536 matches found
Malicious code in Be.Vlaаnderen.Basisregіsters.AggregateSource (NuGet)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in Be.Vlaаnderen.Basіsregisters.AggregatеSource.Testiոg.NUnit (NuGet)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in Be.Vlaаndereո.Basisregіsters.AggregateSourcе (NuGet)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in Bе.Vlaaոderen.Basisregisters.AggregateSource.Testing.SqlStreamStore (NuGet)
--- -= Per source details. Do not edit below this line.=-...
CVE-2023-49331
Zoho ManageEngine ADAudit Plus versions below 7271 allows SQL injection in the aggregate reports search option...
CVE-2023-49331
Zoho ManageEngine ADAudit Plus versions below 7271 allows SQL injection in the aggregate reports search option...
CVE-2023-49331
CVE-2023-49331 concerns Zoho ManageEngine ADAudit Plus, with versions below 7271 affected by SQL injection in the aggregate reports search option. The vulnerability description across sources consistently states that the issue allows injection through user-controllable input in the aggregate repo...
CVE-2023-49330
Zoho ManageEngine ADAudit Plus versions below 7271 allows SQL Injection while getting aggregate report data...
CVE-2023-49330
Zoho ManageEngine ADAudit Plus versions below 7271 allows SQL Injection while getting aggregate report data...
CVE-2023-49330
Zoho ManageEngine ADAudit Plus versions below 7271 allows SQL Injection while getting aggregate report data...
CVE-2023-49330
CVE-2023-49330 concerns Zoho ManageEngine ADAudit Plus. Affected versions are those below build 7271, where the issue enables SQL injection when fetching aggregated report data. The root cause is unsafely handling aggregate-report data that allows injection, leading to potential data disclosure o...
CVE-2023-49330
Zoho ManageEngine ADAudit Plus versions below 7271 allows SQL Injection while getting aggregate report data...
USN-6538-1: PostgreSQL vulnerabilities | Cloud Foundry
Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 22.04 Description Jingzhou Fu discovered that PostgreSQL incorrectly handled certain unknown arguments in aggregate function calls. A remote attacker could possibly use this issue to obtain sensitive information...
kernel: net/sched: sch_qfq component can be exploited if in qfq_change_agg function happens qfq_enqueue overhead
An out-of-bounds memory write flaw was found in qfqchangeagg in net/sched/schqfq.c in the Traffic Control QoS subsystem in the Linux kernel. This flaw allows a local user to crash or potentially escalate their privileges on the system...
EulerOS 2.0 SP8 : postgresql (EulerOS-SA-2024-1289)
According to the versions of the postgresql packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A memory disclosure vulnerability was found in PostgreSQL that allows remote users to access sensitive information by exploiting certain...
BIT-POSTGRESQL-2023-5868 Postgresql: memory disclosure in aggregate function calls
A memory disclosure vulnerability was found in PostgreSQL that allows remote users to access sensitive information by exploiting certain aggregate function calls with 'unknown'-type arguments. Handling 'unknown'-type values from string literals without type designation can disclose bytes,...
kernel: use-after-free in sch_qfq network scheduler
A use-after-free flaw was found in qfqdequeue and aggdequeue in net/sched/schqfq.c in the Traffic Control QoS subsystem in the Linux kernel. This issue may allow a local user to crash the system or escalate their privileges on the system...
CLSA-2024-1707822783 Fix CVE(s): CVE-2023-5868, CVE-2023-5870
SECURITY UPDATE: Memory disclosure in aggregate function calls - debian/patches/CVE-2023-5868.patch: Compute aggregate argument types correctly in transformAggregateCall. - CVE-2023-5868 SECURITY UPDATE: Role "pgsignalbackend" can signal certain superuser processes -...
CVE-2023-48793
Zoho ManageEngine ADAudit Plus through 7250 allows SQL Injection in the aggregate report feature...
CVE-2023-48793
Zoho ManageEngine ADAudit Plus through 7250 allows SQL Injection in the aggregate report feature...