113 matches found
Session fixation
A remote session reuse vulnerability leading to access restriction bypass was discovered in HPE MSA 2040 SAN Storage; HPE MSA 1040 SAN Storage; HPE MSA 1050 SAN Storage; HPE MSA 2042 SAN Storage; HPE MSA 2050 SAN Storage; HPE MSA 2052 SAN Storage versions: GL225P001 and earlier; GL225P001 and...
CVE-2019-12002
A remote session reuse vulnerability leading to access restriction bypass was discovered in HPE MSA 2040 SAN Storage; HPE MSA 1040 SAN Storage; HPE MSA 1050 SAN Storage; HPE MSA 2042 SAN Storage; HPE MSA 2050 SAN Storage; HPE MSA 2052 SAN Storage versions: GL225P001 and earlier; GL225P001 and...
CVE-2019-12001
A remote session reuse vulnerability leading to access restriction bypass was discovered in HPE MSA 2040 SAN Storage; HPE MSA 1040 SAN Storage; HPE MSA 1050 SAN Storage; HPE MSA 2042 SAN Storage; HPE MSA 2050 SAN Storage; HPE MSA 2052 SAN Storage versions: GL225P001 and earlier; GL225P001 and...
CVE-2019-12001
CVE-2019-12001 covers a remote session reuse vulnerability that can bypass access restrictions in HPE MSA Storage devices. Public details in the initial description indicate affected models include MSA 2040/1040/1050/2042/2050/2052 with firmware/version lines such as GL225P001 and earlier; VE270R...
CVE-2019-1172
Technical details about CVE-2019-1172 are not publicly provided in the supplied documents; no concrete affected products, root cause, or remediation are listed beyond a generic description. Monitor for updates.
November 13, 2018—KB4467708 (OS Build 17763.134)
November 13, 2018—KB4467708 OS Build 17763.134 Notes: This release also contains updates for Microsoft HoloLens OS Build 17763.134 released November 13, 2018. Microsoft will release an update directly to the Windows Update Client to improve Windows Update reliability on Microsoft HoloLens that ha...
HPE MSA 1040 and MSA 2040 SAN Storage Authentication Vulnerability Vulnerability
The HPE MSA 1040 and MSA 2040 SAN Storage are both storage devices from Hewlett Packard Enterprise HPE. An authentication vulnerability exists in HPE MSA 1040 and MSA 2040 SAN Storage GL220P008 and prior versions. A remote attacker could exploit this vulnerability to bypass authentication...
CVE-2017-8959
An Authentication Bypass vulnerability in HPE MSA 1040 and HPE MSA 2040 SAN Storage in version GL220P008 and earlier and was found...
Authentication flaw
An Authentication Bypass vulnerability in HPE MSA 1040 and MSA 2040 SAN Storage IN version GL220P008 and earlier was found...
Authentication flaw
An Authentication Bypass vulnerability in HPE MSA 1040 and HPE MSA 2040 SAN Storage in version GL220P008 and earlier and was found...
CVE-2017-8960
CVE-2017-8960 affects HPE MSA 1040 and MSA 2040 SAN Storage (GL220P008 and earlier). The connected sources describe an authentication bypass vulnerability, enabling a remote attacker to bypass authentication with impact on confidentiality, integrity, and availability as indicated by the CVSS metr...
CVE-2017-8959
An Authentication Bypass vulnerability in HPE MSA 1040 and HPE MSA 2040 SAN Storage in version GL220P008 and earlier and was found...
CVE-2017-8960
An Authentication Bypass vulnerability in HPE MSA 1040 and MSA 2040 SAN Storage IN version GL220P008 and earlier was found...
CVE-2017-8959
Affected products: HPE MSA 1040 and HPE MSA 2040 SAN Storage. Vulnerability: Authentication bypass vulnerability in version GL220P008 and earlier. Root cause: bypassing authentication could allow unauthorized access. Impact (as described in sources): Elevation of privileges / partial to high impa...
MSA vot.Ar 'parse' function unauthorized operation vulnerability
MSA vot.Ar is a suite of voting election applications. A security vulnerability exists in the 'parse' function in MSA vot.Ar version 3.1. An attacker in close physical proximity could exploit this vulnerability to cast multiple votes for a candidate with the help of a specially designed RFID voti...
Design/Logic Flaw
The parse function in MSA vot.Ar 3.1 does not check whether a candidate receives more than one vote, which allows physically proximate attackers to cast multiple votes for a candidate via a crafted RFID ballot tag...
CVE-2015-6839
The parse function in MSA vot.Ar 3.1 does not check whether a candidate receives more than one vote, which allows physically proximate attackers to cast multiple votes for a candidate via a crafted RFID ballot tag...
CVE-2015-6839
The CVE-2015-6839 entry concerns MSA vot.Ar 3.1, where the parse function fails to prevent a candidate from receiving multiple votes. The underlying issue is a vulnerability in the parsing logic that allows an RFID ballot tag crafted by an attacker in close physical proximity to cause multiple vo...
CVE-2015-6839
The parse function in MSA vot.Ar 3.1 does not check whether a candidate receives more than one vote, which allows physically proximate attackers to cast multiple votes for a candidate via a crafted RFID ballot tag...
CVE-2016-3352
Microsoft Windows 8.1, Windows RT 8.1, and Windows 10 Gold, 1511, and 1607 do not properly check NTLM SSO requests for MSA logins, which makes it easier for remote attackers to determine passwords via a brute-force attack on NTLM password hashes, aka "Microsoft Information Disclosure Vulnerabilit...