EUVD-2021-14523

Malware in sbrugna...

Malicious code in eslint-config-ui-core-base (npm)

--- -= Per source details. Do not edit below this line.=-...

MAL-2024-11349 Malicious code in eslint-config-ui-core-base (npm)

--- -= Per source details. Do not edit below this line.=-...

Code injection

HCL BigFix Mobile / Modern Client Management Admin and Config UI passwords can be brute-forced. User should be locked out for multiple invalid attempts...

@wmfs/tymly-fastify-plugin (>=1.57.0 <=1.59.0), homebridge-config-ui-x (>=4.41.4 <=4.43.0-test.2) potentially affected by CVE-2020-8136 +1 more via fastify-multipart (>=5.2.1 <=5.3.0)

fastify-multipart NPM version =5.2.1, =1.57.0, =4.41.4, =4.43.0-test.2 Source cves: CVE-2020-8136, CVE-2021-23597 Source advisory: SNYK:JS-FASTIFYMULTIPART-2395480...

CVE-2021-21212

Incorrect security UI in Network Config UI in Google Chrome on ChromeOS prior to 90.0.4430.72 allowed a remote attacker to potentially compromise WiFi connection security via a malicious WAP...

Code injection

Incorrect security UI in Network Config UI in Google Chrome on ChromeOS prior to 90.0.4430.72 allowed a remote attacker to potentially compromise WiFi connection security via a malicious WAP...

CVE-2021-21212

Incorrect security UI in Network Config UI in Google Chrome on ChromeOS prior to 90.0.4430.72 allowed a remote attacker to potentially compromise WiFi connection security via a malicious WAP...

CVE-2021-21212

Incorrect security UI in Network Config UI in Google Chrome on ChromeOS prior to 90.0.4430.72 allowed a remote attacker to potentially compromise WiFi connection security via a malicious WAP...

Arbitrary Code Execution

Google Chrome is vulnerable to arbitrary code execution. A vulnerability exists in the ‘Network Config UI component due to certain improper ‘security UI...

The vulnerability of the Network Config UI user interface in Google Chrome and Microsoft Edge browsers allows attackers to perform spoofing attacks.

The vulnerability of the Network Config UI user interface in Google Chrome and Microsoft Edge is related to information representation errors. Exploiting this vulnerability allows a malicious actor to carry out spear-phishing attacks using a specially created web page...

Chromium: CVE-2021-21212 Incorrect security UI in Network Config UI

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

CVE-2021-23274 TIBCO API Exchange Gateway Clickjack Vulnerability

The Config UI component of TIBCO Software Inc.'s TIBCO API Exchange Gateway and TIBCO API Exchange Gateway Distribution for TIBCO Silver Fabric contains a vulnerability that theoretically allows an unauthenticated attacker with network access to execute a clickjacking attack on the affected syste...

TIBCO Security Advisory: March 23, 2021 - TIBCO API ExchangeGateway

TIBCO API Exchange Gateway Clickjack Vulnerability Original release date: March 23,2021 Last revised: CVE-2021-23274 Source: TIBCO Software Inc. Products Affected TIBCO API Exchange Gateway versions 2.3.3 and below TIBCO API Exchange Gateway Distribution for TIBCO Silver Fabric versions 2.3.3 and...