EUVD-2015-6363

Malware in sbrugna...

EUVD-2019-13908

Malware in sbrugna...

Zoho ManageEngine ADSelfService Plus Email Spoofing Vulnerability

Zoho ManageEngine ADSelfService Plus is a web-based self-service application that enables end-users to perform tasks such as password reset, account unlocking, profile information update, etc. without relying on the help desk. An email spoofing vulnerability exists in Zoho ManageEngine...

CVE-2019-4301

BigFix Self-Service Application SSA is vulnerable to arbitrary code execution if Javascript code is included in Running Message or Post Message HTML...

CVE-2019-4301

CVE-2019-4301 affects the BigFix Self-Service Application (SSA). The issue allows arbitrary code execution triggered by Javascript embedded in Running Message or Post Message HTML. The vulnerability is documented with CVSSv3.1 base score 8.4 (HIGH) and CVSSv2 base score 6.0 (MEDIUM). Exploitation...

Selfservice.exe Crashes on First Log On, Second Attempt Works

When a user attempts to logon it fails the first time and succeeds the second time. The first time selfservice.exe crashes. Self-service Plug-in exited unexpectedly. Exception was Object reference not set to an instance of an object. at Dazzle.AppMonitor.Control.Controller.WaitForLogoff at...

Cisco Unified Communications Domain Manager Denial of Service Vulnerability

A vulnerability in Cisco Unified Communications Domain Manager CUCDM could allow an authenticated, remote attacker to cause a denial of service DoS condition. The vulnerability is due to improper handling of malformed requests by the self-service application on an affected CUCDM device. An...