PT-2021-2427 · Microsoft · Windows Dns Server +1

Name of the Vulnerable Software and Affected Versions: Windows DNS Server affected versions not specified Description: The issue is related to errors in processing input data in the Windows DNS server service, which can be exploited by a remote attacker to execute arbitrary code. This can affect...

PT-2021-2426 · Microsoft · Windows Dns Server +1

Name of the Vulnerable Software and Affected Versions: Windows DNS Server affected versions not specified Description: The issue is related to errors in processing input data in the Windows DNS server service, which can lead to a denial-of-service condition. This can be exploited by a remote...

CVE-2021-3342

EPrints 3.4.2 allows remote attackers to read arbitrary files and possibly execute commands via crafted LaTeX input to a cgi/latex2png?latex= URI...

CVE-2020-27841

CVE-2020-27841 affects the OpenJPEG2 library (openjpeg2) prior to version 2.4.0. The flaw occurs when an attacker provides crafted input to be processed by the OpenJPEG encoder, potentially causing an out-of-bounds read and impacting availability. The issue is evidenced in multiple connected advi...

The vulnerability of the REST API implementation of the network management system’s data center management module allows a attacker to re-record any files on the device.

The vulnerability of the REST API interface of the Cisco Data Center Network Manager DCNM system is related to errors in processing input data. Exploiting this vulnerability allows an attacker to re-record any files on the device remotely...

The vulnerability of the REST API implementation of the network management system’s data center management module allows a attacker to gain access to protected information.

The vulnerability of the REST API interface of the Cisco Data Center Network Manager DCNM system is related to errors in processing input data. Exploiting this vulnerability can allow an attacker to gain access to protected information remotely...

The vulnerability of the authentication function of the Cisco IOS XE operating system’s web server allows a hacker to cause a malfunction in the web server’s operation.

The vulnerability of the Cisco IOS XE operating system’s server authentication function is related to errors in processing input data. Exploiting this vulnerability can allow a remote attacker to cause malfunctions in the server...

The vulnerability of the command syntax analyzer in Cisco IOS and Cisco IOS XE operating systems allows a attacker to gain access to protected information.

The vulnerability of the command syntax analyzer in Cisco IOS and Cisco IOS XE operating systems is related to errors in processing input data. Exploiting this vulnerability can allow an attacker to gain access to protected information...

The vulnerability of the SQL Server Reporting Services reporting system’s server-side components, related to errors in processing input data, allows attackers to upload files with invalid types.

The vulnerability of the SQL Server Reporting Services reporting system is related to errors in processing input data. Exploiting this vulnerability allows a malicious actor to remotely upload files with invalid types...

PT-2020-5089 · Cisco · Cisco Ios Xe

Name of the Vulnerable Software and Affected Versions: Cisco IOS XE Software affected versions not specified Description: The issue is related to multiple vulnerabilities in the web management framework of Cisco IOS XE Software. These vulnerabilities could allow an authenticated, remote attacker...

PT-2020-4430 · Cisco · Cisco Ios Xe

Name of the Vulnerable Software and Affected Versions: Cisco IOS XE Software affected versions not specified Description: The issue is related to multiple vulnerabilities in the web management framework of Cisco IOS XE Software. These vulnerabilities could allow an authenticated, remote attacker...

The vulnerability of the Microsoft Dynamics 365 for Finance and Operations resource planning software, related to input data processing errors, allows a perpetrator to execute arbitrary code.

The vulnerability of the Microsoft Dynamics 365 for Finance and Operations resource planning software is related to processing errors with input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

CVE-2020-1046

A remote code execution vulnerability exists when Microsoft .NET Framework processes input. An attacker who successfully exploited this vulnerability could take control of an affected system. To exploit the vulnerability, an attacker would need to be able to upload a specially crafted file to a w...

Microsoft .NET Framework Multiple Vulnerabilities (KB4570508)

This host is missing an important security update according to Microsoft KB4570508 Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This...

Microsoft .NET Framework Multiple Vulnerabilities (KB4569751)

This host is missing an important security update according to Microsoft KB4569751 Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This...

Bond Denial of Service Vulnerability

A denial of service vulnerability exists when the .NET implementation of Bond improperly parses input. An attacker who successfully exploited the vulnerability could cause a process using Bond to stop responding. To exploit this vulnerability, an attacker would need to upload specially crafted...

Cisco IOS and IOS XE Software Common Industrial Protocol Denial of Service (cisco-sa-cipdos-hkfTZXEx)

According to its self-reported version, Cisco IOS XE Software is affected by a multiple vulnerabilities in the implementation of the Common Industrial Protocol CIP feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device t...

Cisco IOS and IOS XE Software Common Industrial Protocol Denial of Service (cisco-sa-cipdos-hkfTZXEx)

According to its self-reported version, Cisco IOS XE Software is affected by a multiple vulnerabilities in the implementation of the Common Industrial Protocol CIP feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device t...

CVE-2020-3225

Multiple vulnerabilities in the implementation of the Common Industrial Protocol CIP feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service DoS condition. The vulnerabilities a...

CVE-2020-3225

Multiple vulnerabilities in the implementation of the Common Industrial Protocol CIP feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service DoS condition. The vulnerabilities a...