Lucene search
K

6 matches found

BDU FSTEC
BDU FSTEC
•added 2023/04/20 12:0 a.m.•4 views

The vulnerability of the autonomous server for modifying image file sizes and transformations, related to data type processing errors, allows attackers to perform cross-site scripting (XSS) attacks.

The vulnerability of the autonomous server for resizing and transforming image files in imgproxy is related to errors in data type processing. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks using a specially crafted SVG file...

6.5CVSS6AI score0.01585EPSS
Exploits1References3Affected Software1
RedHat Linux
RedHat Linux
•added 2022/08/24 9:45 p.m.•5 views

Mozilla: Address bar spoofing via XSLT error handling

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of an attacker abusing XSLT error handling to associate attacker-controlled content with another origin, which was displayed in the address bar. This issue could be used to fool the user into submitting data...

6.5CVSS7.2AI score0.00361EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2022/08/24 5:41 p.m.•5 views

Mozilla: Address bar spoofing via XSLT error handling

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of an attacker abusing XSLT error handling to associate attacker-controlled content with another origin, which was displayed in the address bar. This issue could be used to fool the user into submitting data...

6.5CVSS7.2AI score0.00361EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
•added 2021/06/15 12:0 a.m.•3 views

The vulnerability of the WBF driver of the HID DigitalPersona U.are.U 4500 fingerprint reader software allows a intruder to gain unauthorized access to protected information.

The vulnerability of the WBF driver of the HID DigitalPersona U.are.U 4500 Reader biometric fingerprint scanner software is related to cryptographic transformation errors. Exploiting this vulnerability can allow an unauthorized attacker to gain unauthorized access to protected information...

5.9CVSS6.2AI score0.01064EPSS
Exploits1References6Affected Software1
BDU FSTEC
BDU FSTEC
•added 2016/04/06 12:0 a.m.•5 views

The vulnerability of the server operating system OS X Server, which allows a hacker to break the cryptographic security mechanism

The vulnerability of the Web Server component of the OS X Server operating system is related to errors in cryptographic transformations. Exploiting this vulnerability could allow a malicious actor to compromise the cryptographic security mechanisms...

5CVSS7.4AI score0.02001EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
•added 2016/03/31 12:0 a.m.•7 views

The vulnerability of Nettle’s cryptographic library allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the ecc256modp function in the Nettle cryptographic library is related to errors in cryptographic transformations. Exploiting this vulnerability could allow a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

7.5CVSS7.5AI score0.04212EPSS
Exploits0References12Affected Software4
Rows per page
Query Builder