1238 matches found
Intel CIP 代码问题漏洞
Intel CIP is an optional program from Intel designed to improve products by collecting performance data from users' computers. Intel CIP suffers from an elevation of privilege vulnerability that stems from an uncontrolled search path, which can be exploited by an attacker to cause elevation of...
Jellysweep 代码问题漏洞
Jellysweep is a smart cleanup tool for media servers by Jonah Personal Developer. A code issue vulnerability exists in Jellysweep 0.12.1 and prior versions, which stems from an unvalidated URL parameter in the /api/images/cache endpoint that could result in the download of arbitrary content...
Code-Projects Simple Online Hotel Reservation System 代码问题漏洞
Simple Online Hotel Reservation System is a simple online hotel reservation system. Simple Online Hotel Reservation System has a code issue vulnerability that stems from a lack of valid validation of uploaded files by the Photo Handler component in file /admin/editroom.php. An attacker can use th...
Wazuh 代码问题漏洞
Wazuh is a Wazuh open source application. It is used to collect, aggregate, index and analyze security data to help organizations detect intrusions, threats and behavioral anomalies. A code issue vulnerability exists in Wazuh versions prior to 4.11.0 that stems from not checking the ctimer return...
Wazuh 代码问题漏洞
Wazuh is a Wazuh open source application. It is used to collect, aggregate, index and analyze security data to help organizations detect intrusions, threats and behavioral anomalies. A code issue vulnerability exists in Wazuh versions prior to 4.11.0 that stems from not checking if timestring is...
Red Hat build of Keycloak 代码问题漏洞
Red Hat build of Keycloak is a web application for single sign-on from Red Hat USA. A code issue vulnerability exists in the Red Hat build of Keycloak, which stems from a proxy misconfiguration that could result in accessing the /admin path via a non-normalized path...
MaxSite CMS 代码问题漏洞
MaxSite CMS is a Russian open source web content management system from MaxSite CMS. A code issue vulnerability exists in MaxSite CMS version 109 and prior versions, which stems from incorrect manipulation of the parameters filepath or content in the file...
VeePN 代码问题漏洞
VeePN is a VPN service platform from VeePN Inc. A code issue vulnerability exists in VeePN 1.6.2 and earlier versions, which originates from an unquoted search path in the file C:Program Files x86VeePNavserviceavservice.exe, which could lead to a local attack...
Red Hat build of Keycloak 代码问题漏洞
Red Hat build of Keycloak is a web application for single sign-on from Red Hat, Inc. A code issue vulnerability exists in the Red Hat build of Keycloak, which stems from an offline session remaining active after removing the client's offlineaccess scope, which could lead to an administrator...
Zimbra Collaboration 代码问题漏洞
Zimbra Collaboration is an open source enterprise-class email and collaboration platform from Zimbra, Inc. that supports email, calendaring, document management, and team collaboration features. A code issue vulnerability exists in Zimbra Collaboration versions prior to 10.1.12, which stems from ...
Icinga 代码问题漏洞
Icinga is a scalable server, network resource monitoring system from Icinga, Germany. A code issue vulnerability exists in Icinga 2 versions 2.10.0 through 2.15.1 and prior, 2.14.7, and 2.13.13, which stems from the creation of an invalid reference that could lead to a segmentation error that cou...
RSUPPORT RemoteCall Remote Support Program 代码问题漏洞
RSUPPORT RemoteCall Remote Support Program is a remote assistance software from the Korean company RSUPPORT. A code issue vulnerability exists in RSUPPORT RemoteCall Remote Support Program versions prior to 5.3.0, which stems from an uncontrolled search path element that could lead to the executi...
F5 BIG-IP 代码问题漏洞
F5 BIG-IP is an application delivery platform that integrates network traffic management, application security management, and load balancing from F5 USA. A code issue vulnerability exists in F5 BIG-IP that stems from the configuration of a per-request policy where undisclosed traffic could cause...
F5 BIG-IP Next SPK 代码问题漏洞
F5 BIG-IP Next SPK is a cloud-native application traffic management solution from F5 USA. A code issue vulnerability exists in F5 BIG-IP Next SPK, which stems from the possibility that undisclosed traffic in an HTTP/2 Ingress configuration could lead to the termination of the Traffic Management...
Microsoft Azure Monitor 代码问题漏洞
Microsoft Azure Monitor is a newer observability tool from Microsoft USA that enables end-to-end monitoring capabilities for applications, infrastructure and networks. A code issue vulnerability exists in Microsoft Azure Monitor that stems from an attacker's ability to elevate privileges by...
Fortinet FortiOS SSL-VPN 代码问题漏洞
Fortinet FortiOS SSL-VPN is a VPN software from Fortinet, Inc. A code issue vulnerability exists in Fortinet FortiOS SSL-VPN that stems from insufficient session expiration, which could allow a remote attacker to reopen a session by reusing SAML records. The following versions are affected:...
Juniper Junos OS Evolved 代码问题漏洞
Juniper Junos OS Evolved is a network operating system from Juniper USA. A code issue vulnerability exists in Juniper Junos OS Evolved versions prior to 22.4R3-EVO and 23.2 to prior to 23.2R2-EVO, which arises from not properly checking for an exception condition that could result in...
Linux Distros Unpatched Vulnerability : CVE-2023-53483
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ACPI: processor: Check for null return of devmkzalloc in fchmiscsetup devmkzalloc may fail, clkdata-name might be NULL and will cause a NULL pointer dereference...
EUVD-2004-2241
Malware in sbrugna...
EUVD-2021-25151
Malware in sbrugna...