160 matches found
CVE-2023-1967 CVE-2023-1967
Keysight N8844A Data Analytics Web Service deserializes untrusted data without sufficiently verifying the resulting data will be valid...
CVE-2023-1967
Keysight N8844A Data Analytics Web Service is affected by CVE-2023-1967 due to deserialization of untrusted data without sufficient validation, which can lead to remote code execution. Affected product group includes N8844A Data Analytics Web Service (version 2.1.7351 and prior) with additional a...
CVE-2023-1967 CVE-2023-1967
Keysight N8844A Data Analytics Web Service deserializes untrusted data without sufficiently verifying the resulting data will be valid...
Keysight N8844A Data Analytics Web Service 代码问题漏洞
Keysight Technologies Keysight N8844A Data Analytics Web Service is a product from Keysight Technologies, Inc. It allows users to import their test data into a data repository server. A security vulnerability exists in Keysight N8844A Data Analytics Web Service version 2.1.7351 and prior versions...
CISA Releases Two Industrial Control Systems Advisories
CISA released two Industrial Control Systems ICS advisories on April 25, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-23-115-01 Keysight N8844A Data Analytics Web Service ICSA-23-115-02 Scada-LTS Third Party...
Keysight N8844A Data Analytics Web Service (Update A)
1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION : Exploitable remotely/low attack complexity Vendor : Keysight Equipment : N8844A Data Analytics Web Service Vulnerability: Deserialization of Untrusted Data 2. RISK EVALUATION Successful exploitation of this vulnerability could lead to remote code...
Denial of Service Vulnerability in Damon's Big Data Analytics Platform
Wuhan Damon Database Co., Ltd. is specialized in providing big data platform architecture consulting, data technology solution planning, product deployment and implementation in one big data platform company. A denial of service vulnerability exists in Damon's Big Data Analytics Platform, which c...
Intel® oneAPI Toolkits Advisory
Summary: Potential security vulnerabilities in some Intel® oneAPI Toolkits may allow escalation of privilege. Intel is releasing software updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2022-25987 Description: Improper handling of Unicode encoding in source...
The Future of Network Security: Predictive Analytics and ML-Driven Solutions
As the digital age evolves and continues to shape the business landscape, corporate networks have become increasingly complex and distributed. The amount of data a company collects to detect malicious behaviour constantly increases, making it challenging to detect deceptive and unknown attack...
Design/Logic Flaw
Uncontrolled search path element in the IntelR oneAPI Data Analytics Library oneDAL before version 2021.5 for IntelR oneAPI Base Toolkit may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2022-25905
Uncontrolled search path element in the IntelR oneAPI Data Analytics Library oneDAL before version 2021.5 for IntelR oneAPI Base Toolkit may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2022-25905
CVE-2022-25905 affects Intel® oneAPI Toolkits, specifically the Intel® oneAPI Data Analytics Library (oneDAL) prior to 2021.5. The issue is an uncontrolled search path element in the oneDAL component that can allow an authenticated user to potentially escalate privileges via local access. Affecte...
Intel(R) oneAPI DPC++/C++ Compiler 代码问题漏洞
IntelR oneAPI DPC++/C++ Compiler is a compiler from Intel Corporation USA. A security vulnerability exists in IntelR oneAPI Data Analytics Library oneDAL versions prior to 2021.5, which stems from an uncontrolled search path element in the IntelR oneAPI Base Toolkit, and can be exploited by an...
PT-2023-12831 · Intel · Intel(R) Oneapi Data Analytics Library
Name of the Vulnerable Software and Affected Versions: IntelR oneAPI Data Analytics Library oneDAL versions prior to 2021.5 Description: The issue is related to an uncontrolled search path element in the IntelR oneAPI Data Analytics Library oneDAL, which may allow an authenticated user to...
Metabase Information Disclosure Vulnerability (CNVD-2023-06473)
Metabase is an open source data analytics platform from Metabase Inc. Metabase is vulnerable to an information disclosure vulnerability that stems from exposing sensitive information to an unauthorized user. No details of the vulnerability are currently available...
CVE-2023-23628
Metabase is an open source data analytics platform. Affected versions are subject to Exposure of Sensitive Information to an Unauthorized Actor. Sandboxed users shouldn't be able to view data about other Metabase users anywhere in the Metabase application. However, when a sandbox user views the...
CVE-2023-23629
Metabase is an open source data analytics platform. Affected versions are subject to Improper Privilege Management. As intended, recipients of dashboards subscriptions can view the data as seen by the creator of that subscription. This allows someone with greater access to data to create a...
Design/Logic Flaw
Metabase is an open source data analytics platform. Affected versions are subject to Exposure of Sensitive Information to an Unauthorized Actor. Sandboxed users shouldn't be able to view data about other Metabase users anywhere in the Metabase application. However, when a sandbox user views the...
Design/Logic Flaw
Metabase is an open source data analytics platform. Affected versions are subject to Improper Privilege Management. As intended, recipients of dashboards subscriptions can view the data as seen by the creator of that subscription. This allows someone with greater access to data to create a...
CVE-2023-23629
Metabase (open-source analytics platform) is affected by CVE-2023-23629 due to Improper Privilege Management in dashboard subscriptions. The issue allows a user with higher data privileges to create a subscription and add recipients, who then receive data exposed according to the creator’s privil...