6 matches found
firefox: thunderbird: XSLT documents could bypass CSP
A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: XSLT document loading incorrectly propagates the source document which bypassed its CSP...
CVE-2024-42512
Vulnerability in the OPC UA .NET Standard Stack before 1.5.374.158 allows an unauthorized attacker to bypass application authentication when the deprecated Basic128Rsa15 security policy is enabled...
Tenda N300 安全漏洞
The Tenda N300F3 is Tenda's wireless router designed for small office and home office environments. A security vulnerability exists in the Tenda N300F3 that originates from allowing a user to bypass the intended security policy and create weak passwords. No detailed vulnerability details are...
CVE-2023-6840
CVE-2023-6840 : In GitLab EE, versions 16.4–16.6.6, 16.7–16.7.4, and 16.8–16.8.1 contain a vulnerability that allows a maintainer to rename a protected branch, bypassing the MR-block security policy. Root cause: Figure of authorization control that permits protected-branch name changes by maintai...
CVE-2017-6950
SAP GUI 7.2 through 7.5 allows remote attackers to bypass intended security policy restrictions and execute arbitrary code via a crafted ABAP code, aka SAP Security Note 2407616...
NT user (who is locked changing his/her password by administrator ) can bypass the security policy and Change the password.
Hi, Our PT team found the following vulnerability in security policy implementation with NT Server and IIS 4.0. NT user who is locked changing his/her password by administrator can bypass the security policy and Change the password. Vulnerable: Microsoft Windows NT Server 4.0 + IIS 4.0 + Service...