191 matches found
Improper Authorization in Crowd through ATST Plugin - CVE-2019-15005
The Atlassian Troubleshooting and Support Tools ATST plugin prior to version 1.17.2 which was used in Crowd & Crowd Data Center before version 3.6.0, allows an unprivileged user to initiate periodic log scans and send the results to a user-specified email address due to a missing authorization...
Improper Authorization in Crowd through ATST Plugin - CVE-2019-15005
The Atlassian Troubleshooting and Support Tools ATST plugin prior to version 1.17.2 which was used in Crowd & Crowd Data Center before version 3.6.0, allows an unprivileged user to initiate periodic log scans and send the results to a user-specified email address due to a missing authorization...
Improper Authorization in Jira Server through ATST Plugin - CVE-2019-15005
The Atlassian Troubleshooting and Support Tools ATST plugin prior to version 1.17.2 which was used in Jira Server & Jira Data Center before version 8.3.2, allows an unprivileged user to initiate periodic log scans and send the results to a user-specified email address due to a missing authorizati...
CVE-2019-2860
Vulnerability in the Oracle Clusterware component of Oracle Support Tools subcomponent: Trace File Analyzer TFA Collector. The supported version that is affected is 12.1.0.2.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to...
Design/Logic Flaw
Vulnerability in the Oracle Clusterware component of Oracle Support Tools subcomponent: Trace File Analyzer TFA Collector. The supported version that is affected is 12.1.0.2.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to...
CVE-2019-2860
Vulnerability in the Oracle Clusterware component of Oracle Support Tools subcomponent: Trace File Analyzer TFA Collector. The supported version that is affected is 12.1.0.2.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to...
CVE-2019-2860
The CVE-2019-2860 issue affects Oracle Clusterware via the Trace File Analyzer (TFA) Collector in Oracle Support Tools, with affected version 12.1.0.2.0. The vulnerability allows an unauthenticated, network-accessible attacker (no user interaction) to perform unauthorized updates, inserts or dele...
Oracle Support Tools Clusterware Component Denial of Service Vulnerability
Oracle Support Tools is a set of Oracle support tools from Oracle Corporation.Clusterware is a set of portable clusterware. A security vulnerability exists in the Trace File Analyzer TFA Collector subcomponent of the Clusterware component of Oracle Support Tools, version 12.1.0.2.0. An attacker...
FAQ: Citrix Insight Services (CIS)
Citrix Endpoint Management, using technology formerly called XenMobile This article contains answers to frequently asked questions aboutCitrix Insight Services formerly known as TaaS. Contents General Citrix Insight Services Plug-ins Security Considerations File Uploading Analysis Feedback Genera...
Unspecified Vulnerability in Oracle Support Tools OSS Support Tools Component (CNVD-2018-01720)
Oracle Support Tools is the United States Oracle Oracle company's set of Oracle support tools. OSS Support Tools is one of the object storage support tools. A security vulnerability exists in the Diagnostic Assistant subcomponent of the OSS Support Tools component of Oracle Support Tools prior to...
Unspecified Vulnerability in Oracle Support Tools OSS Support Tools Component (CNVD-2018-01732)
Oracle Support Tools is the United States Oracle Oracle company's set of Oracle support tools. OSS Support Tools is one of the object storage support tools. A security vulnerability exists in the Diagnostic Assistant subcomponent of the OSS Support Tools component of Oracle Support Tools prior to...
Unspecified Vulnerability in Oracle Support Tools OSS Support Tools Component
Oracle Support Tools is the United States Oracle Oracle company's set of Oracle support tools. OSS Support Tools is one of the object storage support tools. A security vulnerability exists in the Diagnostic Assistant subcomponent of the OSS Support Tools component of Oracle Support Tools prior to...
CVE-2018-2616
Vulnerability in the OSS Support Tools component of Oracle Support Tools subcomponent: Diagnostic Assistant. The supported version that is affected is Prior to 2.11.33. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise OSS Support Tools...
CVE-2018-2615
Vulnerability in the OSS Support Tools component of Oracle Support Tools subcomponent: Diagnostic Assistant. The supported version that is affected is Prior to 2.11.33. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise OSS Support Tools...
CVE-2018-2617
Vulnerability in the OSS Support Tools component of Oracle Support Tools subcomponent: Diagnostic Assistant. The supported version that is affected is Prior to 2.11.33. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise OSS Support Tools...
CVE-2018-2617
Vulnerability in the OSS Support Tools component of Oracle Support Tools subcomponent: Diagnostic Assistant. The supported version that is affected is Prior to 2.11.33. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise OSS Support Tools...
CVE-2018-2615
Vulnerability in the OSS Support Tools component of Oracle Support Tools subcomponent: Diagnostic Assistant. The supported version that is affected is Prior to 2.11.33. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise OSS Support Tools...
CVE-2018-2616
Vulnerability in the OSS Support Tools component of Oracle Support Tools subcomponent: Diagnostic Assistant. The supported version that is affected is Prior to 2.11.33. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise OSS Support Tools...
Code injection
Vulnerability in the OSS Support Tools component of Oracle Support Tools subcomponent: Diagnostic Assistant. The supported version that is affected is Prior to 2.11.33. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise OSS Support Tools...
Code injection
Vulnerability in the OSS Support Tools component of Oracle Support Tools subcomponent: Diagnostic Assistant. The supported version that is affected is Prior to 2.11.33. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise OSS Support Tools...