4 matches found
PT-2026-29856
Name of the Vulnerable Software and Affected Versions Rack versions 3.0.0.beta1 through 3.1.21 and versions 3.2.0 through 3.2.6 Description Rack’s Rack::Multipart::Parserhandle mime head function parses quoted multipart parameters using repeated Stringindex searches and Stringslice! operations...
BlackBerry CylanceOPTICS 安全漏洞
BlackBerry CylanceOPTICS is a cloud-enabled Endpoint Detection and Response EDR solution from BlackBerry Canada. A security vulnerability exists in BlackBerry CylanceOPTICS versions 3.2 and 3.3, which stems from a tampering vulnerability in the installer package that allows an attacker to uninsta...
Mbed TLS Security Vulnerability
Mbed TLS is an open source, portable, easy-to-use, readable and flexible SSL library. A security vulnerability exists in Mbed TLS versions 3.2.x through 3.5 and earlier, which stems from a buffer overflow issue. An attacker can exploit this vulnerability to remotely execute code...
PT-2021-14710 · Jenkins · Jenkins Scriptler Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins Scriptler Plugin versions 3.2 and earlier Description: The issue results in a stored cross-site scripting XSS vulnerability. This is due to the plugin not escaping parameter names shown in job configuration forms. Attackers with...