CVE-2025-53077

An execution after redirect in Samsung DMSData Management Server allows attackers to execute limited functions without permissions. An attacker could compromise the integrity of the platform by executing this vulnerability...

The vulnerability of the Citrix NetScaler Application Delivery Controller (previously Citrix ADC) and the Citrix NetScaler Gateway (previously Citrix Gateway) access control systems, related to behavior anomaly detection, allows attackers to gain unauthorized access to limited functions.

The vulnerability of the Citrix NetScaler Application Delivery Controller previously Citrix ADC and the Citrix NetScaler Gateway previously Citrix Gateway access control system is related to the violation of expected behavior. Exploiting this vulnerability can allow an attacker, operating remotel...

CVE-2024-20442

A vulnerability in the REST API endpoints of Cisco Nexus Dashboard could allow an authenticated, low-privileged, remote attacker to perform limited Administrator actions on an affected device. This vulnerability is due to insufficient authorization controls on some REST API endpoints. An attacker...

CVE-2024-20442

Cisco Nexus Dashboard exposes a REST API vulnerability due to insufficient authorization controls on certain endpoints. An authenticated, low-privileged, remote attacker could perform limited Administrator actions such as viewing portions of the web UI, generating config backups, or deleting tech...

The vulnerability of the Ivanti EPM endpoint management software, related to defects in the deserialization mechanism, allows a hacker to access limited functions of the software.

The vulnerability of the Ivanti EPM endpoint management software relates to the bypassing of authentication processes. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain access to limited functions of the software...

The vulnerability of the Email Address Handler component of the software platform based on Git for collaborative code development on GitLab allows a malicious individual to gain unauthorized access to limited functions.

The vulnerability of the Email Address Handler component in the Git-based software platform, which is used for collaborative code development on GitLab, is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized...

The vulnerability of the application programming interface of the Grafana data visualization web tool allows a perpetrator to gain unauthorized access to limited functions.

The vulnerability of the application programming interface of the Grafana data visualization web tool is related to insecure management of privileges. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to limited functions...

The vulnerability of the Easy!Appointments web application is related to lack of access control, allowing an attacker to gain unauthorized access to limited functions.

The vulnerability of the Easy!Appointments web application is related to lack of access control. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to limited functions of the application...

The vulnerability of the virtual learning environment Moodle, related to improper access control, allows a violator to gain unauthorized access to limited functions.

The vulnerability in the virtual learning environment Moodle is related to insufficient restrictions in the settings of the “startpage”. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to limited functions...

The vulnerability of the Red Hat Enterprise Linux operating system, related to access control deficiencies, allows a intruder to gain unauthorized access to limited functions.

The vulnerability of the Red Hat Enterprise Linux operating system is related to lack of access control. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to limited functions...

The vulnerability of cloud-based software for creating and using Nextcloud storage solutions is related to lack of access control measures, allowing attackers to gain unauthorized access to limited functions.

The vulnerability of cloud-based software for creating and using Nextcloud data storage solutions is related to lack of access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to limited functions of the system...

The vulnerability of the Git-based software platform for collaborative code development on GitLab, related to access control deficiencies, allows a perpetrator to gain unauthorized access to limited functions.

The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to limited functions through the REST API...

The vulnerability of SonicWall SMA 1000 series network firewall microprogramming software, related to access control deficiencies, allows attackers to gain unauthorized access to limited functions.

The vulnerability of SonicWall SMA 1000 series network firewall microprogramming software is related to access control deficiencies. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to limited functions of the system...

PT-2022-2829 · Sonicwall · Sonicwall Sma1000

Name of the Vulnerable Software and Affected Versions: SonicWall SMA1000 series firmware versions prior to 12.4.1-02965 Description: The issue is related to insufficient access control in the firmware of SonicWall SMA 1000 series firewalls. This can allow a remote attacker to gain unauthorized...