IBM Application Gateway 跨站脚本漏洞

IBM Application Gateway is an application gateway from International Business Machines IBM, Inc. provides a containerized, secure Web reverse proxy that is designed to sit in front of your application, seamlessly adding authentication and authorization protection to your application.A cross-site...

PT-2022-6176 · Cisco · Cisco Ios Xe

Name of the Vulnerable Software and Affected Versions: Cisco IOS XE Software affected versions not specified Description: The issue exists due to insufficient input validation in the web UI feature of Cisco IOS XE Software, allowing an authenticated, remote attacker to perform an injection attack...

Google Chrome 安全漏洞

Google Chrome is a web browser from Google, Inc. in the United States. A security vulnerability exists in Google Chrome versions prior to 106, which stems from an incorrect security UI for full-screen display...

Security Bulletin: IBM TS3500 Tape Library Update for Security Vulnerability in Web User Interface (CVE-2012-5767)

Abstract Download an update to the TS3500 Tape Library which contains a fix for a security vulnerability that could allow unauthorized access to restricted actions. Content DESCRIPTION: An authorized user of the TS3500 web user interface could exploit a vulnerability that would give that user a...

DEBIAN-CVE-2022-3058

Use after free in Sign-In Flow in Google Chrome prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via crafted UI interaction...

DEBIAN-CVE-2022-3051

Heap buffer overflow in Exosphere in Google Chrome on Chrome OS, Lacros prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via crafted UI interactions...

DEBIAN-CVE-2022-3050

Heap buffer overflow in WebUI in Google Chrome on Chrome OS prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via crafted UI interactions...

DEBIAN-CVE-2022-2859

Use after free in Chrome OS Shell in Google Chrome prior to 104.0.5112.101 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via specific UI interactions...

DEBIAN-CVE-2022-2858

Use after free in Sign-In Flow in Google Chrome prior to 104.0.5112.101 allowed a remote attacker to potentially exploit heap corruption via specific UI interaction...

UBUNTU-CVE-2022-2858

Use after free in Sign-In Flow in Google Chrome prior to 104.0.5112.101 allowed a remote attacker to potentially exploit heap corruption via specific UI interaction...

UBUNTU-CVE-2022-3052

Heap buffer overflow in Window Manager in Google Chrome on Chrome OS, Lacros prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via crafted UI interactions...

Security Bulletin: SONAS Fix Available for Code Injection via Command Line Interface and SONAS Graphical User Interface (CVE-2012-2163)

Abstract SONAS has a vulnerability that allows SONAS administrative users to execute commands as root. Content VULNERABILITY DETAILS: CVE ID: CVE-2012-2163 DESCRIPTION: An error in the command execution of the SONAS Command Line Interface and the SONAS Graphical User Interface could be leveraged ...

Security Bulletin: Storwize V7000 Unified Fix Available for Code Injection via Command Line Interface and Graphical User Interface (CVE-2012-2163)

Abstract Storwize V7000 Unified has a vulnerability that allows the administrative users to execute commands as root. Content VULNERABILITY DETAILS: CVE ID: CVE-2012-2163 DESCRIPTION: An error in the command execution of the Storwize V7000 Unified Command Line Interface and the Graphical User...

Security Bulletin: IBM SONAS fix available for Cross Frame Scripting vulnerability via Graphical User Interface (CVE-2013-5376)

Abstract An issue in IBM SONAS allows remote attackers to access the system as an authorized administrative user. Content VULNERABILITY DETAILS: CVE ID: CVE-2013-5376 DESCRIPTION: An error in the IBM SONAS Graphical User Interface results in a Cross Frame Scripting vulnerability which can be used...

Security Bulletin: TADDM Web UI security vulnerabilities (CVE-2012-5939,CVE-2012-5942)

Abstract IBM Tivoli Application Dependency Discovery Manager has security vulnerabilities in Web User Interface Data Management Portal Content VULNERABILITY DETAILS: CVEID: CVE-2012-5939 DESCRIPTION: IBM Tivoli Application Dependency Discovery Manager is vulnerable to cross-site scripting, caused...

DEBIAN-CVE-2022-32816

The issue was addressed with improved UI handling. This issue is fixed in watchOS 8.7, tvOS 15.6, iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5. Visiting a website that frames malicious content may lead to UI spoofing...

The vulnerability of the Mozilla Firefox browser, related to errors in information representation by the user interface, allows attackers to perform spear-phishing attacks.

The vulnerability of the Mozilla Firefox browser is related to errors in information representation by the user interface. Exploiting this vulnerability can allow a malicious actor to perform spear-phishing attacks remotely...

CVE-2022-37884

A vulnerability exists in the ClearPass Policy Manager Guest User Interface that can allow an unauthenticated attacker to send specific operations which result in a Denial-of-Service condition. A successful exploitation of this vulnerability results in the unavailability of the guest interface in...

CVE-2022-37884

A vulnerability exists in the ClearPass Policy Manager Guest User Interface that can allow an unauthenticated attacker to send specific operations which result in a Denial-of-Service condition. A successful exploitation of this vulnerability results in the unavailability of the guest interface in...

CVE-2022-37884

CVE-2022-37884 describes a denial-of-service vulnerability in the ClearPass Policy Manager Guest User Interface . An unauthenticated attacker can send specific operations that render the guest interface unavailable. Affected versions are Aruba ClearPass Policy Manager 6.10.x (≤ 6.10.6) and 6.9.x ...