CVE-2023-28767
The configuration parser fails to sanitize user-controlled input in the Zyxel ATP series firmware versions 5.10 through 5.36, USG FLEX series firmware versions 5.00 through 5.36, USG FLEX 50(W) ...
Continue Reading
July 17, 2023
CVE-2023-2959
Authentication Bypass by Primary Weakness vulnerability in Oliva Expertise Oliva Expertise EKS allows Collect Data as Provided by Users.This issue affects Oliva Expertise EKS: before 1.2.Read More ...
Continue Reading
July 17, 2023
CVE-2023-2960
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Oliva Expertise Oliva Expertise EKS allows Cross-Site Scripting (XSS).This issue affects Oliva Exp ...
Continue Reading
July 17, 2023
CVE-2023-2958
Authorization Bypass Through User-Controlled Key vulnerability in Origin Software ATS Pro allows Authentication Abuse, Authentication Bypass.This issue affects ATS Pro: before 20230714.Read More ...
Continue Reading
July 17, 2023
CVE-2023-2760
An SQL injection vulnerability exists in TapHome core HandleMessageUpdateDevicePropertiesRequest function before version 2023.2, allowing low privileged users to inject arbitrary SQL directives into a ...
Continue Reading
July 17, 2023
CVE-2023-2759
A hidden API exists in TapHome's core platform before version 2023.2 that allows an authenticated, low privileged user to change passwords of other users without any prior knowledge. The attacker may ...
Continue Reading
July 17, 2023
CVE-2023-2759
A hidden API exists in TapHome's core platform before version 2023.2 that allows an authenticated, low privileged user to change passwords of other users without any prior knowledge. The attacker may ...
Continue Reading
July 17, 2023
Exploit for Vulnerability in Microsoft
A local privilege escalation (LPE) vulnerability in Windows was ...Read More ...
Continue Reading
July 16, 2023
Connection Termination
grpc is vulnerable to Connection Termination. An attacker can terminate the connection between a HTTP2 proxy and the gRPC server by providing a `-bin` suffixed headers, which leads to a base64 encodin ...
Continue Reading
July 15, 2023
CVE-2023-24896
Dynamics 365 Finance Spoofing VulnerabilityRead More ...
Continue Reading
July 14, 2023
