5296 matches found
Stack overflow
In Bender/ebee Charge Controllers in multiple versions a long URL could lead to webserver crash. The URL is used as input of an sprintf to a stack variable...
CVE-2021-34587
Summary: CVE-2021-34587 affects Bender ebee Charge Controllers (CC612, CC613, ICC15xx/ICC16xx) with versions prior to 5.11.2, 5.12.5, 5.13.2, or 5.20.2. A long URL used as input to sprintf into a stack variable can crash the webserver. CNNVD notes this could allow bypassing credential checks and ...
CVE-2021-34587 Bender Charge Controller: Long URL could lead to webserver crash
In Bender/ebee Charge Controllers in multiple versions a long URL could lead to webserver crash. The URL is used as input of an sprintf to a stack variable...
Typo3 Arbitrary File Delete
TYPO3 before 4.3.12, 4.4.x before 4.4.9, and 4.5.x before 4.5.4 allows remote attackers to delete arbitrary files on the webserver...
GHSA-9VXQ-MXW5-MCGP Typo3 Arbitrary File Delete
TYPO3 before 4.3.12, 4.4.x before 4.4.9, and 4.5.x before 4.5.4 allows remote attackers to delete arbitrary files on the webserver...
Oracle Fusion Middleware Helidon Input Validation Error Vulnerability
Oracle Fusion Middleware is a business innovation platform for enterprise and cloud environments from Oracle Corporation. The platform provides middleware, software collections, and other capabilities.A security vulnerability exists in the Helidon product of Oracle Fusion Middleware component:...
CVE-2022-24423
Dell iDRAC8 versions prior to 2.83.83.83 contain a denial of service vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability to cause resource exhaustion in the webserver, resulting in a denial of service condition...
CVE-2022-24423
Dell iDRAC8 versions prior to 2.83.83.83 contain a denial of service vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability to cause resource exhaustion in the webserver, resulting in a denial of service condition...
Race condition
Dell iDRAC8 versions prior to 2.83.83.83 contain a denial of service vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability to cause resource exhaustion in the webserver, resulting in a denial of service condition...
PT-2022-16686 · Dell · Idrac8
Name of the Vulnerable Software and Affected Versions: Dell iDRAC8 versions prior to 2.83.83.83 Description: The issue allows a remote unauthenticated attacker to potentially cause resource exhaustion in the webserver, resulting in a denial of service condition. Recommendations: For Dell iDRAC8...
CVE-2022-21404
Vulnerability in the Helidon product of Oracle Fusion Middleware component: Reactive WebServer. Supported versions that are affected are 1.4.10 and 2.0.0-RC1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Helidon. Successful attacks ...
CVE-2022-21404
Vulnerability in the Helidon product of Oracle Fusion Middleware component: Reactive WebServer. Supported versions that are affected are 1.4.10 and 2.0.0-RC1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Helidon. Successful attacks ...
CVE-2022-21404
Vulnerability in the Helidon product of Oracle Fusion Middleware component: Reactive WebServer. Supported versions that are affected are 1.4.10 and 2.0.0-RC1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Helidon. Successful attacks ...
CVE-2022-21404
Vulnerability in the Helidon product of Oracle Fusion Middleware component: Reactive WebServer. Supported versions that are affected are 1.4.10 and 2.0.0-RC1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Helidon. Successful attacks ...
CVE-2022-21404
CVE-2022-21404 affects Oracle Fusion Middleware Helidon (Reactive WebServer). Affected versions are 1.4.10 and 2.0.0-RC1. The vulnerability allows an unauthenticated attacker with network access via HTTP to compromise Helidon, potentially taking over the Helidon instance. CVSS v3.1 base score 8.1...
Oracle Fusion Middleware 输入验证错误漏洞
Oracle Fusion Middleware is a business innovation platform for enterprise and cloud environments from Oracle Corporation. The platform provides middleware, software collections, and other capabilities.A security vulnerability exists in the Helidon product of Oracle Fusion Middleware component:...
CVE-2022-25755
A vulnerability has been identified in SCALANCE X302-7 EEC 230V, SCALANCE X302-7 EEC 230V, coated, SCALANCE X302-7 EEC 24V, SCALANCE X302-7 EEC 24V, coated, SCALANCE X302-7 EEC 2x 230V, SCALANCE X302-7 EEC 2x 230V, coated, SCALANCE X302-7 EEC 2x 24V, SCALANCE X302-7 EEC 2x 24V, coated, SCALANCE...
Code injection
A vulnerability has been identified in SCALANCE X302-7 EEC 230V, SCALANCE X302-7 EEC 230V, coated, SCALANCE X302-7 EEC 24V, SCALANCE X302-7 EEC 24V, coated, SCALANCE X302-7 EEC 2x 230V, SCALANCE X302-7 EEC 2x 230V, coated, SCALANCE X302-7 EEC 2x 24V, SCALANCE X302-7 EEC 2x 24V, coated, SCALANCE...
Design/Logic Flaw
A vulnerability has been identified in SCALANCE X302-7 EEC 230V, SCALANCE X302-7 EEC 230V, coated, SCALANCE X302-7 EEC 24V, SCALANCE X302-7 EEC 24V, coated, SCALANCE X302-7 EEC 2x 230V, SCALANCE X302-7 EEC 2x 230V, coated, SCALANCE X302-7 EEC 2x 24V, SCALANCE X302-7 EEC 2x 24V, coated, SCALANCE...
CVE-2022-25755
A vulnerability has been identified in SCALANCE X302-7 EEC 230V, SCALANCE X302-7 EEC 230V, coated, SCALANCE X302-7 EEC 24V, SCALANCE X302-7 EEC 24V, coated, SCALANCE X302-7 EEC 2x 230V, SCALANCE X302-7 EEC 2x 230V, coated, SCALANCE X302-7 EEC 2x 24V, SCALANCE X302-7 EEC 2x 24V, coated, SCALANCE...