19 matches found
MongoDB Server -- Multiple vulnerabilities
https://jira.mongodb.org/browse/SERVER-119981 reports: Computing the MD5 checksum of a malformed BSON object under specific conditions may cause loss of availability in MongoDB server. An authorization flaw in the user management command could allow an authenticated user to make limited changes t...
Oracle MySQL Server 安全漏洞
Oracle MySQL Server is a relational database management system developed by Oracle Corporation. There is a security vulnerability in Oracle MySQL Server, which stems from issues with the Server: Group Replication Plugin component. This vulnerability may allow attackers with low privileges to acce...
CVE-2025-59032
ManageSieve AUTHENTICATE command crashes when using literal as SASL initial response. This can be used to crash ManageSieve service repeatedly, making it unavailable for other users. Control access to ManageSieve port, or disable the service if it's not needed. Alternatively upgrade to a fixed...
Apache Zookeeper 安全漏洞
Apache ZooKeeper is a centralized service under the Apache Software Foundation for maintaining configuration information, naming, providing distributed synchronization, and providing group services. An authentication bypass vulnerability exists in Apache ZooKeeper versions prior to 3.9.3. The...
Toshiba e-STUDIO Security Vulnerability
Toshiba e-STUDIO is a series of high-end office multifunction printers from Toshiba Japan. A security vulnerability exists in Toshiba e-STUDIO that originates from the possibility that certain APIs Application Programming Interfaces may send HTTP requests to the multifunction device without...
Vulnerability of the Server component: Security: Encryption of the Oracle MySQL Server database management system, which allows a hacker to cause a service failure.
The vulnerability of the Server component: Security: Encryption of the Oracle MySQL Server database management system is related to insufficient validation of input data. Exploiting this vulnerability may allow a malicious actor to cause service interruptions...
SUSE CVE-2023-45233
EDK2's Network Package is susceptible to an infinite lop vulnerability when parsing a PadN option in the Destination Options header of IPv6. This vulnerability can be exploited by an attacker to gain unauthorized access and potentially lead to a loss of Availability...
How to Reduce Exposure on the Manufacturing Attack Surface
Digitalization initiatives are connecting once-isolated Operational Technology OT environments with their Information Technology IT counterparts. This digital transformation of the factory floor has accelerated the connection of machinery to digital systems and data. Computer systems for managing...
Vulnerability of the Server component: The Optimizer component of the MySQL Server database management system, which allows attackers to cause downtime or service failures.
The vulnerability of the MySQL Server component of the database management system exists due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause the system to become unresponsive or lead to service failures...
Vulnerability of SNC_io parser<EW>: read_vertex(); vh->svertices_begin(); component Nef_S2/SNC_io parser.h; algorithms library from the Computational Geometry Library CGAL. This allows an intruder to access confidential data, compromise its integrity, and cause service failures.
The vulnerability of the SNCio parser function ::readvertex is related to the reading of data within the permissible buffer size. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its integrity, and cause service failures through a specially created...
CVE-2021-40001
The CaasKit module has a path traversal vulnerability. Successful exploitation of this vulnerability may cause the MeeTime application to be unavailable...
PT-2020-16516 · Sap · Sap As Abap +1
Name of the Vulnerable Software and Affected Versions: SAP AS ABAP SAP Landscape Transformation versions 2011 1 620 through 2020 SAP S4 HANA SAP Landscape Transformation versions 101 through 105 Description: The issue allows a high privileged user to execute a RFC function module to which access...
Vulnerability of the Server:Replication component of the Oracle MySQL database management system, due to insufficient validation of input data, allows attackers to cause downtime or service failures.
The vulnerability of the Server:Replication component of the Oracle MySQL database management system is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause downtime or service failures using the MySQL protocol...
Vulnerability of the Server component: The Oracle MySQL Server database management system’s DML component, which is vulnerable due to insufficient input data validation. This allows attackers to cause system downtime or service failures.
The vulnerability of the Oracle MySQL Server component relates to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause downtime or service failures using the MySQL network protocol...
The vulnerability of the Environment Mgmt Console component of the Oracle PeopleSoft Enterprise PeopleTools business application, related to insufficient input data validation, allows attackers to cause system downtime, service failures, or gain read-only, edit, add, or delete access to data.
The vulnerability of the Environment Mgmt Console component in the Oracle PeopleSoft Enterprise PeopleTools business application suite is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause system downtime, service failures, or gain...
CVE-2020-6973
Digi International ConnectPort LTS 32 MEI, Firmware Version 1.4.3 82002228K 08/09/2018, bios Version 1.2. Multiple cross-site scripting vulnerabilities exist that could allow an attacker to cause a denial-of-service condition...
Vulnerability of the Server component: Security: Encryption of the MySQL Server database management system, which allows attackers to cause downtime or service failures.
The vulnerability of the MySQL Server component’s Security: Encryption module is related to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor to cause downtime or service failures using the MySQL protocol...
Vulnerability of the MySQL Server component: This component of the database management system allows a hacker to cause system downtime or service failures.
The vulnerability of the MySQL Server component of the database management system involves deficiencies in access control. Exploiting this vulnerability can allow a malicious actor to cause downtime or service failures using the MySQL network protocol...
The vulnerability of the Core RDBMS component (jackson-databind) of the Oracle Database Server system allows a attacker to cause downtime or service failures.
The vulnerability of the Core RDBMS component jackson-databind of the Oracle Database Server management system is related to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor to cause downtime or service failures through various network protocols...