apache_airflow is vulnerable to Missing Authentication. The vulnerability due to lack of authentication enforcement on the lineage endpoint of the deprecated Experimental API, allows unauthenticated u ...
Continue Reading
April 04, 2024
libmbedtls.so is vulnerable to Sensitive Information Disclosure. The vulnerability is due to inadequate handling of shared memory within the PSA Crypto API, potentially leading to information...Read M ...
Continue Reading
April 04, 2024
CVE-2023-33466 This POC targets Orthanc DICOM server (Windows) < 1.12 using a malicious DICOM polyglot file and allows users with access to the Orthanc API to overwrite arbitrary files on the f ...
Continue Reading
April 04, 2024
amphp/http will collect HTTP/2 CONTINUATION frames in an unbounded buffer and will not check the header size limit until it has received the END_HEADERS flag, resulting in an OOM crash. amphp/http-cli ...
Continue Reading
April 04, 2024
Libvirt is vulnerable to NULL pointer dereference. The vulnerability is caused by a race condition due to the simultaneous detachment of a host interface while collecting the list of interfaces using ...
Continue Reading
April 03, 2024
Description The WP Hotel Booking plugin for WordPress is vulnerable to unauthorized access of data and modification of data due to an improper capability check on the 'pricing_plans', ' ...
Continue Reading
April 03, 2024
A vulnerability in the column.title and cellLinkTooltip components of the Grafana web-based data presentation tool is related to insufficient protection of the web page structure. Exploitation of the ...
Continue Reading
April 03, 2024
ABB has internally identified a vulnerability in the ABB VPNI feature of the S+ Control API component which may be used by several Symphony Plus products (e.g., S+ Operations, S+ Engineering and S+ A ...
Continue Reading
April 03, 2024
Back to Main
