CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

Cvelist•added 2022/11/17 12:0 a.m.•15 views

CVE-2022-44001

An issue was discovered in BACKCLICK Professional 5.9.63. User authentication for accessing the CORBA back-end services can be bypassed...

9.8AI score0.00235EPSS

Exploits1References2

Positive Technologies•added 2022/11/17 12:0 a.m.•2 views

PT-2022-27063 · Unknown · Backclick Professional

Name of the Vulnerable Software and Affected Versions: BACKCLICK Professional version 5.9.63 Description: An issue was discovered where user authentication for accessing the CORBA back-end services can be bypassed. Recommendations: For BACKCLICK Professional version 5.9.63, at the moment, there i...

9.8CVSS7.2AI score0.00235EPSS

Exploits1References5

OSV•added 2022/04/13 7:15 p.m.•14 views

CVE-2021-41119

Wire-server is the system server for the wire back-end services. Releases prior to v2022-03-01 are subject to a denial of service attack via a crafted object causing a hash collision. This collision causes the server to spend at least quadratic time parsing it which can lead to a denial of servic...

7.5CVSS6.5AI score

Exploits0References2

Prion•added 2007/01/23 2:28 a.m.•8 views

Authorization

BEA AquaLogic Service Bus 2.0, 2.1, and 2.5 does not properly reject malformed request messages to a proxy service, which might allow remote attackers to bypass authorization policies and route requests to back-end services or conduct other unauthorized activities...

7.5CVSS7.4AI score0.00607EPSS

Exploits0References5Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by