➤ Team Security Exploits News / Sichterheitslücken Nachrichten
225.834x Beiträge in dieser Kategorie



[ 1 ] [ 2 ] [3] [ 4 ] [ 5 ] [ 6 ] [ 7 ] [ 8 ] [ 9 ] [ 10 ] [ 11 ] [ 12 ] [ 13 ]
❥ CVE-2021-27965
The MsIo64.sys driver before 1.1.19.1016 in MSI Dragon Center before 2.0.98.0 has a buffer overflow that allows privilege escalation via a crafted 0x80102040,... weiterlesen
❥ CVE-2021-27963
SonLogger before 6.4.1 is affected by user creation with any user permissions profile (e.g., SuperAdmin). An anonymous user can send a POST request to... weiterlesen
❥ CVE-2019-18630
On Xerox AltaLink B8045/B8055/B8065/B8075/B8090 and C8030/C8035/C8045/C8055/C8070 multifunction printers with software releases before 101.00x.099.28200,... weiterlesen
❥ CVE-2021-27314
SQL injection in admin.php in doctor appointment system 1.0 allows an unauthenticated attacker to insert malicious SQL queries via username parameter at... weiterlesen
❥ GNU C Library 2.29/2.30/2.31/2.32/2.33 nscd netgroupcache.c double free
A vulnerability, which was classified as problematic, has been found in GNU C Library 2.29/2.30/2.31/2.32/2.33 (Software Library). This issue affects an... weiterlesen
❥ Advantech BB-ESWGP506-2SFP-T up to 1.01.09 hard-coded credentials
A vulnerability classified as critical was found in Advantech BB-ESWGP506-2SFP-T up to 1.01.09. This vulnerability affects an unknown function. The problem... weiterlesen
❥ OpenSLP Service Port 427 heap-based overflow [CVE-2021-21974]
A vulnerability classified as critical has been found in OpenSLP (the affected version unknown). This affects some unknown processing of the component... weiterlesen
❥ VMware vCenter Server/Cloud Foundation vSphere Client server-side request forgery
A vulnerability was found in VMware vCenter Server and Cloud Foundation (Server Management Software) (affected version not known). It has been rated as... weiterlesen
❥ Contec SolarView Compact SV-CPT-MC310 up to 6.4 Web Server os command injection
A vulnerability was found in Contec SolarView Compact SV-CPT-MC310 up to 6.4 and classified as critical. This issue affects an unknown code block of the... weiterlesen
❥ Contec SolarView Compact SV-CPT-MC310 up to 6.4 access control
A vulnerability has been found in Contec SolarView Compact SV-CPT-MC310 up to 6.4 and classified as critical. This vulnerability affects an unknown code.... weiterlesen
❥ Contec SolarView Compact SV-CPT-MC310 up to 6.4 information disclosure
A vulnerability, which was classified as problematic, was found in Contec SolarView Compact SV-CPT-MC310 up to 6.4. This affects an unknown part. Upgrading... weiterlesen
❥ CVE-2021-3404
In ytnef 1.9.3, the SwapWord function in lib/ytnef.c allows remote attackers to cause a denial-of-service (and potentially code execution) due to a heap... weiterlesen
❥ CVE-2021-25345
... weiterlesen
❥ CVE-2021-25347
... weiterlesen
❥ CVE-2021-25348
... weiterlesen
❥ CVE-2021-3403
In ytnef 1.9.3, the TNEFSubjectHandler function in lib/ytnef.c allows remote attackers to cause a denial-of-service (and potentially code execution) due... weiterlesen
❥ CVE-2021-25344
... weiterlesen
❥ CVE-2021-25346
... weiterlesen
❥ CVE-2021-25343
Calling of non-existent provider in Samsung Members prior to version 2.4.81.13 (in Android O(8.1) and below) and 3.8.00.13 (in Android P(9.0) and above)... weiterlesen
❥ CVE-2021-25341
Calling of non-existent provider in S Assistant prior to version 6.5.01.22 allows unauthorized actions including denial of service attack by hijacking... weiterlesen
❥ CVE-2021-25340
Improper access control vulnerability in Samsung keyboard version prior to SMR Feb-2021 Release 1 allows physically proximate attackers to change in arbitrary... weiterlesen
❥ CVE-2021-25342
... weiterlesen
❥ CVE-2020-25639
A NULL pointer dereference flaw was found in the Linux kernel’s GPU Nouveau driver functionality in versions prior to 5.12-rc1 in the way the user... weiterlesen
❥ CVE-2021-26989
Clustered Data ONTAP versions prior to 9.3P21, 9.5P16, 9.6P12, 9.7P9 and 9.8 are susceptible to a vulnerability which could allow a remote authenticated... weiterlesen
❥ CVE-2021-25335
Improper lockscreen status check in cocktailbar service in Samsung mobile devices prior to SMR Mar-2021 Release 1 allows unauthenticated users to access... weiterlesen
❥ CVE-2021-25333
Improper access control in Samsung Pay mini application prior to v4.0.14 allows unauthorized access to balance information over the lockscreen via scanning... weiterlesen
❥ CVE-2021-25332
Improper access control in Samsung Pay mini application prior to v4.0.14 allows unauthorized access to contacts information over the lockscreen in specific... weiterlesen
❥ CVE-2021-25334
Improper input check in wallpaper service in Samsung mobile devices prior to SMR Feb-2021 Release 1 allows untrusted application to cause permanent denial... weiterlesen
❥ CVE-2021-25331
Improper access control in Samsung Pay mini application prior to v4.0.14 allows unauthorized access to balance information over the lockscreen in specific... weiterlesen
❥ CVE-2021-25339
Improper address validation in HArx in Samsung mobile devices prior to SMR Mar-2021 Release 1 allows an attacker, given a compromised kernel, to corrupt... weiterlesen
❥ CVE-2021-25336
Improper access control in NotificationManagerService in Samsung mobile devices prior to SMR Mar-2021 Release 1 allows untrusted applications to acquire... weiterlesen
❥ CVE-2021-26293
An issue was discovered in AfterLogic Aurora through 8.5.3 and WebMail Pro through 8.5.3, when DAV is enabled. They allow directory traversal to create... weiterlesen
❥ CVE-2021-26988
Clustered Data ONTAP versions prior to 9.3P21, 9.5P16, 9.6P12, 9.7P8 and 9.8 are susceptible to a vulnerability which could allow unauthorized tenant users... weiterlesen
❥ CVE-2021-25338
Improper memory access control in RKP in Samsung mobile devices prior to SMR Mar-2021 Release 1 allows an attacker, given a compromised kernel, to write... weiterlesen
❥ CVE-2021-25337
Improper access control in clipboard service in Samsung mobile devices prior to SMR Mar-2021 Release 1 allows untrusted applications to read or write certain... weiterlesen
❥ CVE-2021-24031
In the Zstandard command-line utility prior to v1.4.1, output files were created with default permissions. Correct file permissions (matching the input)... weiterlesen
❥ CVE-2021-24032
Beginning in v1.4.1 and prior to v1.4.9, due to an incomplete fix for CVE-2021-24031, the Zstandard command-line utility created output files with default... weiterlesen
❥ Low CVE-2020-35329: Courier management system project Courier management system
... weiterlesen
❥ Low CVE-2020-35328: Courier management system project Courier management system
... weiterlesen
❥ Medium CVE-2020-28657: Bittacora Bpanel
In bPanel 2.0, the administrative ajax endpoints (aka ajax/aj_*.php) are accessible without authentication and allow SQL injections, which could lead to... weiterlesen
❥ Medium CVE-2019-25020: Scytl Secure vote
An issue was discovered in Scytl sVote 2.1. Because the sdm-ws-rest API does not require authentication, an attacker can retrieve the administrative configuration... weiterlesen
❥ Low CVE-2020-27618: GNU Glibc
The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier, when processing invalid multi-byte input sequences in IBM1364, IBM1371,... weiterlesen
❥ libcaca 0.99.beta19 libcaca/caca/canvas.c caca_resize buffer overflow
A vulnerability, which was classified as critical, has been found in libcaca 0.99.beta19. Affected by this issue is the function caca_resize of the file... weiterlesen
❥ Artifex MuPDF 1.18.0 memory corruption [CVE-2021-3407]
A vulnerability classified as critical was found in Artifex MuPDF 1.18.0 (Document Reader Software). Affected by this vulnerability is an unknown functionality.... weiterlesen
❥ libEBML up to 1.4.1 ReadData heap-based overflow
A vulnerability classified as critical has been found in libEBML up to 1.4.1. Affected is the function EbmlString::ReadData/EbmlUnicodeString::ReadData.... weiterlesen
❥ Directus up to 8.8.1 Password Reset information disclosure
A vulnerability was found in Directus up to 8.8.1. It has been rated as problematic. This issue affects some unknown processing of the component Password... weiterlesen
❥ Jasper up to 2.0.24 jp2_dec.c jp2_decode null pointer dereference
A vulnerability was found in Jasper up to 2.0.24 (Programming Tool Software). It has been declared as problematic. This vulnerability affects the function... weiterlesen
❥ Aruba ClearPass Policy Manager up to 6.7.14/6.8.8/6.9.4 Web-based Management Interface command injection
A vulnerability was found in Aruba ClearPass Policy Manager up to 6.7.14/6.8.8/6.9.4 (Policy Management Software). It has been classified as critical.... weiterlesen
❥ Aruba ClearPass Policy Manager up to 6.7.14/6.8.8/6.9.4 Web-based Management Interface command injection
A vulnerability was found in Aruba ClearPass Policy Manager up to 6.7.14/6.8.8/6.9.4 (Policy Management Software) and classified as critical. Affected... weiterlesen
❥ Aruba ClearPass Policy Manager up to 6.7.14/6.8.8/6.9.4 OnGuard privileges management
A vulnerability has been found in Aruba ClearPass Policy Manager up to 6.7.14/6.8.8/6.9.4 (Policy Management Software) and classified as critical. Affected... weiterlesen
225.834x Beiträge in dieser Kategorie



[ 1 ] [ 2 ] [3] [ 4 ] [ 5 ] [ 6 ] [ 7 ] [ 8 ] [ 9 ] [ 10 ] [ 11 ] [ 12 ] [ 13 ]
RSS Feeds vom IT News Nachrichtenportal Team Security abonieren
27x RSS Feed QuellenRSS Feed Unterkategorien von Team Security Exploits News / Sichterheitslücken Nachrichten: 2x
RSS Feed Kategorie von IT News Nachrichtenportal Team Security Exploits abonieren
![Validate my RSS feed [Valid RSS]](/image/valid-rss-rogers.png)
Eigene RSS Feed Quelle hinzufügen [IT Security Webseite, Blog, sonstige Quelle]
RSS Reader Empfehlung
Benutze Feedly zum Abonieren von RSS Feeds .
Als weitere Online Plattform empfiehlt sich InnoReader RSS Online Web Reader
Es empfiehlt sich für Chrome Erweiterung "RSS-Abonnement" (von Google) oder für Firefox Addon / Erweiterung Awesome RSS