9 matches found
Kibana 7.x / 8.x < 8.19.10 / 9.1.x < 9.1.10 / 9.2.x < 9.2.4 (ESA_2026_08)
The version of Kibana installed on the remote host is prior to 8.19.10, 9.1.10, or 9.2.4. It is, therefore, affected by a vulnerability as referenced in the ESA202608 advisory. - An improper input validation vulnerability in Kibana's Email Connector can allow an attacker to cause an excessive...
CVE-2025-40778
Under certain circumstances, BIND is too lenient when accepting records from answers, allowing an attacker to inject forged data into the cache. This issue affects BIND 9 versions 9.11.0 through 9.16.50, 9.18.0 through 9.18.39, 9.20.0 through 9.20.13, 9.21.0 through 9.21.12, 9.11.3-S1 through...
Ivanti Connect Secure和Ivanti Policy Secure 安全漏洞
Ivanti Connect Secure and Ivanti Policy Secure are both products of Ivanti Corporation, U.S.A. Ivanti Connect Secure is a secure remote network connection tool.Ivanti Policy Secure is a network access control NAC solution. A security vulnerability exists in Ivanti Connect Secure version 9.x,...
Ivanti Connect Secure and Ivanti Policy Secure Security Vulnerabilities
Ivanti Connect Secure and Ivanti Policy Secure are both products of Ivanti Corporation, U.S.A. Ivanti Connect Secure is a secure remote network connection tool. Ivanti Policy Secure is a network access control NAC solution. A security vulnerability exists in Ivanti Connect Secure, Ivanti Policy...
Clustered Data ONTAP 安全漏洞
Netapp Clustered Data ONTAP is a storage operating system for clustered mode from the US-based Netapp. A security vulnerability exists in Clustered Data ONTAP that could allow a local attacker to discover plain text iSCSI CHAP credentials. The following products and versions are affected: System...
CVE-2020-7037
An XML External Entities XXE vulnerability in Media Server component of Avaya Equinox Conferencing could allow an authenticated, remote attacker to gain read access to information that is stored on an affected system or even potentially lead to a denial of service. The affected versions of Avaya...
CVE-2020-7033
A Cross Site Scripting XSS Vulnerability on the Unified Portal Client web client used in Avaya Equinox Conferencing can allow an authenticated user to perform XSS attacks. The affected versions of Equinox Conferencing includes all 9.x versions before 9.1.10...
DEBIAN-CVE-2018-5743
By design, BIND is intended to limit the number of TCP clients that can be connected at any given time. The number of allowed connections is a tunable parameter which, if unset, defaults to a conservative value for most servers. Unfortunately, the code which was intended to limit the number of...
CVE-2019-7001
A SQL injection vulnerability in the WebUI component of IP Office Contact Center could allow an authenticated attacker to retrieve or alter sensitive data related to other users on the system. Affected versions of IP Office Contact Center include all 9.x and 10.x versions prior to...