An exploitable vulnerability exists in the way Pixar OpenUSD 20.05 handles file offsets in binary USD files. A specially crafted malformed file can trigger an arbitrary out-of-bounds memory access that could lead to the disclosure of sensitive information. This vulnerability could be used to bypass mitigations and aid additional exploitation. To trigger this vulnerability, the…
OpenIAM before 4.2.0.3 does not verify if a user has permissions to perform /webconsole/rest/api/* administrative actions. Devamını Oku
OpenIAM before 4.2.0.3 does not verify if a user has permissions to perform /webconsole/rest/api/* administrative actions. Devamını Oku
OpenIAM before 4.2.0.3 has Incorrect Access Control for the Create User, Modify User Permissions, and Password Reset actions. Devamını Oku
OpenIAM before 4.2.0.3 allows remote attackers to execute arbitrary code via Groovy Script. Devamını Oku
OpenIAM before 4.2.0.3 allows remote attackers to execute arbitrary code via Groovy Script. Devamını Oku
OpenIAM before 4.2.0.3 allows Directory Traversal in the Batch task. Devamını Oku
OpenIAM before 4.2.0.3 allows Directory Traversal in the Batch task. Devamını Oku
OpenIAM before 4.2.0.3 allows XSS in the Add New User feature. Devamını Oku
OpenIAM before 4.2.0.3 allows XSS in the Add New User feature. Devamını Oku
Loadbalancer.org Enterprise VA MAX through 8.3.8 has an OS Command Injection vulnerability that allows a remote authenticated attacker to execute arbitrary code. Zafiyet ile ilgili Genel Bilgi, Etki ve Çözümleri için Devamını Oku Kaynak: National Vulnerability Database
The web-services interface of Loadbalancer.org Enterprise VA MAX through 8.3.8 could allow an authenticated, remote, low-privileged attacker to conduct directory traversal attacks and obtain read and write access to sensitive files. Zafiyet ile ilgili Genel Bilgi, Etki ve Çözümleri için Devamını Oku Kaynak: National Vulnerability Database