55 matches found
backstage 代码问题漏洞
Backstage is the open platform for building developer portals. An unspecified vulnerability exists in Backstage. An attacker could exploit the vulnerability to access sensitive data...
CVE-2020-12526
TwinCAT OPC UA Server in versions up to 2.3.0.12 and IPC Diagnostics UA Server in versions up to 3.1.0.1 from Beckhoff Automation GmbH & Co. KG are vulnerable to denial of service attacks. The attacker needs to send several specifically crafted requests to the running OPC UA server. After some of...
CVE-2020-10291
Visual Components owned by KUKA is a robotic simulator that allows simulating factories and robots in order toimprove planning and decision-making processes. Visual Components software requires a special license which can beobtained from a network license server. The network license server binds ...
Command Execution Vulnerability in Microtek's Open Source Mall Management Platform
Microteam Mall is an open source WeChat small program mall front and back end open source : uniapp + Java. Wei-Tong open source mall management platform there is a command execution vulnerability, an attacker can exploit the vulnerability unauthorized execution of arbitrary code...
The vulnerabilities in implementations of OPC UA data transfer specifications in industrial networks, related to errors in managing cryptographic keys, allow attackers to disclose protected information.
The vulnerability of implementations of the OPC UA data transfer specification in industrial networks is related to errors in managing cryptographic keys. Exploiting this vulnerability can allow a malicious actor to disclose protected information...
Security Bulletin: Security vulnerabilities have been identified in Open Source Apache Hadoop that are dependencies for IBM InfoSphere BigInsights (IBM Open Platform with Apache Hadoop) CVE-2017-3161, CVE-2017-3162
Summary Security vulnerabilities have been identified in Open Source Apache Hadoop that are dependencies for IBM InfoSphere BigInsights IBM Open Platform with Apache Hadoop CVE-2017-3161, CVE-2017-3162 Vulnerability Details CVE-ID: CVE-2017-3161 Description: Apache Hadoop is vulnerable to...
OPC Foundation UA .NET Standard Code Issue Vulnerability
NET Standard is the OPC Foundation's OPC Foundation set of unified architecture standards for developing OPC UA applications. A security vulnerability exists in the handling of sessions in OPC Foundation UA.NET Standard due to a lack of proper locking when performing operations on objects. An...
Xiaomi Mi Home smart platform has information leakage vulnerability
Xiaomi Mijia Intelligent Platform is Xiaomi's open platform for the IoT field, which can realize the interconnection of consumer smart hardware such as smart home devices, smart home appliances, smart wearable devices, smart travel devices and other consumer smart hardware. Xiaomi Mijia intellige...
Fortnite’s Google Play rebuff sparks security concerns for Android users
There's been no small outbreak of chaos in mobile land recently, all because of an astonishingly popular game called Fortnite. Here's the thing: people refer to Android as "open platform," saying that, in theory, you can do what you want with it. In practice, you buy an Android phone and then...
BACnet OPC Server Authentication Vulnerability
BACnet OPC Server provides data access, alerts, and access to event and historical data between OPC clients and BACnet-compatible devices. BACnet OPC Server has a security vulnerability that can be exploited by an attacker to insert, read, and delete arbitrary items in the database...
How Dark Mail Plans to Build an Open, Secure Email Platform
The new Dark Mail Alliance formed this week by Lavabit and Silent Circle will offer an open platform for secure email that will use existing protocols and cloud storage as a way to evade surveillance. The new system, which should be available next year, is in some ways a throwback to the...
Youku open platform storage type XSS script attack vulnerability success hijacking the background-bug warning-the black bar safety net
Youku open platform in the“Create an application”feature of the plurality of fields, not from the client to submit the variables into the database, the output of the safety of the escape process. http://open.youku.com/app/create ! Lead can be directly stepped into the background. Vulnerability...
About Tencent customer service open platform of the 2 vulnerability+subsidiary vulnerabilities 1-vulnerability warning-the black bar safety net
Vulnerability name: Tencent customer service open platform backend bypass A, detailed description: The login section by noPermissjs http://347.kf.ieodopen.qq.com/admin/js/index.js?v=20121007 Because. kf. ieodopen. qq. com domain name the opening number represents the application number so I think...
Android G2 Phone Can Roll Back Jailbreaks
Since at least the time of the release of the first generation Apple iPhone, sophisticated smartphone users have been working diligently to jailbreak their devices in order to load their own software, install third-party applications and make other modifications. Now, one Android device, the G2...
Noguska Nola 1.1.1 [ Intranet Business Management Software ]
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Noguska Nola 1.1.1 Intranet Business Management Software .: Software Desciption :. - - compied from their site - Redefining the scope of Enterprise Software The NOLA web based software package allows your business to effortlessly reach further than...