2543 matches found
CVE-2019-1289
An elevation of privilege vulnerability exists when the Windows Update Delivery Optimization does not properly enforce file share permissions, aka 'Windows Update Delivery Optimization Elevation of Privilege Vulnerability'...
CVE-2019-1289
CVE-2019-1289 is a Windows vulnerability described as an elevation of privilege in Windows Update Delivery Optimization caused by improper enforcement of file share permissions. Affected: Windows Update Delivery Optimization component. Impact: local privilege escalation with integrity impact (I:H...
CVE-2019-8450
Various templates of the Optimization plugin in Jira before version 7.13.6, and from version 8.0.0 before version 8.4.0 allow remote attackers who have permission to manage custom fields to inject arbitrary HTML or JavaScript via a cross site scripting XSS vulnerability in the name of a custom...
CVE-2019-8450
Various templates of the Optimization plugin in Jira before version 7.13.6, and from version 8.0.0 before version 8.4.0 allow remote attackers who have permission to manage custom fields to inject arbitrary HTML or JavaScript via a cross site scripting XSS vulnerability in the name of a custom...
Cross site scripting
Various templates of the Optimization plugin in Jira before version 7.13.6, and from version 8.0.0 before version 8.4.0 allow remote attackers who have permission to manage custom fields to inject arbitrary HTML or JavaScript via a cross site scripting XSS vulnerability in the name of a custom...
CVE-2019-8450
Affected software: Jira with the Optimization plugin (versions before 7.13.6 and before 8.4.0). Vulnerability: Cross-site scripting (XSS) due to improper validation of user-supplied input when exporting the name of a custom field. Impact: Authenticated, remote attacker can inject arbitrary HTML/J...
CVE-2019-8450
Various templates of the Optimization plugin in Jira before version 7.13.6, and from version 8.0.0 before version 8.4.0 allow remote attackers who have permission to manage custom fields to inject arbitrary HTML or JavaScript via a cross site scripting XSS vulnerability in the name of a custom...
How Can SEO Help Increase Website Security?
By Uzair Amir Though many think that SEO Search Engine Optimization and website security do not go hand in hand, they are a lot closer than many think. This is a post from HackRead.com Read the original post: How Can SEO Help Increase Website Security?...
Windows Update Delivery Optimization Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists when the Windows Update Delivery Optimization does not properly enforce file share permissions. An attacker who successfully exploited the vulnerability could overwrite files that require higher privileges than what the attacker already has. To explo...
PT-2019-3305 · Microsoft · Windows Update Delivery Optimization +1
Name of the Vulnerable Software and Affected Versions: Windows Update Delivery Optimization affected versions not specified Description: The issue is related to an elevation of privilege vulnerability in the Windows Update Delivery Optimization, which does not properly enforce file share...
KB4516068: Windows 10 Version 1703 September 2019 Security Update
The remote Windows host is missing security update 4516068. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists in Windows Text Service Framework TSF when the TSF server process does not validate the source of input or commands it receives. An...
KB4516058: Windows 10 Version 1803 September 2019 Security Update
The remote Windows host is missing security update 4516058. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists in Windows Text Service Framework TSF when the TSF server process does not validate the source of input or commands it receives. An...
KLA11552 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges, obtain sensitive information, spoof user interface, execute arbitrary code, bypass security restrictions. Below is a complete list of...
Design/Logic Flaw
The POWER9 backend in GNU Compiler Collection GCC before version 10 could optimize multiple calls of the builtindarn intrinsic into a single call, thus reducing the entropy of the random number generator. This occurred because a volatile operation was not specified. For example, within a single...
CVE-2019-15847
The POWER9 backend in GNU Compiler Collection GCC before version 10 could optimize multiple calls of the builtindarn intrinsic into a single call, thus reducing the entropy of the random number generator. This occurred because a volatile operation was not specified. For example, within a single...
Security Bulletin: Multiple vulnerabilities in IBM Java SDK and IBM Java Runtime affect IBM Decision Optimization Center
Summary There are multiple vulnerabilities in IBM® SDK Java™ and IBM® Runtime Environment Java™ Versions 7 & 8 used by IBM Decision Optimization Center. IBM Decision Optimization Center have addressed the applicable CVEs. Vulnerability Details If you run your own Java code using the IBM Java...
Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM ILOG CPLEX Optimization Studio and IBM CPLEX Enterprise Server
Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Versions 7 & 8 used by IBM CPLEX Optimization Studio and IBM CPLEX Enterprise Server. IBM CPLEX Optimization Studio and IBM CPLEX Enterprise Server have addressed the applicable CVEs. Vulnerability Details If you run you...
Fast DNS: Zone Apex Mapping & DNSSEC
Introduction Along with its DDoS resilience and impressive global footprint, Fast DNS affords zone administrators additional technical flexibility and implementation options. One example is Zone Apex Mapping ZAM -- a feature that enables apex domains to be mapped directly to an Akamai edge IP. Th...
XSS in various templates of the Optimization plugin - CVE-2019-8450
Various templates of the Optimization plugin in Jira before version 7.13.6, and from version 8.0.0 before version 8.4.0 allow remote attackers who have permission to manage custom fields to inject arbitrary HTML or JavaScript via a cross site scripting XSS vulnerability in the name of a custom...
XSS in various templates of the Optimization plugin - CVE-2019-8450
Various templates of the Optimization plugin in Jira before version 7.13.6, and from version 8.0.0 before version 8.4.0 allow remote attackers who have permission to manage custom fields to inject arbitrary HTML or JavaScript via a cross site scripting XSS vulnerability in the name of a custom...