|
314011
|
3.9 |
LOW
Physics
|
redhat
opensc_project
|
enterprise_linux
opensc
|
A vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK.
The problem is missing initialization of variables expected to be initialized (as arguments to other function…
|
CWE-908
Use of Uninitialized Resource
|
CVE-2024-45615
|
2024-09-14 04:21 |
2024-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314012
|
5.4 |
MEDIUM
Network
|
wpzoom
|
wpzoom_portfolio
|
The WPZOOM Portfolio Lite – Filterable Portfolio Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘align’ attribute within the 'wp:wpzoom-blocks' Gutenberg block in al…
|
CWE-79
Cross-site Scripting
|
CVE-2024-8276
|
2024-09-14 04:19 |
2024-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314013
|
6.5 |
MEDIUM
Network
|
microfocus
|
netiq_advanced_authentication
|
A vulnerability identified in storing and reusing information in Advance Authentication. This issue can lead to leakage of sensitive data to unauthorized user. The issue affects NetIQ Advance Authent…
|
CWE-312
Cleartext Storage of Sensitive Information
|
CVE-2021-22509
|
2024-09-14 03:05 |
2024-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314014
|
8.8 |
HIGH
Adjacent
|
microfocus
|
netiq_advanced_authentication
|
Insufficient or weak TLS protocol version identified in Advance authentication client server communication when specific service is accessed between devices. This issue affects NetIQ Advance Authent…
|
CWE-326
Inadequate Encryption Strength
|
CVE-2021-38121
|
2024-09-14 03:04 |
2024-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314015
|
7.2 |
HIGH
Network
|
microfocus
|
netiq_advanced_authentication
|
A vulnerability identified in Advance Authentication that allows bash command Injection in administrative controlled functionality of backup due to improper
handling in provided command parameters. T…
|
CWE-77
Command Injection
|
CVE-2021-38120
|
2024-09-14 03:04 |
2024-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314016
|
8.2 |
HIGH
Network
|
microfocus
|
netiq_advanced_authentication
|
A Cross-Site Scripting vulnerable identified in NetIQ Advance Authentication that impacts the server functionality and disclose sensitive information.
This issue affects NetIQ Advance Authentication …
|
CWE-79
Cross-site Scripting
|
CVE-2021-38122
|
2024-09-14 03:03 |
2024-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314017
|
5.5 |
MEDIUM
Local
|
microfocus
|
netiq_advanced_authentication
|
A vulnerability identified in NetIQ Advance Authentication that leaks sensitive server information. This issue affects NetIQ Advance Authentication version before 6.3.5.1
|
NVD-CWE-noinfo
|
CVE-2021-22529
|
2024-09-14 03:03 |
2024-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314018
|
9.9 |
CRITICAL
Network
|
microfocus
|
netiq_advanced_authentication
|
A vulnerability identified in NetIQ Advance Authentication that doesn't enforce account lockout when brute force attack is performed on API based login. This issue may lead to user account compromise…
|
CWE-307
mproper Restriction of Excessive Authentication Attempts
|
CVE-2021-22530
|
2024-09-14 02:15 |
2024-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314019
|
7.8 |
HIGH
Local
|
adobe
|
photoshop
|
Photoshop Desktop versions 24.7.4, 25.11 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitatio…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-45108
|
2024-09-14 02:00 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314020
|
7.8 |
HIGH
Local
|
adobe
|
photoshop
|
Photoshop Desktop versions 24.7.4, 25.11 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitatio…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-43760
|
2024-09-14 02:00 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
