ABB ALS-mini-s4 IP和ABB ALS-mini-s8 IP 访问控制错误漏洞

The ABB ALS-mini-s4 IP and ABB ALS-mini-s8 IP are both intelligent load management controllers from ABB Switzerland. An access control error vulnerability exists in the ABB ALS-mini-s4 IP and ABB ALS-mini-s8 IP that stems from a lack of authentication for critical functions...

CVAD - How to check the Load management policy settings from VDA's reflected registries

This article describes how to check the Load management policy settings from VDA by the reflected registries...

IGEL Universal Management Suite 安全漏洞

The IGEL Universal Management Suite IGEL UMS is a single management solution from IGEL Germany. It can be used for up to tens of thousands of endpoints running IGEL OS. A security vulnerability exists in IGEL Universal Management Suite UMS version 6.07.100, which originates from the transmission ...

CVE-2022-22808

A CWE-352: Cross-Site Request Forgery CSRF exists that could cause a remote attacker to gain unauthorized access to the product when conducting cross-domain attacks based on same-origin policy or cross-site request forgery protections bypass. Affected Product: EcoStruxure EV Charging Expert...

CVE-2022-22807

The CVE-2022-22807 entry applies to EcoStruxure EV Charging Expert (pre-SP8 V4.0.0.13). Root cause: CWE-1021 Improper Restriction of Rendered UI Layers or Frames, enabling an attacker to influence the product by deceiving users to interact with an iframe-rendered web interface. Impact: potential ...

[SECURITY] Fedora 29 Update: lighttpd-1.4.51-1.fc29

Secure, fast, compliant and very flexible web-server which has been optimiz ed for high-performance environments. It has a very low memory footprint compa red to other webservers and takes care of cpu-load. Its advanced feature-set FastCGI, CGI, Auth, Output-Compression, URL-Rewriting and many mo...