CVE-2021-20576

IBM Security Verify Access 20.07 could allow a remote attacker to send a specially crafted HTTP GET request that could cause the application to crash...

IBM Security Verify Access 信息泄露漏洞

IBM Security Verify Access, formerly known as IBM Security Access Manager or ISAM, is designed to help you simplify user access and more securely adopt Web, mobile, IoT and cloud technologies. An information disclosure vulnerability exists in IBM Security Verify Access version 20.07. An attacker...

Microsoft Azure Sphere Code Execution Vulnerability

Microsoft Azure Sphere is an appliance from Microsoft USA that is used to provide security in cloud environments. A code execution vulnerability exists in Microsoft Azure Sphere version 20.07, which stems from the Regular Signed Code Execution feature allowing arbitrary code execution. An attacke...

Microsoft Azure Sphere 注入漏洞

Microsoft Azure Sphere is an appliance from Microsoft USA that is used to provide security in cloud environments. A code execution vulnerability exists in Microsoft Azure Sphere version 20.07, which stems from the Regular Signed Code Execution feature allowing arbitrary code execution. An attacke...

Microsoft Azure Sphere Information Disclosure Vulnerability

Azure Sphere is a secure, advanced application platform with built-in communications and security features for connected devices. An information disclosure vulnerability exists in Microsoft Azure Sphere versions prior to 20.07. An attacker could exploit the vulnerability to obtain resource IDs, S...

Teradici PCoIP Management Console Cross-Site Scripting Vulnerability

Teradici PCoIP Management Console is a console program for managing PCoIP clients from Teradici Canada. A cross-site scripting vulnerability exists in Teradici PCoIP Management Console versions prior to 20.07. The vulnerability stems from a lack of proper validation of client data by the web...

CVE-2019-17353

CVE-2019-17353 affects D-Link DIR-615 devices with firmware version 20.05 and 20.07. The issue: the WAN management page (wan.htm) is accessible directly without authentication, leading to potential disclosure of WAN information and the ability for an attacker to modify data fields on that page. T...

D-Link DIR-615 Cross-Site Scripting Vulnerability (CNVD-2018-16520)

D-Link DIR-615 is a small wireless router product from AUO D-Link. A cross-site scripting vulnerability exists in the D-Link DIR-615 version 20.07. A remote attacker can exploit this vulnerability by injecting JavaScript code into the 'Status - Active Client Table' page with the 'hostname' field ...