Google Chrome browser extensions, related to the lack of privilege control mechanisms and access management tools, allows attackers to gain access to confidential data.

The vulnerability of Google Chrome browser extensions is related to the lack of mechanisms for privilege control and access management. Exploiting this vulnerability allows a malicious actor to gain access to confidential data through a specially created extension...

The vulnerability of the fly-wm window manager, related to the lack of mechanisms for privilege control and access management, allows a intruder to cause a service failure.

The vulnerability of the fly-wm window manager is related to the lack of mechanisms for privilege control and access management. Exploiting this vulnerability could allow an attacker to cause service failures...

The vulnerability in the user interface of Google Chrome’s Chromium browser allows a perpetrator to compromise data integrity.

The vulnerability of the Chromium browser’s user interface in Google Chrome is related to the lack of mechanisms for privilege control and access management. Exploiting this vulnerability allows a malicious actor to affect data integrity through a specially created HTML page...

The vulnerability of the GetInstalledPackages function in the Application Lifestyle Management installation manager allows a malicious individual to gain unauthorized access to confidential data, cause service failures, or compromise data integrity.

The vulnerability of the GetInstalledPackages function in the Application Lifestyle Management installation manager is related to the lack of mechanisms for privilege control and access management. Exploiting this vulnerability could allow an attacker to gain unauthorized access to confidential...

The vulnerability of the Win32k component in Windows operating systems, which allows attackers to escalate their privileges

Vulnerability of the Win32k component in Windows operating systems with insecure privilege management. Exploiting this vulnerability can allow an attacker to enhance their privileges through a specially created application...

Multiple Cisco Products Privilege License and Access Control Issues Vulnerability (CNVD-2020-00293)

Cisco Firepower Management Center FMC and so on are the products of the United States Cisco Cisco company.Cisco Firepower Management Center is a new generation of firewall management center software.Cisco Firepower Threat Defense FTD is a set of unified software to provide next-generation firewal...

CentOS 7 : polkit (CESA-2019:2046)

An update for polkit is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

IBM Informix Dynamic Server Privilege License and Access Control Issues Vulnerability (CNVD-2019-29425)

IBM Informix Dynamic Server IDS is a scalable object-relational database server from IBM in the United States that provides continuous data availability and disaster recovery, among other features, for clustered data centers. IBM Informix Dynamic Server suffers from a Privilege Permission and...

IBM Informix Dynamic Server Privilege License and Access Control Issues Vulnerability (CNVD-2019-29419)

IBM Informix Dynamic Server IDS is a scalable object-relational database server from IBM in the United States that provides continuous data availability and disaster recovery, among other features, for clustered data centers. IBM Informix Dynamic Server suffers from a Privilege Permission and...