228 matches found
Oracle WebCenter Portal Multiple Vulnerabilities (Oct 2022 CPU)
The version of Oracle WebCenter Portal installed on the remote host is missing a security patch from the Oct 2022 Critical Patch Update CPU. It is, therefore, affected by multiple vulnerabilites: - Vulnerability in the Oracle Communications Convergence product of Oracle Communications Application...
Vulnerabilities fixed in Oracle Communications Applications
Vulnerabilities have been fixed in Oracle Communications Applications. The vulnerabilities allow a malicious party to perform attacks that result in the following categories of damage: Denial-of-Service DoS Manipulation of data Remote code execution User rights Access to sensitive data Access to...
Cisco Network Convergence System 4000 Series 安全漏洞
Cisco Network Convergence System 4000 Series is the United States Cisco Cisco company's series of converged optical services platform. It supports DWDM, optical transport networks, MPLS transport profiles TP, and more. A security vulnerability exists in the Cisco Network Convergence System 4000...
Newton's iteration convergence might not converge
Lines of code Vulnerability details Impact In getAmountOut for stable pair, Newton's method is used, however there is no check for the solution convergence. The numerical stability for Newton's method only applies to initial value close enough to the real solution. If the iteration fail to...
PT-2022-10010 · Qualcomm · Qualcomm Snapdragon
Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon affected versions not specified Description: The issue is related to an improper integrity check that can cause a race condition between tasks PDCP and RRC after a valid RRC Command packet has been received. This affects...
PT-2022-10006 · Qualcomm · Snapdragon
Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon affected versions not specified Description: The issue is related to an improper integrity check that can lead to a race condition between tasks PDCP and RRC after a valid RRC Command packet has been received. This affects...
The vulnerability of the Oracle Communications Convergence component of the Oracle Communications Applications network management and organization software package allows a hacker to gain access to, modify, add, or delete data.
The vulnerability of the Oracle Communications Convergence software component for network management and organization applications exists due to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to remotely gain access to modify, add, or delete dat...
多款Qualcomm产品安全漏洞
A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way to miniaturize circuits including primarily semiconductor devices, but also passive components, etc., and from time to time fabricated on the surface of semiconductor wafers. A security vulnerability exists in several Qualcomm produc...
The reality of OT segregation
One of the areas I find most fascinating about industrial control systems and related operational technology is the perception that OT networks are segregated and isolated from the wider IT network. We’re often told that “IT and OT are totally separated” as there’s a genuine belief that OT is...
How to use the Gartner® 2022 Strategic Roadmap for Data Security Platform Convergence
“It is not the strongest species that survive, nor the most intelligent, but the ones most responsive to change.” – Charles Darwin Evolution and innovation form the basis of most modern business mission statements. However, the same organizations pursuing growth and change often do not put...
CVE-2022-21338
Vulnerability in the Oracle Communications Convergence product of Oracle Communications Applications component: General Framework. The supported version that is affected is 3.0.2.2.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...
CVE-2022-21338
Vulnerability in the Oracle Communications Convergence product of Oracle Communications Applications component: General Framework. The supported version that is affected is 3.0.2.2.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...
Design/Logic Flaw
Vulnerability in the Oracle Communications Convergence product of Oracle Communications Applications component: General Framework. The supported version that is affected is 3.0.2.2.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...
CVE-2022-21338
CVE-2022-21338 affects Oracle Communications Convergence (General Framework) with affected version 3.0.2.2.0. The vulnerability allows a low-privileged, network-authenticated attacker (HTTP) to compromise data, requiring user interaction for exploitation; potential impacts include unauthorized up...
CVE-2022-21338
Vulnerability in the Oracle Communications Convergence product of Oracle Communications Applications component: General Framework. The supported version that is affected is 3.0.2.2.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...
CVE-2022-22172
A Missing Release of Memory after Effective Lifetime vulnerability in the Layer-2 control protocols daemon l2cpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated adjacent attacker to cause a memory leak. Continued exploitation can lead to memory exhaustion and thereby a...
Oracle Communications 输入验证错误漏洞
Oracle Communications is a product of Oracle Corporation USA. provides integrated communications and cloud solutions for service providers and enterprises to accelerate their digital transformation. an authorization issue vulnerability exists in Oracle Communications Convergence that could be...
Revert the transaction if convergence does not happen in HybridPool
Handle broccoli Vulnerability details Title: Revert the transaction if convergence does not happen in HybridPool Impact The getY and computeLiquidityFromAdjustedBalances functions use iterative approximations to calculate the output token amount or the liquidity invariant D. However, if the...
The vulnerability of Cisco IOS XR routers in the Cisco 8000 Series and Cisco NCS 540 models, related to errors in checking the cryptographic signature, allows a hacker to execute arbitrary code.
The vulnerability of Cisco IOS XR routers in the Cisco 8000 Series and Cisco NCS 540 models is related to errors in checking the cryptographic signature. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code on the target system remotely...
CISA's Annual National Cybersecurity Summit
CISA will host its fourth annual National Cybersecurity Summit on Wednesdays during the month of October. The 2021 Summit will be held as a series of four virtual events bringing stakeholders together in a forum for meaningful conversation: Oct. 6 - Assembly Required: The Pieces of the...