Lucene search
K

5 matches found

Cvelist
Cvelist
added 2026/06/04 9:34 a.m.41 views

CVE-2026-50226 Firmware Theft & IMEI Spoofing via Connect-OTA

Fixed AES-128-CBC keys inside the AcerConnect OTA application let attackers forge authorization credentials for arbitrary IMEI numbers. This allows unauthorized actors to list catalog items and extract protected binaries from pre-signed cloud links...

6.9CVSS0.00187EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2023/09/12 12:0 a.m.7 views

The vulnerability of the “Manage Catalog Items” and “Cross-Catalog Search” components of the SAP S/4HANA software platform allows a hacker to redirect users to any arbitrary URL address.

The vulnerability of the “Manage Catalog Items” and “Cross-Catalog Search” components of the SAP S/4HANA software platform is related to the redirection of URLs to an unreliable website. Exploiting this vulnerability could allow a malicious actor to redirect users to any given URL address...

6.4CVSS6.3AI score0.00332EPSS
Exploits0References5
NVD
NVD
added 2023/09/08 10:15 p.m.15 views

CVE-2023-40306

SAP S/4HANA Manage Catalog Items and Cross-Catalog searches Fiori apps allow an attacker to redirect users to a malicious site due to insufficient URL validation. As a result, it may have a slight impact on confidentiality and integrity...

6.1CVSS6.2AI score0.00332EPSS
Exploits0References2
Prion
Prion
added 2023/09/08 10:15 p.m.22 views

Input validation

SAP S/4HANA Manage Catalog Items and Cross-Catalog searches Fiori apps allow an attacker to redirect users to a malicious site due to insufficient URL validation. As a result, it may have a slight impact on confidentiality and integrity...

5.8CVSS6.2AI score0.00332EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2023/08/14 12:0 a.m.5 views

PT-2023-4944 · Sap · Sap S/4Hana

Name of the Vulnerable Software and Affected Versions: SAP S/4HANA affected versions not specified Description: The issue is related to insufficient URL validation in the Manage Catalog Items and Cross-Catalog searches Fiori apps, allowing an attacker to redirect users to a malicious site. This m...

6.4CVSS6AI score0.00332EPSS
Exploits0References11
Rows per page
Query Builder