Cisco Nexus 3000 and 9000 Series Switches security bypass | CVE-2023-20115
NAME__________Cisco Nexus 3000 and 9000 Series Switches security bypassPlatforms Affected:Cisco Nexus 3000 Series Switches Cisco Nexus 9000 Series Switches in...
Vulnerabilities
Cisco Nexus 3000 and 9000 Series Switches denial of service | CVE-2023-20169
NAME__________Cisco Nexus 3000 and 9000 Series Switches denial of servicePlatforms Affected:Cisco Nexus 9000 Series Switches in standalone NX-OS mode Cisco...
Pandora FMS cross-site scripting | CVE-2023-24516
NAME__________Pandora FMS cross-site scriptingPlatforms Affected:Artica Pandora FMS 767Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Pandora FMS is vulnerable to cross-site scripting, caused by improper...
RARLabs WinRAR code execution | CVE-2023-38831
NAME__________RARLabs WinRAR code executionPlatforms Affected:RARLAB WinRAR 6.22Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________RARLabs WinRAR could allow a remote attacker to execute arbitrary code...
Config Pages module for Drupal information disclosure |
NAME__________Config Pages module for Drupal information disclosurePlatforms Affected:Drupal Config Pages Module for Drupal 8.x-2.8Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Config Pages module for...
ASUS RT-AX92U SQL injection | CVE-2023-35720
NAME__________ASUS RT-AX92U SQL injectionPlatforms Affected:ASUS ROG Rapture RT-AX92URisk Level:6.5Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________ASUS RT-AX92U is vulnerable to SQL injection. A remote attacker...
Cisco Firepower 4100 Series, Firepower 9300 Security Appliances, and UCS 6300 Series Fabric Interconnects denial of service | CVE-2023-20200
NAME__________Cisco Firepower 4100 Series, Firepower 9300 Security Appliances, and UCS 6300 Series Fabric Interconnects denial of servicePlatforms Affected:Cisco UCS 6300...
7-Zip code execution | CVE-2023-31102
NAME__________7-Zip code executionPlatforms Affected:7-Zip 7-ZipRisk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________7-Zip could allow a remote attacker to execute arbitrary code on the system,...
Cisco NX-OS Software denial of service | CVE-2023-20168
NAME__________Cisco NX-OS Software denial of servicePlatforms Affected:Cisco Nexus 3000 Series Switches Cisco MDS 9000 Series Multilayer Switches Cisco Nexus 6000...
Shorthand module for Drupal information disclosure |
NAME__________Shorthand module for Drupal information disclosurePlatforms Affected:Drupal Shorthand module for Drupal 4.0.2Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Shorthand module for Drupal could allow...
ACL module for Drupal code execution |
NAME__________ACL module for Drupal code executionPlatforms Affected:Drupal ACL module for Drupal 7.x-1.3Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________ACL module for Drupal could allow...
Data field module for Drupal security bypass |
NAME__________Data field module for Drupal security bypassPlatforms Affected:Drupal Data field Module for Drupal 1.0.15Risk Level:6.4Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Data field module for...
7-Zip code execution | CVE-2023-40481
NAME__________7-Zip code executionPlatforms Affected:7-Zip 7-ZipRisk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________7-Zip could allow a remote attacker to execute arbitrary code on the system,...
Flexi Access module for Drupal code execution |
NAME__________Flexi Access module for Drupal code executionPlatforms Affected:Drupal Flexi Access module for Drupal 7.x-1.2Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Flexi Access module for...
Cisco Application Policy Infrastructure Controller (APIC) security bypass | CVE-2023-20230
NAME__________Cisco Application Policy Infrastructure Controller (APIC) security bypassPlatforms Affected:Cisco Application Policy Infrastructure ControllerRisk Level:5.4Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Cisco Application Policy Infrastructure Controller...
Apache Airflow, Airflow SMTP Provider and Airflow IMAP Provider man-in-the-middle | CVE-2023-39441
NAME__________Apache Airflow, Airflow SMTP Provider and Airflow IMAP Provider man-in-the-middlePlatforms Affected:Apache Airflow 2.6.3 Apache Airflow SMTP Provider 1.2.0 Apache Airflow...
Apache Airflow information disclosure | CVE-2023-37379
NAME__________Apache Airflow information disclosurePlatforms Affected:Apache Airflow 2.6.3Risk Level:7.6Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Apache could allow a remote authenticated attacker to obtain sensitive information,...
Veilid denial of service | CVE-2023-40711
NAME__________Veilid denial of servicePlatforms Affected:Veilid Veilid 0.1.8Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Veilid is vulnerable to a denial of service, caused by...
TPLink Smart bulb Tapo series L530 and Tapo Application information disclosure | CVE-2023-38908
NAME__________TPLink Smart bulb Tapo series L530 and Tapo Application information disclosurePlatforms Affected:TPLink Smart bulb Tapo series L530 1.0.0 TPLink Tapo...
Typora directory traversal | CVE-2023-2316
NAME__________Typora directory traversalPlatforms Affected:Typora Typora 1.6.0 Typora Typora 1.5.0Risk Level:6.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Typora could allow a remote attacker to traverse directories...
EnterpriseDB Postgres Advanced Server UTL_ENCODE information disclosure |
NAME__________EnterpriseDB Postgres Advanced Server UTL_ENCODE information disclosurePlatforms Affected:EnterpriseDB Postgres Advanced Server 11.21 EnterpriseDB Postgres Advanced Server 12.16 EnterpriseDB Postgres Advanced...
Puma HTTP request smuggling | CVE-2023-40175
NAME__________Puma HTTP request smugglingPlatforms Affected:Puma Puma 5.6.6 Puma Puma 6.3.0Risk Level:7.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Puma is vulnerable to HTTP request smuggling, caused...
TPLink Smart bulb Tapo series L530 and Tapo Application information disclosure | CVE-2023-38909
NAME__________TPLink Smart bulb Tapo series L530 and Tapo Application information disclosurePlatforms Affected:TPLink Smart bulb Tapo series L530 1.0.0 TPLink Tapo...
IBM Robotic Process Automation information disclosure | CVE-2023-40370
NAME__________IBM Robotic Process Automation information disclosurePlatforms Affected:IBM Robotic Process Automation 21.0.0 IBM Robotic Process Automation 21.0.7.1Risk Level:3.7Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________IBM Robotic...
