CVE-2019-12839

OrangeHRM 4.3.1 and earlier versions contain an input validation flaw in admin/listMailConfiguration (txtSendmailPath) that allows authenticated attackers to achieve arbitrary command execution. Affected component is the listMailConfiguration path within OrangeHRM’s admin area; root cause is inpu...

Intel NUC Kit Input Validation Error Vulnerability (CNVD-2019-42733)

The Intel NUC Kit is a small desktop computer from Intel Corporation USA. An input validation error vulnerability exists in the system firmware in the Intel NUC Kit. The vulnerability originates from a network system or product that does not properly validate incoming data. An attacker could...

SweetScape Software 010 Editor Input Validation Error Vulnerability (CNVD-2019-27314)

SweetScape Software 010 Editor is a text editor from SweetScape Software Canada. An input validation error vulnerability exists in SweetScape Software 010 Editor version 9.0.1. The vulnerability stems from a networked system or product that does not properly validate input data. An attacker could...

SweetScape Software 010 Editor Input Validation Error Vulnerability (CNVD-2019-27315)

SweetScape Software 010 Editor is a text editor from SweetScape Software Canada. An input validation error vulnerability exists in SweetScape Software 010 Editor version 9.0.1. The vulnerability stems from a networked system or product that does not properly validate input data. An attacker could...

Intel Open Cloud Integrity Technology Input Validation Error Vulnerability

Intel Open Cloud Integrity Technology CIT is a set of solutions from Intel Corporation USA for establishing a hardware root of trust and building a chain of trust between hardware, operating systems, hypervisors, virtual machines and Docker containers. An input validation error vulnerability exis...

MediaWiki Input Validation Error Vulnerability

MediaWiki is a set of free and freely available web-based Wiki engines from the MediaWiki Wikimedia Foundation in the United States. It can be used to deploy in-house knowledge management and content management systems. An input validation error vulnerability exists in MediaWiki versions 1.27.0...

WESEEK GROWI Input Validation Error Vulnerability

WESEEK GROWI is a suite of team collaboration software from WESEEK Japan. An input validation error vulnerability exists in the login process in WESEEK GROWI 3.4.6 and prior versions. The vulnerability originates from a network system or product that does not properly validate input data. An...

Fuji Electric V-Server Input Validation Error Vulnerability

Fuji Electric V-Server is a suite of software for collecting and managing real-time field data from Fuji Electric Japan. An input validation error vulnerability exists in Fuji Electric V-Server versions prior to 6.0.33.0. The vulnerability originates from a network system or product that does not...

Twisted Input Validation Error Vulnerability

Twisted is an event-driven open source web engine written in the Python language. An input validation error vulnerability exists in Twisted versions prior to 19.2.1. The vulnerability stems from a network system or product that does not properly validate incoming data. An attacker can exploit the...

Huawei HG255s Input Validation Error Vulnerability

The Huawei HG255s is a wireless router from Huawei China. A security vulnerability exists in the Huawei HG255s. The vulnerability can be exploited by an attacker to compromise the integrity of the device by tricking a user into clicking on a link...

Optergy Proton/Enterprise Input Validation Error Vulnerability

Optergy Proton/Enterprise is an enterprise building management system from Optergy USA. An input validation error vulnerability exists in Optergy Proton/Enterprise versions 2.3.0a and earlier. The vulnerability arises from a network system or product that does not properly validate input data...

PT-2019-2421 · Microsoft · Hyper-V +1

Name of the Vulnerable Software and Affected Versions: Microsoft Hyper-V affected versions not specified Description: The issue is related to errors in input validation on the host server of the Microsoft Hyper-V hardware virtualization system for the Windows operating system. This can allow a...

NVIDIA Vibrante Linux Input Validation Error Vulnerability

NVIDIA Vibrante Linux is a suite of Linux distributions for Drive PX2 Open AI Vehicle Computing Platform from NVIDIA. An input validation error vulnerability exists in NVIDIA Vibrante Linux. The vulnerability stems from a failure of a networked system or product to properly validate incoming data...

IBM Water Operations for Waternamics and IBM Intelligent Operations Center Input Validation Error Vulnerability

IBM Intelligent Operations Center IOC and IBM Water Operations for Waternamics are both products of IBM Corporation, U.S.A. IBM Intelligent Operations Center is a suite of city operations solutions. IBM Intelligent Operations Center is a suite of city operations solutions with features such as da...

Open-source Ticket Request System Input Validation Error Vulnerability

Open-source Ticket Request System OTRS is an open-source defect tracking and management system software from the German OTRS Group. The software categorizes service requests submitted through various channels such as phone calls, emails, etc. into different queues and service levels, and the...

Moodle Input Validation Error Vulnerability

Moodle is a free, open-source e-learning software platform, also known as a course management system, learning management system or virtual learning environment. An input validation error vulnerability exists in Moodle that stems from the program failing to properly check the size of private file...

Moodle Input Validation Error Vulnerability (CNVD-2019-35809)

Moodle is a free, open-source e-learning software platform, also known as a course management system, learning management system or virtual learning environment. An input validation error vulnerability exists in the upload cohorts page in Moodle, which stems from a network system or product that...

Schneider Electric SoMachine Basic and Schneider Electric Modicon M221 Input Validation Error Vulnerability

Schneider Electric SoMachine Basic and Schneider Electric Modicon M221 are both products of Schneider Electric, France.Schneider Electric SoMachine Basic is a suite of software for programming logic controllers. The Schneider Electric Modicon M221 is a programmable logic controller. An input...

Multiple Schneider Electric Products Input Validation Error Vulnerability

The Schneider Electric Modicon M580 is a programmable automation controller.The Schneider Electric Modicon Premium is a large programmable logic controller PLC for discrete or process applications.The Schneider Electric Modicon Quantum is a large programmable logic controller PLC for process...

Multiple Schneider Electric Products Input Validation Error Vulnerability (CNVD-2019-34827)

The Schneider Electric Modicon M580 is a programmable automation controller.The Schneider Electric Modicon Premium is a large programmable logic controller PLC for discrete or process applications.The Schneider Electric Modicon Quantum is a large programmable logic controller PLC for process...