24 matches found
GitLab 11.7 < 18.3.5 / 18.4 < 18.4.3 / 18.5 < 18.5.1 (CVE-2025-11974)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Gitlab reports: Improper access control issue in runner API impacts GitLab EE Denial of service issue in event collection impacts GitLab CE/EE Denial of service issue in JSON validation impacts GitLab...
PT-2025-43134
Name of the Vulnerable Software and Affected Versions GitLab CE/EE versions 17.10 through 18.3.4 GitLab CE/EE versions 18.4 through 18.4.2 GitLab CE/EE versions 18.5 through 18.5.0 Description An issue in GitLab CE/EE could allow an unauthenticated attacker to cause a denial of service condition ...
Gitlab -- vulnerabilities
Gitlab reports: Improper access control issue in runner API impacts GitLab EE Denial of service issue in event collection impacts GitLab CE/EE Denial of service issue in JSON validation impacts GitLab CE/EE Denial of service issue in upload impacts GitLab CE/EE Incorrect Authorization issue in...
The vulnerability of the Setup and Boot Event Collection function in Microsoft Windows systems allows a perpetrator to execute arbitrary code.
The vulnerability of the Setup and Boot Event Collection function in Microsoft Windows systems is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...
The vulnerability of the IBM QRadar SIEM system, related to the transmission of critical information in plaintext, allows a perpetrator to execute a “man-in-the-middle” type attack.
The vulnerability of the IBM QRadar SIEM event collection and analysis system is related to the transmission of critical information in plaintext. Exploiting this vulnerability could allow a malicious actor to execute a “man-in-the-middle” type attack...
The vulnerability of the IBM QRadar SIEM system for event collection and analysis, related to the disclosure of protected information, allows attackers to gain unauthorized access to confidential data.
The vulnerability of the IBM QRadar SIEM event collection and analysis system is related to the disclosure of protected information. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...
The vulnerability of the IBM QRadar SIEM system for event collection and analysis lies in the lack of protection for operational data, which allows attackers to exploit this weakness to disclose protected information.
The vulnerability of the IBM QRadar SIEM event collection and analysis system is related to the lack of protection for operational data. Exploiting this vulnerability could allow a malicious actor to disclose the protected information...
The vulnerability of the IBM QRadar SIEM system for event collection and analysis, related to insufficient protection of operational data, allows attackers to gain unauthorized access to protected information.
The vulnerability of the IBM QRadar SIEM event collection and analysis system is related to insufficient protection for operational data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...
The vulnerability of the IBM QRadar SIEM system for event collection and analysis, related to the use of cryptographic algorithms containing defects, allows attackers to bypass the cryptographic mechanisms used for encryption protection.
The vulnerability of the IBM QRadar SIEM event collection and analysis system is related to the use of cryptographic algorithms that contain vulnerabilities. Exploiting this vulnerability could allow a malicious actor to bypass the cryptographic security measures...
The vulnerability of IBM QRadar SIEM’s event collection and analysis system stems from insufficient validation of input data, allowing attackers to carry out administrative actions.
The vulnerability of IBM QRadar SIEM’s event collection and analysis system exists due to insufficient verification of input data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to carry out administrative actions...
The vulnerability of the IBM QRadar SIEM system for event collection and analysis, related to the disclosure of protected information, allows attackers to gain unauthorized access to protected information.
The vulnerability of the IBM QRadar SIEM event collection and analysis system is related to the disclosure of protected information. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information...
The vulnerability of the IBM QRadar SIEM system for event collection and analysis, related to insufficiently secure data encryption, allows attackers to gain unauthorized access to protected information.
The vulnerability of the IBM QRadar SIEM event collection and analysis system is related to insufficiently secure data encryption. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...
The vulnerability of the IBM QRadar SIEM system for event collection and analysis, related to authentication procedures that allow unauthorized access by attackers to protected information.
The vulnerability of the IBM QRadar SIEM event collection and analysis system is related to deficiencies in authentication procedures. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...
The vulnerability of the IBM QRadar SIEM system for event collection and analysis, related to insufficient validation of incoming requests, allows a perpetrator to carry out an SSRF attack.
The vulnerability of the IBM QRadar SIEM event collection and analysis system is related to insufficient checking of incoming requests. Exploiting this vulnerability could allow a malicious actor, operating remotely, to execute an SSRF attack by sending specially crafted requests...
The vulnerability of the IBM QRadar SIEM system for event collection and analysis, related to insufficient validation of incoming requests, allows a perpetrator to carry out an SSRF attack.
The vulnerability of the IBM QRadar SIEM event collection and analysis system is related to insufficient checking of incoming requests. Exploiting this vulnerability could allow a malicious actor, operating remotely, to execute an SSRF attack by sending specially crafted requests...
The vulnerability of the IBM QRadar SIEM system for event collection and analysis lies in insufficient validation of requests on the server side. This allows attackers to send unauthorized requests and disclose sensitive information that should be protected.
The vulnerability of the IBM QRadar SIEM event collection and analysis system is related to insufficient validation of requests on the server side. Exploiting this vulnerability allows a malicious actor to send unauthorized requests and disclose protected information...
The vulnerability of the IBM QRadar SIEM system for event collection and analysis lies in the lack of protection for operational data, allowing attackers to disclose the protected information.
The vulnerability of the IBM QRadar SIEM event collection and analysis system is related to the lack of protection for operational data. Exploiting this vulnerability could allow a malicious actor to disclose the protected information...
The vulnerability of the IBM QRadar SIEM system for event collection and analysis arises from the failure to implement measures to neutralize script-related tags. This allows attackers to disclose protected information.
The vulnerability of the IBM QRadar SIEM event collection and analysis system is related to the failure to implement measures to neutralize script-related tags. Exploiting this vulnerability can allow a malicious actor to disclose protected information...
Sysmon v2.0 - System Activity Monitor for Windows
System Monitor Sysmon is a Windows system service and device driver that, once installed on a system, remains resident across system reboots to monitor and log system activity to the Windows event log. It provides detailed information about process creations, network connections, and changes to...
Alienvault Open Source SIEM (OSSIM) 4.1 - Multiple SQL Injection Vulnerabilities
Title: Alienvault OSSIM Open Source SIEM 4.1 Multiple SQL Vulnerabilities Date: February 15, 2013 Author: Glafkos Charalambous Vendor: AlienVault Vendor URL: http://www.alienvault.com Reported: February 17, 2013 Timeline: --------- 17 Feb 2013: Vulnerability Reported to AlienVault 19 Feb 2013:...