80 matches found
Moderate: Red Hat Security Advisory: Red Hat OpenShift Logging Security and Bug update Release 5.4.1
Logging Subsystem 5.4.1 - Red Hat OpenShift Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the Referenc...
Cisco BPA, WSA Bugs Allow Remote Cyberattacks
A set of high-severity privilege-escalation vulnerabilities affecting Business Process Automation BPA application and Cisco’s Web Security Appliance WSA and could allow authenticated, remote attackers to access sensitive data or take over a targeted system. The first two bugs CVE-2021-1574 and...
CVE-2021-32560
The Logging subsystem in OctoPrint before 1.6.0 has incorrect access control because it attempts to manage files that are not .log files...
Improper access control
The Logging subsystem in OctoPrint before 1.6.0 has incorrect access control because it attempts to manage files that are not .log files...
PYSEC-2021-29
The Logging subsystem in OctoPrint before 1.6.0 has incorrect access control because it attempts to manage files that are not .log files...
PYSEC-2021-29
The Logging subsystem in OctoPrint before 1.6.0 has incorrect access control because it attempts to manage files that are not .log files...
OctoPrint 访问控制错误漏洞
OctoPrint is an application. Provides a fast web interface for controlling consumer 3D printers. A security vulnerability previously existed in OctoPrint version 1.6.0. The vulnerability stemmed from the Logging subsystem in the program having incorrect access control...
The vulnerability of the logging subsystem of the Cisco Data Center Network Manager, a system for managing network operations at data centers, allows an intruder to gain unauthorized access to protected information.
The vulnerability of the logging subsystem of the Cisco Data Center Network Manager DCNM is related to uncontrolled memory allocation. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...
Cisco Data Center Network Manager Information Disclosure Vulnerability (CNVD-2021-09946)
Cisco Data Center Network Manager DCNM is a suite of data center network managers from Cisco that provides multiprotocol management of the network and troubleshooting of switch operating conditions and performance. An information disclosure vulnerability exists in the logging subsystem of Cisco...
CVE-2021-1283
A vulnerability in the logging subsystem of Cisco Data Center Network Manager DCNM could allow an authenticated, local attacker to view sensitive information in a system log file that should be restricted. The vulnerability exists because sensitive information is not properly masked before it is...
Design/Logic Flaw
A vulnerability in the logging subsystem of Cisco Data Center Network Manager DCNM could allow an authenticated, local attacker to view sensitive information in a system log file that should be restricted. The vulnerability exists because sensitive information is not properly masked before it is...
CVE-2021-1283 Cisco Data Center Network Manager Information Disclosure Vulnerability
A vulnerability in the logging subsystem of Cisco Data Center Network Manager DCNM could allow an authenticated, local attacker to view sensitive information in a system log file that should be restricted. The vulnerability exists because sensitive information is not properly masked before it is...
CVE-2021-1283
Cisco Data Center Network Manager (DCNM) is affected by an information-disclosure vulnerability in its logging subsystem. The issue arises because sensitive data is not properly masked before being written to system log files, allowing an authenticated, local attacker with valid credentials to vi...
CVE-2021-1283 Cisco Data Center Network Manager Information Disclosure Vulnerability
A vulnerability in the logging subsystem of Cisco Data Center Network Manager DCNM could allow an authenticated, local attacker to view sensitive information in a system log file that should be restricted. The vulnerability exists because sensitive information is not properly masked before it is...
Cisco Data Center Network Manager Information Disclosure Vulnerability
A vulnerability in the logging subsystem of Cisco Data Center Network Manager DCNM could allow an authenticated, local attacker to view sensitive information in a system log file that should be restricted. The vulnerability exists because sensitive information is not properly masked before it is...
The vulnerability of the Cisco Web Security Appliance’s logging subsystem allows a hacker to execute arbitrary commands and elevate their privileges to the root level.
The vulnerability of the Cisco Web Security Appliance WSA’s reporting subsystem is related to insufficient validation of input data. Exploiting this vulnerability allows an attacker to execute arbitrary commands and elevate their privileges to the root level...
CVE-2017-18014
An NC-25986 issue was discovered in the Logging subsystem of Sophos XG Firewall with SFOS before 17.0.3 MR3. An unauthenticated user can trigger a persistent XSS vulnerability found in the WAF log page Control Center - Log Viewer - in the filter option "Web Server Protection" in the webadmin...
Cisco Prime Collaboration Provisioning Tool Local Information Disclosure Vulnerability (CNVD-2017-11546)
Cisco Prime Collaboration is a comprehensive video and voice service assurance and management system. A security vulnerability exists in the logging subsystem in the Cisco Prime Collaboration Provisioning tool, where an unauthenticated local attacker obtains sensitive information. The vulnerabili...
Cisco Prime Collaboration Provisioning Tool Log File Information Disclosure Vulnerability
A vulnerability in the logging subsystem of the Cisco Prime Collaboration Provisioning tool could allow an unauthenticated, local attacker to acquire sensitive information. The vulnerability is due to the logging of sensitive details of specific user actions. An attacker could exploit this...
CVE-2017-3822
A vulnerability in the logging subsystem of the Cisco Firepower Threat Defense FTD Firepower Device Manager FDM could allow an unauthenticated, remote attacker to add arbitrary entries to the audit log. This vulnerability affects Cisco Firepower Threat Defense Software versions 6.1.x on the...