4 matches found
OneUptime 安全漏洞
OneUptime is a comprehensive solution from OneUptime Open Source. for monitoring and managing your online services. A security vulnerability exists in versions prior to OneUptime 7.0.1815 that stems from incorrect authentication of client-stored data in a web application, where privileges can be...
Due to bit-shifting errors, reserve amounts in the pump will be corrupted, resulting in wrong oracle values
Lines of code Vulnerability details Description It is advised to first read finding: Due to slot confusion, reserve amounts in the pump will be corrupted, resulting in wrong oracle values, which provides all the contextual information for this separate bug. We've discussed how a wrong sload sourc...
The owner of the contract can broke the storage of the LooksRareAggregator contract
Lines of code Vulnerability details Impact The owner of the contract can broke the storage of the LooksRareAggregator contract Proof of Concept The addFunction function - can be called by the owner to to set proxy address and function selector for the function to be called inside this proxy. This...
CVE-2017-5722
Incorrect policy enforcement in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows attackers with local or physical access to bypass enforcement of integrity protections via manipulation of firmware storage...