CVE-2023-23346

HCL DRYiCE MyCloud is affected by the use of a broken cryptographic algorithm. An attacker can potentially compromise the confidentiality and integrity of sensitive information.Read More ...

Continue Reading

August 09, 2023

CVE-2023-38997

A directory traversal vulnerability in the Captive Portal templates of OPNsense before 23.7 allows attackers to execute arbitrary system commands as root via a crafted ZIP archive.Read More ...

Continue Reading

August 09, 2023

CVE-2022-48591

A SQL injection vulnerability exists in the vendor_state parameter of the “vendor print report” feature of the ScienceLogic SL1 that takes unsanitized user?controlled input and passes it dir ...

Continue Reading

August 09, 2023

CVE-2022-48593

A SQL injection vulnerability exists in the “topology data service” feature of the ScienceLogic SL1 that takes unsanitized user?controlled input and passes it directly to a SQL query. This a ...

Continue Reading

August 09, 2023

CVE-2022-48595

A SQL injection vulnerability exists in the “ticket template watchers” feature of the ScienceLogic SL1 that takes unsanitized user?controlled input and passes it directly to a SQL query. Thi ...

Continue Reading

August 09, 2023

CVE-2023-39007

/ui/cron/item/open in the Cron component of OPNsense before 23.7 allows XSS.Read More ...

Continue Reading

August 09, 2023

CVE-2022-48602

A SQL injection vulnerability exists in the “message viewer print” feature of the ScienceLogic SL1 that takes unsanitized user?controlled input and passes it directly to a SQL query. This al ...

Continue Reading

August 09, 2023

CVE-2023-39006

The Crash Reporter (crash_reporter.php) component of OPNsense before 23.7 mishandles input sanitization.Read More ...

Continue Reading

August 09, 2023

1 48,988 48,989 48,990 48,991 48,992 78,008

Back to Main
Subscribe for the latest news: