4197 matches found
Vulnerabilities fixed in QNAP QTS
Vulnerabilities have been fixed in QNAP-QTS, Music-Station and Photo-Station. The vulnerabilities allow a malicious person to perform attacks that result in the following categories of damage: Cross-Site Scripting XSS. Remote code execution User Rights SQL Injection Access to system data QNAP has...
Vulnerability fixed in Nessus
A vulnerability has been fixed in Nessus. The vulnerability allows a local malicious person with valid login credentials on a Windows machine to execute arbitrary code under the user's privileges. Tenable has made updates available for Nessus to fix the vulnerability. More information can be foun...
Vulnerability fixed in Grafana
The vulnerability is known as a so-called Cross-Site Scripting. The vulnerability allows a remote malicious person to able to execute arbitrary code in the browser of the victim. Grafana Labs has released updates to fix the vulnerability. fix. More information can be found on the pages below:...
Vulnerabilities fixed in IBM Security Directory Server
Vulnerabilities have been fixed in IBM Security Directory Server. The vulnerabilities allow a malicious party to access system data. IBM has released updates to fix the vulnerabilities. More information can be found on the page below: https://www.ibm.com/support/pages/node/6356607...
Vulnerabilities fixed in Samba
Vulnerabilities have been fixed in Samba. The vulnerabilities allow a malicious person to gain access to system data and to cause a denial-of-service. Samba has released updates to fix the vulnerabilities. More information can be found on the page below:...
Vulnerabilities fixed in Juniper Networks Junos OS
Juniper Networks has fixed vulnerabilities in Junos OS. The vulnerabilities allow an unauthenticated remote malicious person to remotely able to cause a denial-of-service. Juniper Networks categorizes these vulnerabilities according to the CVSSv3 method with a highest score of 7.5. Juniper Networ...
Vulnerability fixed in Red Hat Jboss Enterprise Application Platform
A vulnerability has been fixed in Red Hat Jboss Enterprise Application Platform. The vulnerability allows a remote malicious person to remotely able to manipulate data and thereby cause a Denial-of-Service. Red Hat has released updates to fix the vulnerability in. More information can be found on...
Vulnerabilities fixed in F5 BIG-IP
F5 has fixed vulnerabilities in BIG-IP. The vulnerabilities allow a remote malicious party to cause a denial-of-service and to cause a security measure to be circumvention. F5 has released updates to fix the vulnerabilities. More information can be found on the pages below: CVE-2020-5933:...
Vulnerability fixed in Red Hat JBoss
Vulnerabilities have been fixed in JBoss. The vulnerabilities allow a malicious person to perform attacks that result in the following categories of damage: Denial-of-Service DoS. Circumvention of security measure Accessing system data Red Hat categorizes these vulnerabilities as "moderate. -= Re...
Vulnerabilities fixed in Juniper Networks Junos OS
Vulnerabilities have been fixed in Junos OS. The vulnerabilities allow a malicious party to launch a denial-of-service attack and to execute arbitrary code under the privileges of the user. Juniper has released updates to fix the vulnerabilities. More information can be found on the pages below:...
Vulnerabilities fixed in SonicWall
Vulnerabilities have been fixed in SonicWall Global VPN Client. The vulnerabilities allow a local malicious person to gain elevated rights and to execute arbitrary code under the user's privileges. SonicWall has released updates to address the vulnerabilities. fixes. More information can be found...
Vulnerabilities fixed in QNAP QTS
QNAS has fixed vulnerabilities in the QTS operating system. The vulnerabilities allow a remote malicious person to to inject arbitrary commands. It is good practice to have the user interface for a system like QTS to be exposed on a separate administrator network. QNAP has released updates to fix...
Vulnerabilities fixed in Pulse Secure products for Windows, Linux and Mac
Vulnerabilities have been fixed in Pulse Secure products. The vulnerabilities allow a malicious person to carry out attacks execute attacks that result in the following categories of damage: Cross-Site Request Forgery XSRF. Cross-Site Scripting XSS Denial-of-Service DoS. Circumvention of security...
Vulnerabilities fixed in Check Point Zone Alarm Extreme Security
Check Point fixed vulnerabilities in Zone Alarm Extreme Security. The vulnerabilities allow a local malicious party to able to delete files restored from an archive and to obtain elevated privileges. Check Point has released a new version to address the vulnerabilities fixes. More information can...
Vulnerability fixed in IBM WebSphere Application Server
A vulnerability has been fixed in IBM WebSphere Application Server. The vulnerability allows a remote malicious person to gain access to system data. IBM has released updates to fix the vulnerability. More information can be found on the page below: https://www.ibm.com/support/pages/node/6356083...
Vulnerability fixed in FortiClient
A vulnerability has been fixed in FortiClient for Linux. The vulnerability enables a local malicious person who has the ability has the ability to run scripts or programs on the system is able to able to obtain elevated privileges. FortiNet has released updates to fix the vulnerability. More...
Vulnerability fixed in FortiOS
A vulnerability has been fixed in FortiOS. The vulnerability allows an authenticated attacker to obtain sensitive data, for example, passwords stored in cleartext. Fortinet has released updates to fix the vulnerability. More information can be found on the page below:...
Vulnerabilities fixed in Red Hat OpenShift
Vulnerabilities have been fixed in Red Hat OpenShift. The vulnerabilities allow a malicious party to carry out attacks that lead to the following categories of damage: Denial-of-Service DoS Circumvention of security measure Accessing sensitive data Accessing system data -= Red Hat =- Red Hat has...
Vulnerabilities fixed in MariaDB
Vulnerabilities have been fixed in MariaDB. The vulnerabilities allow a malicious person to perform a denial-of-service execution. In the case of the vulnerability with attribute CVE-2020-13249, it also involves an attack from the network. -= Ubuntu =- Canonical has made updates available for...
Vulnerabilities fixed in Trend Micro Antivirus for Mac
Trend Micro has fixed vulnerabilities in Antivirus for Mac. The vulnerabilities allow a locally authenticated malicious agent to able to cause a denial-of-service or to obtain system data obtain. Trend Micro categorizes these vulnerabilities according to the CVSSv3 method with a highest score of...
Vulnerability fixed in management console for 3PAR systems
HP has fixed a vulnerability in the StoreServ Management Console SSMC. SSMC is the Web-based management application for 3PAR StoreServ systems but can also be used to manage other storage systems. The vulnerability allows a malicious remotely able to bypass authentication. HP rates this...
Vulnerability fixed in Red Hat OpenShift
Red Hat has fixed a vulnerability in OpenShift. The vulnerability allows a malicious owner of a pod to possible to bypass a security measure in the restricted Context Constraints Object to bypass. This enables the malicious person to enabled to send custom network packets. Red Hat scales this...
Vulnerabilities fixed in Oracle Communications-producton
Oracle has fixed vulnerabilities in Communications Messaging Server. The vulnerabilities allow an unauthenticated malicious person with network access to the vulnerable system may be able to launch attacks execute attacks that result in the following categories of damage: Denial-of-Service DoS...
Vulnerability fixed in ElasticSearch
A vulnerability has been fixed in ElasticSearch. The vulnerability allows a malicious person to obtain system data. This is only possible if Document or Field Level security is used. Elastic classifies this vulnerability with a CvSS score of 3.1. Elastic has released updates to fix the...
Vulnerabilities fixed in VMware Horizon Server and Client
Vulnerabilities have been fixed in VMware Horizon Server and Client. The vulnerabilities allow a malicious party to access system data and to execute arbitrary code under the user's privileges. VMware has released updates to fix the vulnerabilities. More information can be found on the page below...
Vulnerabilities fixed in Oracle Virtualbox
Oracle has fixed multiple vulnerabilities in Virtualbox. By exploiting the vulnerabilities, a malicious person with access to a VM gain access to sensitive data, manipulate data manipulate data or cause a denial-of-service. ------------------.------.------------------------------------- | CVE ID ...
Vulnerabilities fixed in Oracle Hyperion
Oracle has fixed vulnerabilities in the following Oracle Hyperion products: Hyperion Analytic Provider Services Hyperion BI+ Hyperion Essbase Hyperion Infrastructure Technology Hyperion Planning Hyperion Lifecycle Management The vulnerabilities allow an unauthenticated malicious person with netwo...
Vulnerabilities fixed in Oracle Solaris
Oracle has fixed several vulnerabilities in Solaris. By exploiting the vulnerabilities, an unauthorized malicious person can gain remote access to the system. It also allows local users bypass security measures or cause a denial-of-service. Oracle has released updates to fix the vulnerabilities...
Vulnerabilities fixed in Oracle Financial Services Software
Oracle has fixed vulnerabilities in several Oracle Financial Services products. The vulnerabilities enable an unauthenticated malicious person with network access to a vulnerable system potentially able to launch attacks that result in the following categories of damage: Denial-of-Service DoS...
Vulnerabilities fixed in Red Hat OpenShift
Vulnerabilities have been fixed in OpenShift. The vulnerabilities allow a malicious person to launch attacks that lead to the following categories of damage: Cross-Site Scripting XSS Denial-of-Service DoS. Bypassing authentication Circumvention of security measure Remote code execution User right...
Vulnerability fixed in Snort
A vulnerability has been fixed in Snort. The vulnerability allows an unauthenticated remote malicious person to enable an security measure to bypass. Cisco has released updates to fix the vulnerability. More information can be found on the page below: https://tools.cisco.com/security/center/conte...
Vulnerability in Ghisler Total Commander
There is a vulnerability in Ghisler Total Commander. The vulnerability allows a local malicious person to obtain elevated permissions by replacing the Total Commander binary. The developers of Total Commander have indicated that they will not fix the vulnerability will not be fixed. According to...
Vulnerability fixed in Citrix ADC and Citrix Gateway
Citrix has fixed a vulnerability in ADC and Gateway. The vulnerability allows a malicious party to obtain elevated privileges. obtain. The vulnerability can only be exploited from a peer switch whose Link Layer Discovery Protocol LLDP is enabled. Citrix has released updates to fix the...
Vulnerabilities fixed in Cisco ASA and FTD
Vulnerabilities have been fixed in Cisco Adaptive Security Appliance ASA and Cisco Firepower Threat Defense FTD. The vulnerabilities allow a malicious party to conduct attacks execute attacks that result in the following categories of damage: Cross-Site Scripting XSS Denial-of-Service DoS...
Vulnerabilities fixed in Oracle Fusion Middleware
Oracle has fixed vulnerabilities in the following Oracle Fusion Middleware products: JDeveloper HTTP Server Identity Manager Connector Business Intelligence Enterprise Edition WebLogic Server The vulnerabilities allow an unauthenticated malicious person with network access to the vulnerable syste...
Vulnerability fixed in Adobe Premiere
Adobe has fixed a vulnerability in Premiere. The vulnerability allows a malicious party to execute arbitrary code execute arbitrary code under user privileges. Adobe has released updates to fix the vulnerability. More information can be found on the page below:...
Vulnerability fixed in Adobe Photoshop
Adobe has fixed a vulnerability in Adobe Photoshop. The vulnerability allows a malicious party to execute arbitrary code execute arbitrary code under user privileges. Adobe has released updates to fix the vulnerability. More information can be found on the page below:...
Vulnerabilities fixed in Xen
Vulnerabilities have been fixed in Xen. The vulnerabilities allow a malicious party the ability to cause a denial-of-service or to obtain elevated privileges. Xen has released updates to fix the vulnerabilities. More information can be found on the pages below: x86 PV guest INVLPG-like flushes ma...
Vulnerabilities fixed in Oracle Java SE
Oracle has fixed vulnerabilities in the following Oracle Database products: Oracle Java SE JDK Oracle Java SE JRE Oracle Java Oracle Java Web Start The vulnerabilities allow an unauthenticated remote malicious person to remote may be able to launch attacks that result in the following categories ...
Vulnerabilities fixed in Adobe Illustrator
Adobe has fixed vulnerabilities in Illustrator. The vulnerabilities allow a malicious party to execute arbitrary code execute arbitrary code under user privileges. Adobe has released updates to fix the vulnerabilities. More information can be found on the page below:...
Vulnerabilities fixed in Nagios XI
Vulnerabilities have been fixed in Nagios XI. The vulnerabilities allow a malicious person to perform attacks that lead to the following categories of damage: Cross-Site Request Forgery XSRF. Cross-Site Scripting XSS. Remote code execution User Rights SQL Injection Access to sensitive data Nagios...
Vulnerabilities fixed in Adobe After Effects
Adobe has fixed vulnerabilities in After Effects. The vulnerabilities allow a malicious party to execute arbitrary code execute arbitrary code under user privileges. Adobe has released updates to fix the vulnerabilities. More information can be found on the page below:...
Vulnerability fixed in Adobe InDesign
Adobe has fixed a vulnerability in InDesign. The vulnerability allows a malicious party to execute arbitrary code execute arbitrary code under user privileges. Adobe has released updates to fix the vulnerability. More information can be found on the page below:...
Vulnerability fixed in Adobe Creative Cloud
Adobe has fixed a vulnerability in Creative Cloud. The vulnerability allows a malicious party to execute arbitrary code execute arbitrary code under user privileges. Adobe has released updates to fix the vulnerability. More information can be found on the page below:...
Vulnerabilities fixed in Oracle E-Business Suite
Oracle has fixed vulnerabilities in the following Oracle E-Business Suite products: Applications Manager Marketing Application Object Library Trade Management Universal Work Queue Installed Base CRM Technical Foundation One-to-One Fulfillment Applications Framework E-Business Suite Secure...
Vulnerabilities fixed in Firefox
Vulnerabilities have been fixed in Firefox and Firefox ESR. The vulnerabilities allow a malicious party to carry out attacks execute attacks that lead to the following categories of damage: Denial-of-Service DoS. Possible Remote code execution User Rights Spoofing Access to system data Mozilla ha...
Vulnerability fixed in FreeType
A vulnerability has been fixed in FreeType. The vulnerability allows a remote malicious person to execute arbitrary code execute under the user's privileges. FreeType has released an update to fix the vulnerability. fix. More information can be found on the pages below:...
Vulnerabilities fixed in Google Chrome
Google has fixed several vulnerabilities in Chrome. The vulnerabilities potentially allow a remote malicious person to able to perform a denial-of-service attack or to execute arbitrary execute arbitrary code under the user's privileges. As usual, Google has made little substantive information...
Vulnerability fixed in Adobe Dreamweaver
Adobe has fixed a vulnerability in Dreamweaver. The vulnerability allows a malicious party to obtain elevated rights to obtain. Adobe has released updates to fix the vulnerability. More information can be found on the page below: https://helpx.adobe.com/security/products/dreamweaver/apsb20-55.htm...
Vulnerabilities fixed in libvirt
Vulnerabilities have been fixed in libvirt. The vulnerabilities allow a local malicious person to obtain elevated privileges obtain or perform a denial-of-service attack. -= SUSE =- SUSE has made updates available to fix the vulnerability in SUSE 15. fix the vulnerability in SUSE 15. You can...