2 matches found
SUSE CVE-2020-1721
A flaw was found in the Key Recovery Authority KRA Agent Service in pki-core 10.10.5 where it did not properly sanitize the recovery ID during a key recovery request, enabling a reflected cross-site scripting XSS vulnerability. An attacker could trick an authenticated victim into executing...
Apple Mac OS X Fake Time Vulnerability
Apple OS X is a BSD-based operating system distributed by Apple. A security vulnerability exists in Apple OS X versions prior to 10.10.5, which can be exploited by a local attacker to forge time via an access panel...