6 matches found
Apache Airflow Information Disclosure Vulnerability (CNVD-2026-15156)
Apache Airflow is the United States Apache Apache Foundation's set of open source platform with the creation, management and monitoring of workflow functions. The platform is scalable and dynamic monitoring and other features. Apache Airflow has an information disclosure vulnerability that stems...
CVE-2024-13999
Nagios XI versions prior to 2024R1.1.3, under certain circumstances, disclose the server's Active Directory AD or LDAP authentication token to an authenticated user. Exposure of the server’s AD/LDAP token could allow domain-wide authentication misuse, escalation of privileges, or further compromi...
CVE-2024-13999
Nagios XI prior to 2024R1.1.3 is affected. Under certain circumstances, the server discloses its AD/LDAP authentication token to an authenticated user. This token exposure could enable domain-wide authentication misuse, privilege escalation, or further compromise of network-integrated systems. Af...
CVE-2024-13999 Nagios XI < 2024R1.1.3 AD/LDAP Token Authenticated Information Disclosure
Nagios XI versions prior to 2024R1.1.3, under certain circumstances, disclose the server's Active Directory AD or LDAP authentication token to an authenticated user. Exposure of the server’s AD/LDAP token could allow domain-wide authentication misuse, escalation of privileges, or further compromi...
Design Flaw in Google Workspace Could Let Attackers Gain Unauthorized Access
Cybersecurity researchers have detailed a "severe design flaw" in Google Workspace's domain-wide delegation DWD feature that could be exploited by threat actors to facilitate privilege escalation and obtain unauthorized access to Workspace APIs without super admin privileges. "Such exploitation...
ProxyShell vulnerabilities exploited in domain-wide ransomware attacks
By Deeba Ahmed The ProxyShell vulnerabilities have prompted threat actors to launch domain-wide ransomware attacks against their targets. This is a post from HackRead.com Read the original post: ProxyShell vulnerabilities exploited in domain-wide ransomware attacks...