312 matches found
Command Execution Vulnerability in SuperMap iPortal of Beijing SuperMap Software Co.
SuperMap iPortal is a GIS portal platform for cloud computing, which enables the integration, discovery, sharing and management of various GIS resources such as maps, services, scenes and data, and also monitors multiple GIS servers within the organization to ensure the safe and stable operation ...
Command Execution Vulnerability in SuperMap iServer 10i of Beijing SuperMap Software Co.
SuperMap iServer is a cloud GIS application server based on high-performance cross-platform GIS kernel. A command execution vulnerability exists in SuperMap iServer 10i of Beijing SuperMap Software Co. Ltd. that can be exploited by an attacker to gain control of the server...
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: GIS). Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
...
AZL-6723 CVE-2021-35631 affecting package mysql for versions less than 8.0.28-1
Vulnerability in the MySQL Server product of Oracle MySQL component: Server: GIS. Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks o...
UBUNTU-CVE-2021-35631
Vulnerability in the MySQL Server product of Oracle MySQL component: Server: GIS. Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks o...
CVE-2021-35631
The CVE-2021-35631 entry applies to Oracle MySQL Server (Server: GIS) with affected versions 8.0.26 and earlier. It describes a high-privilege attacker who can gain network access via multiple protocols to cause the MySQL server to hang or crash (complete DoS). The risk is supported by CVSS 3.1 v...
mysql: Server: GIS unspecified vulnerability (CPU Jul 2021)
Vulnerability in the MySQL Server product of Oracle MySQL component: Server: GIS. Supported versions that are affected are 8.0.25 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks o...
Iran-linked DEV-0343 targeting defense, GIS, and maritime sectors
DEV-0343 is a new activity cluster that the Microsoft Threat Intelligence Center MSTIC first observed and began tracking in late July 2021. MSTIC has observed DEV-0343 conducting extensive password spraying against more than 250 Office 365 tenants, with a focus on US and Israeli defense technolog...
Iran-linked DEV-0343 targeting defense, GIS, and maritime sectors
DEV-0343 is a new activity cluster that the Microsoft Threat Intelligence Center MSTIC first observed and began tracking in late July 2021. MSTIC has observed DEV-0343 conducting extensive password spraying against more than 250 Office 365 tenants, with a focus on US and Israeli defense technolog...
mysql: Server: GIS unspecified vulnerability (CPU Jul 2021)
Vulnerability in the MySQL Server product of Oracle MySQL component: Server: GIS. Supported versions that are affected are 8.0.25 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks o...
ALSA-2021:3590 Moderate: mysql:8.0 security, bug fix, and enhancement update
MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon mysqld and many client programs and libraries. The following packages have been upgraded to a later upstream version: mysql 8.0.26. BZ1996693 Security Fixes: mysql: Server: Stored Procedure multiple...
CVE-2021-2417
Vulnerability in the MySQL Server product of Oracle MySQL component: Server: GIS. Supported versions that are affected are 8.0.25 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks o...
CVE-2021-2417
Vulnerability in the MySQL Server product of Oracle MySQL component: Server: GIS. Supported versions that are affected are 8.0.25 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks o...
CVE-2021-2417
Vulnerability in the MySQL Server product of Oracle MySQL component: Server: GIS. Supported versions that are affected are 8.0.25 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks o...
File upload vulnerability in county-level flash flood monitoring and early warning system of Suzhou Mengtu Geographic Information System Co.
Suzhou Mengtu Geographic Information System Limited Liability Company is a high-tech company specializing in the research and development of geographic information system platform and the development of industry application software. Suzhou Mengtu Geographic Information System Limited Liability...
SQL injection vulnerability in county-level flash flood monitoring and early warning system of Suzhou Mengtu Geographic Information System Co.
Suzhou Mengtu Geographic Information System Limited Liability Company is a high-tech company specializing in the research and development of geographic information system platform and the development of industry application software. Suzhou Mengtu Geographic Information System Limited Liability...
File upload vulnerability in county-level flash flood monitoring and early warning system of Suzhou Mengtu Geographic Information System Co., Ltd (CNVD-2021-51387)
Suzhou Mengtu Geographic Information System Limited Liability Company is a high-tech company specializing in the research and development of geographic information system platform and the development of industry application software. Suzhou Mengtu Geographic Information System Limited Liability...
Directory traversal vulnerability in county-level flash flood monitoring and early warning system of Suzhou Mengtu Geographic Information System Co.
Suzhou Mengtu Geographic Information System Limited Liability Company is a high-tech company specializing in the research and development of geographic information system platform and the development of industry application software. Suzhou Mengtu Geographic Information System Limited Liability...
County-level flash flood monitoring and early warning system of Suzhou Mengtu Geographic Information System Co., Ltd. suffers from unauthorized access vulnerability
Suzhou Mengtu Geographic Information System Limited Liability Company is a high-tech company specializing in the research and development of geographic information system platform and the development of industry application software. Suzhou Mengtu Geographic Information System Limited Liability...
ESRI ArcGIS suffers from information leakage vulnerability
ESRI ArcGIS is a scalable and comprehensive GIS platform. An information disclosure vulnerability exists in ESRI ArcGIS, which can be exploited by attackers to obtain sensitive information...