A stored cross-site scripting (XSS) vulnerability in Netbox v3.4.7 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Custom Link templates.Read More ...
Continue Reading
August 10, 2023
A previously generated artifact by an administrator could be accessed by an attacker. The contents of this artifact could lead to authentication bypass. Fixed in version 6.4.1.Read More ...
Continue Reading
August 10, 2023
An unauthenticated attacker could achieve the code execution through a RemoteControl server.Read More ...
Continue Reading
August 10, 2023
An unrestricted upload of file with dangerous type vulnerability exists in Avalanche versions 6.3.x and below that could allow an attacker to achieve a remove code execution. Fixed in version 6.4.1.Re ...
Continue Reading
August 10, 2023
An attacker can send a specially crafted request which could lead to leakage of sensitive data or potentially a resource-based DoS attack. Fixed in version 6.4.1.Read More ...
Continue Reading
August 10, 2023
A command injection vulnerability in the DHCP Client function of all UniFi Access Points and Switches, excluding the Switch Flex Mini, could allow a Remote Code Execution (RCE). Affected Products: All ...
Continue Reading
August 10, 2023
If certain local files are manipulated in a certain manner, the validation to use the cryptographic keys can be circumvented. Read More ...
Continue Reading
August 10, 2023
Ivanti Avalanche decodeToMap XML External Entity Processing. Fixed in version 6.4.1.Read More ...
Continue Reading
August 10, 2023
Back to Main
