78 matches found
EUVD-2022-42266
Malicious code in bioql PyPI...
MAL-2025-12822 Malicious code in @zalastax/nolb-oms (npm)
The package @zalastax/nolb-oms was found to contain malicious code...
Malicious code in @zalastax/nolb-oms (npm)
The package @zalastax/nolb-oms was found to contain malicious code...
aws-ork (>=0.4.3 <=0.4.5), elita (=0.59.3) +84 more potentially affected by CVE-2024-38825 via salt (=3007.14.0)
salt PYPI version =3007.14.0 is affected by a known vulnerability. The following packages have a transitive dependency on salt and may be impacted: - aws-ork =0.4.3, =1.0.0, =2019.12.0, =2019.1.30a2, =2.6.2.dev0, =24.3.12.0rc1, =0.1.0rc1, =0.0.1, =0.0.1, =2022.2.0, =1.2.3, =1.3.0 and more Source...
aws-ork (>=0.4.3 <=0.4.5), elita (=0.59.3) +84 more potentially affected by CVE-2024-38822 via salt (=3007.14.0)
salt PYPI version =3007.14.0 is affected by a known vulnerability. The following packages have a transitive dependency on salt and may be impacted: - aws-ork =0.4.3, =1.0.0, =2019.12.0, =2019.1.30a2, =2.6.2.dev0, =24.3.12.0rc1, =0.1.0rc1, =0.0.1, =0.0.1, =2022.2.0, =1.2.3, =1.3.0 and more Source...
aws-ork (>=0.4.3 <=0.4.5), elita (=0.59.3) +84 more potentially affected by CVE-2025-22240 via salt (=3007.14.0)
salt PYPI version =3007.14.0 is affected by a known vulnerability. The following packages have a transitive dependency on salt and may be impacted: - aws-ork =0.4.3, =1.0.0, =2019.12.0, =2019.1.30a2, =2.6.2.dev0, =24.3.12.0rc1, =0.1.0rc1, =0.0.1, =0.0.1, =2022.2.0, =1.2.3, =1.3.0 and more Source...
CVE-2022-39816
In NOKIA 1350 OMS R14.2, Insufficiently Protected Credentials cleartext administrator password occur in the edit configuration page. Exploitation requires an authenticated attacker...
CVE-2022-39817
In NOKIA 1350 OMS R14.2, multiple SQL Injection vulnerabilities occurs. Exploitation requires an authenticated attacker. Through the injection of arbitrary SQL statements, a potential authenticated attacker can modify query syntax and perform unauthorized and unexpected operations against the...
CVE-2022-39819
In NOKIA 1350 OMS R14.2, multiple OS Command Injection vulnerabilities occurs. This allows authenticated users to execute commands on the operating system...
MAL-2024-10763 Malicious code in oms-frontend (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 096fa8375c3d3d18ad7f109d5bcc12864480bd78ba8892401bc853554469accc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in oms-frontend (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 096fa8375c3d3d18ad7f109d5bcc12864480bd78ba8892401bc853554469accc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
oms-antrieb.de Improper Access Control vulnerability OBB-3776956
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CVE-2022-40714
An issue was discovered in NOKIA 1350OMS R14.2. Reflected XSS exists under different /oms1350/ endpoints...
NOKIA 1350 OMS 跨站脚本漏洞
NOKIA 1350 OMS is an optical management system from the Finnish company Nokia NOKIA. A security vulnerability exists in NOKIA 1350 OMS version R14.2, which originates from a discovery under a different /oms1350/ endpoint that contains a reflected cross-site scripting vulnerability...
PT-2022-25489 · Nokia · Nokia 1350 Oms
Name of the Vulnerable Software and Affected Versions: NOKIA 1350OMS version R14.2 Description: An issue exists in the software, where multiple Relative Path Traversal issues are present in different specific endpoints via the file parameter. This allows a remote authenticated attacker to read...
NOKIA 1350 OMS 路径遍历漏洞
NOKIA 1350 OMS is an optical management system from the Finnish company Nokia NOKIA. A security vulnerability exists in NOKIA 1350 OMS version R14.2. An attacker can exploit the vulnerability to arbitrarily read files on the file system...
NOKIA 1350 OMS 路径遍历漏洞
NOKIA 1350 OMS is an optical management system from the Finnish company Nokia NOKIA. A security vulnerability exists in NOKIA 1350 OMS version R14.2. An attacker can exploit the vulnerability to arbitrarily read files on the file system...
CVE-2022-39821
In NOKIA 1350 OMS R14.2, an Insertion of Sensitive Information into an Application Log File vulnerability occurs. The web application stores critical information, such as cleartext user credentials, in world-readable files in the filesystem...
CVE-2022-39819
In NOKIA 1350 OMS R14.2, multiple OS Command Injection vulnerabilities occurs. This allows authenticated users to execute commands on the operating system...
CVE-2022-39819
In NOKIA 1350 OMS R14.2, multiple OS Command Injection vulnerabilities occurs. This allows authenticated users to execute commands on the operating system...