3 matches found
Security Bulletin: CVE-2023-6481
Summary A serialization vulnerability in logback receiver component part of logback version 1.4.13, 1.3.13 and 1.2.12 allows an attacker to mount a Denial-Of-Service attack by sending poisoned data. Vulnerability Details CVEID:CVE-2023-6481 DESCRIPTION: QOS.ch Sarl Logback is vulnerable to a deni...
PT-2023-10635 · Carlo Gavazzi · Carlo Gavazzi Powersoft
Name of the Vulnerable Software and Affected Versions: Carlo Gavazzi Powersoft versions up to 2.1.1.1 Description: The issue allows an unauthenticated, remote attacker to download any file from the affected device due to improper limitation of a pathname to a restricted directory, also known as...
Security Bulletin: IBM Development Package for Apache Spark might create a remote exploitation vector against old Internet Explorer browsers through XSS
Summary IBM Development Package for Apache Spark addresses the following vulnerability. The vulnerability is a potential cross-site scripting XSS attack on a Web UI client; server-side analytical processing by Apache Spark is not affected and data is not compromised. Vulnerability Details CVEID:...