51 matches found
CVE-2020-28961
Perfex CRM v2.4.4 was discovered to contain a stored cross-site scripting XSS vulnerability in the component ./clients/client via the company name parameter...
CVE-2020-28961
Perfex CRM v2.4.4 was discovered to contain a stored cross-site scripting XSS vulnerability in the component ./clients/client via the company name parameter...
CVE-2021-35650
Vulnerability in the Oracle Secure Global Desktop product of Oracle Virtualization component: Client. The supported version that is affected is 5.6. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise Oracle Secure Global Deskto...
Oracle Secure Global Desktop has an unspecified vulnerability (CNVD-2021-54714)
Oracle Secure Global Desktop is a secure remote access solution for any cloud-hosted enterprise applications and hosted desktops running on Microsoft Windows, Linux, Oracle Solaris, and mainframe servers. A security vulnerability exists in the Client component in version 5.6. An attacker could...
Design/Logic Flaw
Vulnerability in the Oracle Secure Global Desktop product of Oracle Virtualization component: Client. The supported version that is affected is 5.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Secure Global...
Oracle Secure Global Desktop输入验证错误漏洞
Oracle Secure Global Desktop is a secure remote access solution for any cloud-hosted enterprise applications and hosted desktops running on Microsoft Windows, Linux, Oracle Solaris, and mainframe servers. A security vulnerability exists in the Client component in version 5.6. An attacker could...
F5 Networks BIG-IP Edge Client Component Installer Installed (Windows)
Binary data f5big-ipedgeclientcomponentinstallerwininstalled.nbin...
Design/Logic Flaw
Vulnerability in the Oracle Secure Global Desktop product of Oracle Virtualization component: Client. The supported version that is affected is 5.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Secure Global...
Oracle Secure Global Desktop 输入验证错误漏洞
Oracle Secure Global Desktop is a secure remote access solution for any cloud-hosted enterprise application and hosted desktop running on Microsoft Windows, Linux, Oracle Solaris and mainframe servers. A security vulnerability exists in the Client component of Oracle Secure Global Desktop version...
PT-2020-4892 · Postgresql +9 · Postgresql +9
Name of the Vulnerable Software and Affected Versions: PostgreSQL versions prior to 13.1 PostgreSQL versions prior to 12.5 PostgreSQL versions prior to 11.10 PostgreSQL versions prior to 10.15 PostgreSQL versions prior to 9.6.20 PostgreSQL versions prior to 9.5.24 Description: A flaw was found in...
CVE-2020-9416 TIBCO Spotfire Stored Cross Site Scripting Vulnerability
The Spotfire client component of TIBCO Software Inc.'s TIBCO Spotfire Analyst, TIBCO Spotfire Analytics Platform for AWS Marketplace, TIBCO Spotfire Desktop, and TIBCO Spotfire Server contains a vulnerability that theoretically allows a legitimate user to inject scripts. If executed by a victim...
CVE-2019-12262
Wind River VxWorks 6.6, 6.7, 6.8, 6.9 and 7 has Incorrect Access Control in the RARP client component. IPNET security vulnerability: Handling of unsolicited Reverse ARP replies Logical Flaw...
PT-2019-4728 · Wind River · Vxworks
Name of the Vulnerable Software and Affected Versions: Wind River VxWorks versions 6.6 through 6.9 Description: The issue is related to a buffer overflow in the DHCP client component, specifically a heap overflow when parsing DHCP Offer/ACK inside ipdhcpc. This can be exploited by a remote attack...
mysql: Client programs unspecified vulnerability (CPU Jul 2018)
Vulnerability in the MySQL Client component of Oracle MySQL subcomponent: Client programs. Supported versions that are affected are 5.5.60 and prior, 5.6.40 and prior, 5.7.22 and prior and 8.0.11 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via...
Memory Corruption
Oracle MySQL Server and MariaDB are vulnerable to memory corruption attacks. A local user is able to inject an unknown input via the component Client, allowing memory corruption attacks impacting in confidentiality, integrity, and availability...
CVE-2018-3081
Vulnerability in the MySQL Client component of Oracle MySQL subcomponent: Client programs. Supported versions that are affected are 5.5.60 and prior, 5.6.40 and prior, 5.7.22 and prior and 8.0.11 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via...
CVE-2018-3081
Vulnerability in the MySQL Client component of Oracle MySQL subcomponent: Client programs. Supported versions that are affected are 5.5.60 and prior, 5.6.40 and prior, 5.7.22 and prior and 8.0.11 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via...
Yamot - Yet Another MOnitoring Tool
yamot is a web-based server-monitoring tool built for small environments with just a handful servers. It takes a minimum of resources which allows the execution on almost every machine, also very old ones. It works best with Linux or BSD. Windows is not part of the server scope. You could use it...
OpenJDK: DnsClient missing source port randomization (JNDI, 8182125)
It was discovered that the DNS client implementation in the JNDI component of OpenJDK did not use random source ports when sending out DNS queries. This could make it easier for a remote attacker to spoof responses to those queries...
PT-2017-3924 · Oracle +7 · Mysql Server +6
Name of the Vulnerable Software and Affected Versions: Oracle MySQL versions 5.5.57 and earlier Oracle MySQL versions 5.6.37 and earlier Oracle MySQL versions 5.7.19 and earlier Description: The issue is related to the Client programs subcomponent of Oracle MySQL and is caused by a lack of...