9 matches found
CVE-2025-12455 Username Enumeration Observable Response Discrepancy vulnerability has been discovered in OpenText™ Vertica.
Observable response discrepancy vulnerability in OpenText™ Vertica allows Password Brute Forcing. The vulnerability could lead to Password Brute Forcing in Vertica management console application.This issue affects Vertica: from 10.0 through 10.X, from 11.0 through 11.X, from 12.0 through 12.X...
CVE-2025-12455 Username Enumeration Observable Response Discrepancy vulnerability has been discovered in OpenText™ Vertica.
Observable response discrepancy vulnerability in OpenText™ Vertica allows Password Brute Forcing. The vulnerability could lead to Password Brute Forcing in Vertica management console application.This issue affects Vertica: from 10.0 through 10.X, from 11.0 through 11.X, from 12.0 through 12.X...
Deserialization of Untrusted Data
Overview Affected versions of this package are vulnerable to Deserialization of Untrusted Data via the deserialization of QPY files containing malformed symengine serialization streams. An attacker can terminate the process by sending a crafted QPY file. This is only exploitable if symengine =...
PT-2023-17555 · Gitlab · Gitlab
Name of the Vulnerable Software and Affected Versions: GitLab versions 10.0 through 12.9.7 GitLab versions 12.10 through 12.10.6 GitLab versions 13.0 through 13.0.0 Description: An issue has been discovered in GitLab where a user with the role of developer could use the import project feature to...
PT-2022-14569 · Google · Android
Name of the Vulnerable Software and Affected Versions: Android versions Android-10 through Android-12L Description: A race condition in the stealReceiveChannel of EventThread.cpp could allow interference with process communication, potentially leading to local escalation of privilege without...
CVE-2022-26151
Citrix XenMobile Server 10.12 through RP11, 10.13 through RP7, and 10.14 through RP4 allows Command Injection...
PT-2022-17697 · Citrix · Citrix Xenmobile Server
Name of the Vulnerable Software and Affected Versions: Citrix XenMobile Server versions 10.12 through RP11 Citrix XenMobile Server versions 10.13 through RP7 Citrix XenMobile Server versions 10.14 through RP4 Description: The issue allows Command Injection. Recommendations: For versions 10.12...
Joyent Node.js Input Validation Error Vulnerability
Joyent Node.js is the United States Joyent company's set of web applications built on top of the Google V8 JavaScript engine platform. The platform is primarily used for building highly scalable applications and writing code that can handle tens of thousands of simultaneous connections to a singl...
Frappe Technologies Frappe Framework Injection Vulnerability
Frappe Technologies Frappe Framework is a metadata-driven full-stack web application framework based on Python and JavaScript from Frappe Technologies, India. An injection vulnerability exists in Frappe Technologies Frappe Framework versions 10 through 12 fixed in version 12.0.4. No detailed...