Aggregator

A vulnerability, which was classified as critical, was found in Microsoft Outlook 2000/Express 6. Affected is the function window.PopUp. The manipulation of the argument CODEBASE leads to improper access controls. This vulnerability is traded as CVE-2003-1378. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to disable the affected component.

OAuth attacks are increasing, exploiting SaaS blind spots to gain covert access. Learn how these attacks work and why visibility is key to mitigating the risks.

The post The Rise of OAuth Attacks to Access Sensitive Systems | Grip appeared first on Security Boulevard.

A vulnerability has been found in Apple macOS and classified as problematic. This vulnerability affects unknown code of the component Webpage Handler. The manipulation leads to information exposure through discrepancy. This vulnerability was named CVE-2024-27838. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in Apple iOS and iPadOS. This affects an unknown part of the component Webpage Handler. The manipulation leads to information exposure through discrepancy. This vulnerability is uniquely identified as CVE-2024-27850. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Apple visionOS and classified as problematic. This issue affects some unknown processing of the component Webpage Handler. The manipulation leads to information exposure through discrepancy. The identification of this vulnerability is CVE-2024-27838. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Apple watchOS. It has been classified as problematic. Affected is an unknown function of the component Webpage Handler. The manipulation leads to information exposure through discrepancy. This vulnerability is traded as CVE-2024-27838. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Apple Safari. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Webpage Handler. The manipulation leads to information exposure through discrepancy. This vulnerability is known as CVE-2024-27838. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Apple tvOS. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Webpage Handler. The manipulation leads to information exposure through discrepancy. This vulnerability is handled as CVE-2024-27838. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in Apple macOS. This vulnerability affects unknown code of the component Webpage Handler. The manipulation leads to information exposure through discrepancy. This vulnerability was named CVE-2024-27850. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

Upgrading from Windows 10 systems to Windows 11 could potentially introduce vulnerabilities into an environment through misconfigured hardware.

A vulnerability, which was classified as problematic, has been found in Apple visionOS. This issue affects some unknown processing of the component Webpage Handler. The manipulation leads to information exposure through discrepancy. The identification of this vulnerability is CVE-2024-27850. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Apple Safari. Affected is an unknown function of the component Webpage Handler. The manipulation leads to information exposure through discrepancy. This vulnerability is traded as CVE-2024-27850. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in SAP Financial Consolidation 1010. Affected is an unknown function. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2024-37178. It is possible to launch the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability classified as problematic has been found in gurgunday ghtml up to 1.x. This affects an unknown part. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2024-37166. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Apple iOS and iPadOS. It has been declared as critical. This vulnerability affects unknown code of the component App. The manipulation leads to out-of-bounds read. This vulnerability was named CVE-2024-27857. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Apple macOS. It has been rated as critical. This issue affects some unknown processing of the component App. The manipulation leads to out-of-bounds read. The identification of this vulnerability is CVE-2024-27857. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Apple visionOS. Affected is an unknown function of the component App. The manipulation leads to out-of-bounds read. This vulnerability is traded as CVE-2024-27857. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Apple tvOS. Affected by this vulnerability is an unknown functionality of the component App. The manipulation leads to out-of-bounds read. This vulnerability is known as CVE-2024-27857. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Harbor up to 2.8.4/2.9.2/2.10.0. It has been classified as problematic. Affected is an unknown function. The manipulation leads to open redirect. This vulnerability is traded as CVE-2024-22244. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability, which was classified as critical, has been found in Apple iOS and iPadOS. Affected by this issue is some unknown functionality of the component Shortcut Handler. The manipulation leads to improper access controls. This vulnerability is handled as CVE-2024-27855. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.