22 matches found
EUVD-2022-4567
Malicious code in bioql PyPI...
CVE-2023-20245
Multiple vulnerabilities in the per-user-override feature of Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to bypass a configured access control list ACL and allow traffic that should be denied to flo...
The vulnerability of the “per-user-override” function in Cisco Adaptive Security Appliance (ASA) and Cisco Firepower Threat Defense (FTD) microprogramming systems allows a perpetrator to bypass the configured access control list.
The vulnerability of the “per-user-override” function in Cisco Adaptive Security Appliance ASA and Cisco Firepower Threat Defense FTD microprogramming systems relates to insufficient protection of service data. Exploiting this vulnerability can allow a malicious actor to bypass the configured...
The vulnerability of the “per-user-override” function in Cisco Adaptive Security Appliance (ASA) and Cisco Firepower Threat Defense (FTD) microprogramming systems allows a perpetrator to bypass the configured access control list.
The vulnerability of the “per-user-override” function in Cisco Adaptive Security Appliance ASA and Cisco Firepower Threat Defense FTD microprogramming systems relates to insufficient protection of service data. Exploiting this vulnerability can allow a malicious actor to bypass the configured...
CVE-2023-20256
Multiple vulnerabilities in the per-user-override feature of Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to bypass a configured access control list ACL and allow traffic that should be denied to flo...
CVE-2023-20245
Multiple vulnerabilities in the per-user-override feature of Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to bypass a configured access control list ACL and allow traffic that should be denied to flo...
CVE-2023-20245
Multiple vulnerabilities in the per-user-override feature of Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to bypass a configured access control list ACL and allow traffic that should be denied to flo...
CVE-2023-20256
CVE-2023-20256 relates to multiple vulnerabilities in the per-user-override feature of Cisco ASA and FTD software that could let an unauthenticated, remote attacker bypass ACLs and reach normally protected resources. The root cause is a logic error in how per-user-override rules are constructed/a...
Cisco Firepower Threat Defense Security Vulnerability
Cisco Firepower Threat Defense FTD is a suite of unified software from Cisco that provides next-generation firewall services. A security vulnerability exists in the Cisco Adaptive Security Appliance and Cisco Firepower Threat Defense that stems from multiple vulnerabilities in the per-user-overri...
PT-2023-7557 · Cisco · Cisco Ftd +1
Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliance ASA Software affected versions not specified Cisco Firepower Threat Defense FTD Software affected versions not specified Description: The issue is related to multiple vulnerabilities in the per-user-override...
PT-2023-7556 · Cisco · Cisco Ftd +1
Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliance ASA Software affected versions not specified Cisco Firepower Threat Defense FTD Software affected versions not specified Description: Multiple vulnerabilities in the per-user-override feature could allow an...
Cisco Firepower Threat Defense Security Vulnerability
Cisco Firepower Threat Defense FTD is a suite of unified software from Cisco that provides next-generation firewall services. A security vulnerability exists in the Cisco Adaptive Security Appliance and Cisco Firepower Threat Defense that stems from multiple vulnerabilities in the per-user-overri...
CVE-2022-0270
Prior to v0.6.1, bored-agent failed to sanitize incoming kubernetes impersonation headers allowing a user to override assigned user name and groups...
PYSEC-2021-876
Versions of Apache DolphinScheduler prior to 1.3.2 allowed an ordinary user under any tenant to override another users password through the API interface...
Authorization Bypass
dolphinscheduler-api is vulnerable to authorization bypass. An authenticated user under any tenant is able to override the passwords of other users via the API interface /dolphinscheduler/users/update...
mediawiki: $wgRateLimits (rate limit / ping limiter) entry for 'user' overrides that for 'newbie'
Mediawiki 1.31 before 1.31.1, 1.30.1, 1.29.3 and 1.27.5 contains a flaw where contrary to the documentation, $wgRateLimits entry for 'user' overrides that for 'newbie'...
Buffer Overflow
Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with...
CVE-2018-15398
A vulnerability in the per-user-override feature of Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to bypass an access control list ACL that is configured for an interface of an affected device. The...
CVE-2018-15398 Cisco Adaptive Security Appliance Access Control List Bypass Vulnerability
A vulnerability in the per-user-override feature of Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to bypass an access control list ACL that is configured for an interface of an affected device. The...
DEBIAN-CVE-2018-0503
Mediawiki 1.31 before 1.31.1, 1.30.1, 1.29.3 and 1.27.5 contains a flaw where contrary to the documentation, $wgRateLimits entry for 'user' overrides that for 'newbie'...