8 matches found
Security Bulletin: IBM Storage Fusion is vulnerable to HTTP request smuggling, denial of server due to aiohttp, cryptography.
Summary aiohttp, cryptography and Gunicorn are used by IBM Storage Fusion as part of the Backup and Restore service and may be vulnerable to the CVEs listed below. CVE-2024-1135, CVE-2024-26130, CVE-2024-23829, CVE-2024-2334, CVE-2023-49081, CVE-2023-49082. Vulnerability Details CVEID:CVE-2024-11...
Privilege escalation
In onCreate of various files, there is a possible tapjacking/overlay attack. This could lead to local escalation of privilege or denial of server with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-227203202...
Design/Logic Flaw
A vulnerability in Trend Micro Control Manager versions 6.0 and 7.0 could allow an attacker to manipulate a reverse proxy .dll on vulnerable installations, which may lead to a denial of server DoS...
CVE-2018-10512
A vulnerability in Trend Micro Control Manager versions 6.0 and 7.0 could allow an attacker to manipulate a reverse proxy .dll on vulnerable installations, which may lead to a denial of server DoS...
CVE-2018-10512
CVE-2018-10512 involves Trend Micro Control Manager (versions 6.0 and 7.0). A vulnerability could allow an attacker to manipulate the reverse proxy DLL on vulnerable installations, potentially leading to a denial of service. The connected sources corroborate a DoS impact from DLL manipulation; no...
FreeBSD : proftpd -- format string vulnerabilities (c28f4705-043f-11da-bc08-0001020eed82)
The ProFTPD release notes states : sean found two format string vulnerabilities, one in modsql's SQLShowInfo directive, and one involving the 'ftpshut' utility. Both can be considered low risk, as they require active involvement on the part of the site administrator in order to be exploited. Thes...
proftpd -- format string vulnerabilities
The ProFTPD release notes states: sean found two format string vulnerabilities, one in modsql's SQLShowInfo directive, and one involving the 'ftpshut' utility. Both can be considered low risk, as they require active involvement on the part of the site administrator in order to be exploited. These...
[NEWS] Lotus Domino Buffer Overflow (Time/Date Field)
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...