Latest Security News about data protection

Contact US For API Security>

Dell EMC Data Protection Advisor versions 6.3, 6.4, 6.5, 18.2 versions prior to patch 83, and 19.1 versions prior to patch 71

Overview : Dell EMC Data Protection Advisor versions 6.3, 6.4, 6.5, 18.2 versions prior to patch 83, and 19.1 versions prior to patch 71 contain a server missing authorization vulnerability in the REST API. A remote authenticated malicious user with administrative privileges may potentially exploit this vulnerability to alter the application’s allowable list of OS [...]
Contact US For API Security>

Dell EMC Integrated Data Protection Appliance Vulnerabilities

Overview : Integrated Data Protection Appliance 2.3 contains fixes for multiple security vulnerabilities that may potentially be exploited by malicious users to compromise the affected system. Affected Product(s) : Dell EMC Integrated Data Protection Appliance 2.0, 2.1, and 2.2 Vulnerability Details : CVE ID : CVE-2019-3747 Dell EMC Integrated Data Protection Appliance versions prior to […]

Contact US For API Security>

Fuji Electric V-Server Lite all versions prior to 4.0.9.0 contains a heap based buffer overflow. The buffer allocated to read data, when parsing VPR files, is too small.

Overview : Fuji Electric V-Server Lite all versions prior to 4.0.9.0 contains a heap based buffer overflow. The buffer allocated to read data, when parsing VPR files, is too small. ICS Advisory (ICSA-20-098-04) Fuji Electric V-Server Lite Legal Notice All information products included in https://us-cert.gov/ics are provided "as is" for informational purposes only. The Department of Homeland Security [...]
Contact US For API Security>

Data Center Security Privilege Escalation

Overview : Symantec Data Center Security Manager Component, prior to 6.8.2 (aka 6.8 MP2), may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user. CVE-2020-5832   [...]
Contact US For API Security>

Cross-site request forgery (CSRF) vulnerability in the Storefront Application in DS Data Systems KonaKart before 7.3.0.0

Overview : Cross-site request forgery (CSRF) vulnerability in the Storefront Application in DS Data Systems KonaKart before 7.3.0.0 allows remote attackers to hijack the authentication of administrators for requests that change a user email address via an unspecified GET request. Affected Product(s) : KonaKart Storefront Application prior to 7.3.0.0 Vulnerability Details : CVE ID : […]