PackageKit authorization issue vulnerability

PackageKit is an open-source system for installing and updating software. Versions of PackageKit 1.3.5 and earlier have a licensing issue vulnerability. This vulnerability stems from incorrect handling of the parameter ‘frontend-socket’ in the function gfiletest within the API component file...

Dromara Lamp-Cloud 授权问题漏洞

Dromara Lamp-Cloud is an open-source rapid development platform for microservices, built using Jdk11, SpringCloud, and SpringBoot. Versions of Dromara Lamp-Cloud 5.8.1 and earlier have a licensing issue vulnerability, which stems from improper authorization in the pageUser function...

WordPress plugin UiPress lite | Effortless custom dashboards, admin themes and pages 授权问题漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that extends the...

Frigate 授权问题漏洞

Frigate is a complete native NVR developed by Blake Blackshear, designed specifically for home assistants with AI object detection capabilities. Versions of Frigate prior to 0.16.2 have a licensing issue vulnerability. This vulnerability stems from the ability of the viewer role user to delete...

SourceCodester Pet Grooming Management Software 授权问题漏洞

SourceCodester Pet Grooming Management Software is an open-source pet grooming management system developed by SourceCodester. Version 1.0 of SourceCodester Pet Grooming Management Software has a licensing issue vulnerability. This vulnerability stems from operations on the financial reporting pag...

Intelbras VIP 3260 Z IA 授权问题漏洞

The Intelbras VIP 3260 Z IA is an IP surveillance camera produced by the Brazilian company Intelbras. Version 2.840.00IB005.0.T of the Intelbras VIP 3260 Z IA has an authorization issue vulnerability. This vulnerability stems from incorrect handling of files/OutsideCmd, which may lead to the...

SourceCodester Pet Grooming Management Software Authorization Issues Vulnerabilities

SourceCodester Pet Grooming Management Software is an open-source pet grooming management system developed by SourceCodester. Version 1.0 of SourceCodester Pet Grooming Management Software has a licensing issue vulnerability. This vulnerability stems from incorrect handling of the groupid paramet...

Bdtask SalesERP Authorization Issues Vulnerability

Bdtask SalesERP is a sales enterprise resource planning software developed by the Bangladeshi company Bdtask. Versions of Bdtask SalesERP from 20260116 onward have a licensing issue vulnerability. This vulnerability arises from incorrect operations with the parameter cisession, resulting in...

Licensing - We encounter the error "Citrix license server unavailable" in Citrix Studio.

After successfully upgrading the Citrix licensing server to version 11.17.2 build 51000, we encounter the error "Citrix license server unavailable" in Citrix Studio. The error in Licensing Manager "The License Activation Service entitlement could not be retrieved, Check your connection to License...

Apache James licensing issue vulnerability

Apache James is an open source Smtp and Pop3 mail transfer agent and Nntp news server written entirely in Java from the Apache Foundation in the U.S. An authorization issue vulnerability exists in Apache James, which stems from a vulnerability in the MIME4J TempFileStorageProvider using improperl...

Veeam Backup for Google Cloud 授权问题漏洞

Veeam Backup for Google Cloud is a data backup software from Veeam USA. A security vulnerability exists in Veeam Backup for Google Cloud versions v1.0 and v3.0, which stems from a vulnerability that allows attackers to bypass the authentication mechanism...

samtools htsjdk license issue vulnerability

htsjdk is a samtools open source a Java API for high-throughput sequencing data HTS format . An authorization issue exists in htsjdk 3.0.1 and earlier versions com.github.samtools.The vulnerability is due to the createTempDir function in util/IOUtil, which creates a temporary file in a directory...

SUSE: Security Advisory (SUSE-SU-2022:3714-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2022:3707-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2022:3715-1 Security update for multipath-tools

This update for multipath-tools fixes the following issues: - CVE-2022-41974: Fixed an authorization bypass issue in multipathd. bsc1202739 - Avoid linking to libreadline to avoid licensing issue bsc1202616...

SUSE-SU-2022:3713-1 Security update for multipath-tools

This update for multipath-tools fixes the following issues: - CVE-2022-41974: Fixed an authorization bypass issue in multipathd. bsc1202739 - Avoid linking to libreadline to avoid licensing issue bsc1202616...

SUSE-SU-2022:3712-1 Security update for multipath-tools

This update for multipath-tools fixes the following issues: - CVE-2022-41974: Fixed an authorization bypass issue in multipathd. bsc1202739 - Avoid linking to libreadline to avoid licensing issue bsc1202616...

SUSE-SU-2022:3708-1 Security update for multipath-tools

This update for multipath-tools fixes the following issues: - CVE-2022-41973: Fixed a symlink attack in multipathd. bsc1202739 - CVE-2022-41974: Fixed an authorization bypass issue in multipathd. bsc1202739 - Avoid linking to libreadline to avoid licensing issue bsc1202616 - Fix that some zfcp...

SUSE-SU-2022:3707-1 Security update for multipath-tools

This update for multipath-tools fixes the following issues: - CVE-2022-41973: Fixed a symlink attack in multipathd. bsc1202739 - CVE-2022-41974: Fixed an authorization bypass issue in multipathd. bsc1202739 - Avoid linking to libreadline to avoid licensing issue bsc1202616 - Fix that some zfcp...

Google Android Authorization Issues Vulnerability (CNVD-2022-81236)

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an authorization issue vulnerability that stems from a lack of permission checking in the music service. An attacker can exploit the vulnerability to cause elevation of privilege...