Multiple vulnerabilities in Drupal REST JSON module

Drupal is a free and open source content management system developed in PHP and maintained by the Drupal community.REST JSON is one of the interface modules used to expose Drupal content. The Drupal REST JSON module version 7.x-1.x has a 1. security bypass vulnerability 2. user enumeration...

The vulnerability of the Business Process Manager system allows a perpetrator to circumvent existing access restrictions and update dynamic processes.

The vulnerability of the Business Process Manager system is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to bypass existing access restrictions and update process variables through calls to the REST API...

DTE Energy Insight application for Android information disclosure vulnerability

The DTE Energy Insight application for Android is DTE Energy's suite of Android-based applications that enable DTE Energy customers to track their energy usage. A security vulnerability exists in the REST API of the DTE Energy Insight application for Android prior to version 1.7.8. The...

CVE-2016-1324

The REST interface in Cisco Spark 2015-06 allows remote attackers to cause a denial of service resource outage by accessing an administrative page, aka Bug ID CSCuv84125...

CVE-2016-1324

The REST interface in Cisco Spark 2015-06 allows remote attackers to cause a denial of service resource outage by accessing an administrative page, aka Bug ID CSCuv84125...

CVE-2016-1323

The REST interface in Cisco Spark 2015-06 allows remote authenticated users to obtain sensitive information via a request for an unspecified file, aka Bug ID CSCuv84048...

CVE-2016-1323

The REST interface in Cisco Spark 2015-06 allows remote authenticated users to obtain sensitive information via a request for an unspecified file, aka Bug ID CSCuv84048...

CVE-2016-1322

The REST interface in Cisco Spark 2015-07-04 allows remote attackers to bypass intended access restrictions and create arbitrary user accounts via unspecified web requests, aka Bug ID CSCuv72584...

Design/Logic Flaw

The REST interface in Cisco Spark 2015-07-04 allows remote attackers to bypass intended access restrictions and create arbitrary user accounts via unspecified web requests, aka Bug ID CSCuv72584...

CVE-2016-1323

The REST interface in Cisco Spark 2015-06 allows remote authenticated users to obtain sensitive information via a request for an unspecified file, aka Bug ID CSCuv84048...

CVE-2016-1324

CVE-2016-1324 affects Cisco Spark’s REST interface (Cisco Spark 2015-06). The issue arises from missing authorization checks on certain administrative pages, enabling an unauthenticated, remote attacker to cause a denial of service (resource outage) by accessing an admin page. Cisco’s advisory Ci...

CVE-2016-1322

The REST interface in Cisco Spark 2015-07-04 allows remote attackers to bypass intended access restrictions and create arbitrary user accounts via unspecified web requests, aka Bug ID CSCuv72584...

Cisco Spark Representational State Transfer Interface Denial of Service Vulnerability

A vulnerability in the Representational State Transfer REST interface of Cisco Spark could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. The vulnerability is due to missing authorization checks on certain administrative pages. An...

Cisco Spark Representational State Transfer Interface Information Disclosure Vulnerability

A vulnerability in the Representational State Transfer REST interface of Cisco Spark could allow an authenticated, remote attacker to view sensitive information from the underlying operating system. The vulnerability is due to insufficient protections of sensitive data. An attacker could exploit...

[SECURITY] Fedora 23 Update: openstack-glance-2015.1.2-1.fc23

OpenStack Image Service code-named Glance provides discovery, registratio n, and delivery services for virtual disk images. The Image Service API server provides a standard REST interface for querying information about virtual d isk images stored in a variety of back-end stores, including OpenSta...

Ganeti RESTful Control Interface Information Disclosure Vulnerability

Ganeti is a suite of virtual machine management software based on Xen Virtual Machine Manager and other open source software. The software supports Xen virtualization technology, disk management and more. An information disclosure vulnerability exists in Ganeti. A remote attacker could exploit th...

Cisco Unified Communications Manager IM and Presence Service REST Denial of Service Vulnerability

Cisco Unified Communications Manager is a call-processing component of a unified communications system.Cisco Unified Communications Manager IM and Presence Service is a CUCM-based platform for instant messaging IM and status display. A security vulnerability in the REST interface of the Cisco...

Design/Logic Flaw

The REST interface in Cisco Unified Communications Manager IM and Presence Service 11.51 allows remote attackers to cause a denial of service SIP proxy service restart via a crafted HTTP request, aka Bug ID CSCuw31632...

[SECURITY] Fedora 21 Update: python-rhsm-1.13.6-1.fc21

A small library for communicating with the REST interface of a Red Hat Unif ied Entitlement Platform. This interface is used for the management of system entitlements, certificates, and access to content...

[SECURITY] Fedora 21 Update: openstack-glance-2014.1.3-2.fc21

OpenStack Image Service code-named Glance provides discovery, registratio n, and delivery services for virtual disk images. The Image Service API server provides a standard REST interface for querying information about virtual d isk images stored in a variety of back-end stores, including OpenSta...