Dell EMC PowerStore 数据伪造问题漏洞

Dell EMC PowerStore is a storage device from Dell, Inc. A data forgery issue vulnerability exists in Dell EMC PowerStore versions prior to 3.5, which stems from the inclusion of incorrect cryptographic signature validation, and can be exploited by an attacker to trick an elevated privilege user...

simple-git-hooks 参数注入漏洞

simple-git-hooks is an application. A simple git hooks manager for small projects. simple-git-hooks versions prior to 3.5.0 have security vulnerabilities that attackers exploit for command injection...

CVE-2018-15380

A vulnerability in the cluster service manager of Cisco HyperFlex Software could allow an unauthenticated, adjacent attacker to execute commands as the root user. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by connecting to the cluster...

CVE-2018-11639

Plaintext Storage of Passwords within Cookies in /var/www/xms/application/controllers/verifyLogin.php in the administrative console in Dialogic PowerMedia XMS before 3.5 SU2 allows remote attackers to access a user's password in cleartext...

Cambium Networks ePMP Client Protection Bypass Elevation of Privilege Vulnerability

Cambium Networks ePMP is a suite of wireless network access platforms from Cambium Networks, USA. The platform provides video surveillance, Wi-Fi hotspot and sensor connectivity. A security vulnerability exists in Cambium Networks ePMP using firmware version 3.5 and earlier, which stems from the...