4 matches found
Vulnerabilities found in Cisco Catalyst SD-WAN Controllers and Managers
Cisco has identified vulnerabilities in the Catalyst SD-WAN Controller and Manager products. Cisco has uncovered four vulnerabilities in these products. These vulnerabilities involve XXE injection, privilege escalation, and authentication bypass. The authentication bypass vulnerability resides in...
Logging of Excessive Data
Overview pocketmine/pocketmine-mp is a highly customisable, open source server software for Minecraft: Bedrock Edition written in PHP Affected versions of this package are vulnerable to Logging of Excessive Data through the processing of client data JWTs in LoginPacket. An attacker can cause...
CVE-2024-10306
CVE-2024-10306 affects the mod_proxy_cluster module (Apache HTTP Server). The issue arises because the Directory directive does not enforce access restrictions as strongly as the Location directive, enabling unauthorized MCMP requests that could add/remove/update balancer nodes. Public exploit de...
Vulnerabilities fixed in Adobe FrameMaker Publishing Server
Adobe has fixed vulnerabilities in FrameMaker Publishing Server. A malicious party could exploit the vulnerabilities to bypass authentication and potentially take over the system. In particular, systems that are accessible from public networks without additional measures are at increased risk...