3 matches found
CVE-2025-41281
Nozomi Networks Labs identifies a CWE-78 OS Command Injection in Waterfall WF-500 RX Host (version 7.9.1.0 R2502171040). The root cause is improper neutralization of special elements used in an OS command, triggered when a MySQL connector is configured. Attackers with access to the TX Host can po...
CVE-2025-46690
Ververica Platform 2.14.0 allows low-privileged users to access SQL connectors via a direct namespaces/default/formats request...
Ververica Platform 安全漏洞
Ververica Platform is an integration platform from Ververica for stateful stream processing and stream analytics using open source Apache Flink. A security vulnerability exists in Ververica Platform version 2.14.0 that originates from a low-privileged user being able to access the SQL connector b...