Trend Micro Apex One, OfficeScan XG and Worry-Free Business Security Input Validation Error Vulnerabilities

Trend Micro OfficeScan XG is a suite of distributed anti-virus software, Apex One is a suite of endpoint security software that provides automated threat detection and response, and Worry-Free. Business Security is a suite of enterprise-class information security protection solutions. An input...

JFrog Artifactory Input Validation Error Vulnerability

JFrog Artifactory is an open source, general-purpose Artifact repository manager from Israel's JFrog that supports clustering and high-availability Docker registries, and provides an end-to-end solution for automating the tracking of artifacts from development to production. An input validation...

antiX and MX Linux Input Validation Error Vulnerability

antiX Linux is a lightweight desktop Linux system distribution. antiX Linux is a Linux system distribution. An input validation error vulnerability exists in antiX and MX Linux that originates in the configuration of Sudo and can be exploited by a local attacker to gain root privileges...

Halvotec Information Services RAQuest Input Validation Error Vulnerability

Halvotec Information Services RAQuest is a suite of automated tax withholding software from Halvotec Information Services, Germany. An input validation error vulnerability exists in the login screen in Halvotec Information Services RAQuest version 10.23.10801.0. An attacker could exploit this...

Apache Commons Configuration Input Validation Error Vulnerability

Apache Commons Configuration is the United States Apache Apache Software Foundation , a common configuration interface , it is mainly used to enable Java applications to read configuration data from a variety of sources . An input validation error vulnerability exists in Apache Commons...

Twisted Input Validation Error Vulnerability (CNVD-2020-21499)

Twisted is an event-driven open source web engine written in the Python language. An input validation error vulnerability exists in Twisted version 19.10.0 and prior versions. The vulnerability stems from a network system or product that does not properly validate incoming data. No detailed...

Directory Traversal

undertow is vulnerable to directory traversal attacks. The vulnerability exists due to input validation error in AJP connector. A remote attacker can send a specially crafted HTTP request to port 8009/tcp and read arbitrary files on the system...

KDE Applications Input Validation Error Vulnerability

KDE Applications is an open source software suite from the KDE community that provides over 200 applications that run on any Linux desktop as well as other platforms. A security vulnerability exists in the messagepartthemes/default/defaultrenderer.cpp file in messagelib in versions of KDE...

Opera Software Opera Input Validation Error Vulnerability

Opera Software Opera is a web browser from the Norwegian company Opera Software that supports multi-window browsing, customizable user interfaces, and more. An input validation error vulnerability exists in previous versions of Opera Software Opera 53 for Android-based platforms. The vulnerabilit...

utilitify input validation error vulnerability

utilitify is a utility program for working with collections such as objects, arrays and tuples numbers, strings, etc.. An input validation error vulnerability exists in versions of utilitify prior to 1.0.3. The vulnerability stems from a networked system or product that does not properly validate...

Intel NUC Input Validation Error Vulnerability (CNVD-2020-21236)

The Intel NUC Kit is a small desktop computer from Intel Corporation USA. An input validation error vulnerability exists in the firmware in Intel NUC, which can be exploited by a local attacker to elevate privileges...

NVIDIA Virtual GPU Manager vGPU Input Validation Error Vulnerability

NVIDIA Virtual GPU Manager is an NVIDIA virtual GPU management software from NVIDIA. vGPU is one of the virtual FPU components. An input validation error vulnerability exists in the vGPU plug-in in NVIDIA Virtual GPU Manager all versions, which stems from the program failing to properly validate...

minimist Input Validation Error Vulnerability

minimist is a command line parameter parsing tool. An input validation error vulnerability exists in minimist, which can be exploited by an attacker to add or modify properties of Object.prototype using the "constructor" or "proto" payload...

WAGO PFC200 Input Validation Error Vulnerability

The WAGO PFC 200 is a programmable logic controller PLC from the German company WAGO. An input validation error vulnerability exists in the cloud connectivity feature in WAGO PFC 200 using firmware versions 03.02.0214, 03.01.0713, and 03.00.3912. An attacker could exploit this vulnerability to ga...

The vulnerability of the message filtering function of Cisco AsyncOS software for Cisco Email Security Appliances and Cisco Content Security Management Appliances allows a attacker to cause a service failure.

The vulnerability of the message filtering function in Cisco AsyncOS software for Cisco Email Security Appliances and Cisco Content Security Management Appliances exists due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service interruption...

CloudBees Jenkins Groovy Plugin Input Validation Error Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version of the release/testing project and some timed tasks . Groovy Plugin is used in one of the...

SAP Landscape Management Input Validation Error Vulnerability (CNVD-2020-18534)

SAP Landscape Management is a centralized SAP product management system from SAP. The system is used to centrally manage and configure SAP software systems running in physical, virtual, and cloud infrastructures. An input validation error vulnerability exists in SAP Landscape Management version...

SAP Mobile Platform Input Validation Error Vulnerability

SAP Mobile Platform SMP is a set of mobile application development platform from SAP. An input validation error vulnerability exists in SAP Mobile Platform, which can be exploited by an attacker to cause a denial of service...

AsyncOS Input Validation Error Vulnerability in Multiple Cisco Products

Cisco Content Security Management Appliance SMA and so on are the products of the American Cisco Cisco company.Cisco Content Security Management Appliance is a set of content security management equipment. The appliance is mainly used to manage all the policies, reports, audit information, etc. o...

SUSE-SU-2019:3060-2 Security update for libpng16

This update for libpng16 fixes the following issues: Security issues fixed: - CVE-2019-7317: Fixed a use-after-free vulnerability, triggered when pngimagefree was called under pngsafeexecute bsc1124211. - CVE-2017-12652: Fixed an Input Validation Error related to the length of chunks bsc1141493...