CVE-2021-36982

CVE-2021-36982 affects MONITORAPP Application Insight Web Application Firewall (AIWAF) devices operating with AIMANAGER before B115 and Manager 2.1.0. The issue is an OS Command Injection caused by missing input validation on one HTTP request parameter, as described in multiple connected sources....

CVE-2021-36921

AIMANAGER before B115 on MONITORAPP Application Insight Web Application Firewall AIWAF devices with Manager 2.1.0 has Improper Authentication. An attacker can gain administrative access by modifying the response to an authentication check request...

MONITORAPP Application Insight Web Application Firewall 授权问题漏洞

The MONITORAPP Application Insight Web Application Firewall AIWAF is an application firewall from MONITORAPP Corporation in South Korea. A security vulnerability exists in Manager 2.1.0 before B115 on the MONITORAPP Application Insight Web Application Firewall AIWAF appliance, which stems from...

FreeBSD : puppet6 -- Arbitrary Catalog Retrieval (77687355-52aa-11ea-b115-643150d3111d)

Puppetlabs reports : Previously, Puppet operated on a model that a node with a valid certificate was entitled to all information in the system and that a compromised certificate allowed access to everything in the infrastructure. When a node's catalog falls back to the default node, the catalog c...