Unable to provision new target devices when using Xendesktop Setup Wizard

Getting error message when we try to create Target devices using the XenDesktop wizard via PVS console. Error message "Cannot connect to the hypervisor at 'XXXXXX'. Failed to connect to the remote server. Unable to locate server. The underlying connection was closed: Could not establish trust...

Information Disclosure

gitlab is vulnerable to Information Disclosure. This issue allows a member of a private group to validate the use of a specific name for a private project resulting in generation of error message containing sensitive information...

UBUNTU-CVE-2023-1210

An issue has been discovered in GitLab affecting all versions starting from 12.9 before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2. It was possible to leak a user's email via an error message for groups that restrict membership by email...

CVE-2023-1210

An issue has been discovered in GitLab affecting all versions starting from 12.9 before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2. It was possible to leak a user's email via an error message for groups that restrict membership by email...

CVE-2023-1210

Removed by vendor...

PT-2023-16823 · Gitlab · Gitlab

Name of the Vulnerable Software and Affected Versions: GitLab versions 12.9 through 16.0.7 GitLab versions 16.1 through 16.1.2 GitLab versions 16.2 through 16.2.1 Description: An issue has been discovered in GitLab where it was possible to leak a user's email via an error message for groups that...

Cross site scripting

An issue was discovered in Webmin 2.021. A Cross-site Scripting XSS Bypass vulnerability was discovered in the file upload functionality. Normally, the application restricts the upload of certain file types such as .svg, .php, etc., and displays an error message if a prohibited file type is...

CVE-2020-4868

IBM TRIRIGA 3.0, 4.0, and 4.4 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 190744...

Integer overflow

IBM TRIRIGA 3.0, 4.0, and 4.4 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 190744...

CVE-2020-4868

CVE-2020-4868 affects IBM TRIRIGA Application Platform versions 3.x and 4.0–4.4. A remote attacker could obtain sensitive information when a detailed technical error message is returned in the browser, enabling potential follow‑on attacks. The IBM Security Bulletin confirms the impact and lists a...

CVE-2020-4868 IBM TRIRIGA information disclosure

IBM TRIRIGA 3.0, 4.0, and 4.4 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 190744...

Security Bulletin: IBM TRIRIGA Application Platform discloses possible remote attacker (CVE-2020-4868

Summary IBM TRIRIGA could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. Vulnerability Details CVEID:CVE-2020-4868 DESCRIPTION: IBM TRIRIGA could allo...

Azure MCS catalog update fails with FailedToStartImagePreparationVm - CreateUpdateVm-1 timed out

Unable to update a machine catalog for an Azure hosted MCS deployment. The MCS process fails early about 15% into the update The error message shows "Error - Terminated", and the action name is "MCUpdateMachineCatalog" The full stack trace is similar to this : TerminatedStack Trace: at...

CVE-2023-3897

Username enumeration is possible through Bypassing CAPTCHA in On-premise SureMDM Solution on Windows deployment allows attacker to enumerate local user information via error message. This issue affects SureMDM On-premise: 6.31 and below version...

Information disclosure

Username enumeration is possible through Bypassing CAPTCHA in On-premise SureMDM Solution on Windows deployment allows attacker to enumerate local user information via error message. This issue affects SureMDM On-premise: 6.31 and below version...

CVE-2023-32657

Weintek Weincloud v0.13.6 could allow an attacker to efficiently develop a brute force attack on credentials with authentication hints from error message responses...

CVE-2023-32657

Weintek Weincloud v0.13.6 could allow an attacker to efficiently develop a brute force attack on credentials with authentication hints from error message responses...

CVE-2023-32657 Weintek Weincloud Improper Restriction of Excessive Authentication Attempts

Weintek Weincloud v0.13.6 could allow an attacker to efficiently develop a brute force attack on credentials with authentication hints from error message responses...

CVE-2023-32657

CVE-2023-32657 affects Weintek Weincloud v0.13.6 (Account API) and prior, described as Improper Restriction of Excessive Authentication Attempts. The provided documents state an attacker could efficiently develop brute-force attacks on credentials by exploiting authentication hints in error messa...

Published apps and desktop shows error "The user name and password is incorrect"

The user name or password is incorrect at System.Security.Principal.WindowsIdentity.KerbS4ULogonString upn, SafeAccessTokenHandle& safeTokenHandle at System.Security.Principal.WindowsIdentity..ctorString sUserPrincipalName, String type at System.Security.Principal.WindowsIdentity..ctorString...