The vulnerability of the BIG-IP access control and remote authentication configuration tool allows a perpetrator to execute arbitrary commands.

The vulnerability of the BIG-IP access control and remote authentication configuration tool lies in the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely...

biz.netcentric.cq.tools.accesscontroltool:maximum-environment (>=2.5.4 <=3.6.2), biz.netcentric.cq.tools.accesscontroltool:minimum-environment (>=3.0.0 <=4.2.1) +52 more potentially affected by CVE-2022-47937 via org.apache.sling:org.apache.sling.commons.json (>=2.0.2-incubator <=2.0.20)

org.apache.sling:org.apache.sling.commons.json MAVEN version =2.0.2-incubator, =2.5.4, =3.0.0, =5.5.0, =2.17.10, =0.0.10, =5.5.0, =1.0.4, =1.8.0 and more Source cves: CVE-2022-47937 Source advisory: OSV:GHSA-8J28-34QQ-GMCH...

biz.netcentric.cq.tools.accesscontroltool:maximum-environment (>=2.5.4 <=3.6.2), biz.netcentric.cq.tools.accesscontroltool:minimum-environment (>=2.5.4 <=3.6.2) +38 more potentially affected by CVE-2023-25141 via org.apache.sling:org.apache.sling.jcr.base (>=2.0.2-incubator <=3.1.10)

org.apache.sling:org.apache.sling.jcr.base MAVEN version =2.0.2-incubator, =2.5.4, =2.5.4, =4.2.0, =0.6.8, =2.1.1, =2.5.0, =2.1.1, =2.5.0, =1.7.0, =1.3.1, =1.6.0, =5.5.4, =1.4.0-0001, =1.0.3, =1.0.3, =1.0.5 and more Source cves: CVE-2023-25141 Source advisory:...

The vulnerability of the access control tool for corporate applications and Microsoft Intune Company Portal for iOS is related to security configuration errors, allowing a perpetrator to circumvent security restrictions.

The vulnerability of the access control mechanism for corporate applications and Microsoft Intune Company Portal for iOS is related to security configuration errors. Exploiting this vulnerability could allow a perpetrator to circumvent security restrictions...