SAP CRM 代码问题漏洞

SAP CRM is a customer relationship management system from SAP, a German company. A code issue vulnerability exists in SAP CRM. An authenticated attacker could exploit this vulnerability to enumerate HTTP endpoints in the internal network via specially crafted HTTP requests...

Microsoft Windows 代码问题漏洞

Microsoft Windows is a suite of operating systems for use on personal devices from Microsoft Corporation USA. A code issue vulnerability exists in Microsoft Windows. An attacker could use this vulnerability to cause a denial of service. The following products and versions are affected:Windows 10...

Microsoft Windows 代码问题漏洞

Microsoft Windows is a suite of operating systems for use on personal devices from Microsoft Corporation USA. A code issue vulnerability exists in Microsoft Windows. An attacker could exploit this vulnerability to cause a denial of service. The following products and versions are affected:Windows...

Microsoft Azure 代码问题漏洞

Microsoft Azure is a suite of open, enterprise-grade cloud computing platforms from the U.S.-based Microsoft Corporation Microsoft. A code issue vulnerability exists in Microsoft Azure. An attacker can exploit the vulnerability to elevate privileges. No information about this vulnerability is...

PrestaShop 代码问题漏洞

PrestaShop is an open source e-commerce solution from the American company PrestaShop. The solution provides multiple payment methods, short message alerts and product image scaling. A code issue vulnerability exists in PrestaShop v.8.1.7 and prior versions, which stems from a vulnerability that...

IObit iTop Data Recovery Pro 代码问题漏洞

IObit iTop Data Recovery Pro is a data recovery software from IObit. A code issue vulnerability exists in IObit iTop Data Recovery Pro version 4.4.0.687, which stems from an unknown operation in the madbasic.bpl library that can result in an uncontrolled search path...

IBM Aspera Orchestrator 代码问题漏洞

IBM Aspera Orchestrator is a Web-based application from International Business Machines IBM, Inc. It can provide an efficient file processing pipeline for data-driven organizations. A code issue vulnerability exists in IBM Aspera Orchestrator version 4.0.1 that stems from not invalidating a sessi...

Apache Linkis code issue vulnerability (CNVD-2024-33595)

Apache Linkis is a middleware product of the U.S. Apache Apache Foundation, which can establish an effective connection between upper-tier applications and the underlying data engine. Apache Linkis 1.6.0 before the version of the code problem vulnerability , the vulnerability stems from the lack ...

Apache Linkis Code Issue Vulnerability

Apache Linkis is a middleware product of the U.S. Apache Apache Foundation, which can establish an effective connection between upper-tier applications and the underlying data engine. Apache Linkis 1.6.0 before the version of the code problem vulnerability, the vulnerability stems from the data...

Fortinet FortiAIOps Code Issue Vulnerability

Fortinet FortiAIOps is a Fortinet networking solution that combines artificial intelligence and machine learning AI/ML from Fortinet. A code issue vulnerability exists in Fortinet FortiAIOps version 2.0.0, which stems from the presence of multiple sessions that have insufficiently expired, and ca...

SAP Enable Now Code Issue Vulnerability

SAP Enable Now is a suite of collaborative content creation, management and sharing platforms from SAP, a German company. The platform is primarily used for online learning and training in SAP and non-SAP systems, among others. SAP Enable Now suffers from a code issue vulnerability that stems fro...

Fortinet FortiAIOps 代码问题漏洞

Fortinet FortiAIOps is a Fortinet networking solution that combines artificial intelligence and machine learning AI/ML from Fortinet. A code issue vulnerability exists in Fortinet FortiAIOps version 2.0.0, which stems from the presence of multiple sessions that have insufficiently expired, and ca...

SourceCodester Home Owners Collection Management System Code Issue Vulnerability

Home Owners Collection Management System is a homeowners collection management system. A code issue vulnerability exists in SourceCodester Home Owners Collection Management System version 1.0, which stems from the parameter img in the file /classes/Users.php?f=save that can lead to unrestricted...

Linux kernel code issue vulnerability

Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux in the United States. A code issue vulnerability exists in Linux kernel. No information about this vulnerability is available at this time, so stay tuned to CNNVD or vendor announcements...

Simple Online Hotel Reservation System Code Issue Vulnerability

Simple Online Hotel Reservation System is an online hotel reservation system. A code issue exists in version 1.0 of the Simple Online Hotel Reservation System where an incorrect manipulation of the parameter photo can result in unrestricted file uploads...

ASUS Router Code Issue Vulnerability

ASUS routers is a router app from the Chinese company Asus ASUS. A code issue vulnerability exists in ASUS Router. A remote attacker could exploit this vulnerability to execute arbitrary system commands on the device...

OSIsoft PI Web API Code Issue Vulnerability

The Osisoft OSIsoft PI Web API is a RESTful interface to a set of PI systems from the US company Osisoft. The product supports client applications with read and write access to their AF and PI data over HTTPS. A code issue vulnerability exists in the OSIsoft PI Web API, which stems from a...

ZenML Code Issue Vulnerability

ZenML is an extensible open source MLOps framework for creating portable, production-ready machine learning pipelines. A code issue vulnerability exists in ZenML version 0.56.3 that stems from an insufficient session validity period. An attacker exploiting this vulnerability could reuse old sessi...

LangChain Code Issues Vulnerabilities

LangChain is an application built using LLM through composability. LangChain has a code issue vulnerability that stems from a server-side request forgery SSRF vulnerability in the Web Research Retriever component...

LoLLMs Code Issue Vulnerability

LoLLMs is a Web UI for a large language multimodal system by the individual developer Saifeddine ALOUI. LoLLMs suffers from a code issue vulnerability that stems from not adequately validating user-entered URLs and a server-side request forgery SSRF vulnerability that could allow an attacker to...