CVE-2020-4348

IBM Spectrum Scale 4.2.0.0 through 4.2.3.21 and 5.0.0.0 through 5.0.4.4 could allow an authenticated GUI user to perform unauthorized actions due to missing function level access control. IBM X-Force ID: 178414...

Security Bulletin: IBM StoredIQ is affected by a missing function level access control vulnerability (CVE-2019-4163)

Summary IBM StoredIQ has addressed the following vulnerability: Missing function level access control. Vulnerability Details CVEID: CVE-2019-4163 DESCRIPTION: IBM StoreIQ could allow an authenticated user to obtain sensitive information that a privileged user should only be allowed to view. CVSS...

Sophos XG Firewall 16.05.4 MR-4 - Path Traversal

Sophos XG Firewall 16.05.4 MR-4 - Path Traversal Vulnerabilities Summary The following advisory describe two 2 vulnerabilities, a Path Traversal and a Missing Function Level Access Control, in Sophos XG Firewall 16.05.4 MR-4. Sophos XG Firewall provides “unprecedented visibility into your network...

Sophos XG Firewall 16.05.4 MR-4 - Path Traversal

Vulnerabilities Summary The following advisory describe two 2 vulnerabilities, a Path Traversal and a Missing Function Level Access Control, in Sophos XG Firewall 16.05.4 MR-4. Sophos XG Firewall provides “unprecedented visibility into your network, users, and applications directly from the all-n...

ManageEngine OPutils 8.0 - Multiple Vulnerabilities

Exploit for multiple platform in category web applications =================================================================================== Privilege escalation Vulnerability in ManageEngine oputils =================================================================================== Overview...

ManageEngine OPutils 8.0 - Multiple Vulnerabilities

ManageEngine OPutils 8.0 - Multiple Vulnerabilities =================================================================================== Privilege escalation Vulnerability in ManageEngine oputils =================================================================================== Overview ========...

ManageEngine OPutils 8.0 - Multiple Vulnerabilities

=================================================================================== Privilege escalation Vulnerability in ManageEngine oputils =================================================================================== Overview ======== Title:- Privilege escalation Vulnerability in...

SYSS-2015-033: Missing Function Level Access Control (CWE-935) in Page2Flip Premium App 2.5

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2015-033 Product: Page2Flip Vendor: w!ssenswerft GmbH Affected Versions: Premium App 2.5, probably also in Business App and Basic App, and in lower versions Tested Versions: Premium App 2.5 Vulnerability Type: Missing Function Leve...

[SECURITY] [DSA 3249-2] jqueryui security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3249-2 [email protected] http://www.debian.org/security/ Sebastien Delafond June 02, 2015 http://www.debian.org/security/faq -...

[SECURITY] [DSA 3249-2] jqueryui security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3249-2 [email protected] http://www.debian.org/security/ Sebastien Delafond June 02, 2015 http://www.debian.org/security/faq -...

Debian Security Advisory DSA 1911-1 (pygresql)

The remote host is missing an update to pygresql announced via advisory DSA 1911-1. OpenVAS Vulnerability Test $Id: deb19111.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1911-1 pygresql Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

Debian Security Advisory DSA 1910-1 (mysql-ocaml)

The remote host is missing an update to mysql-ocaml announced via advisory DSA 1910-1. OpenVAS Vulnerability Test $Id: deb19101.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1910-1 mysql-ocaml Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...