7 matches found
Critical Cisco ISE Auth Bypass Flaw Impacts Cloud Deployments on AWS, Azure, and OCI
Cisco has released security patches to address a critical security flaw impacting the Identity Services Engine ISE that, if successfully exploited, could allow unauthenticated actors to carry out malicious actions on susceptible systems. The security defect, tracked as CVE-2025-20286 , carries a...
CVE-2025-27435
CVE-2025-27435 affects SAP Commerce Cloud. The vulnerability is an information disclosure where a coupon code is exposed in the URL parameters of the Coupon Campaign URL, allowing an unauthenticated attacker to access and use the disclosed code. Impact is described as low for confidentiality and ...
cloud-security.net Cross Site Scripting vulnerability OBB-3295280
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CVE-2023-0346 CVE-2023-0346
Akuvox E11 cloud login is performed through an unencrypted HTTP connection. An attacker could gain access to the Akuvox cloud and device if the MAC address of a device if known...
Microsoft Azure Site Recovery 权限许可和访问控制问题漏洞
Microsoft Azure Site Recovery is a site recovery DRaaS from the U.S. company Microsoft for cloud and hybrid cloud architectures. Microsoft Azure Site Recovery elevation of privilege vulnerability can be exploited by attackers to gain elevated privileges on the system...
cloud.aristo.com.hk Cross Site Scripting vulnerability OBB-1336559
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
Unauthorized Access Vulnerability in Netcentric Cloud Devices of Shenzhen Netcentric Technology Co. Ltd (CNVD-2020-56388)
Shenzhen Netcenter Technology Co., Ltd. is a sharing economy cloud computing company focusing on technological innovation. Shenzhen Netcenter Technology Co. Ltd Netcenter cloud devices have unauthorized access vulnerabilities that can be exploited by attackers to set up a network...