5 matches found
WSO2 API Manager 安全漏洞
The WSO2 API Manager is a set of API lifecycle management solutions provided by the American company WSO2. There is a security vulnerability present in the WSO2 API Manager publishers. This vulnerability stems from the component’s inability to disable external entity resolution when accepting XML...
Security update for tomcat
This update for tomcat fixes the following issues: CVE-2025-46701: Fixed refactor CGI servlet to access resources via WebResources bsc1243815. CVE-2025-48988: Fixed limits the total number of parts in a multi-part request and limits the size of the headers provided with each part bsc1244656...
Design/Logic Flaw
Cisco Identity Services Engine ISE before 2.0 allows remote authenticated users to bypass intended web-resource access restrictions via a direct request, aka Bug ID CSCuu45926...
CVE-2015-6317
Cisco Identity Services Engine ISE before 2.0 allows remote authenticated users to bypass intended web-resource access restrictions via a direct request, aka Bug ID CSCuu45926...
CVE-2015-6317
Cisco Identity Services Engine (ISE) versions prior to 2.0 are vulnerable to an unauthorized access flaw where a low-privileged, authenticated user can bypass web-resource access restrictions by requesting resources directly. The root cause is improper filtering of web resources for administrativ...