18 matches found
EUVD-2019-13461
Malware in sbrugna...
EUVD-2024-16917
Malicious code in bioql PyPI...
EUVD-2024-16916
Malicious code in bioql PyPI...
CVE-2024-1148
Weak access control in OpenText PVCS Version Manager allows potential bypassing of authentication and uploading of files...
CVE-2024-1147
Weak access control in OpenText PVCS Version Manager allows potential bypassing of authentication and download of files...
CVE-2024-1148
Weak access control in OpenText PVCS Version Manager allows potential bypassing of authentication and uploading of files...
CVE-2024-1148 Weak Access Control - Arbitrary file upload
Weak access control in OpenText PVCS Version Manager allows potential bypassing of authentication and uploading of files...
CVE-2024-1148 Weak Access Control - Arbitrary file upload
Weak access control in OpenText PVCS Version Manager allows potential bypassing of authentication and uploading of files...
CVE-2024-1148
OpenText PVCS Version Manager contains weak access control that could bypass authentication and allow arbitrary file uploads. CVSS 3.1 base score 9.8 (CRITICAL) with network access, no user interaction required. Affected: PVCS Version Manager (OpenText). Root cause: weak access control enabling a...
CVE-2024-1147
CVE-2024-1147 describes a weakness in OpenText PVCS Version Manager with weak access control that can bypass authentication to download files. The PT-2024-17018 entry specifies affected versions: OpenText PVCS Version Manager prior to 8.6.3.3. The advisory recommends upgrading to version 8.6.3.3 ...
CVE-2024-1147 Weak Access Control - Arbitrary file download
Weak access control in OpenText PVCS Version Manager allows potential bypassing of authentication and download of files...
CVE-2024-1147 Weak Access Control - Arbitrary file download
Weak access control in OpenText PVCS Version Manager allows potential bypassing of authentication and download of files...
OpenText PVCS Version Manager 安全漏洞
OpenText PVCS Version Manager is a version control software from OpenText, Inc. A security vulnerability exists in OpenText PVCS Version Manager that stems from the presence of weak access control that could bypass authentication for file uploads...
OpenText PVCS Version Manager 安全漏洞
OpenText PVCS Version Manager is a version control software from OpenText, Inc. A security vulnerability exists in OpenText PVCS Version Manager that stems from the presence of weak access control that could bypass authentication for file downloads...
Man-in-the-Middle (MitM)
Kubevirt/virt-cdi-importer is vulnerable to man-in-the-middle attacks. A remote unauthenticated attacker could exploit in the TLS Certificate Validation component since it disables TLS certificate validation when importing data into PVCs from container registries, allowing attackers to sniff or...
Input validation
Kubevirt/virt-cdi-importer, versions 1.4.0 to 1.5.3 inclusive, were reported to disable TLS certificate validation when importing data into PVCs from container registries. This could enable man-in-the-middle attacks between a container registry and the virt-cdi-component, leading to possible...
CVE-2019-3841
Kubevirt/virt-cdi-importer, versions 1.4.0 to 1.5.3 inclusive, were reported to disable TLS certificate validation when importing data into PVCs from container registries. This could enable man-in-the-middle attacks between a container registry and the virt-cdi-component, leading to possible...
CVE-2019-3841
Kubevirt/virt-cdi-importer, versions 1.4.0 to 1.5.3 inclusive, were reported to disable TLS certificate validation when importing data into PVCs from container registries. This could enable man-in-the-middle attacks between a container registry and the virt-cdi-component, leading to possible...