EUVD-2017-15100

Malware in sbrugna...

Sensitive Information Disclosure

org.apache.dolphinscheduler: dolphinscheduler-api is vulnerable to Sensitive Information Disclosure. The vulnerability is due to not removing the sessionId in the log statement of the authenticate method in the org.apache.dolphinscheduler.api.security.impl.AbstractAuthenticator class. This can le...

CVE-2021-20016

A SQL-Injection vulnerability in the SonicWall SSLVPN SMA100 product allows a remote unauthenticated attacker to perform SQL query to access username password and other session related information. This vulnerability impacts SMA100 build version 10.x...

CVE-2017-6032

A Violation of Secure Design Principles issue was discovered in Schneider Electric Modicon Modbus Protocol. The Modicon Modbus protocol has a session-related weakness making it susceptible to brute-force attacks...

Design/Logic Flaw

A Violation of Secure Design Principles issue was discovered in Schneider Electric Modicon Modbus Protocol. The Modicon Modbus protocol has a session-related weakness making it susceptible to brute-force attacks...

CVE-2017-6032

A Violation of Secure Design Principles issue was discovered in Schneider Electric Modicon Modbus Protocol. The Modicon Modbus protocol has a session-related weakness making it susceptible to brute-force attacks...

samba3x security update

CentOS Errata and Security Advisory CESA-2016:0613 An update for samba3x is now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...