Aggregator

A vulnerability classified as problematic has been found in AXIS Camera Station and Camera Station Pro. This affects an unknown part. The manipulation leads to client-side enforcement of server-side security. This vulnerability is uniquely identified as CVE-2024-6831. Attacking locally is a requirement. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in AXIS OS up to 12.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file ftptest.cgi of the component VAPIX API. The manipulation leads to improper validation of syntactic correctness of input. This vulnerability is handled as CVE-2024-8160. The attack may be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

Managing a data center is a complex task, requiring seamless coordination of resources, equipment,

A vulnerability was found in AXIS OS up to 12.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file managedoverlayimages.cgi of the component VAPIX API. The manipulation leads to improper validation of syntactic correctness of input. This vulnerability is known as CVE-2024-8772. The attack can be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

在AI新时代，大模型日趋火热，但其安全问题也不容忽视。互联网巨头Meta 是如何应对大模型的安全风险的？点击了解！

Flutter是Google构建在开源的Dart VM之上，使用Dart语言开发的移动应用开发框架，可以帮助开发者使用一套Dart代码就能快速在移动iOS 、Android上构建高质量的原生用户界面，同时还支持开发Web和桌面应用。

Flutter是Google构建在开源的Dart VM之上，使用Dart语言开发的移动应用开发框架，可以帮助开发者使用一套Dart代码就能快速在移动iOS 、Android上构建高质量的原生用户界面，同时还支持开发Web和桌面应用。

A vulnerability classified as critical has been found in OpenSSL up to 1.0.2x/1.1.1i. This affects the function EVP_CipherUpdate/EVP_EncryptUpdate/EVP_DecryptUpdate. The manipulation of the argument length leads to unchecked return value. This vulnerability is uniquely identified as CVE-2021-23840. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Oracle Business Intelligence Enterprise Edition 5.5.0.0.0/12.2.1.3.0/12.2.1.4.0. This affects an unknown part of the component OpenSSL. The manipulation leads to denial of service. This vulnerability is uniquely identified as CVE-2021-23841. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Oracle GraalVM Enterprise Edition 19.3.5/20.3.1.2/21.0.0.2. This vulnerability affects unknown code of the component Node. The manipulation leads to denial of service. This vulnerability was named CVE-2021-23841. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Oracle MySQL Enterprise Monitor up to 8.0.23. This affects an unknown part of the component General. The manipulation leads to denial of service. This vulnerability is uniquely identified as CVE-2021-23841. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Oracle MySQL Server up to 5.7.33/8.0.23 and classified as critical. Affected by this vulnerability is an unknown functionality of the component Encryption. The manipulation leads to denial of service. This vulnerability is known as CVE-2021-23841. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in OpenSSL up to 1.0.2x/1.1.1i. This vulnerability affects the function EVP_CipherUpdate/EVP_EncryptUpdate/EVP_DecryptUpdate. The manipulation of the argument length leads to unchecked return value. This vulnerability was named CVE-2021-23841. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in OpenSSL up to 1.1.1j and classified as problematic. Affected by this issue is some unknown functionality of the component TLS Server. The manipulation leads to denial of service. This vulnerability is handled as CVE-2021-3449. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Oracle MySQL Server up to 5.7.33/8.0.23. This issue affects some unknown processing of the component Packaging. The manipulation leads to denial of service. The identification of this vulnerability is CVE-2021-3449. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Oracle JD Edwards World Security A9.4. It has been rated as critical. This issue affects some unknown processing of the component OpenSSL. The manipulation leads to improper certificate validation. The identification of this vulnerability is CVE-2021-3450. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Oracle Enterprise Manager for Storage Management 13.4.0.0. Affected by this issue is some unknown functionality of the component Privilege Management. The manipulation leads to improper certificate validation. This vulnerability is handled as CVE-2021-3450. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Oracle Commerce Guided Search 11.3.2. This vulnerability affects unknown code of the component Framework/Experience Manager. The manipulation leads to improper certificate validation. This vulnerability was named CVE-2021-3450. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Oracle JD Edwards EnterpriseOne Tools up to 9.2.5.x. It has been declared as critical. This vulnerability affects unknown code of the component OpenSSL. The manipulation leads to improper certificate validation. This vulnerability was named CVE-2021-3450. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

Вебинар Positive Technologies состоится 28 ноября в 14:00