Linux Distros Unpatched Vulnerability : CVE-2021-23176

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper access control in reporting engine of l10nfrfec module in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote...

The vulnerability of the “Tekon” SCADA system, related to the transmission of accounting data in unencrypted form, allows a perpetrator to carry out a MITM attack.

The vulnerability of the SCADA system “Tekon” is related to the transmission of accounting data in unencrypted form. Exploiting this vulnerability could allow a malicious actor to carry out a MITM attack...

The vulnerability of the DIAEnergie industrial energy consumption management system, related to the use of pre-set accounting data, allows a perpetrator to execute arbitrary codes.

The vulnerability of the DIAEnergie energy consumption management system involves the use of pre-set accounting data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by uploading executable files into specific directories...

DEBIAN-CVE-2021-23176

Improper access control in reporting engine of l10nfrfec module in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to extract accounting information via crafted RPC packets...

UBUNTU-CVE-2021-23176

Improper access control in reporting engine of l10nfrfec module in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to extract accounting information via crafted RPC packets...

The vulnerability of the server application for managing food manufacturing enterprises AK-EM 800, related to the use of rigidly encrypted accounting data, allows a perpetrator to increase their privileges.

The vulnerability of the server application for managing food manufacturing enterprises AK-EM 800 is related to the use of rigidly encrypted accounting data. Exploiting this vulnerability can allow attackers to enhance their privileges...

Oracle E-Business Suite Flaws Let Hackers Hijack Business Operations

If your business operations and security of sensitive data rely on Oracle's E-Business Suite EBS , make sure you recently updated and are running the latest available version of the software. In a report released by enterprise cybersecurity firm Onapsis and shared with The Hacker News, the firm...

The vulnerability of the software for collecting, archiving, and analyzing data from Power Generation Information Manager and Plant Connect systems lies in the insufficient protection of registration data. This allows attackers to bypass authentication procedures and gain access to the device’s accounting data.

The vulnerability of the Power Generation Information Manager and Plant Connect software in terms of data collection, archiving, and analysis is related to insufficient protection of registration data. Exploiting this vulnerability allows a malicious actor to bypass authentication procedures and...

CVE-2019-0399

SAP Portfolio and Project Management, before versions S4CORE 102, 103, EPPM 100 and CPRXRPM 500702, 600740, 610740; unintentionally allows a user to discover accounting information of the Projects in Project dashboard, leading to Information Disclosure...

The vulnerability of the eDocLib platform for storing and processing corporate data, related to the ability to access accounting data, allows a perpetrator to gain access to the protected system.

The vulnerability of the eDocLib platform for storing and processing corporate data is related to the possibility of manipulating accounting data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain access to the protected system with user privileges...

The vulnerability of the Enterprise Resource Management System “Galaktika ERP” lies in the fact that it stores user accounting data in an open manner, allowing a malicious actor to access and disclose the accounting information of privileged users.

The vulnerability of the Galaktika ERP resource management system lies in the fact that information related to user account data is stored publicly. This information is privileged administrator-sensitive and used for configuring software. Exploiting this vulnerability could allow a malicious acto...

slurm-wlm -- SQL Injection attacks against SlurmDBD

SchedMD reports: Several issues were discovered with incomplete sanitization of user-provided text strings, which could potentially lead to SQL injection attacks against SlurmDBD itself. Such exploits could lead to a loss of accounting data, or escalation of user privileges on the cluster...

Squid LDAP authentication routines fail to check for invalid input

Overview The Squid LDAP authentication routine squidldapauth fails to check for input characters, such as whitespace, that could be misused to possibly bypass access restrictions. Description Squid functions as a web proxy and cache application for a number of protocols, and includes support for...