CVE-2025-54863

Radiometrics VizAir is vulnerable to exposure of the system's REST API key through a publicly accessible configuration file. This allows attackers to remotely alter weather data and configurations, automate attacks against multiple instances, and extract sensitive meteorological data, which could...

CVE-2025-54863

Radiometrics VizAir is vulnerable to exposure of the system's REST API key through a publicly accessible configuration file. This allows attackers to remotely alter weather data and configurations, automate attacks against multiple instances, and extract sensitive meteorological data, which could...

CVE-2025-54863 Insufficiently Protected Credentials in Radiometrics VizAir

Radiometrics VizAir is vulnerable to exposure of the system's REST API key through a publicly accessible configuration file. This allows attackers to remotely alter weather data and configurations, automate attacks against multiple instances, and extract sensitive meteorological data, which could...

CVE-2025-54863 Insufficiently Protected Credentials in Radiometrics VizAir

Radiometrics VizAir is vulnerable to exposure of the system's REST API key through a publicly accessible configuration file. This allows attackers to remotely alter weather data and configurations, automate attacks against multiple instances, and extract sensitive meteorological data, which could...

EUVD-2018-2437

Malware in sbrugna...

The vulnerability of the LOV component in terms of technical maintenance, repairs, and major overhauls of Oracle Complex Maintenance, Repair, and Overhaul systems—a system for automating business operations in Oracle E-Business Suite—allows a perpetrator to gain access to read, modify, add, or delete data.

The vulnerability of the LOV component in terms of technical maintenance, repairs, and major overhauls of Oracle system equipment exists due to insufficient verification of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to read, modify, add, or...

CVE-2024-2453 Advantech WebAccess/SCADA SQL Injection

There is an SQL injection vulnerability in Advantech WebAccess/SCADA software that allows an authenticated attacker to remotely inject SQL code in the database. Successful exploitation of this vulnerability could allow an attacker to read or modify data on the remote database...

The vulnerability of the Networking component of the Oracle Java SE software platform and the Oracle GraalVM Enterprise Edition virtual machine allows attackers to manipulate data.

The vulnerability of the Networking component of the Oracle Java SE software platform and the Oracle GraalVM Enterprise Edition virtual machine exists due to insufficient testing of input data. Exploiting this vulnerability allows a malicious actor to manipulate data remotely...

The vulnerability of the E-Business Collections component of the Oracle Demantra Demand Management demand management platform, which allows a fraudster to manipulate data.

The vulnerability of the E-Business Collections component of the Oracle Demantra Demand Management demand management platform is related to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to manipulate data remotely...

The vulnerability of the sub-component of the Automated Test Suite of the Oracle HCM Common Architecture component of the Oracle E-Business Suite allows a perpetrator to manipulate data.

The vulnerability of the sub-component of the Automated Test Suite of the Oracle HCM Common Architecture in the Oracle E-Business Suite system relates to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to manipulate data remotely...

Oracle Java SE和Oracle GraalVM 输入验证错误漏洞

Oracle GraalVM is a set of on-the-fly compilers written in the Java language from Oracle Corporation USA.GraalVM Enterprise Edition is the enterprise version of GraalVM.An input validation error vulnerability exists in Oracle GraalVM due to an Oracle GraalVM Enterprise Edition has incorrect input...

Vulnerability fixed in Red Hat Jboss Enterprise Application Platform

A vulnerability has been fixed in Red Hat Jboss Enterprise Application Platform. The vulnerability allows a remote malicious person to remotely able to manipulate data and thereby cause a Denial-of-Service. Red Hat has released updates to fix the vulnerability in. More information can be found on...

Unspecified Vulnerability in Oracle Java SE and Java SE Embedded (CNVD-2016-05285)

Oracle Java SE and Java SE Embedded are both products of Oracle Corporation. Java SE Java Platform Standard Edition is used to develop and deploy Java applications for desktops, servers, and embedded devices and real-time environments; Java SE Embedded is a Java platform developed for embedded...

Unspecified Vulnerability in Oracle E-Business Suite Oracle Installed Base Component

Oracle E-Business Suite E-Business Suite is a fully integrated set of global business management software from Oracle Corporation, of which Oracle Installed Base is an installed base component. An unspecified vulnerability exists in the Engineering Change Order subcomponent of the Oracle Installe...

Oracle PeopleSoft Products PeopleSoft Enterprise PeopleTools Component Denial of Service Vulnerability (CNVD-2016-02554)

Oracle PeopleSoft Products is a suite of enterprise human capital management solutions from Oracle Corporation, and PeopleSoft Enterprise PeopleTools is one of the tools and technology components that transforms the way organizations manage, use, and maintain their PeopleSoft software. PeopleSoft...

Unspecified Vulnerability in Suite Agile Engineering Data Management Component in Oracle Supply Chain

Oracle Supply Chain Products Suite is a suite of supply chain solutions that provides value chain planning, value chain execution, and product lifecycle management. An unspecified vulnerability exists in the BAS - Base Component subcomponent of the Oracle Agile Engineering Data Management compone...