4504 matches found
Fortinet FortiSandbox Command Injection Vulnerability
Fortinet FortiSandbox is an APT Advanced Persistent Threat protection appliance from Fortinet. The appliance offers dual sandboxing technology, dynamic threat intelligence system, real-time control panel and reporting. Fortinet FortiSandbox suffers from a command injection vulnerability that...
Huawei Manageone 输入验证错误漏洞
Huawei Manageone is a cloud data center management solution from Huawei of China. huawei ManageOne is vulnerable due to a lack of checksum when the program uses certain parameters from external files. An attacker could use the vulnerability to construct a malicious file to achieve elevation of...
Juniper Networks Junos OS 输入验证错误漏洞
Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The OS provides a secure programming interface and the Junos SDK. Junos OS has an input validation error vulnerability that could be exploited by an attacker to elevate his privileges to...
pip 输入验证错误漏洞
Pip is a set of tools for installing and managing Python packages. An input validation error vulnerability exists in python pip, which could be exploited by a remote attacker to install a different revision on the repository...
Microsoft Windows Storage Spaces Controller 输入验证错误漏洞
Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation USA, Microsoft Windows is an operating system for personal devices, and Microsoft Windows Server is a server operating system. An elevation of privilege vulnerability exists in Storage Spaces Controller in...
IBM Security Access Manager 输入验证错误漏洞
IBM Security Access Manager is a product for information security management applications from IBM, USA. The product enables access management control through integrated devices for web, mobile and cloud computing. IBM Security Access Manager Docker is vulnerable to a privilege permission and...
Microsoft Windows DNS 输入验证错误漏洞
Windows Server is the brand name of a series of server operating systems released by Microsoft, which includes all Windows operating systems released under the brand name "Windows Server". A denial of service vulnerability exists in Windows DNS Server in Microsoft Windows Server. No details of th...
Microsoft Windows Storage Services 输入验证错误漏洞
Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation USA, Microsoft Windows is an operating system for personal devices, and Microsoft Windows Server is a server operating system. An elevation of privilege vulnerability exists in Storage Spaces Controller in...
Microsoft Windows Local Security Authority Subsystem Service 输入验证错误漏洞
Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation USA.Microsoft Windows is a set of operating systems for personal devices.Microsoft Windows Server is a set of server operating systems. A denial of service vulnerability exists in the LSA in Microsoft...
Microsoft Windows Storage Spaces Controller 输入验证错误漏洞
Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation USA, Microsoft Windows is an operating system for personal devices, and Microsoft Windows Server is a server operating system. An elevation of privilege vulnerability exists in Storage Spaces Controller in...
Exiv2 输入验证错误漏洞
Exiv2 is a set of C libraries and command line applications for managing image metadata. It provides the ability to read and write image metadata in multiple formats such as EXIF, IPTC, and XMP.A security vulnerability exists in Exiv2 version 0.27.1, which stems from an integer overflow in Exiv2'...
Microsoft Windows DNS 输入验证错误漏洞
Windows Server is the brand name of a series of server operating systems released by Microsoft, including all Windows operating systems released under the brand name "Windows Server." Windows Server in Microsoft Windows Server A denial-of-service vulnerability exists in Windows DNS Server. No...
Jsish 输入验证错误漏洞
Jsish is a small JavaScript parser written in C with a built-in database.Jsish has a buffer overflow vulnerability in versions prior to 3.0.8, which stems from the failure of the product's JsiObjSetLength function to restrict integer data boundaries, allowing an attacker to execute arbitrary code...
Microsoft Hyper-V 输入验证错误漏洞
Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation USA.Microsoft Windows is a set of operating systems for personal devices.Microsoft Windows Server is a set of server operating systems. A denial-of-service vulnerability exists in Hyper-V in Microsoft...
IBM Security Access Manager 输入验证错误漏洞
IBM Security Access Manager is a product for information security management applications from IBM, USA. The product enables access management control through integrated devices for web, mobile and cloud computing. A security vulnerability exists in IBM Security Access Manager Docker, which can b...
Samsung Tizen Code Injection Vulnerability (CNVD-2021-51433)
Samsung Tizen is an open-source Linux-based mobile operating system from Samsung, South Korea, for smartphones, tablets, smartwatches, netbooks, in-vehicle messaging and entertainment devices, and smart TVs. Samsung Tizen suffers from a code injection vulnerability that stems from an input...
JAMF Jamf Pro 输入验证错误漏洞
JAMF Jamf Pro is an Apple device management solution from Jamf America JAMF. An input validation error vulnerability exists in versions of Jamf Pro prior to 10.30.1 that allows unauthenticated URL redirection to affect Jamf Pro customers in locally hosted environments...
Pexip Infinity Input Validation Error Vulnerability (CNVD-2021-59067)
Pexip Infinity is a cloud collaboration platform for video conferencing from Pexip Norway. The product provides high-quality and secure cloud conferencing capabilities. An input validation error vulnerability exists in Pexip Infinity, which can be exploited by an attacker to cause a denial of...
Samsung AR Emoji Editor Input Validation Error Vulnerability
Samsung AR Emoji Editor is an emoji editor from Samsung South Korea. An input validation error vulnerability exists in Samsung Mobile AR Emoji Editor. An attacker could use this vulnerability to allow an untrusted application to access arbitrary files with escalated privileges...
Allen Bradley Micrologix 1100 Input Validation Error Vulnerability
The Allen Bradley Micrologix 1100 is a programmable controller for industrial environments from Allen Bradley of the Netherlands. The device supports Ethernet access, online editing for monitoring and programming, an embedded Web server for controlling the device via a Web page, and an embedded L...