374 matches found
CVE-2022-42183
Precisely Spectrum Spatial Analyst 20.01 is vulnerable to Server-Side Request Forgery SSRF...
CVE-2022-42182
Precisely Spectrum Spatial Analyst 20.01 is vulnerable to Directory Traversal...
CVE-2022-42182
Precisely Spectrum Spatial Analyst 20.01 is vulnerable to Directory Traversal...
CVE-2022-42182
Precisely Spectrum Spatial Analyst 20.01 is vulnerable to Directory Traversal...
Server side request forgery (ssrf)
Precisely Spectrum Spatial Analyst 20.01 is vulnerable to Server-Side Request Forgery SSRF...
Directory traversal
Precisely Spectrum Spatial Analyst 20.01 is vulnerable to Directory Traversal...
Precisely Spectrum Spatial Analyst 路径遍历漏洞
Precisely Spectrum Spatial Analyst is a Geographic Information System GIS solution from Precisely, Inc. A security vulnerability exists in Precisely Spectrum Spatial Analyst version 20.01 that stems from vulnerability to directory traversal attacks...
CVE-2022-42183
Precisely Spectrum Spatial Analyst 20.01 is vulnerable to Server-Side Request Forgery SSRF...
PT-2023-14068 · Precisely · Precisely Spectrum Spatial Analyst
Name of the Vulnerable Software and Affected Versions: Precisely Spectrum Spatial Analyst version 20.01 Description: The issue is related to Directory Traversal. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where thi...
CVE-2022-42183
Precisely Spectrum Spatial Analyst 20.01 is vulnerable to Server-Side Request Forgery SSRF...
PT-2023-14069 · Precisely · Precisely Spectrum Spatial Analyst
Name of the Vulnerable Software and Affected Versions: Precisely Spectrum Spatial Analyst version 20.01 Description: The issue is related to Server-Side Request Forgery SSRF, which is a type of attack where an attacker can trick a server into making requests to internal or external resources. Thi...
CVE-2022-42182
Precisely Spectrum Spatial Analyst 20.01 is vulnerable to Directory Traversal...
CVE-2022-42182
CVE-2022-42182 affects Precisely Spectrum Spatial Analyst 20.01. The provided connected sources identify a vulnerability to Directory Traversal in this software, but do not include concrete details on root cause specifics, affected components beyond the product/version, exploit scenarios, or a pu...
CVE-2022-42183
CVE-2022-42183 refers to Precisely Spectrum Spatial Analyst 20.01 being vulnerable to Server-Side Request Forgery (SSRF). The primary trusted sources indicate an SSRF issue in the product version 20.01, with CVSSv3.1 metrics showing a high impact (base score 9.1) affecting confidentiality and int...
CVE-2022-42182
Precisely Spectrum Spatial Analyst 20.01 is vulnerable to Directory Traversal...
Owner of BreachForums Pleads Guilty to Cybercrime and Child Pornography Charges
Conor Brian Fitzpatrick, the owner of the now-defunct BreachForums website, has pleaded guilty to charges related to his operation of the cybercrime forum as well as having child pornography images. The development, first reported by DataBreaches.net last week, comes nearly four months after...
Webinar with Guest Forrester: Browser Security New Approaches
In today's digital landscape, browser security has become an increasingly pressing issue, making it essential for organizations to be aware of the latest threats to browser security. That's why the Browser Security platform LayerX is hosting a webinar featuring guest speaker Paddy Harrington, a...
Employee guilty of joining ransomware attack on his own company
A 28-year old IT Security Analyst pleaded guilty and will consequently be convicted of blackmail and unauthorized access to a computer with intent to commit other offences. It all started when the UK gene and cell therapy company Oxford BioMedica fell victim to a cybersecurity incident which...
CVE-2023-1097 Unauthenticated Command Injection EG7035-M11 Series
Baicells EG7035-M11 devices with firmware through BCE-ODU-1.0.8 are vulnerable to improper code exploitation via HTTP GET command injections. Commands are executed using pre-login execution and executed with root permissions. The following methods have been tested and validated by a 3rd party...
CVE-2023-0776
Baicells Nova 436Q, Nova 430E, Nova 430I, and Neutrino 430 LTE TDD eNodeB devices with firmware through QRTB 2.12.7 are vulnerable to remote shell code exploitation via HTTP command injections. Commands are executed using pre-login execution and executed with root permissions. The following metho...