18 matches found
EUVD-2021-24593
Malware in sbrugna...
EUVD-2021-9671
Malicious code in bioql PyPI...
CVE-2021-38120
A vulnerability identified in Advance Authentication that allows bash command Injection in administrative controlled functionality of backup due to improper handling in provided command parameters. This issue affects NetIQ Advance Authentication version before 6.3.5.1...
CVE-2021-38121
Insufficient or weak TLS protocol version identified in Advance authentication client server communication when specific service is accessed between devices. This issue affects NetIQ Advance Authentication versions before 6.3.5.1...
Unspecified Vulnerability in NetIQ Advanced Authentication (CNVD-2024-38198)
NetIQ Advanced Authentication is an application from NetIQ UK. It provides a more secure way to protect your sensitive information by moving away from usernames and passwords. A security vulnerability exists in NetIQ Advanced Authentication versions prior to 6.3.5.1 that stems from an insufficien...
CVE-2021-38122
A Cross-Site Scripting vulnerable identified in NetIQ Advance Authentication that impacts the server functionality and disclose sensitive information. This issue affects NetIQ Advance Authentication before 6.3.5.1...
CVE-2021-38120
A vulnerability identified in Advance Authentication that allows bash command Injection in administrative controlled functionality of backup due to improper handling in provided command parameters. This issue affects NetIQ Advance Authentication version before 6.3.5.1...
CVE-2021-22529
A vulnerability identified in NetIQ Advance Authentication that leaks sensitive server information. This issue affects NetIQ Advance Authentication version before 6.3.5.1...
CVE-2021-22530
A vulnerability identified in NetIQ Advance Authentication that doesn't enforce account lockout when brute force attack is performed on API based login. This issue may lead to user account compromise if successful or may impact server performance. This issue impacts all NetIQ Advance Authenticati...
CVE-2021-22509
A vulnerability identified in storing and reusing information in Advance Authentication. This issue can lead to leakage of sensitive data to unauthorized user. The issue affects NetIQ Advance Authentication before 6.3.5.1...
CVE-2021-22509 Handling of sensitive data in process memory in NetIQ Advance Authentication
A vulnerability identified in storing and reusing information in Advance Authentication. This issue can lead to leakage of sensitive data to unauthorized user. The issue affects NetIQ Advance Authentication before 6.3.5.1...
CVE-2021-22529 Sensitive Data Exposure leaks potential information in NetIQ Advance Authentication
A vulnerability identified in NetIQ Advance Authentication that leaks sensitive server information. This issue affects NetIQ Advance Authentication version before 6.3.5.1...
CVE-2021-22529
NetIQ Advance Authentication contains a vulnerability that leaks sensitive server information in versions before 6.3.5.1. Multiple connected sources (Red Hat, CNVD/CNNVD, PT-2024-10883) corroborate that the issue affects NetIQ Advance Authentication prior to 6.3.5.1 and recommends upgrading to ve...
NetIQ Advanced Authentication 安全漏洞
NetIQ Advanced Authentication is an application from NetIQ UK. It provides a more secure way to protect your sensitive information by moving away from usernames and passwords. A cross-site scripting vulnerability exists in NetIQ Advanced Authentication versions prior to 6.3.5.1, which stems from ...
PT-2024-10989 · Netiq · Netiq Advance Authentication
Name of the Vulnerable Software and Affected Versions: NetIQ Advance Authentication versions prior to 6.3.5.1 Description: The issue is related to an insufficient or weak TLS protocol version used in the Advance authentication client-server communication when a specific service is accessed betwee...
PT-2024-10990 · Netiq · Netiq Advance Authentication
Name of the Vulnerable Software and Affected Versions: NetIQ Advance Authentication versions prior to 6.3.5.1 Description: A Cross-Site Scripting issue has been identified in NetIQ Advance Authentication, impacting server functionality and potentially disclosing sensitive information...
CVE-2021-32711 Leak of information via Store-API
Shopware is an open source eCommerce platform. Versions prior to 6.3.5.1 may leak of information via Store-API. The vulnerability could only be fixed by changing the API system, which involves a non-backward-compatible change. Only consumers of the Store-API should be affected by this change. We...
Generation of fake documents via public GET-call
Impact Generation of fake documents via public GET-call Patches We recommend to update to the current version 6.3.5.1. You can get the update to 6.3.5.1 regularly via the Auto-Updater or directly via the download overview. https://www.shopware.com/en/download/shopware-6 Workarounds For older...