999 matches found
Splunk Cloud Platform和Splunk Enterprise 安全漏洞
Splunk Cloud Platform and Splunk Enterprise are products of the American company Splunk. Splunk Cloud Platform is a powerful service for data collection, processing, and analysis. Splunk Enterprise is a suite of software for data collection and analysis. Both Splunk Cloud Platform and Splunk...
Splunk Cloud Platform和Splunk Enterprise 安全漏洞
Splunk Cloud Platform and Splunk Enterprise are both products of the American company Splunk. Splunk Cloud Platform is a powerful service for data collection, processing, and analysis. Splunk Enterprise is a suite of software for data collection and analysis. Both Splunk Cloud Platform and Splunk...
PT-2026-33065
In Splunk Enterprise versions below 10.2.2, 10.0.5, 9.4.10, and 9.3.11, and Splunk Cloud Platform versions below 10.4.2603.0, 10.3.2512.6, 10.2.2510.10, 10.1.2507.19, 10.0.2503.13, and 9.3.2411.127, a low-privileged user that does not hold the admin or power Splunk roles, has write permission on...
Splunk Cloud Platform和Splunk Enterprise 安全漏洞
Splunk Cloud Platform and Splunk Enterprise are products of the American company Splunk. Splunk Cloud Platform is a powerful service for data collection, processing, and analysis. Splunk Enterprise is a suite of software for data collection and analysis. Both Splunk Cloud Platform and Splunk...
Fortinet FortiSOAR PaaS和Fortinet FortiSOAR on-premise 路径遍历漏洞
Fortinet FortiSOAR PaaS and Fortinet FortiSOAR on-premise are security orchestration, automation, and response software developed by Fortinet, a US-based company. Both versions have a path traversal vulnerability, which stems from improper path restrictions. This vulnerability could allow...
PT-2026-32955
Name of the Vulnerable Software and Affected Versions OAuth2 Proxy versions prior to 7.15.2 Description A configuration-dependent authentication bypass exists in deployments using auth request-style integration, such as nginx auth request. The issue occurs when either the --ping-user-agent variab...
GHSA-PW2V-CMFH-X2P3 vulnerabilities
Vulnerabilities for packages: linux-azure, linux-vmware, linux-gcp, linux-qemu, linux-aws...
GHSA-2MVM-XGM9-R324 vulnerabilities
Vulnerabilities for packages: linux-azure, linux-vmware, linux-gcp, linux-qemu, linux-aws...
GHSA-5R72-P4CV-H344 vulnerabilities
Vulnerabilities for packages: linux-azure, linux-vmware, linux-gcp, linux-qemu, linux-aws...
CVE-2026-23208 vulnerabilities
Vulnerabilities for packages: linux-azure, linux-vmware, linux-gcp, linux-qemu, linux-aws...
S3CDM: A Secret-Sharing-Scheme-Based Cyberattack Detection Model and Its Simulation Implementation
We design and develop a secret-sharing-scheme-based cyberattack detection modelS3CDMthat can detect unauthorized or illegal activities especially insider attacks and protect sensitive information within complex network infrastructures of large organizations. The model splits a secret among a grou...
EUVD-2026-19442
Anthropic Claude Code CLI and Claude Agent SDK contain an OS command injection vulnerability in authentication helper execution where helper configuration values are executed using shell=true without input validation. Attackers who can influence authentication settings can inject shell...
CVE-2026-5601 Acrel Electrical Prepaid Cloud Platform Backup File bin.rar information disclosure
A vulnerability was found in Acrel Electrical Prepaid Cloud Platform 1.0. This issue affects some unknown processing of the file /bin.rar of the component Backup File Handler. The manipulation results in information disclosure. The attack can be launched remotely. The exploit has been made public...
CVE-2026-5601
CVE-2026-5601 affects Acrel Electrical Prepaid Cloud Platform 1.0, specifically the Backup File Handler . The issue stems from unknown processing of the file /bin.rar , resulting in information disclosure . Exploitation is remote and the exploit has been published. The provided documents do not i...
Acrel Electrical Prepaid Cloud Platform 访问控制错误漏洞
Acrel Electrical Prepaid Cloud Platform is a platform developed by Acrel Electric of China. Version 1.0 of the Acrel Electrical Prepaid Cloud Platform contains an access control vulnerability, which stems from improper handling of the /bin.rar file. This vulnerability may lead to information...
CVE-2026-32211
Missing authentication for critical function in Azure MCP Server allows an unauthorized attacker to disclose information over a network...
CVE-2026-33107
Server-side request forgery ssrf in Azure Databricks allows an unauthorized attacker to elevate privileges over a network...
[SECURITY] Fedora 44 Update: rust-reqsign-google-3.0.0-1.fc44
Google Cloud Platform signing implementation for reqsign...
CVE-2026-20163
In Splunk Enterprise versions below 10.2.0, 10.0.4, 9.4.9, and 9.3.10, and Splunk Cloud Platform versions below 10.2.2510.5, 10.0.2503.12, 10.1.2507.16, and 9.3.2411.124, a user who holds a role that contains the high-privilege capability editcmd could execute arbitrary shell commands using the...
Kalcaddle Kodbox 操作系统命令注入漏洞
Kalcaddle Kodbox is a private cloud storage and online collaborative office platform developed by Kalcaddle Corporation. Version 1.64 of Kalcaddle Kodbox contains a vulnerability related to operating system command injection. This vulnerability stems from incorrect operations on the...