EUVD-2022-25404

Malicious code in bioql PyPI...

CVE-2022-20144

In multiple functions of AvatarPhotoController.java, there is a possible access to content owned by system content providers due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

CVE-2022-20144

In multiple functions of AvatarPhotoController.java, there is a possible access to content owned by system content providers due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

CVE-2022-20144

In multiple functions of AvatarPhotoController.java, there is a possible access to content owned by system content providers due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

CVE-2022-20144

CVE-2022-20144 affects Android (AvatarPhotoController.java) on Android 10–11, where a confused deputy in multiple functions could allow access to content owned by system content providers. This could enable local escalation of privilege with no additional execution privileges and no user interact...

CVE-2022-20144

In multiple functions of AvatarPhotoController.java, there is a possible access to content owned by system content providers due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

Siemens Mendix 安全漏洞

Siemens Mendix is a low-code application development platform from Siemens, a German company that provides application development, testing, deployment and iteration. The platform provides application development, testing, deployment and iteration. Siemens Mendix contains a security vulnerability...

CVE-2020-35219

The ASUS DSL-N17U modem with firmware 1.1.0.2 allows attackers to access the admin interface by changing the admin password without authentication via a POST request to AdvancedSystemContent.asp with the uiViewToolsusername=admin&uiViewToolsPassword= and uiViewToolsPasswordConfirm= substrings...

Important: Red Hat Security Advisory: openstack-nova security update

Updated openstack-nova packages that fix one security issue are now available for Red Hat Enterprise Linux OpenStack Platform 6.0 Juno for RHEL 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give...

[SECURITY] [DSA 2263-2] movabletype-opensource security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2263-2 [email protected] http://www.debian.org/security/ Thijs Kinkhorst December 30, 2011 http://www.debian.org/security/faq -...

Apple Mac OS X 2008-003更新修复多个安全漏洞

BUGTRAQ ID: 29412 CVECAN ID: CVE-2008-1027,CVE-2008-1028,CVE-2008-1577,CVE-2008-1575,CVE-2008-1580,CVE-2008-1030,CVE-2008-1031,CVE-2008-1032,CVE-2008-1033,CVE-2008-1034,CVE-2008-1035,CVE-2008-1036,CVE-2008-1571,CVE-2008-1572,CVE-2008-1573,CVE-2008-1574,CVE-2008-1576,CVE-2008-1578,CVE-2008-1579 Ma...

Information disclosure

Sun Java System Content Delivery Server 5.0 and 5.0 PU1 allows remote attackers to obtain sensitive information regarding "content details" via unspecified vectors...