All Posts by: Virtual Patching

Cisco Application Policy Infrastructure Controller API Endpoint access control

A vulnerability classified as critical has been found in Cisco Application Policy Infrastructure Controller and Cloud Application Policy Infrastructure Controller

Common Vulnerabilities and Exposures

Cisco Application Policy Infrastructure Controller API Endpoint Privilege Escalation

A vulnerability classified as critical was found in Cisco Application Policy Infrastructure Controller and Cloud Application Policy Infrastructure Controller (Cloud

Common Vulnerabilities and Exposures

Cisco Application Policy Infrastructure Controller Web UI/API Endpoint command injection

A vulnerability, which was classified as critical, has been found in Cisco Application Policy Infrastructure Controller and Cloud Application Policy

Common Vulnerabilities and Exposures

Cisco Application Policy Infrastructure Controller Web UI/API Endpoint access control

A vulnerability, which was classified as critical, was found in Cisco Application Policy Infrastructure Controller and Cloud Application Policy Infrastructure

Common Vulnerabilities and Exposures

Cisco Nexus 9000 ACI Mode denial of service [CVE-2021-1586]

A vulnerability has been found in Cisco Nexus 9000 (affected version unknown) and classified as critical. Affected by this vulnerability

Common Vulnerabilities and Exposures

Cisco Application Policy Infrastructure Controller API Endpoint unnecessary privileges

A vulnerability was found in Cisco Application Policy Infrastructure Controller and Cloud Application Policy Infrastructure Controller (Cloud Software) (affected version

Common Vulnerabilities and Exposures

Cisco Application Policy Infrastructure Controller Web UI cross site scripting

A vulnerability was found in Cisco Application Policy Infrastructure Controller and Cloud Application Policy Infrastructure Controller (Cloud Software) (the affected

Common Vulnerabilities and Exposures

Cisco Nexus 9000 ACI Mode access control [CVE-2021-1583]

A vulnerability was found in Cisco Nexus 9000 (the affected version is unknown). It has been declared as problematic. This

Common Vulnerabilities and Exposures

PopojiCMS 2.0.1 Parameter admin.php id pathname traversal

A vulnerability was found in PopojiCMS 2.0.1 (Content Management System). It has been rated as critical. This issue affects an

Common Vulnerabilities and Exposures

PopojiCMS 2.0.1 Edit Menu admin.php cross site scripting

A vulnerability classified as problematic has been found in PopojiCMS 2.0.1 (Content Management System). Affected is some unknown functionality of

Common Vulnerabilities and Exposures

PopojiCMS 2.0.1 route.php cross-site request forgery

A vulnerability classified as problematic was found in PopojiCMS 2.0.1 (Content Management System). Affected by this vulnerability is an unknown

Common Vulnerabilities and Exposures

Umbraco up to 8.7.5 Privilege Escalation [CVE-2021-37334]

A vulnerability, which was classified as critical, has been found in Umbraco up to 8.7.5.

Common Vulnerabilities and Exposures

ForgeRock Access Management up to 7.0.1 Active Directory improper authentication

A vulnerability, which was classified as critical, was found in ForgeRock Access Management up to 7.0.1 (Access Management Software). This

Common Vulnerabilities and Exposures

ForgeRock Access Management up to 7.0.1 SAML2 xml injection

A vulnerability has been found in ForgeRock Access Management up to 7.0.1 (Access Management Software) and classified as critical. This

Common Vulnerabilities and Exposures

zzcms 2018 template_user.php ml/title code injection

A vulnerability was found in zzcms 2018 (Content Management System) and classified as critical. This issue affects an unknown function

Common Vulnerabilities and Exposures

ZCMS ThinkPHP index.php sql injection

A vulnerability was found in ZCMS ThinkPHP (version unknown). It has been classified as critical. Affected is an unknown functionality

Common Vulnerabilities and Exposures

DOYOCMS 2.3 admin.php orders[] sql injection

A vulnerability was found in DOYOCMS 2.3. It has been declared as critical. Affected by this vulnerability is some unknown

Common Vulnerabilities and Exposures

Movable Type Search Screen cross site scripting [CVE-2021-20808]

A vulnerability was found in Movable Type (affected version not known). It has been rated as problematic. Affected by this

Common Vulnerabilities and Exposures

Movable Type Create Screen cross site scripting [CVE-2021-20809]

A vulnerability classified as problematic has been found in Movable Type (the affected version unknown). This affects an unknown code

Common Vulnerabilities and Exposures

Cisco Nexus 9000 ACI Mode release of resource

A vulnerability was found in Cisco Nexus 9000 9000 and classified as problematic. This issue affects some unknown functionality of

Common Vulnerabilities and Exposures

BinderHub prior 0.2.0-n653 BinderHub.repo_providers code injection

A vulnerability was found in BinderHub. It has been classified as critical. Affected is the function BinderHub.repo_providers. Upgrading to version

Common Vulnerabilities and Exposures

GitLab Community Edition/Enterprise Edition Project Page denial of service

A vulnerability was found in GitLab Community Edition and Enterprise Edition (Bug Tracking Software) (affected version unknown). It has been

Common Vulnerabilities and Exposures

OpenEXR up to 3.0.4 rleUncompress out-of-bounds read

A vulnerability was found in OpenEXR up to 3.0.4. It has been rated as problematic. Affected by this issue is

Common Vulnerabilities and Exposures

QEMU up to 6.1.x UAS Device Emulator data3/status3 out-of-bounds write

A vulnerability classified as critical has been found in QEMU up to 6.1.x (Virtualization Software). This affects some unknown processing