Mesalvo Meona Client Launcher Component和Mesalvo Meona Server Component 代码注入漏洞

The Mesalvo Meona Client Launcher Component and the Mesalvo Meona Server Component are both products of the Mesalvo company. The Mesalvo Meona Client Launcher Component is a component designed for launching clients of medical information systems and facilitating application access. The Mesalvo...

Mesalvo Meona Client Launcher Component和Mesalvo Meona Server Component 安全漏洞

The Mesalvo Meona Client Launcher Component and the Mesalvo Meona Server Component are both products of the Mesalvo company. The Mesalvo Meona Client Launcher Component is a component designed for launching clients of medical information systems and facilitating application access. The Mesalvo...

Adobe FrameMaker 2020 < 16.0.10 (2020.0.10) / Adobe FrameMaker 2022 < 17.0.8 (2022.0.8) Arbitrary Code Execution (APSB25-101)

The version of Adobe FrameMaker installed on the remote Windows host is prior to Adobe FrameMaker 2020 16.0.10 / Adobe FrameMaker 2022 17.0.8. It is, therefore, affected by multiple vulnerabilities as referenced in the apsb25-101 advisory. - Heap-based Buffer Overflow CWE-122 potentially leading ...

KnowBe4 Security Awareness Training 安全漏洞

KnowBe4 Security Awareness Training is a human risk management software from KnowBe4. A security vulnerability exists in KnowBe4 Security Awareness Training versions prior to 2020-01-10, which stems from an unvalidated target URL resulting in an insecure redirection feature...

Autodesk FBX-SDK 缓冲区错误漏洞

Autodesk FBX-SDK is a C++ software development platform and API toolkit from Autodesk, Inc. that is primarily used to convert existing content to FBX format. A security vulnerability exists in Autodesk FBX-SDK version 2020 and prior versions, which can be exploited by an attacker to trick a user...

Fiserv Prologue 安全漏洞

Fiserv Prologue is a tool for streamlining financial accounting processes and accelerating the delivery of reliable, accessible information that improves performance. A security vulnerability exists in versions of Fiserv Prologue prior to 2020-12-16 that stems from not properly protecting databas...

Digi ConnectPort X2D 安全漏洞

The Digi ConnectPort X2D is a small gateway from Digi, Inc. It provides low-cost IP networking for RF devices and sensor networks. The Digi ConnectPort X2D suffers from a security vulnerability that stems from the web application's lack of device access protection and device privilege control...

RSSHub 资源管理错误漏洞

RSSHub is an RSS feed generator written in Node.js, distributed under the MIT license and maintained by DIYgod and other GitHub users. A resource management error vulnerability exists in versions of RSSHub prior to 2020-02-09, which stems from the fact that parameters such as filter and filterout...

Diego F.Aranha relic 加密问题漏洞

Diego F.Aranha relic is a Diego F.Aranha open source application. A modern cryptographic meta-toolkit focusing on efficiency and flexibility. A security vulnerability exists in versions prior to RELIC 2020-08-01, which stems from an invalid RSA PKCS.No detailed vulnerability details are provided ...

Rust arr crate 安全漏洞

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in Mozilla Rust versions prior to 2020-08-25 in arr crate, which stems from a buffer overflow in Index and IndexMut. No details of the vulnerability are provided at this time...

CVE-2020-29242

dhowden tag before 2020-11-19 allows "panic: runtime error: index out of range" via readPICFrame...

Tesla Model X Data Falsification Issue Vulnerability

Tesla The Tesla Model X is a new energy vehicle from the American company Tesla. Tesla Model X vehicles versions prior to 2020-11-23 suffer from a security vulnerability that stems from having critical fobs that can accept firmware updates without signature verification.This allows an attacker to...

CMAF... This is the Way

Optimize your streaming content catalog The debate is over. Common Media Application Format CMAF has delivered on its promise: one package to serve them all. Two of the highest profile direct-to-consumer DTC streaming service launches recently made the leap, validating that the time has come for...

DEBIAN-CVE-2020-25787

An issue was discovered in Tiny Tiny RSS aka tt-rss before 2020-09-16. It does not validate all URLs before requesting them...

Sophos XG Firewall OS Command Injection Vulnerability

Sophos XG Firewall is a next-generation endpoint protection and enterprise-class firewall product from Sophos UK. An operating system command injection vulnerability exists in User Portal in Sophos XG Firewall version 2020-08-05 and earlier. The vulnerability stems from a network system or produc...

JetBrains Space License Issue Vulnerability

JetBrains Space is a team collaboration solution from the Czech company JetBrains. The product supports features such as online chat, online meetings, code review and package repository. A security vulnerability exists in JetBrains Space version 2020-04-22 and earlier that stems from insecure...