18 matches found
Google Android Buffer Overflow Vulnerability (CNVD-2022-80691)
Google Android is a Linux-based open source operating system from Google, a US-based company. No details of the vulnerability are currently available...
Google Android Resource Management Error Vulnerability in Android (CNVD-2022-78148)
Google Android is a Linux-based open source operating system from Google, a US-based company. An attacker could exploit this vulnerability to cause a local privilege escalation without additional execution privileges...
Google Android Denial of Service Vulnerability (CNVD-2022-61755)
Google Android is a Linux-based open source operating system from Google, a US-based company. The vulnerability is caused by an insecure deserialization flaw in the keystore library. An attacker could exploit the vulnerability to cause a denial of service situation...
F5 Access for Android Information Disclosure Vulnerability
F5 Access is a US-based company that uses VPN and optimization technologies to protect and accelerate mobile device access to enterprise networks and applications. f5 Access for Android is vulnerable to an information disclosure vulnerability that could be exploited by attackers to gain access to...
Google Android elevation of privilege vulnerability (CNVD-2022-43231)
Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability. The vulnerability stems from the lack of a warning to the user in the TBD of TBD and can be steered using a hidden debugging policy. An attacker could use...
Mattermost has an unspecified vulnerability (CNVD-2022-65351)
Mattermost is an open source collaboration platform from Mattermost, a US-based company. mattermost has a security vulnerability and no details of the vulnerability are available at this time...
OrangeHRM Cross-Site Scripting Vulnerability (CNVD-2022-30440)
Orangehrm is a human resource management system HRM from Orangehrm, a US-based company. The system supports personnel information management, leave management, attendance management and recruitment management, etc. Orangehrm version 4.10 has a cross-site scripting vulnerability that can be...
Open-xchange OX App Suite Cross-Site Scripting Vulnerability (CNVD-2022-28454)
Open-xchange OX App Suite is a set of Web-based cloud desktop environments from Open-Xchange Open-xchange USA. The environment allows users to manage email, tasks, files, etc. more intuitively. A cross-site scripting vulnerability exists in Open-xchange OX App Suite version 7.10.5 and prior...
Open-xchange OX App Suite Cross-Site Scripting Vulnerability (CNVD-2022-28457)
Open-xchange OX App Suite is a set of Web-based cloud desktop environments from Open-Xchange Open-xchange USA. The environment allows users to manage email, tasks, files, etc. more intuitively. A cross-site scripting vulnerability exists in Open-xchange OX App Suite version 7.10.5 and prior...
Open-xchange OX App Suite Cross-Site Scripting Vulnerability (CNVD-2021-90755)
Open-xchange OX App Suite is a Web cloud desktop environment from Open-Xchange Open-xchange, a US-based company. The environment allows users to more intuitively manage email, tasks, files, etc. A cross-site scripting vulnerability exists in Open-xchange OX App Suite, which can be exploited by...
Open-xchange OX App Suite Code Injection Vulnerability
Open-xchange OX App Suite is a Web cloud desktop environment from Open-Xchange Open-xchange, a US-based company. The environment allows users to more intuitively manage email, tasks, files, etc. A code injection vulnerability exists in Open-xchange OX App Suite, which can be exploited by attacker...
Open-xchange OX App Suite Cross-Site Scripting Vulnerability (CNVD-2021-90759)
Open-xchange OX App Suite is a web-based cloud desktop environment from Open-Xchange Open-xchange, a US-based company. The environment allows users to more intuitively manage email, tasks, files, etc. A cross-site scripting vulnerability exists in Open-xchange OX App Suite, which can be exploited...
Open-xchange OX App Suite Cross-Site Scripting Vulnerability (CNVD-2021-90764)
Open-xchange OX App Suite is a Web cloud desktop environment from Open-Xchange Open-xchange, a US-based company. The environment allows users to more intuitively manage email, tasks, files, etc. A cross-site scripting vulnerability exists in Open-xchange OX App Suite, which can be exploited by...
Open-xchange OX App Suite Information Disclosure Vulnerability (CNVD-2021-90765)
Open-xchange OX App Suite is a web-based cloud desktop environment from Open-Xchange Open-xchange, a US-based company that allows users to more intuitively manage email, tasks, files, etc. An information disclosure vulnerability exists in Open-xchange OX App Suite. An information disclosure...
Open-xchange OX App Suite Cross-Site Scripting Vulnerability (CNVD-2021-90761)
Open-xchange OX App Suite is a Web cloud desktop environment from Open-Xchange Open-xchange, a US-based company. The environment allows users to more intuitively manage email, tasks, files, etc. A cross-site scripting vulnerability exists in Open-xchange OX App Suite, which can be exploited by...
Multiple Trendnet Products Null Pointer Dereference Vulnerability
TRENDnet TEW-755AP and others are a router from Trendnet, a US-based company. Several Trendnet products are vulnerable to null pointer dereference. A remote attacker could use the vulnerability to send POST requests to applycgi via the lang operation without a language key, resulting in a denial ...
Open-xchange OX App Suite code issue vulnerability (CNVD-2022-28453)
Open-xchange OX App Suite is a set of Web-based cloud desktop environments from Open-Xchange Open-xchange USA. The environment allows users to manage email, tasks, files, etc. more intuitively. A code issue vulnerability exists in Open-xchange OX App Suite, no detailed vulnerability details are...
Six Apart Movable Type Cross-Site Scripting Vulnerability (CNVD-2022-22655)
Six Apart Movable Type MT is a blogging system from Six Apart, a US-based company. Six Apart Movable Type Premium is vulnerable to a cross-site scripting vulnerability that could be exploited by a remote authenticated attacker to inject arbitrary scripts via unspecified vectors...