CVE-2025-9152 Improper Privilege Management in Multiple WSO2 API Manager via keymanager-operations DCR Endpoint

An improper privilege management vulnerability exists in WSO2 API Manager due to missing authentication and authorization checks in the keymanager-operations Dynamic Client Registration DCR endpoint. A malicious user can exploit this flaw to generate access tokens with elevated privileges,...

WSO2 API Manager和WSO2 API Control Plane 安全漏洞

WSO2 API Manager and WSO2 API Control Plane are products of WSO2, Inc. WSO2 API Manager is an API lifecycle management solution and WSO2 API Control Plane is a control panel. A security vulnerability exists in WSO2 API Manager and WSO2 API Control Plane that stems from a lack of authentication an...

OSV-2021-52 Stack-buffer-overflow in ot::KeyManager::SetMasterKey

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=7766 Crash type: Stack-buffer-overflow READ 16 Crash state: ot::KeyManager::SetMasterKey ot::MeshCoP::Dataset::ApplyConfiguration ot::MeshCoP::DatasetManager::Set...

openthread/ip6-send-fuzzer: Stack-buffer-overflow in ot::KeyManager::SetMasterKey

Project: https://github.com/openthread/openthread.git Detailed report: https://oss-fuzz.com/testcase?key=4791101178249216 Project: openthread Fuzzer: aflopenthreadip6-send-fuzzer Fuzz target binary: ip6-send-fuzzer Job Type: aflasanopenthread Platform Id: linux Crash Type: Stack-buffer-overflow...

NMRC Advisory - KeyManager Issue in ISS RealSecure on Nokia Appliances

I N F O R M A T I O N A N A R C H Y 2 K 0 2 www.nmrc.org/InfoAnarchy Nomad Mobile Research Centre A D V I S O R Y www.nmrc.org hellNBak [email protected] 19March2002 Platforms : Nokia Appliances Application : RealSecure Network Intrusion Detection NIDS Version 6.0 Severity : Medium Synopsis...