Apple iOS和Apple iPadOS 安全漏洞

Apple iOS and Apple iPadOS are products of the American company Apple. Apple iOS is an operating system developed for mobile devices. Apple iPadOS is an operating system for iPad tablets. There were security vulnerabilities in versions of Apple iOS before 18.7.7, as well as versions before 26.4,...

CVE-2025-64752 grist-core has path to server-side requests via websocket

grist-core is a spreadsheet hosting server. Prior to version 1.7.7, a user with access to any document on a Grist installation can use a feature for fetching from a URL that is executed on the server. The privileged network access of server-side requests could offer opportunities for attack...

CVE-2024-2660

A flaw was found in the OCSP response handling logic of Vault’s TLS certificate authentication method. This issue may result in signatures and responses from multiple servers not being handled properly. A malicious actor with privileged network access may be able to successfully authenticate via...

CVE-2022-42454

Insights for Vulnerability Remediation IVR is vulnerable to man-in-the-middle attacks that may lead to information disclosure. This requires privileged network access...

CVE-2022-42454

Insights for Vulnerability Remediation IVR is vulnerable to man-in-the-middle attacks that may lead to information disclosure. This requires privileged network access...

CVE-2022-42454 HCL BigFix Insights for Vulnerability Remediation (IVR) is vulnerable to improper certificate validation

Insights for Vulnerability Remediation IVR is vulnerable to man-in-the-middle attacks that may lead to information disclosure. This requires privileged network access...

Denial Of Service (DoS)

rh-mysql80-mysql is vulnerable to denial of service. The vulnerability exists due to a privileged network access via multiple protocols...

CVE-2021-35647

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

CVE-2021-1878

An integer overflow was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.3, Security Update 2021-002 Catalina, Security Update 2021-003 Mojave. An attacker in a privileged network position may be able to leak sensitive user information...

mysql: Server: Security: Roles unspecified vulnerability (CPU Jul 2019)

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Security: Roles. Supported versions that are affected are 8.0.16 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

Cisco Wireless LAN Controller Software Elevation of Privilege Vulnerability

Cisco Wireless LAN Controller WLC is a wireless LAN controller product from Cisco USA. The product provides security policy, intrusion detection and other functions in the wireless LAN. An elevation of privilege vulnerability exists in Cisco Wireless LAN Controller Software due to the dynamic...