The vulnerability of the graphical interface of Spectrum Virtualize software lies in the insufficient protection of operational data, which allows attackers to execute arbitrary code and enhance their privileges.

The vulnerability of the graphical interface of Spectrum Virtualize software lies in the insufficient protection of operational data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code and gain increased privileges...

CVE-2023-43071

Dell SmartFabric Storage Software v1.4 and earlier contains possible vulnerabilities for HTML injection or CVS formula injection which might escalate to cross-site scripting attacks in HTML pages in the GUI. A remote authenticated attacker could potentially exploit these issues, leading to variou...

How to backup NetScaler appliance via Command Line or GUI interface

This article describes how to backup NetScaler appliance via command line or GUI interface...

Broadcom RAID Controller Security Vulnerability

The Broadcom RAID Controller is a series of RAID controllers from Broadcom USA. A security vulnerability exists in the Broadcom RAID Controller that originates from allowing an attacker to create insecure folders for elevation of privilege using the Web GUI...

PortexAnalyzerGUI - Graphical Interface For PortEx, A Portable Executable And Malware Analysis Library

Graphical interface for PortEx, a Portable Executable and Malware Analysis Library Download Releases page Features Header information from: MSDOS Header, Rich Header, COFF File Header, Optional Header, Section Table PE Structures: Import Section, Resource Section, Export Section, Debug Section...

SUSE CVE-2023-28101

Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. In versions prior to 1.10.8, 1.12.8, 1.14.4, and 1.15.4, if an attacker publishes a Flatpak app with elevated permissions, they can hide those permissions from users of the flatpak1 command-line...

UBUNTU-CVE-2023-28101

Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. In versions prior to 1.10.8, 1.12.8, 1.14.4, and 1.15.4, if an attacker publishes a Flatpak app with elevated permissions, they can hide those permissions from users of the flatpak1 command-line...

SUSE CVE-2019-14822

A flaw was discovered in ibus in versions before 1.5.22 that allows any unprivileged user to monitor and send method calls to the ibus bus of another user due to a misconfiguration in the DBus server setup. A local attacker may use this flaw to intercept all keystrokes of a victim user who is usi...

The vulnerability of the graphical interface of the Dell GeoDrive local file system allows a perpetrator to disclose protected information.

The vulnerability of the Dell GeoDrive local file system’s graphical interface is related to the lack of protection for service data. Exploiting this vulnerability can allow an attacker to disclose protected information...

The vulnerability of the cloning function of Git’s GUI-based version control system for Windows allows a hacker to execute arbitrary code.

The vulnerability of the cloning function in Git GUI-based distributed version control systems related to the use of an unreliable path for checking the orthography of cloned repositories. Exploiting this vulnerability allows a malicious actor to execute arbitrary code during the cloning of...

The vulnerability of FortiWLC wireless access controller software, related to deficiencies in access control, allows attackers to execute arbitrary commands and increase their privileges.

The vulnerability of the microprogrammed software of FortiWLC wireless access controllers is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely and elevate their privileges to the root level, bypassing the...

DEBIAN-CVE-2022-39334

Nextcloud also ships a CLI utility called nextcloudcmd which is sometimes used for automated scripting and headless servers. Versions of nextcloudcmd prior to 3.6.1 would incorrectly trust invalid TLS certificates, which may enable a Man-in-the-middle attack that exposes sensitive data or...

SAP GUI 代码注入漏洞

SAP GUI is an application of SAP, the graphical user interface of the SAP system. SAP GUI is vulnerable to operating system command injection, which results from the failure of the network system or product to properly filter special characters, commands, etc. during the execution of commands...

The vulnerability of the graphical interface of FortiWeb web applications allows attackers to carry out cross-site scripting attacks.

The vulnerability of the graphical interface of FortiWeb web applications is related to the lack of protective measures taken during the creation of the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

The vulnerability of the graphical interface of the software platform allows a hacker to gain access to the report templates managed by Fortinet FortiManager and FortiAnalyzer network devices.

The vulnerability of the graphical interface of the Fortinet FortiManager device management system and the FortiAnalyzer network monitoring system lies in the disclosure of information in the erroneous data area. Exploiting this vulnerability can allow a malicious actor to gain access to the repo...

Cisco vManage 访问控制错误漏洞

Cisco vManage is a highly customizable dashboard from Cisco, Inc. that simplifies and automates the deployment, configuration, management, and operation of Cisco SD-WAN. Cisco vManage suffers from an Access Control Error vulnerability that stems from the GUI being accessible on a self-managed clo...

ALSA-2022:1814 Low: gnome-shell security and bug fix update

GNOME Shell acts as a compositing manager for the desktop, and displays both application windows and other objects. It provides core interface functions like switching windows, launching applications, and notifications. It takes advantage of the capabilities of modern graphics hardware and...

[SECURITY] Fedora 34 Update: htmldoc-1.9.15-1.fc34

HTMLDOC converts HTML source files into indexed HTML, PostScript, or Portable Document Format PDF files that can be viewed online or printed. With no options a HTML document is produced on stdout. The second form of HTMLDOC reads HTML source from stdin, which allows you to use HTMLDOC as a filter...

The vulnerability of the TFTP-client software for Zyxel GS1900 and XGS1210 series switch devices allows a intruder to execute arbitrary commands.

The vulnerability of the TFTP-client software for Zyxel GS1900 and XGS1210 series switch devices is related to the lack of measures taken to neutralize special elements. Exploiting this vulnerability allows a malicious actor to execute arbitrary OS commands via the graphical interface...

The vulnerability of the libsal.so file in Zyxel GS1900 series switch software allows a hacker to execute arbitrary commands.

The vulnerability of the libsal.so file in Zyxel GS1900 series switch software lies in the lack of measures taken to neutralize special elements. Exploiting this vulnerability allows an attacker to execute arbitrary OS commands through the graphical interface...