362 matches found
CVE-2023-30631
Improper Input Validation vulnerability in Apache Software Foundation Apache Traffic Server. The configuration option proxy.config.http.pushmethodenabled didn't function. However, by default the PUSH method is blocked in the ipallow configuration file.This issue affects Apache Traffic Server:...
CVE-2023-1864
FANUC ROBOGUIDE-HandlingPRO, Versions 9 Rev.ZD and prior, is affected by CVE-2023-1864 (path traversal). The root cause is improper limitation of a pathname to a restricted directory, enabling a remote attacker to read files on the system running the software. According to published advisories, t...
CVE-2023-29803
TOTOLINK X18 V9.1.0cu.2024B20220329 was discovered to contain a command injection vulnerability via the pid parameter in the disconnectVPN function...
Apache Tomcat 9.0.0-M1 < 9.0.72 Information Disclosure
The version of Apache Tomcat installed on the remote host is 8.5.x prior to 8.5.86, 9.0.0-M1 prior to 9.0.72, 10.1.0-M1 prior to 10.1.6 or 11.0.0-M1 prior to 11.0.0-M3. It is, therefore, affected by an information disclosure due to the RemoteIpFilter. Note that the scanner has not attempted to...
TYPO3 is vulnerable to Cross-Site Scripting via frontend rendering
CVSS: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:L/E:F/RL:O/RC:C 8.2 Problem TYPO3 core component GeneralUtility::getIndpEnv uses the unfiltered server environment variable PATHINFO, which allows attackers to inject malicious content. In combination with the TypoScript setting...
Security Bulletin: Multiple Vulnerabilities in IBM® Java SDK affect IBM WebSphere Application Server and IBM WebSphere Application Server Liberty due to the October 2022 CPU
Summary There are multiple vulnerabilities in the IBM® SDK, Java™ Technology Edition that is shipped with IBM WebSphere Application Server and IBM WebSphere Application Server Liberty. The CVEs listed in this document might affect some configurations of IBM WebSphere Application Server traditiona...
Apache Traffic Server (ATS) 8.x < 8.1.5, 9.x < 9.1.3 Multiple Vulnerabilities
Apache Traffic Server ATS is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
TYPO3 Weak Authentication Vulnerability (TYPO3-CORE-SA-2022-013)
TYPO3 is prone to a weak authentication vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:typo3:typo3"; if descripti...
Grafana Privilege Escalation Vulnerability (GHSA-jv32-5578-pxjc)
Grafana is prone to a privilege escalation vulnerability. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you...
SAP 3D Visual Enterprise Author .emf Buffer Overflow Vulnerability
SAP 3D Visual Enterprise Author is a desktop application for managing 2D, 3D, animation, video and audio assets from SAP. A buffer overflow vulnerability exists in SAP 3D Visual Enterprise Author version 9, which stems from a lack of proper memory management and can be exploited by an attacker to...
CVE-2022-41181
Due to lack of proper memory management, when a victim opens manipulated Portable Document Format .pdf, PDFPublishing.dll file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible for the application to crash and becomes temporarily unavailable to the use...
CVE-2022-41169
Due to lack of proper memory management, when a victim opens manipulated CATIA5 Part .catpart, CatiaTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible for the application to crash and becomes temporarily unavailable to the user until...
CVE-2022-41171
Due to lack of proper memory management, when a victim opens manipulated CATIA4 Part .model, CatiaTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible for the application to crash and becomes temporarily unavailable to the user until...
Stack overflow
Due to lack of proper memory management, when a victim opens a manipulated CATIA5 Part .catpart, CatiaTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based...
Stack overflow
Due to lack of proper memory management, when a victim opens a manipulated Enhanced Metafile .emf, emf.x3d file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based overflow o...
CVE-2022-41177
The CVE-2022-41177 issue affects SAP 3D Visual Enterprise Author (v9) where parsing of IGES/IGES-like files (.igs, .iges) can trigger memory corruption due to improper memory management. The vulnerability allows remote code execution when a victim opens a manipulated IGES file from untrusted sour...
CVE-2022-41193
SAP 3D Visual Enterprise Viewer 9 is affected by a memory-management vulnerability in EPS parsing (EPS/ai.x3d). The issue can trigger Remote Code Execution when a manipulated file from untrusted sources is opened, due to stack-based overflow or re-use of a dangling pointer. The vulnerability requ...
CVE-2022-39808
Due to lack of proper memory management, when a victim opens a manipulated Wavefront Object .obj, ObjTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based...
CVE-2022-39808
CVE-2022-39808 concerns SAP 3D Visual Enterprise Author v9. It stems from improper memory management while parsing Wavefront OBJ files (ObjTranslator.exe), allowing Remote Code Execution via a payload that triggers a stack-based overflow or reuse of a dangling pointer to overwritten memory space....
CVE-2022-41180
Due to lack of proper memory management, when a victim opens a manipulated Portable Document Format .pdf, PDFPublishing.dll file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a...