14 matches found
EUVD-2023-52725
Malicious code in bioql PyPI...
EUVD-2023-49405
Malicious code in bioql PyPI...
CVE-2023-48681
Self cross-site scripting XSS vulnerability in storage nodes search field. The following products are affected: Acronis Cyber Protect 16 Linux, Windows before build 37391...
CVE-2023-48681
Self cross-site scripting XSS vulnerability in storage nodes search field. The following products are affected: Acronis Cyber Protect 16 Linux, Windows before build 37391...
CVE-2023-48681
Self cross-site scripting XSS vulnerability in storage nodes search field. The following products are affected: Acronis Cyber Protect 16 Linux, Windows before build 37391...
CVE-2023-48681
Acronis Cyber Protect 16 (Linux, Windows) before build 37391 has a self XSS vulnerability in the storage nodes search field. The issue allows execution of malicious scripts in the app context. Mitigation: upgrade to build 37391 or later; as a temporary workaround, restrict access to the storage n...
CVE-2023-45084
An issue exists in SoftIron HyperCloud where drive caddy removal and reinsertion without a reboot may erroneously cause the system to recognize the caddy as new media and wipe all data on the drives due to a missing synchronization flaw, which impacts data availability and integrity. This issue...
Design/Logic Flaw
An issue exists in SoftIron HyperCloud where drive caddy removal and reinsertion without a reboot may erroneously cause the system to recognize the caddy as new media and wipe all data on the drives due to a missing synchronization flaw, which impacts data availability and integrity. This issue...
Security Bulletin: A Vulnerability in Java affects the IBM FlashSystem models V840 and V9000
Summary There is a vulnerability in Java to which the IBM FlashSystem™ V840 and FlashSystem V9000 are susceptible CVE-2019-2602. An exploit of CVE-2019-2602 could make the system susceptible to a denial of service attack. Vulnerability Details CVEID: CVE-2019-2602 DESCRIPTION: An unspecified...
Security Bulletin: A vulnerability affects the IBM FlashSystem V840
Summary There is a vulnerability to which the FlashSystem™ V840 is susceptible. An exploit of this vulnerability could make the system subject to an attack where an unauthenticated user could download arbitrary files form the operating system. Vulnerability Details CVEID: CVE-2018-1775 DESCRIPTIO...
Security Bulletin: Vulnerabilities in Mozilla NSS affect the IBM FlashSystem model V840
Summary There are vulnerabilities in Mozilla Network Security Services NSS to which the IBM® FlashSystem™ V840 is susceptible. An exploit of these vulnerabilities CVE-2016-2834, CVE-2016-5285, and CVE-2016-8635 could allow a remote attacker to execute arbitrary code, to recover private keys, to...
Security Bulletin: Vulnerability in MD5 Signature and Hash Algorithm affects IBM FlashSystem model V840 (CVE-2015-7575)
Summary The MD5 “SLOTH” vulnerability on TLS 1.2 affects IBM® FlashSystem™ V840. Vulnerability Details CVEID: CVE-2015-7575 DESCRIPTION: The TLS protocol could allow weaker than expected security caused by a collision attack when using the MD5 hash function for signing a ServerKeyExchange message...
Security Bulletin: Vulnerability in RC4 stream cipher affects the IBM FlashSystem V840 (CVE-2015-2808)
Summary The RC4 “Bar Mitzvah” Attack for SSL/TLS affects the IBM® FlashSystem™ V840. Vulnerability Details CVEID: CVE-2015-2808 DESCRIPTION: The RC4 algorithm, as used in the TLS protocol and SSL protocol, could allow a remote attacker to obtain sensitive information. An attacker could exploit th...
HP LeftHand OS Console Discovery Detection
The HP LeftHand OS formerly SAN/iQ console discovery service, used by systems such as the HP Virtual SAN Appliance, is running on the remote host. This service allows management applications to discover storage nodes. TRUSTED...