67 matches found
EUVD-2018-3710
Malware in sbrugna...
EUVD-2017-4352
Malware in sbrugna...
EUVD-2024-26975
Malicious code in bioql PyPI...
EUVD-2023-45665
Malicious code in bioql PyPI...
Aginode GigaSwitch 安全漏洞
Aginode GigaSwitch is a LANactive support portal from Aginode. A security vulnerability exists in Aginode GigaSwitch version v5 that stems from the use of SCP commands to access sensitive information...
Vulnerability in SICK OLM
SICK received a report about a vulnerability in the SICK Support Portal supportportal.sick.com, which was hosted and operated by a third-party service provider. Due to a misconfiguration, the access restriction of a NFS Network File System storage system has failed, which resulted in temporary...
Juniper Networks Releases Security Bulletin for Multiple Juniper Products
Juniper Networks released security updates to address multiple vulnerabilities in Junos OS, Junos OS Evolved, Paragon Active Assurance and Junos OS: EX4300 Series. A cyber threat actor could exploit some of these vulnerabilities to cause a denial-of-service condition. Users and administrators are...
CVE-2024-2005
In Blue Planet® products through 22.12, a misconfiguration in the SAML implementation allows for privilege escalation. Only products using SAML authentication are affected. Blue Planet® has released software updates that address this vulnerability for the affected products. Customers are advised ...
CVE-2024-2005
In Blue Planet® products through 22.12, a misconfiguration in the SAML implementation allows for privilege escalation. Only products using SAML authentication are affected. Blue Planet® has released software updates that address this vulnerability for the affected products. Customers are advised ...
Privilege escalation
In Blue Planet® products through 22.12, a misconfiguration in the SAML implementation allows for privilege escalation. Only products using SAML authentication are affected. Blue Planet® has released software updates that address this vulnerability for the affected products. Customers are advised ...
CVE-2024-2005 SAML implementation allows privilege escalation
In Blue Planet® products through 22.12, a misconfiguration in the SAML implementation allows for privilege escalation. Only products using SAML authentication are affected. Blue Planet® has released software updates that address this vulnerability for the affected products. Customers are advised ...
CVE-2024-2005 SAML implementation allows privilege escalation
In Blue Planet® products through 22.12, a misconfiguration in the SAML implementation allows for privilege escalation. Only products using SAML authentication are affected. Blue Planet® has released software updates that address this vulnerability for the affected products. Customers are advised ...
CVE-2024-2005
CVE-2024-2005 affects Blue Planet products up to version 22.12 due to a misconfiguration in the SAML implementation that allows privilege escalation for systems using SAML authentication. The issue is addressed by software updates released by Blue Planet/Ciena; customers should upgrade to the lat...
PT-2024-18535
Name of the Vulnerable Software and Affected Versions Blue Planet products through 22.12 Description A misconfiguration in the SAML implementation allows for privilege escalation. Only products using SAML authentication are affected. Blue Planet has released software updates to address this issue...
Juniper Support Portal Exposed Customer Device Info
Until earlier this week, the support website for networking equipment vendor Juniper Networks was exposing potentially sensitive information tied to customer products, including which devices customers bought, as well as each products warranty status, service contracts and serial numbers. Juniper...
PT-2023-27822 · Autodesk · Autodesk Customer Support Portal
Name of the Vulnerable Software and Affected Versions: Autodesk Customer Support Portal affected versions not specified Description: The issue allows cases created by users under an account to be visible to other users on the same account, potentially exposing sensitive information...
CVE-2023-45159
1E Client installer can perform arbitrary file deletion on protected files. A non-privileged user could provide a symbolic link or Windows junction to point to a protected directory in the installer that the 1E Client would then clear on service startup. A hotfix is available from the 1E support...
Arbitrary file deletion
1E Client installer can perform arbitrary file deletion on protected files. A non-privileged user could provide a symbolic link or Windows junction to point to a protected directory in the installer that the 1E Client would then clear on service startup. A hotfix is available from the 1E support...
CVE-2023-45159 1E Client installer can perform arbitrary file deletion on protected files
1E Client installer can perform arbitrary file deletion on protected files. A non-privileged user could provide a symbolic link or Windows junction to point to a protected directory in the installer that the 1E Client would then clear on service startup. A hotfix is available from the 1E support...
CVE-2023-45159 1E Client installer can perform arbitrary file deletion on protected files
1E Client installer can perform arbitrary file deletion on protected files. A non-privileged user could provide a symbolic link or Windows junction to point to a protected directory in the installer that the 1E Client would then clear on service startup. A hotfix is available from the 1E support...