CVE-2024-5402 Mint Workbench I Unquoted Service Path Enumeration

Unquoted Search Path or Element vulnerability in ABB Mint Workbench. A local attacker who successfully exploited this vulnerability could gain elevated privileges by inserting an executable file in the path of the affected service. This issue affects Mint Workbench I versions: from 5866 before 58...

CVE-2024-5402

CVE-2024-5402 affects ABB Mint Workbench I, specifically versions 5866 through 5868. The issue is an unquoted search path or element vulnerability that lets a local attacker escalate privileges by placing an executable in the path of the affected service. The root cause is the unquoted path handl...

ABB Mint Workbench Code Issue Vulnerability

ABB Mint WorkBench is a single Windows tool from ABB Switzerland that is compatible with the ABB family of motion controllers and servo drives. A code issue vulnerability exists in ABB Mint Workbench version 5866 and earlier, which stems from the presence of an unreferenced search path or element...

PT-2024-5495 · Abb · Abb Mint Workbench

Name of the Vulnerable Software and Affected Versions: ABB Mint Workbench versions 5866 through 5868 Description: A local attacker who successfully exploited this issue could gain elevated privileges by inserting an executable file in the path of the affected service. The issue is related to an...

OPENSUSE-SU-2024:11072-1 mysql-workbench-8.0.25-2.2 on GA media

These are all security issues fixed in the mysql-workbench-8.0.25-2.2 package on the GA media of openSUSE Tumbleweed...

Oracle MySQL Workbench < 8.0.36 (January 2024)

The versions of MySQL Workbench installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2024 CPU advisory. - Vulnerability in the MySQL Workbench product of Oracle MySQL component: MySQL Workbench libssh. Supported versions that are affected are 8.0.34 a...

Vulnerabilities fixed in Oracle MySQL

Oracle has fixed vulnerabilities in several MySQL products. A malicious party can exploit the vulnerabilities to launch attacks execute attacks that can lead to the following categories of damage: Denial-of-Service DoS. Manipulation of data Remote code execution User rights Access to sensitive da...

de.cau.cs.kieler.klighd:de.cau.cs.kieler.klighd (=2.3.0.v20230606), de.cau.cs.kieler.klighd:de.cau.cs.kieler.klighd.ide (=2.3.0.v20230606) +136 more potentially affected by CVE-2023-4218 via org.eclipse.platform:org.eclipse.ui.workbench (>=3.108.3 <=3.129.0)

org.eclipse.platform:org.eclipse.ui.workbench MAVEN version =3.108.3, =0.50.0.v20230607, =1.4.0, =1.4.0, =1.6.0, =1.4.0, =1.4.2, =1.4.0, =1.4.0, =1.6.0, =1.5.3, =1.7.4 and more Source cves: CVE-2023-4218 Source advisory: OSV:GHSA-J24H-X...

The vulnerability of the Workbench search system component in Oracle Commerce Guided Search allows a perpetrator to gain unauthorized access to protected data or to modify, add, or delete protected data.

The vulnerability of the Workbench search engine component of Oracle Commerce Guided Search is related to insufficient validation of input data. Exploiting this vulnerability may allow an attacker to gain unauthorized access to protected data or to modify, add, or delete protected data...

PT-2023-6271 · Oracle · Oracle Commerce Guided Search

Name of the Vulnerable Software and Affected Versions: Oracle Commerce Guided Search version 11.3.2 Description: The issue is related to insufficient input validation in the Workbench component of Oracle Commerce Guided Search. This easily exploitable vulnerability allows an unauthenticated...

CVE-2023-43640

TaxonWorks is a web-based workbench designed for taxonomists and biodiversity scientists. Prior to version 0.34.0, a SQL injection vulnerability was found in TaxonWorks that allows authenticated attackers to extract arbitrary data from the TaxonWorks database including the users table. This issue...

CVE-2023-43640

CVE-2023-43640 describes an SQL injection in TaxonWorks prior to version 0.34.0, reported to allow authenticated attackers to extract arbitrary data from the TaxonWorks database (including the users table), leading to information disclosure. The fixed version is 0.34.0. Connected sources corrobor...

Rockwell Automation Connected Components Workbench

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 9.6 ATTENTION : Exploitable remotely/low attack complexity/public exploits are available/known public exploitation Vendor : Rockwell Automation Equipment : Connected Components Workbench Vulnerabilities : Use After Free, Out-of-bounds Write 2. RISK...

The vulnerability of the Runtime Workbench component of the SAP NetWeaver Process Integration software, which allows attackers to compromise the confidentiality and accessibility of protected information.

The vulnerability of the Runtime Workbench RWB component of the SAP NetWeaver Process Integration software lies in the lack of authentication for a critical function. Exploiting this vulnerability allows an attacker to compromise the confidentiality and accessibility of protected information...

The vulnerability of the Blinding Functionality component of the Oracle Health Sciences Data Management Workbench allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Blinding Functionality component of the Oracle Health Sciences Data Management Workbench is related to errors in processing input data. Exploiting this vulnerability may allow an attacker operating remotely to gain unauthorized access to protected information...

Vulnerabilities fixed in Oracle MySQL

Vulnerabilities have been fixed in Oracle MySQL products. A malicious party can exploit the vulnerabilities to launch attacks execute attacks that can lead to the following categories of damage: Denial-of-Service DoS. Remote code execution User rights Access to sensitive data Oracle has fixed the...

CVE-2023-22022

Vulnerability in the Oracle Health Sciences Sciences Data Management Workbench product of Oracle Health Sciences Applications component: Blinding Functionality. Supported versions that are affected are 3.1.0.2, 3.1.1.3 and 3.2.0.0. Easily exploitable vulnerability allows low privileged attacker...

CVE-2023-22022

Vulnerability in the Oracle Health Sciences Sciences Data Management Workbench product of Oracle Health Sciences Applications component: Blinding Functionality. Supported versions that are affected are 3.1.0.2, 3.1.1.3 and 3.2.0.0. Easily exploitable vulnerability allows low privileged attacker...

CVE-2023-22022

The CVE-2023-22022 entry concerns Oracle Health Sciences Sciences Data Management Workbench, specifically the Blinding Functionality component. Affected versions are 3.1.0.2, 3.1.1.3, and 3.2.0.0. The vulnerability allows a low-privileged attacker with network access via HTTP to compromise the Wo...

Oracle Health Sciences Applications 安全漏洞

Oracle Health Sciences Applications is a suite of clinical development solutions for the healthcare industry from Oracle Corporation. A security vulnerability in Oracle Health Sciences Applications' Oracle Health Sciences Sciences Data Management Workbench product, which originates in the Blindin...