Cookie Consent by Free Privacy Policy Generator ๐Ÿ“Œ CVE-2023-25559 | DataHub Metadata Service X-DataHub-Actor improper authorization (GHSA-qgp2-qr66-j8r8)

๐Ÿ  Team IT Security News

TSecurity.de ist eine Online-Plattform, die sich auf die Bereitstellung von Informationen,alle 15 Minuten neuste Nachrichten, Bildungsressourcen und Dienstleistungen rund um das Thema IT-Sicherheit spezialisiert hat.
Ob es sich um aktuelle Nachrichten, Fachartikel, Blogbeitrรคge, Webinare, Tutorials, oder Tipps & Tricks handelt, TSecurity.de bietet seinen Nutzern einen umfassenden รœberblick รผber die wichtigsten Aspekte der IT-Sicherheit in einer sich stรคndig verรคndernden digitalen Welt.

16.12.2023 - TIP: Wer den Cookie Consent Banner akzeptiert, kann z.B. von Englisch nach Deutsch รผbersetzen, erst Englisch auswรคhlen dann wieder Deutsch!

Google Android Playstore Download Button fรผr Team IT Security



๐Ÿ“š CVE-2023-25559 | DataHub Metadata Service X-DataHub-Actor improper authorization (GHSA-qgp2-qr66-j8r8)


๐Ÿ’ก Newskategorie: Sicherheitslรผcken
๐Ÿ”— Quelle: vuldb.com

A vulnerability classified as critical has been found in DataHub. Affected is an unknown function of the component Metadata Service. The manipulation of the argument X-DataHub-Actor leads to improper authorization. This vulnerability is traded as CVE-2023-25559. It is possible to launch the attack remotely. There is no exploit available. ...



๐Ÿ“Œ CVE-2022-31122 | Wire prior 2022-07-12 SAML IdP Metadata improper authentication (GHSA-gq27-gmgq-fmxw)


๐Ÿ“ˆ 35.3 Punkte

๐Ÿ“Œ CVE-2022-31025 | Discourse up to 2.8.3/2.9.0.beta4 Approve User improper authorization (GHSA-x7jh-mx5q-6f9q)


๐Ÿ“ˆ 30.61 Punkte

๐Ÿ“Œ CVE-2022-31168 | Zulip up to 5.4 API Call improper authorization (GHSA-c3cp-ggg5-9xw5)


๐Ÿ“ˆ 30.61 Punkte

๐Ÿ“Œ CVE-2022-31247 | SUSE Rancher up to 2.5.15/2.6.6 improper authorization (GHSA-6x34-89p7-95wg)


๐Ÿ“ˆ 30.61 Punkte

๐Ÿ“Œ CVE-2022-31167 | XWiki Platform up to 12.10.10/13.4.5/13.10.0 Security Parent POM improper authorization (GHSA-gg53-wf5x-r3r6)


๐Ÿ“ˆ 30.61 Punkte

๐Ÿ“Œ CVE-2022-39341 | OpenFGA up to 0.2.3 Wildcard improper authorization (GHSA-vj4m-83m8-xpw5)


๐Ÿ“ˆ 30.61 Punkte

๐Ÿ“Œ CVE-2022-39322 | Keystone up to 2.3.0 multiselect Field improper authorization (GHSA-6mhr-52mv-6v6f)


๐Ÿ“ˆ 30.61 Punkte

๐Ÿ“Œ CVE-2022-39329 | Nextcloud Server/Enterprise Server improper authorization (GHSA-8f3p-rcm5-mrg3)


๐Ÿ“ˆ 30.61 Punkte

๐Ÿ“Œ CVE-2022-39356 | Discourse Email Address improper authorization (GHSA-x8w7-rwmr-w278)


๐Ÿ“ˆ 30.61 Punkte

๐Ÿ“Œ CVE-2022-41962 | BigBlueButton up to 2.4-rc-5 Emoji Status improper authorization (GHSA-88qf-33qm-9mm7)


๐Ÿ“ˆ 30.61 Punkte

๐Ÿ“Œ CVE-2022-23542 | OpenFGA 0.3.0 improper authorization (GHSA-m3q4-7qmj-657m)


๐Ÿ“ˆ 30.61 Punkte

๐Ÿ“Œ CVE-2022-46792 | Hasura GraphQL Engine up to 2.15.1 Update Many API improper authorization (GHSA-g7mj-g7f4-hgrg)


๐Ÿ“ˆ 30.61 Punkte

๐Ÿ“Œ CVE-2024-23649 | Lemmy up to 0.19.0 API report improper authorization (GHSA-r64r-5h43-26qv)


๐Ÿ“ˆ 30.61 Punkte

๐Ÿ“Œ Veritas APTARE up to 10.4 Authorization improper authorization


๐Ÿ“ˆ 28.78 Punkte

๐Ÿ“Œ Apache Hadoop up to 2.10.0/3.1.3/3.2.1 SPNEGO Authorization Header improper authorization


๐Ÿ“ˆ 28.78 Punkte

๐Ÿ“Œ Metadata-Attacker - A Tool To Generate Media Files With Malicious Metadata


๐Ÿ“ˆ 28.68 Punkte

๐Ÿ“Œ Just-Metadata - Tool That Gathers And Analyzes Metadata About IP Addresses


๐Ÿ“ˆ 28.68 Punkte

๐Ÿ“Œ Metadata Anonymisation Toolkit 0.6/0.6.1 Clean Metadata information disclosure


๐Ÿ“ˆ 28.68 Punkte

๐Ÿ“Œ pikepdf Package up to 2.9.2 on Python XMP Metadata models/metadata.py xml external entity reference


๐Ÿ“ˆ 28.68 Punkte

๐Ÿ“Œ Metadata Cleaner - Application to view and clean metadata in files, using mat2


๐Ÿ“ˆ 28.68 Punkte

๐Ÿ“Œ Metadata Anonymisation Toolkit 0.6/0.6.1 Clean Metadata Information Disclosure


๐Ÿ“ˆ 28.68 Punkte

๐Ÿ“Œ Which metadata editor should I use to edit .ogg, .m4a and .mp3 metadata?


๐Ÿ“ˆ 28.68 Punkte

๐Ÿ“Œ Which metadata editor should I use to edit .ogg, .m4a and .mp3 metadata?


๐Ÿ“ˆ 28.68 Punkte

๐Ÿ“Œ Micro Focus Service Management Automation up to 2020.02 Authorization authorization


๐Ÿ“ˆ 22.16 Punkte

๐Ÿ“Œ Samsung Customization Service Pendingetent improper authorization


๐Ÿ“ˆ 21.99 Punkte

๐Ÿ“Œ SAP Focused RUN 200/300 oData Service improper authorization


๐Ÿ“ˆ 21.99 Punkte

๐Ÿ“Œ Adobe Bridge up to 10.1.1/11.0.1 Genuine Software Service improper authorization


๐Ÿ“ˆ 21.99 Punkte

๐Ÿ“Œ CVE-2018-25091 | urllib3 up to 1.24.1 Incomplete Fix CVE-2018-20060 improper authorization (Issue 1510)


๐Ÿ“ˆ 21.66 Punkte

๐Ÿ“Œ CVE-2022-31027 | OAuthenticator CILogonOAuthenticator authorization (GHSA-r7v4-jwx9-wx43)


๐Ÿ“ˆ 21.14 Punkte

๐Ÿ“Œ CVE-2022-24896 | Enalean Tuleap prior 13.7.99.239 Tracker Report Renderer authorization (GHSA-x962-x43g-qw39)


๐Ÿ“ˆ 21.14 Punkte

๐Ÿ“Œ CVE-2022-31033 | Mechanize up to 2.8.4 Header Authorization information disclosure (GHSA-64qm-hrgp-pgr9)


๐Ÿ“ˆ 21.14 Punkte

๐Ÿ“Œ CVE-2022-31043 | Guzzle up to 6.5.6/7.4.3 Header Authorization information disclosure (GHSA-w248-ffj2-4v5q)


๐Ÿ“ˆ 21.14 Punkte

๐Ÿ“Œ CVE-2022-1245 | Keycloak client_id authorization (GHSA-75p6-52g3-rqc8)


๐Ÿ“ˆ 21.14 Punkte

๐Ÿ“Œ CVE-2022-31107 | Grafana up to 8.3.9/8.4.9/8.5.8/9.0.2 authorization (GHSA-mx47-6497-3fv2)


๐Ÿ“ˆ 21.14 Punkte











matomo