12 matches found
EUVD-2020-11490
Malware in sbrugna...
EUVD-2020-11491
Malware in sbrugna...
CVE-2020-19586
Incorrect Access Control issue in Yellowfin Business Intelligence 7.3 allows remote attackers to escalate privilege via MIAdminStyles.i4 Admin UI...
CVE-2020-19587
Cross Site Scripting XSS vulnerability in configMap parameters in Yellowfin Business Intelligence 7.3 allows remote attackers to run arbitrary code via MIAdminStyles.i4 Admin UI...
CVE-2020-19586
Incorrect Access Control issue in Yellowfin Business Intelligence 7.3 allows remote attackers to escalate privilege via MIAdminStyles.i4 Admin UI...
CVE-2020-19587
Cross Site Scripting XSS vulnerability in configMap parameters in Yellowfin Business Intelligence 7.3 allows remote attackers to run arbitrary code via MIAdminStyles.i4 Admin UI...
Cross site scripting
Cross Site Scripting XSS vulnerability in configMap parameters in Yellowfin Business Intelligence 7.3 allows remote attackers to run arbitrary code via MIAdminStyles.i4 Admin UI...
CVE-2020-19587
Cross Site Scripting XSS vulnerability in configMap parameters in Yellowfin Business Intelligence 7.3 allows remote attackers to run arbitrary code via MIAdminStyles.i4 Admin UI...
CVE-2020-19587
CVE-2020-19587 denotes a Cross Site Scripting (XSS) vulnerability in Yellowfin Business Intelligence 7.3, originating from configMap parameters exposed via the MIAdminStyles.i4 Admin UI. The issue enables a remote attacker to run arbitrary code and has a CVSS v3.1 base score of 5.4 (Medium) with ...
CVE-2020-19586
CVE-2020-19586 affects Yellowfin Business Intelligence 7.3, specifically an incorrect access control in the MIAdminStyles.i4 Admin UI that enables remote privilege escalation. The issue is tied to how privileges are enforced in the Admin UI, allowing an attacker to escalate rights. Documented in ...
PT-2022-8601 · Yellowfin · Yellowfin Business Intelligence
Name of the Vulnerable Software and Affected Versions: Yellowfin Business Intelligence version 7.3 Description: The issue is related to Incorrect Access Control, allowing remote attackers to escalate privileges via the MIAdminStyles.i4 Admin UI. Recommendations: For Yellowfin Business Intelligenc...
PT-2022-8602 · Yellowfin · Yellowfin Business Intelligence
Name of the Vulnerable Software and Affected Versions: Yellowfin Business Intelligence version 7.3 Description: The issue is related to a Cross Site Scripting XSS vulnerability in configMap parameters. This allows remote attackers to run arbitrary code via the MIAdminStyles.i4 Admin UI...