CVEID: CVE-2024-41783 DESCRIPTION: IBM Sterling Secure Proxy could allow a privileged user to inject commands into the underlying operating system due to improper validation of a specified type of input.CWE: CWE-1287: Improper Validation of Specified Type of InputCVSS Source: ...
Successful exploitation of the improper input validation vulnerability could allow a remote attacker to cause a buffer overflow that crashes the web service. The identified vulnerability types and potential impacts are shown below: ItemVulnerability TypeImpact 1 Improper Input Vali...
IBM X-Force ID: 242953. CVE-2022-32514 2023. jan. 30. A CWE-287: Improper Authentication vulnerability exists that could allow an attacker to gain control of the device when logging into a web page. Affected Products: C-Bus Network Automation Controller - LSS5500NAC (Versions prior to...
ID: java/improper-validation-of-array-construction Kind: path-problem Security severity: 8.8 Severity: warning Precision: medium Tags: - security - external/cwe/cwe-129 Query suites: - java-security-extended.qls - java-security-and-quality.qls ...
C#: Input stream is not readable since its canread returns false C#: Is it possible to create an array of dictionaries? If so, how? C#: Launch URL from inside a windows application C#: Terminate worker thread gracefully C#: TextBox Validation = hh:mm AM|PM C#: Tree view arranged as ta...
An improper neutralization of special elements used in an sql command ('sql injection') vulnerability [CWE-88] in FortiVoice Entreprise version 7.0.0 through 7.0.1 and before 6.4.8 allows an authenticated attacker to perform a blind sql injection attack via sending crafted HTTP or HTTPS requests...
An improper neutralization of special elements used in an sql command ('sql injection') vulnerability [CWE-88] in FortiVoice Entreprise version 7.0.0 through 7.0.1 and before 6.4.8 allows an authenticated attacker to perform a blind sql injection attack via sending crafted HTTP or HTTPS requests...