In Linaro Automated Validation Architecture (LAVA) before 2022.11.1, remote code execution can be achieved through user-submitted Jinja2 template. The REST API endpoint for validating device configura ...
Continue Reading
November 18, 2022
Cross-Site Request Forgery (CSRF) vulnerability in REST API Authentication plugin Read More ...
Continue Reading
November 18, 2022
mailman3 is vulnerable to timing attacks. The vulnerability exists because of the use of basic string equality which allows an attacker to talk directly to the REST API, which by default is bound to l ...
Continue Reading
November 18, 2022
The version of MariaDB installed on the remote host is prior to 5.5.40. It is, therefore, affected by multiple vulnerabilities as referenced in the mariadb-5-5-40-release-notes advisory. - Unspecifi ...
Continue Reading
November 18, 2022
dolibarr/dolibarr is vulnerable to privilege escalation. The vulnerability exists due to improper authorization checks in the library, allowing an attacker to escalate privileges via crafted API call, ...
Continue Reading
November 18, 2022
The version of MariaDB installed on the remote host is prior to 10.1.33. It is, therefore, affected by multiple vulnerabilities as referenced in the mariadb-10-1-33-release-notes advisory. - Vulnera ...
Continue Reading
November 18, 2022
The Microsoft .NET Framework installation on the remote host is missing a security update. It is, therefore, affected by a denial of service vulnerability that is caused by a local user opening a spec ...
Continue Reading
November 18, 2022
The version of MariaDB installed on the remote host is prior to 5.5.61. It is, therefore, affected by multiple vulnerabilities as referenced in the mariadb-5-5-61-release-notes advisory. - Vulnerabi ...
Continue Reading
November 18, 2022
Back to Main
