232 matches found
Oracle WebLogic Server 安全漏洞
Oracle WebLogic Server is an application service middleware for cloud and traditional environments from Oracle Corporation USA that provides a modern lightweight development platform that supports the entire lifecycle management of applications from development to production and simplifies...
K35205264: Linux kernel vulnerability CVE-2018-10938
Security Advisory Description A flaw was found in the Linux kernel present since v4.0-rc1 and through v4.13-rc4. A crafted network packet sent remotely by an attacker may force the kernel to enter an infinite loop in the cipsov4optptr function in net/ipv4/cipsoipv4.c leading to a denial-of-servic...
K02354867: Kernel vulnerability CVE-2020-10711
Security Advisory Description A NULL pointer dereference flaw was found in the Linux kernel's SELinux subsystem in versions before 5.7. This flaw occurs while importing the Commercial IP Security Option CIPSO protocol's category bitmap into the SELinux extensible bitmap via the'...
SUSE CVE-2019-2910
Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Security: Encryption. Supported versions that are affected are 5.6.45 and prior and 5.7.27 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to...
SUSE CVE-2022-21348
Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.27 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of thi...
SUSE CVE-2022-36314
When opening a Windows shortcut from the local filesystem, an attacker could supply a remote path that would lead to unexpected network requests from the operating system.This bug only affects Firefox for Windows. Other operating systems are unaffected.. This vulnerability affects Firefox ESR...
December 13, 2022—KB5021234 (OS Build 22000.1335)
None None...
PT-2022-25843 · Tenda · Tenda Ac1200 Router
Name of the Vulnerable Software and Affected Versions: Tenda AC1200 Router Model W15Ev2 version V15.11.0.101576 Description: The issue concerns multiple command injection vulnerabilities found in the function setIPsecTunnelList. These vulnerabilities can be exploited via the IPsecLocalNet and...
Mozilla: An iframe element in an HTML email could trigger a network request
A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of sending a request to the remote document when receiving an HTML email that specified to load an iframe element from a remote location. However, Thunderbird didn't display the document...
Mozilla: An iframe element in an HTML email could trigger a network request
A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of sending a request to the remote document when receiving an HTML email that specified to load an iframe element from a remote location. However, Thunderbird didn't display the document...
CVE-2022-28664
A memory corruption vulnerability exists in the httpd unescape functionality of FreshTomato 2022.1. A specially-crafted HTTP request can lead to memory corruption. An attacker can send a network request to trigger this vulnerability.The freshtomato-mips has a vulnerable URL-decoding feature that...
UBUNTU-CVE-2022-21527
Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.29 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...
IBM App Connect Enterprise 信任管理问题漏洞
IBM App Connect Enterprise is an operating system from IBM Corporation of the U.S.A. IBM App Connect Enterprise combines existing industry-trusted IBM Integration Bus technology with IBM App Connect Professional and new cloud-native technologies to IBM App Connect Enterprise combines existing...
Siemens SINEMA Remote Connect Server Parameter Handling Error Vulnerability
SINEMA Remote Connect is a remote network management platform that makes it easy to manage tunnel connections VPNs between headquarters, service technicians, and installed machines or plants.A parameter handling error vulnerability exists in Siemens SINEMA Remote Connect Server, which stems from ...
Siemens SINEMA Remote Connect Server命令注入漏洞
SINEMA Remote Connect is a remote network management platform that makes it easy to manage tunneled connections VPN between headquarters, service technicians, and installed machines or plants.A command injection vulnerability exists in Siemens SINEMA Remote Connect Server, which stems from the fa...
Siemens SINEMA Remote Connect Server User Management Error Vulnerability
SINEMA Remote Connect is a remote network management platform that makes it easy to manage tunneled connections VPNs between headquarters, service technicians, and installed machines or plants.A user management error vulnerability exists in Siemens SINEMA Remote Connect Server, which stems from t...
Siemens SINEMA Remote Connect Server has an unspecified vulnerability (CNVD-2022-45222)
SINEMA Remote Connect is a remote network management platform that makes it easy to manage tunnel connections VPNs between headquarters, service technicians, and installed machines or plants.A security vulnerability exists in Siemens SINEMA Remote Connect Server, which stems from a system image...
Siemens SINEMA Remote Connect Server 输入验证错误漏洞
SINEMA Remote Connect is a remote network management platform that makes it easy to manage tunnel connections VPNs between headquarters, service technicians, and installed machines or plants.Siemens SINEMA Remote Connect Server input validation error vulnerability, which could be exploited by an...
The vulnerability of the application software interface of TP-Link Omada SDN software controllers, related to errors in processing authentication requests, allows a intruder to gain access to the protected network.
The vulnerability of the application software interface of TP-Link Omada SDN software controllers is related to errors in processing authentication requests. Exploiting this vulnerability can allow a remote attacker to gain access to the protected network...
An issue was discovered in drivers/usb/gadget/function/rndis.c in the Linux kernel before 5.16.10. The RNDIS USB gadget lacks validation of the size of the RNDIS_MSG_SET command. Attackers can obtain sensitive information from kernel memory.
...