EUVD-2023-47988

Malicious code in bioql PyPI...

CVE-2005-2286

WebEOC before 6.0.2 does not properly check user authorization, which allows remote attackers to gain privileges via a direct request to a resource...

Authorization

A vulnerability has been identified in Mendix Applications using Mendix 10 All versions V10.4.0, Mendix Applications using Mendix 7 All versions V7.23.37, Mendix Applications using Mendix 8 All versions V8.18.27, Mendix Applications using Mendix 9 All versions V9.24.10. A capture-replay flaw in t...

CVE-2023-43508

Vulnerabilities in the web-based management interface of ClearPass Policy Manager allow an attacker with read-only privileges to perform actions that change the state of the ClearPass Policy Manager instance. Successful exploitation of these vulnerabilities allow an attacker to...

open-vm-tools security update

11.3.5-1.0.1.el90.1 - Fix spaces in vmware udev rule for scsi devices Orabug: 24461968 - Fix vmware udev rule in 99-vmware-scsi-timeout.rules file. Orabug: 22815019 - Increase timeout for scsi devices on VMWare guests by adding a udev rule. Orabug: 21819156 11.3.5-1.el90.1 -...

CVE-2019-13057

An issue was discovered in the server in OpenLDAP before 2.4.48. When the server administrator delegates rootDN database admin privileges for certain databases but wants to maintain isolation e.g., for multi-tenant deployments, slapd does not properly stop a rootDN from requesting authorization a...

CVE-2019-0280

SAP Treasury and Risk Management EA-FINSERV 6.0, 6.03, 6.04, 6.05, 6.06, 6.16, 6.17, 6.18 and 8.0; S4CORE 1.01, 1.02 and 1.03, does not perform necessary authorization checks for authorization objects TDEALDP and TDEALPD , resulting in escalation of privileges...