324 matches found
Oracle Siebel CRM 16.1.x < 16.9 (January 2017 CPU)
The versions of Oracle Siebel CRM installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2017 CPU advisory. - Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM subcomponent: EAI. The supported version that is affected is 16.1. Easi...
Oracle Siebel CRM (July 2016 CPU)
The versions of Oracle Siebel CRM installed on the remote host are affected by multiple vulnerabilities as referenced in the July 2016 CPU advisory. - Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM subcomponent: EAI. Supported versions that are affected are 8.1.1, 8.2.2,...
Oracle Siebel CRM (July 2015 CPU)
The versions of Oracle Siebel CRM installed on the remote host are affected by multiple vulnerabilities as referenced in the July 2015 CPU advisory. - Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM subcomponent: UIF Open UI. Supported versions that are affected are 8.1.1,...
Oracle Siebel Server <= 20.6 (July 2020 CPU)
The versions of Oracle Siebel CRM installed on the remote host are affected by a vulnerability as referenced in the July 2020 CPU advisory. - Vulnerability in the Siebel UI Framework product of Oracle Siebel CRM component: SWSE Server. Supported versions that are affected are 20.6 and prior...
Oracle Siebel Server < 20.3 (April 2020 CPU)
The versions of Oracle Siebel CRM installed on the remote host are affected by a vulnerability as referenced in the April 2020 CPU advisory. - Vulnerability in the Siebel UI Framework product of Oracle Siebel CRM component: EAI, SWSE. Supported versions that are affected are 20.2 and prior. Easil...
Oracle Siebel Server <= 22.12 (July 2023 CPU)
The versions of Oracle Siebel CRM installed on the remote host are affected by a vulnerability as referenced in the July 2023 CPU advisory. - Vulnerability in the Siebel CRM product of Oracle Siebel CRM component: UI Framework CodeMirror. Supported versions that are affected are 22.12 and prior...
Oracle Siebel CRM (October 2017 CPU)
The versions of Oracle Siebel CRM installed on the remote host are affected by multiple vulnerabilities as referenced in the October 2017 CPU advisory. - Vulnerability in the Siebel Apps - Field Service component of Oracle Siebel CRM subcomponent: Smart Answer Python. Supported versions that are...
Oracle Siebel Server (July 2020 CPU)
The versions of Oracle Siebel CRM installed on the remote host are affected by multiple vulnerabilities as referenced in the July 2020 CPU advisory. - Vulnerability in the Siebel UI Framework product of Oracle Siebel CRM component: EAI, SWSE Apache Tomcat. Supported versions that are affected are...
Oracle Siebel Server < 19.11 (January 2020 CPU)
The versions of Oracle Siebel CRM installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2020 CPU advisory. - Vulnerability in the Siebel UI Framework product of Oracle Siebel CRM component: EAI jackson-databind. Supported versions that are affected are...
Oracle Siebel Server (January 2019 CPU)
The versions of Oracle Siebel CRM installed on the remote host are affected by a vulnerability as referenced in the January 2019 CPU advisory. - Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM subcomponent: UIF Open UI jQuery FileUpload. Supported versions that are affecte...
Oracle Siebel Server < 17.6 (April 2018 CPU)
The versions of Oracle Siebel CRM installed on the remote host are affected by multiple vulnerabilities as referenced in the April 2018 CPU advisory. - Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM subcomponent: EAI Apache Tomcat. The supported version that is affected i...
Oracle Siebel Server (April 2021 CPU)
The versions of Oracle Siebel CRM installed on the remote host are affected by multiple vulnerabilities as referenced in the April 2021 CPU advisory. - Vulnerability in the Siebel UI Framework product of Oracle Siebel CRM component: EAI jackson-databind. Supported versions that are affected are...
CVE-2024-45601 Local file Inclusion via static file serving functionality in Mesop
Mesop is a Python-based UI framework designed for rapid web apps development. A vulnerability has been discovered and fixed in Mesop that could potentially allow unauthorized access to files on the server hosting the Mesop application. The vulnerability was related to insufficient input validatio...
CVE-2024-45601 Local file Inclusion via static file serving functionality in Mesop
Mesop is a Python-based UI framework designed for rapid web apps development. A vulnerability has been discovered and fixed in Mesop that could potentially allow unauthorized access to files on the server hosting the Mesop application. The vulnerability was related to insufficient input validatio...
CVE-2024-45601 Local file Inclusion via static file serving functionality in Mesop
Mesop is a Python-based UI framework designed for rapid web apps development. A vulnerability has been discovered and fixed in Mesop that could potentially allow unauthorized access to files on the server hosting the Mesop application. The vulnerability was related to insufficient input validatio...
GHSA-MWC7-64WG-PGVJ NiceGUI allows potential access to local file system
NiceGUI is an easy-to-use, Python-based UI framework. A local file inclusion is present in the NiceUI leaflet component when requesting resource files under the /nicegui/version/resources/key/path:path route. As a result any file on the backend filesystem which the web server has access to can be...
NiceGUI allows potential access to local file system
NiceGUI is an easy-to-use, Python-based UI framework. A local file inclusion is present in the NiceUI leaflet component when requesting resource files under the /nicegui/version/resources/key/path:path route. As a result any file on the backend filesystem which the web server has access to can be...
CVE-2024-32005
NiceGUI is an easy-to-use, Python-based UI framework. A local file inclusion is present in the NiceUI leaflet component when requesting resource files under the /nicegui/version/resources/key/path:path route. As a result any file on the backend filesystem which the web server has access to can be...
CVE-2024-32005
CVE-2024-32005 : Local File Inclusion in NiceGUIās leaflet component allows reading any backend file accessible to the web server via requests to /_nicegui/{version }/resources/{key}/{path:path}. Affected upstream: NiceGUI before 1.4.21. Impact: arbitrary file read on the server. Remediation: upg...
CVE-2024-32005 Local File Inclusion in NiceGUI leaflet component
NiceGUI is an easy-to-use, Python-based UI framework. A local file inclusion is present in the NiceUI leaflet component when requesting resource files under the /nicegui/version/resources/key/path:path route. As a result any file on the backend filesystem which the web server has access to can be...