3 matches found
CVE-2020-1938
CVE-2020-1938 (Tomcat AJP vulnerability) : The issue affects Apache Tomcat where the AJP Connector, enabled by default in several legacy releases, could be reached through untrusted networks. An attacker could exploit the configured AJP path to read arbitrary files in the web application and pote...
CVE-2020-11652
CVE-2020-11652 affects SaltStack Salt prior to 2019.2.4 and 3000 prior to 3000.2, where the salt-master ClearFuncs class allows authenticated users to access methods that do not properly sanitize paths, enabling arbitrary directory access. This is a directory-traversal vulnerability in the salt-m...
CVE-2021-22155
The CVE-2021-22155 entry applies to BlackBerry Workspaces Server (Appliance-X deployed) and concerns an Authentication Bypass in the SAML Authentication component for versions 10.1, 9.1 and earlier. The vulnerability could allow an attacker to gain access to the application in the context of the ...