5296 matches found
CVE-2022-46353
SCALANCE X204RNA family devices (HSR/PRP/EEC) have a vulnerability where the web server computes session IDs and nonces insecurely, allowing an unauthenticated remote attacker to brute-force session IDs and hijack sessions. Affected versions are all
CVE-2022-46354
A vulnerability has been identified in SCALANCE X204RNA HSR All versions V3.2.7, SCALANCE X204RNA PRP All versions V3.2.7, SCALANCE X204RNA EEC HSR All versions V3.2.7, SCALANCE X204RNA EEC PRP All versions V3.2.7, SCALANCE X204RNA EEC PRP/HSR All versions V3.2.7. The webserver of an affected...
PT-2022-27837 · Siemens · Scalance X204Rna Eec +1
Name of the Vulnerable Software and Affected Versions: SCALANCE X204RNA HSR versions prior to V3.2.7 SCALANCE X204RNA PRP versions prior to V3.2.7 SCALANCE X204RNA EEC HSR versions prior to V3.2.7 SCALANCE X204RNA EEC PRP versions prior to V3.2.7 SCALANCE X204RNA EEC PRP/HSR versions prior to...
CVE-2022-46354
CVE-2022-46354 affects Siemens SCALANCE X204RNA/ EEC devices (HSR/PRP) with versions prior to V3.2.7. The issue is that the webserver on these devices omits specific security headers, enabling an attacker to potentially extract confidential session information under certain conditions. Multiple s...
Exploit for SQL Injection in Zte Mf286R_Firmware
CVE-2022-39066 Firmware details: wainnerversion: BDPO...
Apache Airflow Contains Open Redirect
In Apache Airflow versions prior to 2.4.3, there was an open redirect in the webserver's /login endpoint...
GHSA-RG94-84XJ-7GQ3 Apache Airflow Contains Open Redirect
In Apache Airflow versions prior to 2.4.3, there was an open redirect in the webserver's /login endpoint...
CVE-2022-45402
In Apache Airflow versions prior to 2.4.3, there was an open redirect in the webserver's /login endpoint...
CVE-2022-45402
In Apache Airflow versions prior to 2.4.3, there was an open redirect in the webserver's /login endpoint...
PYSEC-2022-42984
In Apache Airflow versions prior to 2.4.3, there was an open redirect in the webserver's /login endpoint...
Open redirect
In Apache Airflow versions prior to 2.4.3, there was an open redirect in the webserver's /login endpoint...
PYSEC-2022-42984
In Apache Airflow versions prior to 2.4.3, there was an open redirect in the webserver's /login endpoint...
CVE-2022-45402
CVE-2022-45402 affects Apache Airflow versions prior to 2.4.3, which have an open redirect in the webserver’s /login endpoint. The root cause is an open redirect via the login parameter (e.g., next), enabling unvalidated redirects that could be used for phishing. The vulnerability is documented w...
EUVD-2022-0019
In Apache Airflow versions prior to 2.4.3, there was an open redirect in the webserver's /login endpoint...
CVE-2022-45402 Apache Airflow: Open redirect during login
In Apache Airflow versions prior to 2.4.3, there was an open redirect in the webserver's /login endpoint...
Apache Airflow Input Validation Error Vulnerability
Apache Airflow is the United States Apache Apache Foundation's set of open source platform for creating, managing and monitoring workflow. The platform is scalable and dynamic monitoring and other characteristics. An input validation error vulnerability exists in Apache Airflow versions prior to...
Open Redirect
apacheairflow is vulnerable to open redirect. The vulnerability exists due to the getsafeurl function in views.py improperly sanitizing headers leading to open redirect in the webserver's /confirm endpoint...
GHSA-F9FQ-78CH-4WMJ Apache Airflow Open Redirect vulnerability
In Apache Airflow versions prior to 2.4.2, there was an open redirect in the webserver's /confirm endpoint...
Apache Airflow Open Redirect vulnerability
In Apache Airflow versions prior to 2.4.2, there was an open redirect in the webserver's /confirm endpoint...
CVE-2022-43985
In Apache Airflow versions prior to 2.4.2, there was an open redirect in the webserver's /confirm endpoint...