CVE-2019-11875

In AutomateAppCore.dll in Blue Prism Robotic Process Automation 6.4.0.8445, a vulnerability in access control can be exploited to escalate privileges. The vulnerability allows for abusing the application for fraud or unauthorized access to certain information. The attack requires a valid user...

EUVD-2021-2075

Malware in sbrugna...

EUVD-2020-0649

Malware in sbrugna...

EUVD-2019-3535

Malware in sbrugna...

EUVD-2022-38842

Malicious code in bioql PyPI...

EUVD-2022-38840

Malicious code in bioql PyPI...

EUVD-2022-38844

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2021-3801

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - prism is vulnerable to Inefficient Regular Expression Complexity CVE-2021-3801 Note that Nessus relies on the presence of the package as reported by the vendor...

GHSA-52F5-9888-HMC6 vulnerabilities

Vulnerabilities for packages: kibana, lerna, opensearch-dashboards, kubeflow-centraldashboard, opensearch-dashboards-fips, saf, vitess, prism...

CVE-2022-36115

An issue was discovered in Blue Prism Enterprise 6.0 through 7.01. In a misconfigured environment that exposes the Blue Prism Application server, it is possible for an authenticated user to reverse engineer the Blue Prism software and circumvent access controls for unintended functionality. An...

CVE-2022-36118

An issue was discovered in Blue Prism Enterprise 6.0 through 7.01. In a misconfigured environment that exposes the Blue Prism Application server, it is possible for an authenticated user to reverse engineer the Blue Prism software and circumvent access controls for the SetProcessAttributes...

CVE-2022-36116

An issue was discovered in Blue Prism Enterprise 6.0 through 7.01. In a misconfigured environment that exposes the Blue Prism Application server, it is possible for an authenticated user to reverse engineer the Blue Prism software and circumvent access controls for the setValidationInfo...

CVE-2022-36120

An issue was discovered in Blue Prism Enterprise 6.0 through 7.01. In a misconfigured environment that exposes the Blue Prism Application server, it is possible for an authenticated user to reverse engineer the Blue Prism software and circumvent access controls for the getChartData administrative...

CVE-2022-36117

An issue was discovered in Blue Prism Enterprise 6.0 through 7.01. In a misconfigured environment that exposes the Blue Prism Application server, it is possible for an authenticated user to reverse engineer the Blue Prism software and circumvent access controls for an administrative function. If...

CVE-2022-36121

An issue was discovered in Blue Prism Enterprise 6.0 through 7.01. In a misconfigured environment that exposes the Blue Prism Application server, it is possible for an authenticated user to reverse engineer the Blue Prism software and circumvent access controls for the UpdateOfflineHelpData...

CVE-2021-3801

prism is vulnerable to Inefficient Regular Expression Complexity...

Design/Logic Flaw

prism is vulnerable to Inefficient Regular Expression Complexity...

CVE-2020-15138

Prism is vulnerable to Cross-Site Scripting. The easing preview of the Previewers plugin has an XSS vulnerability that allows attackers to execute arbitrary code in Safari and Internet Explorer. This impacts all Safari and Internet Explorer users of Prism =v1.1.0 that use the Previewers plugin...