70 matches found
CVE-2022-42955
The PassWork extension 5.0.9 for Chrome and other browsers allows an attacker to obtain cleartext cached credentials...
CVE-2022-42955
The PassWork extension 5.0.9 for Chrome and other browsers allows an attacker to obtain cleartext cached credentials...
CVE-2022-42955
The PassWork extension 5.0.9 for Chrome and other browsers allows an attacker to obtain cleartext cached credentials...
CVE-2022-42955
The CVE-2022-42955 entry concerns PassWork extension 5.0.9 for Chrome/other browsers. The vulnerability allows an attacker to obtain cleartext cached credentials due to the underlying issue described in multiple sources. Affected component is the PassWork extension; root cause details are not ful...
PassWork 安全漏洞
PassWork is a password manager from PassWork. A security vulnerability exists in PassWork version 5.0.9. An attacker exploited the vulnerability to obtain plaintext cached credentials...
CVE-2022-42955
The PassWork extension 5.0.9 for Chrome and other browsers allows an attacker to obtain cleartext cached credentials...
September 20, 2022—KB5017381 (OS Build 20348.1070) Preview
None None...
Why Cached Credentials Can Cause Account Lockouts and How to Stop it
When a user account becomes locked out, the cause is often attributed to a user who has simply entered an old or incorrect password too many times. However, this is far from being the only thing that can cause an account to become locked. Another common cause, for example, is an application or...
Why Cached Credentials Can Cause Account Lockouts and How to Stop it
When a user account becomes locked out, the cause is often attributed to a user who has simply entered an old or incorrect password too many times. However, this is far from being the only thing that can cause an account to become locked. Another common cause, for example, is an application or...
Canonical Ubuntu Remote-login-service Encryption Issue Vulnerability
Canonical Ubuntu is a desktop-oriented GNU/Linux operating system from the British company Canonical. A security vulnerability exists in Canonical Ubuntu's remote-login-service service, which stems from an insecure encryption algorithm used to cache usernames and passwords in crypt.c of...
CVE-2020-27888
An issue was discovered on Ubiquiti UniFi Meshing Access Point UAP-AC-M 4.3.21.11325 and UniFi Controller 6.0.28 devices. Cached credentials are not erased from an access point returning wirelessly from a disconnected state. This may provide unintended network access...
Design/Logic Flaw
An issue was discovered on Ubiquiti UniFi Meshing Access Point UAP-AC-M 4.3.21.11325 and UniFi Controller 6.0.28 devices. Cached credentials are not erased from an access point returning wirelessly from a disconnected state. This may provide unintended network access...
foreman: unauthorized cache read on RPM-based installations through local user
A flaw was found in Red Hat Satellite. An attacker could gain access to cache files further allowing access to cached credentials that could help the attacker to gain complete control of the Satellite instance. The highest threat from this vulnerability is to data confidentiality and integrity as...
foreman: unauthorized cache read on RPM-based installations through local user
A flaw was found in Red Hat Satellite. An attacker could gain access to cache files further allowing access to cached credentials that could help the attacker to gain complete control of the Satellite instance. The highest threat from this vulnerability is to data confidentiality and integrity as...
CVE-2020-14334
A flaw was found in Red Hat Satellite. An attacker could gain access to cache files further allowing access to cached credentials that could help the attacker to gain complete control of the Satellite instance. The highest threat from this vulnerability is to data confidentiality and integrity as...
CVE-2020-9042
In Couchbase Server 6.0, credentials cached by a browser can be used to perform a CSRF attack if an administrator has used their browser to check the results of a REST API request...
Cross site request forgery (csrf)
In Couchbase Server 6.0, credentials cached by a browser can be used to perform a CSRF attack if an administrator has used their browser to check the results of a REST API request...
Security Bulletin: IBM Cognos Analytics is affected by multiple vulnerabilities
Summary This bulletin addresses several security vulnerabilities that are fixed in IBM Cognos Analytics 11.0.8.0 GA as well as 11.0.7.0 and 11.0.6.0 Interim Fixes Vulnerability Details CVEID: CVE-2017-1783 DESCRIPTION: IBM Cognos Analytics could allow a local user to change parameters set from th...
IBM Cognos Analytics Information Disclosure Vulnerability
IBM Cognos Analytics formerly known as Cognos BI is a suite of business intelligence software from the American company IBM. The software includes reports, dashboards and scorecards, and can assist companies in adjusting their decisions by analyzing key factors and key stakeholders. An informatio...
Code injection
IBM Cognos Analytics 11.0 could store cached credentials locally that could be obtained by a local user. IBM X-Force ID: 136824...