CVE-2024-6598 Denial-of-service on KNIME Business Hub when certain jobs are executed

A denial-of-service attack is possible through the execution functionality of KNIME Business Hub 1.10.0 and 1.10.1. It allows an authenticated attacker with job execution privileges to execute a job that causes internal messages to pile up until there are no more resources available for processin...

Oracle Solaris Input Validation Error Vulnerability (CNVD-2022-36956)

Oracle Solaris is a UNIX operating system from Oracle. Oracle Systems' Oracle Solaris has a security vulnerability that allows a low-privilege attacker to compromise Oracle Solaris by logging on to the infrastructure that executes Oracle Solaris.A successful attack requires human interaction with...

UPchieve: No rate Limit on Password Reset page on upchieve

Summary: Introduction A little bit about Rate Limit: A rate limiting algorithm is used to check if the user session or IP-address has to be limited based on the information in the session cache. In case a client made too many requests within a given timeframe, HTTP-Servers can respond with status...

CVE-2018-4856

A vulnerability has been identified in SICLOCK TC100 All versions and SICLOCK TC400 All versions. An attacker with administrative access to the device's management interface could lock out legitimate users. Manual interaction is required to restore the access of legitimate users...

Design/Logic Flaw

A vulnerability has been identified in SICLOCK TC100 All versions and SICLOCK TC400 All versions. An attacker with administrative access to the device's management interface could lock out legitimate users. Manual interaction is required to restore the access of legitimate users...