CVE-2023-32485 : Dell SmartFabric Storage Software Up To 1.3 Input Validation
Description Dell SmartFabric Storage Software version 1.3 and lower contain an improper input validation vulnerability. A remote unauthenticated attacker may
CVE-2023-25915 : DANFOSS AK-SM800A UP TO 3.3 INPUT VALIDATION
Description Due to improper input validation, a remote attacker could execute arbitrary commands on the target system. References https://csirt.divd.nl/CVE-2023-25915 https://csirt.divd.nl/DIVD-2023-00025
CVE-2023-24569 : DELL ALIENWARE COMMAND CENTER UP TO 5.5.37.0 NAMED PIPE INPUT VALIDATION
Description Dell Alienware Command Center versions 5.5.37.0 and prior contain an Improper Input validation vulnerability. A local authenticated malicious user
CVE-2023-51441 : APACHE AXIS 1.X SERVICE ADMIN HTTP API SERVICEFACTORY.JAVA SERVER-SIDE REQUEST FORGERY
Description ** UNSUPPORTED WHEN ASSIGNED ** Improper Input Validation vulnerability in Apache Axis allowed users with access to the admin
CVE-2023-40699 : IBM INFOSPHERE INFORMATION SERVER 11.7 DENIAL OF SERVICE
Description IBM InfoSphere Information Server 11.7 could allow a remote attacker to cause a denial of service due to improper
CVE-2023-46589 : APACHE TOMCAT UP TO 8.5.95/9.0.82/10.1.15/11.0.0-M10 HTTP TRAILER HEADER REQUEST SMUGGLING
Description Improper Input Validation vulnerability in Apache Tomcat.Tomcat from 11.0.0-M1 through 11.0.0-M10, from 10.1.0-M1 through 10.1.15, from 9.0.0-M1 through 9.0.82
CVE-2022-25698 : QUALCOMM SNAPDRAGON MOBILE/SNAPDRAGON WEARABLES SPI BUS MEMORY CORRUPTION
Description Memory corruption in SPI buses due to improper input validation while reading address configuration from spi buses in Snapdragon
CVE-2022-40265 : MITSUBISHI ELECTRIC MELSEC IQ-R PACKETS DENIAL OF SERVICE
Description Improper Input Validation vulnerability in Mitsubishi Electric Corporation MELSEC iQ-R Series RJ71EN71 Firmware version “65” and prior and Mitsubishi
SANs Top 25
The SANS Institute designs numerous programs for the purpose of security professionals around the globe. This exceptional organization collectively brings
Denial of Service vulnerability in SSL VPN service of FortiOS
Overview : New vulnerabilities discovered in FortiOS Affected Product(s) : FortiOS versions 6.2.1 and below. FortiOS versions 6.0.6 and below.
Moxa EDR 810 Series vulnerabilities
Overview : Moxa EDR 810 Series Improper Input Validation and Improper Access Control vulnerabilities Affected Product(s) : EDR-810: All versions
Latest Security vulnerabilities in Cisco products
Overview : Cisco IOS XE Software NAT Session Initiation Protocol Application Layer Gateway Denial of Service Vulnerability CWE-399/ CVE-2019-12646 A
What Is OWASP? Describe The OWASP Top 10?
Web applications have become an integral part of modern business operations. They enable companies to interact with their customers, employees,
What Is XML External Entity Injection? How To Prevent XXE Attacks?
Have you ever wondered how important XML is? And how insecure it can be if XML is parsed in an
API Security
API Security API Security for Your Data Privacy Prophaze API Security is a comprehensive solution to secure APIs from various
Microsoft Azure
Microsoft Azure Simply Secure Against Web Application Threats Prophaze with Azure solutions simplifies cloud security. Deploy Prophaze WAF to get
AWS WAF
AWS WAF The Ultimate Protection Solution to Secure your Web Application Deploying Prophaze WAF on your on-premises AWS workloads allows
WAF API Gateway
WAF API Gateway Connecting Your Services with Ease and Efficiency Prophaze API Gateway is a solution that allows businesses to
Protection From All Threats
Protection From All Threats Security for Your Data Privacy Prophaze AI firewall blocks malicious requests, execution of fileless attacks, new
cPanel before 84.0.20 allows a demo account to achieve remote code execution
Overview : cPanel before 84.0.20 allows a demo account to achieve remote code execution via a cpsrvd rsync shell (SEC-544).
Pearson eSIS message board has stored XSS vuln
Overview : Pearson eSIS (Enterprise Student Information System) message board has stored XSS due to improper validation of user input