SAP Business Objects Analysis 安全漏洞

SAP Business Objects Web Intelligence is a centralized suite from SAP, Germany. It is used for data reporting, visualization, and sharing. A security vulnerability exists in SAP Business Objects Analysis, which arises from errors such as configuration during operation of the web system or product...

PT-2021-4376 · Microsoft · Sharepoint Server

Name of the Vulnerable Software and Affected Versions: Microsoft SharePoint Server affected versions not specified Description: The issue is related to errors in the user interface's representation of information. It may allow a remote attacker to conduct spoofing attacks, affecting the system...

PT-2021-4396 · Microsoft · Sharepoint Server

Name of the Vulnerable Software and Affected Versions: Microsoft SharePoint Server affected versions not specified Description: The issue is related to errors in the user interface's information display. It may allow a remote attacker to gain unauthorized access to protected information. The...

PT-2021-4420 · Microsoft · Dynamics 365

Name of the Vulnerable Software and Affected Versions: Microsoft Dynamics 365 on-premises affected versions not specified Description: The issue is related to errors in the representation of information by the user interface, which can be exploited by a remote attacker to conduct spoofing attacks...

Sap Internet Communication Framework 访问控制错误漏洞

Sap Internet Communication Framework is an Internet communication framework from Sap, a German company. A security vulnerability exists in SAP Internet Communication framework, which arises from a configuration or other error in the operation of a network system or product. An unauthorized attack...

PT-2021-4373 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to an elevation-of-privilege vulnerability in the Storage Spaces Controller, which is caused by errors in privilege management. This vulnerability can be exploited by a...

PT-2021-4421 · Microsoft · Sharepoint Server +1

Name of the Vulnerable Software and Affected Versions: Microsoft SharePoint affected versions not specified Description: The issue is related to a spoofing vulnerability in Microsoft SharePoint. It is associated with errors in the user interface's information display. Exploitation of this issue m...

Gclib buffer overflow vulnerability

Gclib is a C library. genome of reusable code for bioinformatics projects. a security vulnerability exists in GCLib, which could be exploited by an attacker to cause segmentation errors or possibly have unspecified other effects via a crafted GFF file...

The vulnerability of the Bluetooth Classic implementation in the microprogramming software for the Bluetrum AB32VG1 board allows a intruder to cause the device to freeze and reboot.

The vulnerability of the Bluetooth Classic microprogramming software implementation on the Bluetrum AB32VG1 board is related to resource release errors. Exploiting this vulnerability can allow an attacker to cause the device to freeze and restart...

The vulnerability of the VMware vSphere Life-cycle Manager module, a management tool for virtual infrastructure, allows a hacker to delete arbitrary files. This vulnerability exists in the VMware vCenter Server virtualization platform and the VMware Cloud Foundation.

The vulnerability of the VMware vSphere Life-cycle Manager, a management tool for virtual infrastructure, related to VMware vCenter Server and VMware Cloud Foundation virtualization platforms, is associated with privilege management errors. Exploiting this vulnerability could allow an attacker to...

What is RCE (Remote code execution) attack ❓ Prevention methods

What is Remote Code Execution? Remote Code Execution or execution, also known as Arbitrary Code Execution, is a concept that describes a form of cyberattack in which the attacker can solely command the operation of another person’s computing device or computer. RCE takes place when malicious...

The vulnerability of the Apache HTTP Server’s web server, related to pointer arithmetic errors, allows attackers to cause service interruptions.

The vulnerability of the Apache HTTP Server is related to pointer arithmetic errors. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

CVE-2021-41122

Vyper is a Pythonic Smart Contract Language for the EVM. In affected versions external functions did not properly validate the bounds of decimal arguments. The can lead to logic errors. This issue has been resolved in version 0.3.0...

PYSEC-2021-366

Vyper is a Pythonic Smart Contract Language for the EVM. In affected versions external functions did not properly validate the bounds of decimal arguments. The can lead to logic errors. This issue has been resolved in version 0.3.0...

PYSEC-2021-366

Vyper is a Pythonic Smart Contract Language for the EVM. In affected versions external functions did not properly validate the bounds of decimal arguments. The can lead to logic errors. This issue has been resolved in version 0.3.0...

CVE-2021-41122 Bounds check missing for decimal args in Vyper

Vyper is a Pythonic Smart Contract Language for the EVM. In affected versions external functions did not properly validate the bounds of decimal arguments. The can lead to logic errors. This issue has been resolved in version 0.3.0...

CVE-2021-35492

Wowza Streaming Engine through 4.8.11+5 could allow an authenticated, remote attacker to exhaust filesystem resources via the /enginemanager/server/vhost/historical.jsdata vhost parameter. This is due to the insufficient management of available filesystem resources. An attacker could exploit this...

Design/Logic Flaw

Wowza Streaming Engine through 4.8.11+5 could allow an authenticated, remote attacker to exhaust filesystem resources via the /enginemanager/server/vhost/historical.jsdata vhost parameter. This is due to the insufficient management of available filesystem resources. An attacker could exploit this...

CVE-2021-35492

Wowza Streaming Engine through 4.8.11+5 could allow an authenticated, remote attacker to exhaust filesystem resources via the /enginemanager/server/vhost/historical.jsdata vhost parameter. This is due to the insufficient management of available filesystem resources. An attacker could exploit this...

Streamline Customer Screening Today. Here’s How.

By Waqas When it comes to preventing financial crime such as anti-money laundering, organizations need to make use of a customer screening process that takes human errors into account - Let's dig deeper! This is a post from HackRead.com Read the original post: Streamline Customer Screening Today...