EUVD-2021-14523

Malware in sbrugna...

Malicious code in eslint-config-ui-core-base (npm)

--- -= Per source details. Do not edit below this line.=-...

MAL-2024-11349 Malicious code in eslint-config-ui-core-base (npm)

--- -= Per source details. Do not edit below this line.=-...

Code injection

HCL BigFix Mobile / Modern Client Management Admin and Config UI passwords can be brute-forced. User should be locked out for multiple invalid attempts...

@wmfs/tymly-fastify-plugin (>=1.57.0 <=1.59.0), homebridge-config-ui-x (>=4.41.4 <=4.43.0-test.2) potentially affected by CVE-2020-8136 +1 more via fastify-multipart (>=5.2.1 <=5.3.0)

fastify-multipart NPM version =5.2.1, =1.57.0, =4.41.4, =4.43.0-test.2 Source cves: CVE-2020-8136, CVE-2021-23597 Source advisory: SNYK:JS-FASTIFYMULTIPART-2395480...

CVE-2021-21212

Incorrect security UI in Network Config UI in Google Chrome on ChromeOS prior to 90.0.4430.72 allowed a remote attacker to potentially compromise WiFi connection security via a malicious WAP...

Code injection

Incorrect security UI in Network Config UI in Google Chrome on ChromeOS prior to 90.0.4430.72 allowed a remote attacker to potentially compromise WiFi connection security via a malicious WAP...

CVE-2021-21212

Incorrect security UI in Network Config UI in Google Chrome on ChromeOS prior to 90.0.4430.72 allowed a remote attacker to potentially compromise WiFi connection security via a malicious WAP...

CVE-2021-21212

Incorrect security UI in Network Config UI in Google Chrome on ChromeOS prior to 90.0.4430.72 allowed a remote attacker to potentially compromise WiFi connection security via a malicious WAP...

Arbitrary Code Execution

Google Chrome is vulnerable to arbitrary code execution. A vulnerability exists in the ‘Network Config UI component due to certain improper ‘security UI...

Chromium: CVE-2021-21212 Incorrect security UI in Network Config UI

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

CVE-2021-23274 TIBCO API Exchange Gateway Clickjack Vulnerability

The Config UI component of TIBCO Software Inc.'s TIBCO API Exchange Gateway and TIBCO API Exchange Gateway Distribution for TIBCO Silver Fabric contains a vulnerability that theoretically allows an unauthenticated attacker with network access to execute a clickjacking attack on the affected syste...

TIBCO Security Advisory: March 23, 2021 - TIBCO API ExchangeGateway

TIBCO API Exchange Gateway Clickjack Vulnerability Original release date: March 23,2021 Last revised: CVE-2021-23274 Source: TIBCO Software Inc. Products Affected TIBCO API Exchange Gateway versions 2.3.3 and below TIBCO API Exchange Gateway Distribution for TIBCO Silver Fabric versions 2.3.3 and...