CVE-2023-40354

An issue was discovered in MariaDB MaxScale before 23.02.3. A user enters an encrypted password on a "maxctrl create service" command line, but this password is then stored in cleartext in the resulting .cnf file under /var/lib/maxscale/maxscale.cnf.d. The fixed versions are 2.5.28, 6.4.9, 22.08....

MariaDB Security Vulnerabilities

MariaDB is a free and open source database management system from the Mariadb Foundation and a forked version of MySQL with the Maria storage engine. A security vulnerability exists in MariaDB MaxScale versions prior to 23.02.3, which stems from the fact that passwords are stored in plaintext in...

CVE-2020-36168

An issue was discovered in Veritas Resiliency Platform 3.4 and 3.5. It leverages OpenSSL on Windows systems when using the Managed Host addon. On start-up, it loads the OpenSSL library. This library may attempt to load the openssl.cnf configuration file, which does not exist. By default, on Windo...

Windows op***.cnf file has an elevation of privilege vulnerability

Windows 10 is an operating system developed by Microsoft Corporation in the United States for use in computers and tablets. An elevation of privilege vulnerability exists in the Windows op.cnf file, which can be exploited by an attacker to achieve elevation of privilege...

Microsoft IIS 5.1 多个.CNF文件信息泄露

No description provided by source...