Day: December 24, 2021

parse-link-header up to 1.x checkHeader incorrect regex

A vulnerability has been found in parse-link-header up to 1.x and classified as critical. Affected by this vulnerability is the

Common Vulnerabilities and Exposures

js-data Prototype deepFill/set code injection

A vulnerability was found in js-data (affected version not known) and classified as critical. Affected by this issue is the

Common Vulnerabilities and Exposures

invoiceninja Web Page Generation cross site scripting

A vulnerability was found in invoiceninja (the affected version unknown). It has been classified as problematic. This affects some unknown

Common Vulnerabilities and Exposures

Kataras Iris UploadFormFiles unrestricted upload

A vulnerability, which was classified as critical, has been found in Kataras Iris (unknown version). This issue affects the function

Common Vulnerabilities and Exposures

elgg Web Page Generation cross site scripting

A vulnerability, which was classified as problematic, was found in elgg (version unknown). Affected is an unknown part of the

Common Vulnerabilities and Exposures

GroupSession Free Edition/byCloud/ZION up to 5.1.1 permission

A vulnerability was found in GroupSession Free Edition, byCloud and ZION up to 5.1.1 (Cloud Software). It has been classified

Common Vulnerabilities and Exposures

GroupSession Free Edition/byCloud/ZION up to 5.1.1 redirect

A vulnerability was found in GroupSession Free Edition, byCloud and ZION up to 5.1.1 (Cloud Software). It has been declared

Common Vulnerabilities and Exposures

IDEC FC6A/WindLDR/WindEDIT Lite/Data File Manager cleartext transmission

A vulnerability was found in IDEC FC6A, WindLDR, WindEDIT Lite and Data File Manager (affected version not known). It has

Common Vulnerabilities and Exposures

IDEC FC6A/WindLDR/WindEDIT Lite/Data File Manager and/or cleartext storage

A vulnerability classified as problematic has been found in IDEC FC6A, WindLDR, WindEDIT Lite and Data File Manager (the affected

Common Vulnerabilities and Exposures

GroupSession Free Edition/byCloud/ZION up to 5.1.1 path traversal

A vulnerability classified as problematic was found in GroupSession Free Edition, byCloud and ZION up to 5.1.1 (Cloud Software). This

Common Vulnerabilities and Exposures

Red Hat JBoss Enterprise Application Platform 7 Artemis deserialization

A vulnerability was found in Red Hat JBoss Enterprise Application Platform 7 (Application Server Software). It has been declared as

Common Vulnerabilities and Exposures

mySCADA myPRO up to 8.20.0 API os command injection

A vulnerability was found in mySCADA myPRO up to 8.20.0 (SCADA Software). It has been rated as very critical. This

Common Vulnerabilities and Exposures

mySCADA myPRO up to 8.20.0 Password os command injection

A vulnerability classified as very critical has been found in mySCADA myPRO up to 8.20.0 (SCADA Software). Affected is an

Common Vulnerabilities and Exposures

SolarWinds Web Help Desk up to 12.7.6 Web Server routine

A vulnerability classified as critical was found in SolarWinds Web Help Desk up to 12.7.6. Affected by this vulnerability is

Common Vulnerabilities and Exposures

Autodesk Revit/Navisworks/Autodesk/AutoCAD up to 9.0.7 PDFTron memory corruption

A vulnerability, which was classified as critical, has been found in Autodesk Revit, Navisworks, Autodesk and AutoCAD up to 9.0.7.

Common Vulnerabilities and Exposures

mySCADA myPRO up to 8.20.0 Email os command injection

A vulnerability, which was classified as very critical, was found in mySCADA myPRO up to 8.20.0 (SCADA Software). This affects

Common Vulnerabilities and Exposures

mySCADA myPRO up to 8.20.0 Firmware Update os command injection

A vulnerability has been found in mySCADA myPRO up to 8.20.0 (SCADA Software) and classified as very critical. This vulnerability

Common Vulnerabilities and Exposures

mySCADA myPRO up to 8.20.0 authentication bypass

A vulnerability was found in mySCADA myPRO up to 8.20.0 (SCADA Software) and classified as critical. This issue affects some

Common Vulnerabilities and Exposures

mySCADA myPRO up to 8.20.0 Debug Interface os command injection

A vulnerability was found in mySCADA myPRO up to 8.20.0 (SCADA Software). It has been classified as very critical. Affected

Common Vulnerabilities and Exposures

SSSD prior 2.6.0 sssctl Command command injection

A vulnerability was found in SSSD. It has been declared as critical. Affected by this vulnerability is an unknown code

Common Vulnerabilities and Exposures

Apple macOS up to 10.12 memory corruption

A vulnerability was found in Apple macOS up to 10.12 (Operating System). It has been rated as critical. Affected by

Common Vulnerabilities and Exposures

Apple macOS up to 10.13.1 Contact Sharing information disclosure

A vulnerability classified as problematic has been found in Apple macOS up to 10.13.1 (Operating System). This affects some unknown

Common Vulnerabilities and Exposures

Apple iOS race condition

A vulnerability, which was classified as problematic, has been found in Apple iOS (Smartphone Operating System) (unknown version). This issue

Common Vulnerabilities and Exposures

Apple tvOS race condition

A vulnerability classified as problematic was found in Apple tvOS (Digital Media Player) (the affected version is unknown). This vulnerability