343 matches found
The vulnerability of the software for X-Rite’s MAT 6 Kohinoor integrated spectrophotometers arises from an incorrect limitation on the path name to the restricted access catalog. This allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.
The software vulnerability of the X-Rite MAT 6 Kohinoor spectrometer exists due to an incorrect limitation on the path name to the restricted access catalog. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality, integrity, and accessibility of the protecte...
PT-2024-2152
Name of the Vulnerable Software and Affected Versions X-Rite MAT 6 Kohinoor affected versions not specified Description The issue is related to incorrect restriction of a directory path name with limited access in the X-Rite MAT 6 Kohinoor embedded spectrophotometer software. Exploitation of this...
PT-2024-2148
Name of the Vulnerable Software and Affected Versions X-Rite MAT 6 Kohinoor affected versions not specified Description The issue is related to insufficient input validation in the software of embedded spectrophotometers. This could allow a remote attacker to impact the confidentiality, integrity...
watanabe-mat.com Improper Access Control vulnerability OBB-3815520
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CVE-2023-46614
Cross-Site Request Forgery CSRF vulnerability in Mat Bao Corp WP Helper Premium plugin = 4.5.1 versions...
CVE-2023-46614
A vulnerability in Mat Bao Corporation WP Helper Premium wp-helper-lite.This issue affects WP Helper Premium: from n/a through = 4.5.1...
CVE-2023-46614
Cross-Site Request Forgery CSRF vulnerability in Mat Bao Corp WP Helper Premium plugin = 4.5.1 versions...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in Mat Bao Corp WP Helper Premium plugin = 4.5.1 versions...
CVE-2023-46614
CVE-2023-46614 affects the WordPress WP Helper Premium plugin (
CVE-2023-46614 WordPress WP Helper Premium Plugin <= 4.5.1 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in Mat Bao Corp WP Helper Premium plugin = 4.5.1 versions...
CVE-2023-22282
WAB-MAT Ver.5.0.0.8 and earlier starts another program with an unquoted file path. Since a registered Windows service path contains spaces and are unquoted, if a malicious executable is placed on a certain path, the executable may be executed with the privilege of the Windows service...
CVE-2023-22282
WAB-MAT Ver.5.0.0.8 and earlier starts another program with an unquoted file path. Since a registered Windows service path contains spaces and are unquoted, if a malicious executable is placed on a certain path, the executable may be executed with the privilege of the Windows service...
CVE-2023-22282
WAB-MAT Ver.5.0.0.8 and earlier registers its Windows service executable with an unquoted file path. If a malicious executable is placed on the unquoted path, it may be executed with the privilege of the Windows service, enabling local privilege escalation. Affected software: ELECOM WAB-MAT (Wind...
CVE-2023-22282
WAB-MAT Ver.5.0.0.8 and earlier starts another program with an unquoted file path. Since a registered Windows service path contains spaces and are unquoted, if a malicious executable is placed on a certain path, the executable may be executed with the privilege of the Windows service...
CVE-2023-22282
WAB-MAT Ver.5.0.0.8 and earlier starts another program with an unquoted file path. Since a registered Windows service path contains spaces and are unquoted, if a malicious executable is placed on a certain path, the executable may be executed with the privilege of the Windows service...
ELECOM WAB-MAT registers its windows service executable with an unquoted file path
Overview WAB-MAT provided by ELECOM CO.,LTD. is Access Point Management Tool for corporate users. WAB-MAT registers its windows service executable with an unquoted file path CWE-428. Tomohisa Hasegawa of Canon IT Solutions Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the...
JVN#35246979: ELECOM WAB-MAT registers its windows service executable with an unquoted file path
WAB-MAT provided by ELECOM CO.,LTD. is Access Point Management Tool for corporate users. WAB-MAT registers its windows service executable with an unquoted file path CWE-428. Impact If a malicious executable is placed on a certain path, it may be executed with the privilege of the Windows service...
ELECOM WAB-MAT 代码问题漏洞
ELECOM WAB-MAT is a management tool for enterprise access points from ELECOM. A security vulnerability exists in ELECOM WAB-MAT version 5.0.0.8 and earlier, which originates from the use of unquoted file paths to register its Windows service executable...
Debian: Security Advisory (DLA-650-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE CVE-2016-10070
Heap-based buffer overflow in the CalcMinMax function in coders/mat.c in ImageMagick before 6.9.4-0 allows remote attackers to cause a denial of service out-of-bounds read and application crash via a crafted mat file...