Summary Potential Elastic Elasticsearch denial of service vulnerability ( CVE-2023-46673) has been identified that may affect IBM Watson Assistant for IBM Cloud Pak for Data. The vulnerability have be ...
Continue Reading
February 13, 2024
Summary Potential Elastic Elasticsearch denial of service vulnerability ( CVE-2023-46673) has been identified that may affect IBM Watson Assistant for IBM Cloud Pak for Data. The vulnerability have be ...
Continue Reading
February 13, 2024
Ghost through 5.76.0 allows stored XSS, and resultant privilege escalation in which a contributor can take over any account, via an SVG profile picture that contains JavaScript code to interact with t ...
Continue Reading
February 13, 2024
Summary When processing requests authorization was improperly and insufficiently checked, allowing attackers to access far more functionality than users intended, including to the administrative and m ...
Continue Reading
February 13, 2024
Improper Control of Dynamically-Managed Code Resources, Unrestricted Upload of File with Dangerous Type, Inclusion of Functionality from Untrusted Control Sphere vulnerability in Apache Solr.This issu ...
Continue Reading
February 13, 2024
Improper Control of Dynamically-Managed Code Resources, Unrestricted Upload of File with Dangerous Type, Inclusion of Functionality from Untrusted Control Sphere vulnerability in Apache Solr.This issu ...
Continue Reading
February 13, 2024
Brandon Rothel from QED Secure Solutions has found that the VAPIX API tcptest.cgi did not have a sufficient input validation allowing for a possible remote code execution. This flaw can only be exploi ...
Continue Reading
February 13, 2024
The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2024:0539 advisory. Improper Input Validation vulnerability in Apache Tomcat.Tomcat ...
Continue Reading
February 13, 2024
Back to Main
