Multiple Rockwell Automation Products Input Validation Error Vulnerability

Rockwell Automation RSLinx Classic is an industrial communications solution.Rockwell Automation RSLinx Classic is an industrial communications solution.Rockwell Automation FactoryTalk Linx is an industrial communications solution.Rockwell Automation ControlFLASH is a firmware update...

The vulnerability of the Application Framework component of the Cisco IOx software platform allows a perpetrator to gain access to modify, add, or delete data.

The vulnerability of the Application Framework component of the Cisco Iox software platform is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to modify, add, or delete data in the virtual environment...

The vulnerability of the JSE component of Oracle Java SE software allows a perpetrator to gain access to modify, add, or delete data, or to unauthorizedly access protected information.

The vulnerability of the JSE component of Oracle Java SE software is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to modify, add, or delete data, or gain unauthorized access to protected information...

The vulnerability of the Lightweight HTTP Server component in Oracle Java SE and Oracle Java SE Embedded software platforms allows attackers to modify, add, or delete data, or gain unauthorized access to protected information.

The vulnerability of the Lightweight HTTP Server component in Oracle Java SE and Oracle Java SE Embedded software platforms is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to modify, add, or delete data, or gain unauthorized access to...

CVE-2020-5299

In OctoberCMS october/october composer package versions from 1.0.319 and before 1.0.466, any users with the ability to modify any data that could eventually be exported as a CSV file from the ImportExportController could potentially introduce a CSV injection into the data to cause the generated C...

CVE-2020-4035 DoS or local data modification via malicious record IDs in WatermelonDB

In WatermelonDB NPM package "@nozbe/watermelondb" before versions 0.15.1 and 0.16.2, a maliciously crafted record ID can exploit a SQL Injection vulnerability in iOS adapter implementation and cause the app to delete all or selected records from the database, generally causing the app to become...

The vulnerability of the Console component of the Oracle WebLogic Server application server allows a attacker to access, modify, add, or delete data.

The vulnerability of the Console component of the Oracle WebLogic Server application server is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to gain access to modify, add, or delete data using the HTTP network protocol...

The vulnerability of the GraalVM Compiler component of the Oracle GraalVM Enterprise Edition allows a hacker to gain access to modify, add, or delete data.

The vulnerability of the GraalVM Compiler component in the Oracle GraalVM Enterprise Edition is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to modify, add, or delete data through various network protocols...

The vulnerability of the Security component of the Oracle Hyperion Financial Management application, which allows a perpetrator to gain access to modify, add, or delete data.

The vulnerability of the Security component of the Oracle Hyperion Financial Management application is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain access to modify, add, or delete data using the HTTP protocol...

The vulnerability of the Transaction Processing sub-component of the Oracle FLEXCUBE Core Banking banking analytics system’s simulation model, Oracle Financial Services Applications. This vulnerability allows attackers to create, delete, or modify access rights to protected information, or gain read-only access to data. It can also cause partial service interruption.

The vulnerability of the Transaction Processing sub-component of the Oracle FLEXCUBE Core Banking banking analytics system, an imitation model of Oracle Financial Services Applications, is related to the lack of protection for operational data. Exploiting this vulnerability allows a malicious act...

The vulnerability of the Media Foundation component in Windows operating systems allows attackers to enhance their privileges or gain access to modify, add, or delete data.

The vulnerability of the Media Foundation component in Windows operating systems is related to buffer overflows in the stack. Exploiting this vulnerability can allow an attacker to enhance their privileges or gain access to modify, add, or delete data using a specially created application or a...

The vulnerability of the Windows Print Spooler component of the Windows operating system allows a perpetrator to increase their privileges or gain access to modify, add, or delete data.

The vulnerability of the Windows Print Spooler component of the Windows operating system is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to enhance their privileges or gain access to modify, add, or delete data...

The vulnerability of the Windows operating system’s kernel, related to errors in memory object handling, allows an attacker to exploit their privileges or gain access to modify, add, or delete data.

The vulnerability of the Windows operating system’s kernel is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to increase their privileges or gain access to modify, add, or delete data using a specially created application...

The vulnerability of the User Interface sub-component of the Oracle Financial Services Hedge Management and IFRS Valuations banking analytical system’s simulation model applications allows attackers to create, delete, or modify access rights to protected information, or gain read-only access to data.

The vulnerability of the User Interface sub-component of the Oracle Financial Services Hedge Management and IFRS Valuations banking analytical system’s simulation model applications is related to the lack of protection for operational data. Exploiting this vulnerability allows a malicious actor t...

The vulnerability of the Microsoft Color Management color control module in the Windows operating system allows a malicious actor to elevate their privileges or gain access to modify, add, or delete data.

The vulnerability of the Microsoft Color Management color control module in the Windows operating system relates to operations that go beyond the buffer limits in memory. Exploiting this vulnerability can allow a remote attacker to increase their privileges or gain access to modify, add, or delet...

The vulnerability of the Windows operating system, related to call processing errors, allows a perpetrator to increase their privileges or gain access to modify, add, or delete data.

The vulnerability of the Windows operating system is related to errors in call handling. Exploiting this vulnerability can allow an attacker to increase their privileges or gain access to modify, add, or delete data...

The vulnerability of the Windows operating system, related to errors in memory object handling, allows an attacker to increase their privileges or gain access to modify, add, or delete data.

The vulnerability of the Windows operating system is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to increase their privileges or gain access to modify, add, or delete data...

The vulnerability of the Media Foundation component in Windows operating systems allows attackers to enhance their privileges or gain access to modify, add, or delete data.

The vulnerability of the Media Foundation component in Windows operating systems is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to increase their privileges or gain access to modify, add, or delete data...

The vulnerability of the User Interface sub-component of the Oracle Financial Services Balance Sheet Planning component in the bank analytics system’s simulation model allows a perpetrator to create, delete, or modify access rights to protected information, or gain read-only access to data.

The vulnerability of the User Interface sub-component of the Oracle Financial Services Balance Sheet Planning banking analytics system’s simulation model relates to the lack of protection for operational data. Exploiting this vulnerability allows an attacker to create, delete, or modify access...

Cisco Prime Collaboration Provisioning SQL Injection Vulnerability (CNVD-2020-29595)

Cisco Prime Collaboration Provisioning PCP is a set of Web-based, next-generation communications services software from Cisco. The software provides IP communication service features for IP telephony, voice mail and unified communications environments. Cisco Prime Collaboration Provisioning suffe...