CVE-2021-4171

calibre-web is vulnerable to Business Logic Errors...

CVE-2021-4171

calibre-web is vulnerable to Business Logic Errors...

Code injection

calibre-web is vulnerable to Business Logic Errors...

CVE-2021-4171

Calibre-web (web application) is affected by CVE-2021-4171 due to Business Logic Errors. The CVSS data indicates high to critical impact (C/H/I/A) with network access, no authentication, and no user interaction required. The vulnerability affects core logic of calibre-web (exact function/file not...

CVE-2021-4171 Business Logic Errors in janeczku/calibre-web

calibre-web is vulnerable to Business Logic Errors...

calibre-web 安全漏洞

Calibre-Web is a web application for browsing, reading and downloading eBooks from the Calibre database. A security vulnerability exists in calibre-web that stems from the fact that calibre-web is prone to business logic errors...

PT-2022-4183 · Hewlett Packard · Hpe Oneview

Name of the Vulnerable Software and Affected Versions: HPE OneView versions prior to 6.6 Description: The issue is related to authentication errors in the HPE OneView IT infrastructure management system. Exploitation of this issue may allow an attacker to gain unauthorized access to protected...

Chaskiq 跨站脚本漏洞

Chaskiq is an open source messaging platform. It is used for marketing, support and sales. chaskiq suffers from a cross-site scripting vulnerability that stems from the fact that chaskiq is vulnerable to input errors during web page generation "cross-site scripting". An attacker could exploit thi...

GNU Recutils Resource Management Error Vulnerability

GNU Recutils is a GNU community tool and library for accessing recfiles plain text databases. GNU Recutils has security vulnerabilities that can be exploited by attackers to cause segmentation errors or application crashes...

PT-2022-11465 · Unknown · Calibre-Web

Name of the Vulnerable Software and Affected Versions: calibre-web affected versions not specified Description: The issue is related to Business Logic Errors. There is no information provided about the estimated number of potentially affected devices or real-world incidents where this issue was...

The vulnerability of the wireshark traffic analysis program, related to pointer assignment errors, allows a hacker to trigger a service failure.

The vulnerability of the wireshark traffic analysis program is related to pointer arithmetic errors. Exploiting this vulnerability can allow a remote attacker to cause a service failure...

GNU Recutils Resource Management Error Vulnerability (CNVD-2022-06489)

GNU Recutils is a GNU community tool and library for accessing recfiles plain text databases. GNU Recutils has security vulnerabilities that can be exploited by attackers to cause segmentation errors or application crashes...

Google Chrome Security Update (stable-channel-update-for-desktop-2022-01) - Mac OS X

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...

GO-2021-0225

Certain invalid inputs to ReadUvarint or ReadVarint could cause those functions to read an unlimited number of bytes from the ByteReader argument before returning an error. This could lead to processing more input than expected when the caller is reading directly from a network and depends on...

Adobe Acrobat DC Continuous Security Update (APSB22-01) - Mac OS X

Adobe Acrobat Reader is prone to multiple vulnerabilities. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; yo...

libde265 Access Control Error Vulnerability

Libde265 is a German h.265 video codec. libde265 is vulnerable to an access control error, which can be exploited by attackers to cause segmentation errors and application crashes, resulting in a remote denial of service...

Adobe Acrobat Classic 2020 Security Update (APSB22-01) - Windows

Adobe Acrobat is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:acrobatdcclassic";...

Adobe Acrobat 2017 Security Update (APSB22-01) - Mac OS X

Adobe Acrobat Reader is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:acrobat";...

Adobe Reader 2017 Security Update (APSB22-01) - Mac OS X

Adobe Acrobat Reader is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:acrobatreader";...

Adobe Illustrator Multiple Privilege Escalation Vulnerabilities (APSB22-02) - Windows

The host is missing an important security update according to Adobe January update. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...