8 matches found
happy-dom 代码注入漏洞
happy-dom is a JavaScript implementation of a web browser without a graphical user interface by the individual developer David Ortner. A code injection vulnerability exists in happy-dom version 19 and earlier, which stems from insufficient isolation of the Node.js VM Context environment and could...
CVE-2024-6240
Improper privilege management vulnerability in Parallels Desktop Software, which affects versions earlier than 19.3.0. An attacker could add malicious code in a script and populate the BASHENV environment variable with the path to the malicious script, executing on application startup. An attacke...
Avast AntiVirus 安全漏洞
Avast Antivirus is a suite of antivirus software from the Czech company Avast. A security vulnerability exists in versions prior to Avast AntiVirus v.19.7 that stems from the presence of a buffer overflow vulnerability that allows a local attacker to cause a denial of service via a crafted reques...
SUSE CVE-2020-8295
A wrong check in Nextcloud Server 19 and prior allowed to perform a denial of service attack when resetting the password for a user...
Cisco SD-WAN vManage Software SQL注入漏洞
Cisco SD-WAN Solution is a suite of network extension solutions from Cisco, of which vManage is the console. A SQL injection vulnerability exists in the Web management interface of Cisco SD-WAN vManage versions prior to 19.2.3. The vulnerability stems from the Web management interface not properl...
CVE-2020-2514
Vulnerability in the Oracle Application Express component of Oracle Database Server. The supported version that is affected is Prior to 19.2. Easily exploitable vulnerability allows low privileged attacker having End User Role privilege with network access via HTTPS to compromise Oracle Applicati...
CVE-2019-7998
Adobe Photoshop CC versions 19.1.8 and earlier and 20.0.5 and earlier have an out of bound write vulnerability. Successful exploitation could lead to arbitrary code execution...
Avast Antivirus Local Denial of Service Vulnerability
Avast Antivirus is a suite of antivirus software from the Czech company Avast. A security vulnerability exists in Avast Antivirus versions prior to 19.4. The vulnerability can be exploited to bypass the Avast self-protection mechanism and rename important binary files e.g. AvastSvc.exe file,...