Cloud-Metadata-Exploit-Detector

Cloud-Metadata-Explo...

CVE-2024-47168

Gradio is an open-source Python package designed for quick prototyping. This vulnerability involves data exposure due to the enablemonitoring flag not properly disabling monitoring when set to False. Even when monitoring is supposedly disabled, an attacker or unauthorized user can still access th...

Security Bulletin: IBM Storage Ceph is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in Grafana (CVE-2023-1410)

Summary Grafana is used by IBM Storage Ceph as a monitoring dashboard. CVE-2023-1410 This bulletin identifies the steps to take to address the vulnerability in Grafana. Vulnerability Details CVEID: CVE-2023-1410 DESCRIPTION: Grafana is vulnerable to cross-site scripting, caused by improper...

The vulnerability of the SCADA system’s data server and monitoring tools, such as Custom Reports and IGSS Dashboard, arises due to an incorrect restriction on the path to the restricted access catalog. This allows a perpetrator to execute arbitrary codes.

The vulnerability of the getRMSreportFile function in the SCADA system’s data server and the Custom Reports and IGSS Dashboard monitoring tools exists due to an incorrect restriction on the path name to the restricted access catalog. Exploiting this vulnerability could allow a attacker to execute...