9 matches found
EUVD-2020-5410
Malware in sbrugna...
CVE-2020-13134
Tufin SecureChange prior to R19.3 HF3 and R20-1 HF1 are vulnerable to stored XSS. The successful exploitation requires admin privileges for storing the XSS payload itself, and can exploit be triggered by admin users. All TOS versions with SecureChange deployments prior to R19.3 HF3 and R20-1 HF1...
CVE-2020-13133
Tufin SecureChange prior to R19.3 HF3 and R20-1 HF1 are vulnerable to stored XSS. The successful exploitation requires admin privileges for storing the XSS payload itself, and can exploit be triggered by unauthenticated users. All TOS versions with SecureChange deployments prior to R19.3 HF3 and...
Design/Logic Flaw
Tufin SecureChange prior to R19.3 HF3 and R20-1 HF1 are vulnerable to stored XSS. The successful exploitation requires admin privileges for storing the XSS payload itself, and can exploit be triggered by admin users. All TOS versions with SecureChange deployments prior to R19.3 HF3 and R20-1 HF1...
Design/Logic Flaw
Tufin SecureChange prior to R19.3 HF3 and R20-1 HF1 are vulnerable to stored XSS. The successful exploitation requires admin privileges for storing the XSS payload itself, and can exploit be triggered by unauthenticated users. All TOS versions with SecureChange deployments prior to R19.3 HF3 and...
CVE-2020-13133
Tufin SecureChange prior to R19.3 HF3 and R20-1 HF1 are vulnerable to stored XSS. The successful exploitation requires admin privileges for storing the XSS payload itself, and can exploit be triggered by unauthenticated users. All TOS versions with SecureChange deployments prior to R19.3 HF3 and...
CVE-2020-13133
Tufin SecureChange (prior to R19.3 HF3 and R20-1 HF1) is vulnerable to stored XSS. Exploitation requires admin privileges to store the payload, and can be triggered by unauthenticated users. Affected TOS deployments include all versions before the cited fixes. Remediation: upgrade to R19.3 HF3 or...
CVE-2020-13134
Tufin SecureChange is affected by stored XSS in all TOS deployments prior to R19.3 HF3 and R20-1 HF1. The vulnerability requires admin privileges to store the payload and can be triggered by admin users. Affected versions are fixed in R19.3 HF3 and R20-1 HF1; no exploitation details are provided ...
CVE-2020-13134
Tufin SecureChange prior to R19.3 HF3 and R20-1 HF1 are vulnerable to stored XSS. The successful exploitation requires admin privileges for storing the XSS payload itself, and can exploit be triggered by admin users. All TOS versions with SecureChange deployments prior to R19.3 HF3 and R20-1 HF1...