18 matches found
EUVD-2019-13124
Malware in sbrugna...
EUVD-2023-57766
Malicious code in bioql PyPI...
The vulnerability of the SMC Downloads function in the Forcepoint NGFW Security Management Center web application allows attackers to execute cross-site scripting attacks.
The vulnerability of the SMC Downloads function in the Forcepoint NGFW Security Management Center web application relates to the lack of protective measures for the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site attacks...
CVE-2023-5451
Forcepoint NGFW Security Management Center Management Server has SMC Downloads optional feature to offer standalone Management Client downloads and ECA configuration downloads. Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Forcepoint Next...
CVE-2023-5451
Forcepoint NGFW Security Management Center Management Server has SMC Downloads optional feature to offer standalone Management Client downloads and ECA configuration downloads. Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Forcepoint Next...
CVE-2023-5451
The issue is a Reflected XSS vulnerability in Forcepoint Next Generation Firewall Security Management Center (SMC Downloads feature). Affects NGFW SMC downloads path, with improper neutralization of input during web page generation. Impact is reflected XSS that could affect users visiting crafted...
CVE-2023-5451
Forcepoint NGFW Security Management Center Management Server has SMC Downloads optional feature to offer standalone Management Client downloads and ECA configuration downloads. Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Forcepoint Next...
PT-2024-2602 · Forcepoint · Forcepoint Next Generation Firewall Security Management Center
Name of the Vulnerable Software and Affected Versions: Forcepoint Next Generation Firewall Security Management Center versions prior to 6.10.13 Forcepoint Next Generation Firewall Security Management Center versions 6.11.0 through 7.1.2 Description: The issue is related to improper neutralization...
Forcepoint Next Generation Firewall Security Vulnerability
Forcepoint Next Generation Firewall NGFW is a next-generation firewall product from Forcepoint Corporation. A security vulnerability exists in Forcepoint Next Generation Firewall Security Management Center versions prior to 6.10.13, 6.11.0 through 7.1.2, which stems from the presence of a reflect...
CVE-2019-6147
Forcepoint NGFW Security Management Center SMC versions lower than 6.5.12 or 6.7.1 have a rare issue that in specific circumstances can corrupt the internal configuration database. When the database is corrupted, the SMC might produce an incorrect IPsec configuration for the Forcepoint Next...
CVE-2019-3486
Mitigates a stored cross site scripting issue in ArcSight Security Management Center versions prior to 2.9.1...
Cross site scripting
Mitigates a stored cross site scripting issue in ArcSight Security Management Center versions prior to 2.9.1...
CVE-2019-3486
CVE-2019-3486 affects Micro Focus ArcSight Security Management Center (ArcMC). A stored cross-site scripting vulnerability stems from insufficient validation of client-side data in the WEB application, leading to potential client-side code execution in ArcMC versions prior to 2.9.1. The affected ...
The vulnerability of the “Security Management Center” component of the Dr.Web Enterprise Security Suite allows a hacker to execute HTML code.
The vulnerability of the “Security Management Center” component of the Dr.Web Enterprise Security Suite antivirus tool exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to inject arbitrary HTML code into the user’s...
The vulnerability of the “Security Management Center” component of the Dr.Web Enterprise Security Suite allows a hacker to execute HTML code.
The vulnerability of the “Security Management Center” component of the Dr.Web Enterprise Security Suite exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to inject arbitrary HTML code into the user’s browser by placin...
The vulnerability of the “Security Management Center” component of the Dr.Web Enterprise Security Suite allows a hacker to execute HTML code.
The vulnerability of the “Security Management Center” component of the Dr.Web Enterprise Security Suite exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to inject arbitrary HTML code into the user’s browser by placin...
The vulnerability of the “Security Management Center” component of the Dr.Web Enterprise Security Suite antivirus tool allows a hacker to gain access to protected information.
The vulnerability of the “Security Management Center” component of the Dr.Web Enterprise Security Suite antivirus tool is related to deficiencies in the document export mechanism. Exploiting this vulnerability allows a malicious actor to obtain information about the installed components of the...
The vulnerability of the “Security Management Center” component of the Dr.Web Enterprise Security Suite antivirus tool allows a hacker to gain access to protected information.
The vulnerability of the “Security Management Center” component of the Dr.Web Enterprise Security Suite antivirus tool is related to deficiencies in the error reporting mechanism. Exploiting this vulnerability allows a malicious actor, operating remotely, to obtain information about the installed...