7670 matches found
The vulnerability of the SAP Business Objects Business Intelligence Platform lies in its ability to download files of a dangerous type without limitation, allowing an attacker to execute arbitrary code.
The vulnerability of the SAP Business Objects Business Intelligence Platform relates to the unlimited loading of dangerous files. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
CVE-2024-21264
Vulnerability in the PeopleSoft Enterprise CC Common Application Objects product of Oracle PeopleSoft component: Activity Guide Composer. The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise...
CVE-2024-21264
Vulnerability in the PeopleSoft Enterprise CC Common Application Objects product of Oracle PeopleSoft component: Activity Guide Composer. The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise...
CVE-2024-21264
The CVE-2024-21264 entry concerns Oracle PeopleSoft Enterprise CC Common Application Objects, component Activity Guide Composer, affected in version 9.2. Affected: PeopleSoft Enterprise CC Common Application Objects. Root cause: not explicitly detailed beyond the vulnerable component. Impact: a l...
Oracle PeopleSoft Enterprise CC Common Application Objects 安全漏洞
Oracle PeopleSoft Enterprise CC Common Application Objects is a Common Application Objects component from Oracle Corporation USA. A security vulnerability exists in Oracle PeopleSoft Enterprise CC Common Application Objects version 9.2. An attacker could exploit the vulnerability to update, inser...
USN-6968-3: PostgreSQL vulnerability
USN-6968-1 fixed CVE-2024-7348 in PostgreSQL-12, PostgreSQL-14, and PostgreSQL-16. This update provides the corresponding updates for PostgreSQL-9.3 in Ubuntu 14.04 LTS and PostgreSQL-10 in Ubuntu 18.04 LTS. Original advisory details: Noah Misch discovered that PostgreSQL incorrectly handled...
VINCE 安全漏洞
VINCE is an open source vulnerability information and coordination environment developed and used by the CERT Coordination Center in the United States. Vulnerability disclosure for improved coordination. A security vulnerability exists in VINCE versions prior to 3.0.8 that originates from an...
OESA-2024-2243 fop security update
FOP Formatting Objects Processor is a print formatter driven by XSL formatting objects XSL-FO and an output independent formatter. It is a Java application that reads a formatting object FO tree and renders the resulting pages to a specified output. Output formats currently supported include PDF,...
UBUNTU-CVE-2024-47828
ampache is a web based audio/video streaming application and file manager. A CSRF attack can be performed in order to delete objects Playlist, smartlist etc.. Cross-Site Request Forgery CSRF is an attack that forces authenticated users to submit a request to a Web application against which they a...
firefox: thunderbird: Potential memory corruption may occur when cloning certain objects
A flaw was found in Mozilla. The Mozilla Foundation's Security Advisory describes the issue as follows: It is currently unknown if this issue is exploitable, but a condition may arise where the structured clone of certain objects could lead to memory corruption...
firefox: thunderbird: Potential memory corruption may occur when cloning certain objects
A flaw was found in Mozilla. The Mozilla Foundation's Security Advisory describes the issue as follows: It is currently unknown if this issue is exploitable, but a condition may arise where the structured clone of certain objects could lead to memory corruption...
firefox: thunderbird: Potential memory corruption may occur when cloning certain objects
A flaw was found in Mozilla. The Mozilla Foundation's Security Advisory describes the issue as follows: It is currently unknown if this issue is exploitable, but a condition may arise where the structured clone of certain objects could lead to memory corruption...
CVE-2024-43517
Microsoft ActiveX Data Objects Remote Code Execution Vulnerability...
CVE-2024-43517
Microsoft ActiveX Data Objects Remote Code Execution Vulnerability...
CVE-2024-43517 Microsoft ActiveX Data Objects Remote Code Execution Vulnerability
...
CVE-2024-43517
CVE-2024-43517 is a Microsoft ActiveX Data Objects Remote Code Execution vulnerability. Documented details indicate an in-the-wild risk with network access (AV:N) and user interaction required (UI:R), with a high impact on confidentiality, integrity, and availability (C/I/A: High) and a base scor...
CVE-2024-43517 Microsoft ActiveX Data Objects Remote Code Execution Vulnerability
...
Microsoft ActiveX Data Objects Remote Code Execution Vulnerability
...
PT-2024-6762 · Microsoft · Activex Data Objects +1
Name of the Vulnerable Software and Affected Versions: Microsoft ActiveX Data Objects affected versions not specified Description: The issue is related to a buffer overflow in dynamic memory, which can be exploited by a remote attacker to execute arbitrary code. This can affect the system and...
firefox: thunderbird: Potential memory corruption may occur when cloning certain objects
A flaw was found in Mozilla. The Mozilla Foundation's Security Advisory describes the issue as follows: It is currently unknown if this issue is exploitable, but a condition may arise where the structured clone of certain objects could lead to memory corruption...