8025 matches found
IBM Security Guardium 安全漏洞
IBM Security Guardium is a suite of platforms from IBM in the United States that provide data protection capabilities. The platform includes features such as customizable UI, report management and streamlined audit process building. IBM Security Guardium suffers from a security vulnerability that...
Huawei HarmonyOS 资源管理错误漏洞
Huawei Emui is a mobile operating system developed on Android. Huawei Magic UI is the operating system for Honor phones. Huawei EMUI/Magic UI has a competing condition vulnerability that can be exploited by attackers to cause bypass of authentication...
KLA12252 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface, execute arbitrary code, obtain sensitive information, gain privileges. Below is a complete list of vulnerabilities: 1. A memory corruption...
KLA12250 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, spoof user interface, cause denial of service. Below is a complete list of vulnerabilities: 1. A remote code execution...
KLA12260 Multiple vulnerabilities in Microsoft Dynamics
Multiple vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Microsoft Dynamics 365 on-premises can be exploite...
CVE-2021-32797
JupyterLab is a user interface for Project Jupyter which will eventually replace the classic Jupyter Notebook. In affected versions untrusted notebook can execute code on load. In particular JupyterLab doesn’t sanitize the action attribute of html . Using this it is possible to trigger the form...
PT-2021-21871 · Gurock · Gurock Testrail
Name of the Vulnerable Software and Affected Versions: Gurock TestRail version 5.3.0.3603 Description: A vulnerability in the web UI of Gurock TestRail could allow an unauthenticated, remote attacker to affect the integrity of a device via a clickjacking attack. The vulnerability is due to...
PT-2021-7882 · Microsoft · Sharepoint Server
Name of the Vulnerable Software and Affected Versions: Microsoft SharePoint Server affected versions not specified Description: The issue is related to errors in the representation of information by the user interface, allowing a remote attacker to perform a spoofing attack. This can affect the...
PT-2021-7892 · Microsoft · Sharepoint Server
Name of the Vulnerable Software and Affected Versions: Microsoft SharePoint Server affected versions not specified Description: The issue is related to errors in the user interface's representation of information. Exploitation of this issue may allow a remote attacker to perform a spoofing attack...
KLA12249 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to obtain sensitive information, spoof user interface, cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Incorrect security UI vulnerability i...
CVE-2020-4707
IBM API Connect 5.0.0.0 through 5.0.8.11 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 187370...
UBUNTU-CVE-2021-30584
Incorrect security UI in Downloads in Google Chrome on Android prior to 92.0.4515.107 allowed a remote attacker to perform domain spoofing via a crafted HTML page...
Huawei Smartphone 缓冲区错误漏洞
Huawei Emui is an Android-based mobile operating system. Huawei Magic UI is the operating system for Honor phones. Huawei EMUI/Magic UI suffers from a memory address out-of-bounds vulnerability that can be exploited by attackers to cause the execution of malicious code...
Huawei Smartphone 数字错误漏洞
Huawei Emui is an Android-based mobile operating system. Huawei Magic UI is the operating system for Honor phones. Huawei EMUI/Magic UI is vulnerable to integer overflow, which can be exploited by attackers to cause a Samgr denial of service...
Huawei HarmonyOS 输入验证错误漏洞
Huawei Emui is an Android-based mobile operating system. Huawei Magic UI is the operating system for Honor phones. Huawei EMUI/Magic UI has an input validation vulnerability that can be exploited by attackers to cause a system reset...
Huawei HarmonyOS 竞争条件问题漏洞
Huawei Emui is a mobile operating system developed on Android. Huawei Magic UI is the operating system for Honor phones. Huawei EMUI/Magic UI has a competing condition vulnerability that can be exploited by attackers to cause bypass of authentication...
Huawei Smartphone 输入验证错误漏洞
Huawei Emui is an Android-based mobile operating system. Huawei Magic UI is the operating system for Honor phones. Huawei EMUI/Magic UI is vulnerable to an integer overflow vulnerability, which can be exploited by attackers to cause the execution of certain code...
Huawei HarmonyOS 安全漏洞
Huawei Emui is a mobile operating system developed on Android. Huawei Magic UI is the operating system for Honor phones. Huawei EMUI/Magic UI has a competing condition vulnerability that can be exploited by attackers to cause bypass of authentication...
Huawei Smartphone 缓冲区错误漏洞
Huawei Emui is an Android-based mobile operating system. Huawei Magic UI is the operating system for Honor phones. Huawei EMUI/Magic UI is vulnerable to a UAF vulnerability that can be exploited by attackers to cause the execution of certain code...
KLA12247 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in File Syst...