The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-7470 advisory. - Access to external entities when parsing XML documents can ...
Continue ReadingNovember 16, 2022
### Overview There are six new vulnerabilities in the latest release of Netatalk (3.1.12) that could allow for Remote Code Execution as well as Out-of-bounds Read. ### Description Below are the new CV ...
Continue ReadingNovember 16, 2022
Red Hat Satellite is a systems management tool for Linux-based infrastructure. It allows for provisioning, remote management, and monitoring of multiple Linux deployments with a single centralized too ...
Continue ReadingNovember 16, 2022
![CVE-2022-41622 and CVE-2022-41800 (FIXED): F5 BIG-IP and iControl REST Vulnerabilities and Exposures](https://blog.rapid7.com/content/images/2022/11/GettyImages-1331943958.jpg) Rapid7 discovered sev ...
Continue ReadingNovember 16, 2022
YAPI is an api management platform. YAPI is vulnerable to SQL injection, which can be exploited by attackers to obtain user token and cause command execution.Read More ...
Continue ReadingNovember 16, 2022
Simmeth System GmbH Supplier Manager (Lieferantenmanager) versions prior to 5.6 suffer from authentication bypass, code execution, cross site scripting, information leakage, remote SQL injection, and ...
Continue ReadingNovember 16, 2022
VMware Cloud Foundation (NSX-V) contains a remote code execution vulnerability via XStream open source library. VMware has evaluated the severity of this issue to be in the Critical severity range wit ...
Continue ReadingNovember 16, 2022
A vulnerability in the web management interface of the Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute arbitrary commands on the underlying op ...
Continue ReadingNovember 15, 2022
Back to Main