Cisco NX-OS Software 访问控制错误漏洞

Cisco NX-OS Software is a set of data center-grade operating system software for switches from the U.S. company Cisco Cisco. The Cisco NX-OS Software suffers from an Access Control Error vulnerability, which arises from an insecure bootloader setting, and can be exploited by an attacker to bypass...

MAL-2024-7819 Malicious code in ent-widget-unauth-msr-stop (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 419ac24fa162a7dce946aee3790e098b29f502b45d13b9f29c0895aa078a5c52 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Format string

A software vulnerability has been identified in the U-Boot Secondary Program Loader SPL before 2023.07 on select NXP i.MX 8M family processors. Under certain conditions, a crafted Flattened Image Tree FIT format structure can be used to overwrite SPL memory, allowing unauthenticated software to...

CVE-2023-39902

A software vulnerability has been identified in the U-Boot Secondary Program Loader SPL before 2023.07 on select NXP i.MX 8M family processors. Under certain conditions, a crafted Flattened Image Tree FIT format structure can be used to overwrite SPL memory, allowing unauthenticated software to...

Forms Ada <= 1.0 - Unauthenticated Reflected XSS

The plugin does not sanitize and escape some of it's parameters before reflecting them back in the page, leading to a Reflected Cross-Site Scripting which could be used against high-privilege users such as admin...