44 matches found
pfSense cross-site scripting vulnerability (CNVD-2020-27779)
pfSense is a set of network firewalls based on FreeBSD Linux. A cross-site scripting vulnerability exists in the diagping.php page in versions prior to pfsense 2.4.5. The vulnerability stems from a lack of proper validation of client-side data by the WEB application. An attacker can exploit the...
Xen has multiple vulnerabilities
Xen is an open source virtual machine monitor product developed by the University of Cambridge, UK. The product enables different and incompatible operating systems to run on the same computer and supports runtime migration to ensure uptime and avoid downtime. An information disclosure, denial of...
JDK: unspecified vulnerability fixed in 5.0u71, 6u71 and 7u51 (2D)
Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; JavaFX 2.2.45; and Java SE Embedded 7u45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D...
security flaw
Multiple unspecified vulnerabilities in Ethereal 0.10.x up to 0.10.14 allow remote attackers to cause a denial of service crash from null dereference via 1 multiple vectors in H.248, and the 2 X.509if, 3 SRVLOC, 4 H.245, 5 AIM, and 6 general packet dissectors; and 7 the statistics counter...