57 matches found
The vulnerability of the MySQL database management system allows a malicious actor to trigger a service failure after passing authentication.
The Oracle MySQL database management system contains a vulnerability that can be exploited by remote users who have passed authentication. This vulnerability allows these users to affect the accessibility of data by using the Data Manipulation Language subcomponent...
mysql: unspecified vulnerability in subcomponent: Server: Optimizer (CPU January 2016)
Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect availability via unknown vectors related to Optimizer...
CVE-2016-0882
EMC Documentum xCP 2.1 before patch 23 and 2.2 before patch 11 allows remote authenticated users to read arbitrary files via a POST request containing an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity XXE issue...
PT-2016-1271 · Kubernetes · Kubernetes
Name of the Vulnerable Software and Affected Versions: Kubernetes affected versions not specified Description: The issue is related to insufficient access control in the Kubernetes API server, allowing remote authenticated users to access additional resources by crafting a patched object. This ca...
Unspecified Vulnerability in Oracle E-Business Suite (CNVD-2015-06829)
Oracle E-Business Suite is a fully integrated set of global business management software from Oracle. An unspecified vulnerability exists in Oracle E-Business Suite 12.2.3 and 12.2.4. Allows authenticated remote users to compromise confidentiality via unspecified vectors related to online patchin...
Unspecified Vulnerability in Oracle MySQL Server (CNVD-2015-06821)
Oracle MySQL Server is an open source relational database management system from Oracle. This database system is characterized by high performance, low cost, good reliability and so on. An unspecified vulnerability exists in Oracle MySQL Server 5.6.25 and earlier versions. It allows authenticated...
Coppermine Photo Gallery Cross-Site Scripting Vulnerability
Coppermine Photo Gallery is a WEB-based graphics gallery management program. A cross-site scripting vulnerability exists in Coppermine Photo Gallery versions prior to 1.5.36, which allows remote, authenticated users to inject arbitrary web script or HTML via reference parameters...
Design/Logic Flaw
McAfee Advanced Threat Defense MATD before 3.4.4.63 allows remote authenticated users to bypass intended restrictions and change or update configuration settings via crafted parameters...
Landsknecht Adminsystems CMS File Upload Vulnerability
Landsknecht Adminsystems CMS is a content management system. A file upload vulnerability exists in Landsknecht Adminsystems CMS, which allows remote authenticated users to execute files via the extension of the uploaded file, to execute arbitrary code/ by directly requesting access to the file...
IBM DB2 Denial of Service Vulnerability (CNVD-2014-09221)
IBM DB2 is a large-scale commercial relational database system for e-commerce, business information, content management, customer relationship management and other applications, can run on AIX, HP-UX, Linux, Solaris, Windows and other systems. A denial-of-service vulnerability exists in IBM DB2...
IBM Rational Quality Manager Cross-Site Scripting Vulnerability (CNVD-2014-09213)
IBM Rational Quality Manager is a Web-based collaboration tool that provides a sophisticated approach to test planning and test evaluation management within the software development lifecycle. A cross-site scripting vulnerability exists in IBM Rational Quality Manager versions 2.x through 2.0.1.1...
DEBIAN-CVE-2014-8104
OpenVPN 2.x before 2.0.11, 2.1.x, 2.2.x before 2.2.3, and 2.3.x before 2.3.6 allows remote authenticated users to cause a denial of service server crash via a small control channel packet...
mysql: unspecified vulnerability related to RBR (CPU April 2014)
Unspecified vulnerability in Oracle MySQL Server 5.5.36 and earlier and 5.6.16 and earlier allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to RBR...
Design/Logic Flaw
Cisco IOS Unified Border Element CUBE in Cisco IOS before 15.32T allows remote authenticated users to cause a denial of service input queue wedge via a crafted series of RTCP packets, aka Bug ID CSCuc42518...
CVE-2007-5210
Arbor Networks Peakflow SP before 3.5.1 patch 14, and 3.6.x before 3.6.1 patch 5, allows remote authenticated users to bypass access restrictions and read or write unspecified data via unknown vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third...
CVE-2005-1522
The CVE-2005-1522 issue affects the imap4d server in GNU Mailutils 0.5 and 0.6, and other versions before 0.6.90. Authenticated remote users can trigger a denial of service (CPU consumption) by sending a large range value in the FETCH command. The connected advisories confirm a denial-of-service ...
CVE-2005-1522
The imap4d server for GNU Mailutils 0.5 and 0.6, and other versions before 0.6.90, allows authenticated remote users to cause a denial of service CPU consumption via a large range value in the FETCH command...