26 matches found
[SECURITY] Fedora 42 Update: minidlna-1.3.3-13.fc42
MiniDLNA aka ReadyDLNA is server software with the aim of being fully compliant with DLNA/UPnP-AV clients. The minidlna daemon serves media files music, pictures, and video to clients on your local network. Example clients include applications such as Totem and XBMC, and devices such as portable...
Qnap QTS Cleartext Transmission of Sensitive Information (CVE-2023-34972)
A cleartext transmission of sensitive information vulnerability has been reported to affect QNAP operating systems. If exploited, the vulnerability possibly allows local network clients to read the contents of unexpected sensitive data via unspecified vectors. We have already fixed the...
QNAP QTS / QuTS hero Vulnerability in QTS and QuTS hero (QSA-23-60)
The version of QNAP QTS / QuTS hero installed on the remote host is affected by a vulnerability as referenced in the QSA-23-60 advisory. An inadequate encryption strength vulnerability has been reported to affect QNAP operating systems. If exploited, the vulnerability possibly allows local networ...
QNAP QTS / QuTS hero Information Disclosure (QSA-23-58)
The version of QNAP QTS / QuTS hero installed on the remote host is affected by an information disclosure vulnerability as referenced in the QSA-23-58 advisory. A cleartext transmission of sensitive information vulnerability has been reported to affect QNAP operating systems. If exploited, the...
CVE-2023-34971
An inadequate encryption strength vulnerability has been reported to affect QNAP operating systems. If exploited, the vulnerability possibly allows local network clients to decrypt the data using brute force attacks via unspecified vectors. We have already fixed the vulnerability in the following...
CVE-2023-34971
An inadequate encryption strength vulnerability has been reported to affect QNAP operating systems. If exploited, the vulnerability possibly allows local network clients to decrypt the data using brute force attacks via unspecified vectors. We have already fixed the vulnerability in the following...
CVE-2023-34972
A cleartext transmission of sensitive information vulnerability has been reported to affect QNAP operating systems. If exploited, the vulnerability possibly allows local network clients to read the contents of unexpected sensitive data via unspecified vectors. We have already fixed the...
Code injection
An inadequate encryption strength vulnerability has been reported to affect QNAP operating systems. If exploited, the vulnerability possibly allows local network clients to decrypt the data using brute force attacks via unspecified vectors. We have already fixed the vulnerability in the following...
CVE-2023-34972 QTS, QuTS hero and QuTScloud
A cleartext transmission of sensitive information vulnerability has been reported to affect QNAP operating systems. If exploited, the vulnerability possibly allows local network clients to read the contents of unexpected sensitive data via unspecified vectors. We have already fixed the...
CVE-2023-34971 QTS, QuTS hero
An inadequate encryption strength vulnerability has been reported to affect QNAP operating systems. If exploited, the vulnerability possibly allows local network clients to decrypt the data using brute force attacks via unspecified vectors. We have already fixed the vulnerability in the following...
CVE-2023-34971 QTS, QuTS hero
An inadequate encryption strength vulnerability has been reported to affect QNAP operating systems. If exploited, the vulnerability possibly allows local network clients to decrypt the data using brute force attacks via unspecified vectors. We have already fixed the vulnerability in the following...
CVE-2022-34837
Storing Passwords in a Recoverable Format vulnerability in ABB Zenon 8.20 allows an attacker who successfully exploit the vulnerability may add more network clients that may monitor various activities of the Zenon...
PT-2022-22386 · Abb · Abb Zenon
Name of the Vulnerable Software and Affected Versions: ABB Zenon version 8.20 Description: The issue allows an attacker to store passwords in a recoverable format, potentially enabling them to add more network clients. These clients may then monitor various activities of the Zenon system...
CVE-2014-1426
A vulnerability in maasserver.api.getfilebyname of Ubuntu MAAS allows unauthenticated network clients to download any file. This issue affects: Ubuntu MAAS versions prior to 1.9.2...
GLSA-201711-03 : hostapd and wpa_supplicant: Key Reinstallation (KRACK) attacks (KRACK)
The remote host is affected by the vulnerability described in GLSA-201711-03 hostapd and wpasupplicant: Key Reinstallation KRACK attacks WiFi Protected Access WPA and WPA2 and its associated technologies are all vulnerable to the KRACK attacks. Please review the referenced CVE identifiers for...
CVE-2015-0862
Multiple cross-site scripting XSS vulnerabilities in the management web UI in the RabbitMQ management plugin before 3.4.3 allow remote authenticated users to inject arbitrary web script or HTML via 1 message details when a message is unqueued, such as headers or arguments; 2 policy names, which a...
CVE-2015-0862
Multiple cross-site scripting XSS vulnerabilities in the management web UI in the RabbitMQ management plugin before 3.4.3 allow remote authenticated users to inject arbitrary web script or HTML via 1 message details when a message is unqueued, such as headers or arguments; 2 policy names, which a...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in the management web UI in the RabbitMQ management plugin before 3.4.3 allow remote authenticated users to inject arbitrary web script or HTML via 1 message details when a message is unqueued, such as headers or arguments; 2 policy names, which a...
CVE-2015-0862
Multiple cross-site scripting XSS vulnerabilities in the management web UI in the RabbitMQ management plugin before 3.4.3 allow remote authenticated users to inject arbitrary web script or HTML via 1 message details when a message is unqueued, such as headers or arguments; 2 policy names, which a...
CVE-2015-0862
Multiple cross-site scripting XSS vulnerabilities in the management web UI in the RabbitMQ management plugin before 3.4.3 allow remote authenticated users to inject arbitrary web script or HTML via 1 message details when a message is unqueued, such as headers or arguments; 2 policy names, which a...