425 matches found
Danfoss AK-SM800A 安全漏洞
Danfoss AK-SM800A is a system manager from Danfoss, Denmark. Provides secure system control and monitoring A security vulnerability exists in Danfoss AK-SM800A 3.3 and earlier versions that originates from improper input validation and can be exploited by an attacker to execute arbitrary commands...
CVE-2023-30563
A malicious file could be uploaded into a System Manager User Import Function resulting in a hijacked session...
CVE-2023-30563
A malicious file could be uploaded into a System Manager User Import Function resulting in a hijacked session...
Session fixation
A malicious file could be uploaded into a System Manager User Import Function resulting in a hijacked session...
CVE-2023-30563
BD Alaris Systems Manager (SM) versions 12.3 and prior are affected by CVE-2023-30563, an improper input validation vulnerability that allows a malicious file uploaded via the System Manager User Import Function to trigger a Cross-Site Scripting (XSS) condition and hijack a user session. The CVSS...
CVE-2023-30563 Stored Cross-Site Scripting on User Import Functionality
A malicious file could be uploaded into a System Manager User Import Function resulting in a hijacked session...
BD Alaris System with Guardrails Suite MX 跨站脚本漏洞
The BD Alaris System with Guardrails Suite MX is a medical device from BD Medical BD, Inc. A security vulnerability exists in the BD Alaris System with Guardrails Suite MX, which originates from a malicious file that could be uploaded to the System Manager user import function, which could lead t...
PT-2023-22791 · Unknown · Systems Manager
Name of the Vulnerable Software and Affected Versions: System Manager affected versions not specified Description: A malicious file could be uploaded into a System Manager User Import Function, resulting in a hijacked session. Recommendations: At the moment, there is no information about a newer...
systemd security and bug fix update
An update is available for systemd. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The systemd packages contain systemd, a system and service manager for Linux,...
Moderate: systemd security and bug fix update
The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, and keeps track of processes...
[SECURITY] Fedora 35 Update: systemd-249.13-6.fc35
systemd is a system and service manager that runs as PID 1 and starts the rest of the system. It provides aggressive parallelization capabilities, uses sock et and D-Bus activation for starting services, offers on-demand starting of daemons, keeps track of processes using Linux control groups,...
Moodle incorrect access control
A vulnerability was found in Moodle where users with "Log in as" capability in a course context typically, course managers may gain access to some site administration capabilities by "logging in as" a System manager. This affects 3.9 to 3.9.1, 3.8 to 3.8.4, 3.7 to 3.7.7, 3.5 to 3.5.13 and earlier...
Security Bulletin: Flex System Manager web server allows Generic XSS (CVE-2013-5438)
Summary The Flex System Manager FSM is running a web server that fails to adequately sanitize request strings of malicious JavaScript. Vulnerability Details Abstract The Flex System Manager FSM is running a web server that fails to adequately sanitize request strings of malicious JavaScript...
Security Bulletin: IBM Flex System Manger expired USERID password vulnerability (CVE-2013-5424)
Summary Abstract Security Bulletin: IBM Flex System Manger expired USERID password vulnerability CVE-2013-5424 Content Vulnerability Details: CVE ID: CVE-2013-5424. Description: All affected versions of the Flex System Manager FSM are vulne Vulnerability Details Abstract Security Bulletin: IBM Fl...
systemd bug fix and enhancement update
An update is available for systemd. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The systemd packages contain systemd, a system and service manager for Linux,...
[SECURITY] Fedora 35 Update: systemd-249.9-1.fc35
systemd is a system and service manager that runs as PID 1 and starts the rest of the system. It provides aggressive parallelization capabilities, uses sock et and D-Bus activation for starting services, offers on-demand starting of daemons, keeps track of processes using Linux control groups,...
HPESBGN04214 rev.1 - HPE Edgeline Integrated System Manager (iSM) for Edgeline EL300 Using DNSmasq and Nginx, Multiple Vulnerabilities
Potential Security Impact: Remote: Arbitrary Code Execution, Unauthorized Data Access, memory corruption SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Edgeline EL300 Converged Edge System - Prior to v1.50 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | |...
Netapp StorageGRID has an unspecified vulnerability
Netapp StorageGRID is an object storage solution from NetApp USA.NetApp StorageGRID has a security vulnerability that could be exploited by an attacker to escalate its privileges and modify settings in SANtricity System Manager...
CVE-2021-27006
StorageGRID formerly StorageGRID Webscale versions 11.5 prior to 11.5.0.5 are susceptible to a vulnerability which may allow an administrative user to escalate their privileges and modify settings in SANtricity System Manager...
CVE-2021-27006
StorageGRID formerly StorageGRID Webscale versions 11.5 prior to 11.5.0.5 are susceptible to a vulnerability which may allow an administrative user to escalate their privileges and modify settings in SANtricity System Manager...