Vulnerability SummaryAn improper error handling in Mediatek RRC Protocol stack prior to SMR Oct-2021 Release 1 allows modem crash and remote denial of service.Subscribe to Android Vulnerability TrendVulnerable
Security Advisory - mDNS Message Improper Handling Vulnerability in Huawei WLAN AC Products SA No:Huawei-SA-20150909-01-mDNS Initial Release Date: Sep 09, 2015 Last Release Date: Sep 09, 2015 Summary The mDNS module in Huawei WLAN AC products improperly processes mDNS packets and responds ...
There are no known workarounds for this vulnerability. CVE-2024-10963 (v3: 6.5) 2024. nov. 7. A vulnerability was found in pam_access due to the improper handling of tokens in access.conf, interpreted as hostnames. This flaw allows attackers to bypass access restrictions by spoofing ...
Vulnerability detailsDependabot alerts0 Package io.quarkus.resteasy.reactive:resteasy-reactive(Maven) Affected versions < 2.13.9.Final >= 3.0.0.Final, < 3.2.9.Final Patched versions 2.13.9.Final 3.2.9.Final Description A flaw was found in the json payload. If annotation based security is used...
This document addresses an "Insufficient Authentication & Authorization handling" vulnerability (CVE-2021-37414) in Endpoint Central, as reported by Cedric.What was the problem?There was an endpoint with insufficient access control in the server, which when exploited, could potentially lead to gaining...
A user authorized to perform database queries may cause denial of service by issuing a specially crafted query which violates an invariant in the serv... MongoDb Improper Handling
During testing of your project, I came across a stored XSS vulnerability that stems from lack of sanitizing and checking integrity of SVG files being uploaded to the server Reproduction is quite easy as all it requires is going to the im...
This vulnerability affects unknown code of the file /admin/adminScoreUrl of the component Login Endpoint. The manipulation of the argument query leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. Continious delivery with ...
A vulnerability, which was classified as critical, was found in zzskzy Warehouse Refinement Management System 1.3. This affects the function ProcessRequest of the file /getAdyData.ashx. The manipulation of the argument showid leads to sql injection. It is possible to initiate the attack remotely....