6 matches found
ROS-20251111-07
A vulnerability in the Downloads component of the Google Chrome and Microsoft Edge browsers is related to a false representation of critical information by the user interface. presentation of critical information by the user interface. Exploitation of the vulnerability could Allow an attacker...
CVE-2025-48818 Windows BitLocker Security Feature Bypass Vulnerability
...
DevExpress 安全漏洞
DevExpress is a software from the American company DevExpress, Inc. for providing best-in-class UI controls, tools and frameworks for WinForms, ASP.NET, MVC, Blazor, ASP.NET Core, WPF, VCL, Xamarin and JavaScript. A security vulnerability exists in DevExpress versions prior to 23.1.3, which stems...
The vulnerability of the Network Address Translation (NAT) technology implemented in the Cisco IOS XE operating system allows attackers to bypass ALG and establish unauthorized connections.
The vulnerability of the Network Address Translation NAT technology implemented in the Cisco IOS XE operating system is related to a violation of data protection mechanisms. Exploiting this vulnerability allows an attacker to bypass the Address Resolution Protocol ALG and establish unauthorized...
Code injection
Mail in Apple iOS before 6 does not properly implement the Data Protection feature for e-mail attachments, which allows physically proximate attackers to bypass an intended passcode requirement via unspecified vectors...
Zope Image and File Update Data Protection Bypass
According to its banner, the remote web server is Zope 2.2.5. Such versions suffer from a security issue involving incorrect protection of a data updating method on Image and File objects. Because the method is not correctly protected, it is possible for users with DTML editing privileges to upda...