| Page(s) : 1 ... 31 32 33 34 35 36 37 38 39 40 [41] 42 43 44 45 46 47 48 49 50 51 ... | Result(s) : 8822 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 3.1 | 2023-08-03 | CVE-2023-26979 | cve | Bluetens Electrostimulation Device BluetensQ device app version 4.3.15 is vulnerable to Man-in-the-middle attacks in the BLE channel. It allows attackers to decrease or increase... |
| 3.1 | 2023-08-02 | CVE-2023-26438 | cve | External service lookups for a number of protocols were vulnerable to a time-of-check/time-of-use (TOCTOU) weakness, involving the JDK DNS cache. Attackers that were timing DNS ... |
| 3.2 | 2023-08-02 | CVE-2023-26442 | cve | In case Cacheservice was configured to use a sproxyd object-storage backend, it would follow HTTP redirects issued by that backend. An attacker with access to a local or restric... |
| 3.3 | 2023-08-02 | CVE-2023-4016 | cve | Under some circumstances, this weakness allows a user who has access to run the “ps” utility on a machine, the ability to write almost unlimited amounts of unfiltered data into ... |
| 3.1 | 2023-07-29 | CVE-2022-4923 | cve | Inappropriate implementation in Omnibox in Google Chrome prior to 99.0.4844.51 allowed an attacker in a privileged network position to perform a man-in-the-middle attack via mal... |
| 3.1 | 2023-07-28 | CVE-2023-37904 | cve | Discourse is an open source discussion platform. Prior to version 3.0.6 of the `stable` branch and version 3.1.0.beta7 of the `beta` and `tests-passed` branches, more users than... |
| 2.7 | 2023-07-27 | CVE-2023-37900 | cve | Crossplane is a framework for building cloud native control planes without needing to write code. In versions prior to 1.11.5, 1.12.3, and 1.13.0, a high-privileged user could c... |
| 3.5 | 2023-07-26 | CVE-2023-33229 | cve | The SolarWinds Platform was susceptible to the Incorrect Input Neutralization Vulnerability. This vulnerability allows a remote adversary with a valid SolarWinds Platform accoun... |
| 3.3 | 2023-07-25 | CVE-2023-38496 | cve | Apptainer is an open source container platform. Version 1.2.0-rc.2 introduced an ineffective privilege drop when requesting container network setup, therefore subsequent functio... |
| 2.7 | 2023-07-25 | CVE-2023-37361 | cve | REDCap 12.0.26 LTS and 12.3.2 Standard allows SQL Injection via scheduling, repeatforms, purpose, app_title, or randomization. |
| 3.4 | 2023-07-21 | CVE-2023-25840 | cve | There is a Cross-site Scripting vulnerability in ArcGIS Server in versions 11.1 and below that may allow a remote, authenticated attacker to create a crafted link which onmouseo... |
| 3.7 | 2023-07-21 | CVE-2023-3803 | cve | A vulnerability classified as problematic has been found in Chengdu Flash Flood Disaster Monitoring and Warning System 2.0. This affects an unknown part of the file /Service/Ima... |
| 3.8 | 2023-07-20 | CVE-2023-3072 | cve | HashiCorp Nomad and Nomad Enterprise 0.7.0 up to 1.5.6 and 1.4.10 ACL policies using a block without a label generates unexpected results. Fixed in 1.6.0, 1.5.7, and 1.4.11. |
| 2.7 | 2023-07-20 | CVE-2023-3299 | cve | HashiCorp Nomad Enterprise 1.2.11 up to 1.5.6, and 1.4.10 ACL policies using a block without a label generates unexpected results. Fixed in 1.6.0, 1.5.7, and 1.4.11. |
| 2.8 | 2023-07-19 | CVE-2023-3674 | cve | A flaw was found in the keylime attestation verifier, which fails to flag a device's submitted TPM quote as faulty when the quote's signature does not validate for som... |
| 3.1 | 2023-07-17 | CVE-2023-3584 | cve | Mattermost fails to properly check the authorization of POST /api/v4/teams when passing a team override scheme ID in the request, allowing an authenticated attacker with knowled... |
| 2.7 | 2023-07-17 | CVE-2023-3587 | cve | Mattermost fails to properly show information in the UI, allowing a system admin to modify a board state allowing any user with a valid sharing link to join the board with edito... |
| 3.5 | 2023-07-17 | CVE-2023-3613 | cve | Mattermost WelcomeBot plugin fails to to validate the membership status when inviting or adding users to channels allowing guest accounts to be added or invited to channels by d... |
| 3.3 | 2023-07-17 | CVE-2023-3614 | cve | Mattermost fails to properly validate a gif image file, allowing an attacker to consume a significant amount of server resources, making the server unresponsive for an extended ... |
| 3.5 | 2023-07-13 | CVE-2023-30565 | cve | An insecure connection between Systems Manager and CQI Reporter application could expose infusion data to an attacker. |
| Page(s) : 1 ... 31 32 33 34 35 36 37 38 39 40 [41] 42 43 44 45 46 47 48 49 50 51 ... | Result(s) : 8822 |
