4 matches found
PT-2025-44404
Name of the Vulnerable Software and Affected Versions Dell Unity versions 5.5 and prior Description Dell Unity software contains an Improper Neutralization of Special Elements used in an OS Command vulnerability, also known as OS Command Injection. A local attacker with low privileges could...
Trend Micro Email Encryption Gateway Arbitrary Command Execution Vulnerability (CNVD-2018-04486)
Trend Micro Email Encryption is a suite of identity-based email encryption solutions from Trend Micro, Inc. The Trend Micro Email Encryption Gateway TMEEG is one of the gateway products that provides data protection. An arbitrary command execution vulnerability exists in Trend Micro Email...
UBUNTU-CVE-2017-3313
Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: MyISAM. Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure wher...
tomcat: Multiple weaknesses in HTTP DIGEST authentication
DigestAuthenticator.java in the HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 uses Catalina as the hard-coded server secret aka private key, which makes it easier for remote attackers to bypass cryptographic...