Aggregator

CVE-2019-15796 | python-apt prior 1.9.0ubuntu1.2 Hash apt/package.py improper authentication

Vuldb Updates
9 months 1 week ago
A vulnerability was found in python-apt. It has been rated as critical. Affected by this issue is some unknown functionality of the file apt/package.py of the component Hash Handler. The manipulation leads to improper authentication. This vulnerability is handled as CVE-2019-15796. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2020-5339 | Dell RSA Authentication Manager up to 8.4 P9 Security Console Stored cross site scripting (DSA-2020-052)

Vuldb Updates
9 months 1 week ago
A vulnerability has been found in Dell RSA Authentication Manager up to 8.4 P9 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Security Console. The manipulation leads to cross site scripting (Stored). This vulnerability is known as CVE-2020-5339. The attack can be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.
vuldb.com

CVE-2020-5340 | Dell RSA Authentication Manager up to 8.4 P9 Security Console Stored cross site scripting (DSA-2020-052)

Vuldb Updates
9 months 1 week ago
A vulnerability was found in Dell RSA Authentication Manager up to 8.4 P9 and classified as problematic. Affected by this issue is some unknown functionality of the component Security Console. The manipulation leads to cross site scripting (Stored). This vulnerability is handled as CVE-2020-5340. The attack may be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.
vuldb.com

CVE-2020-8910 | Google Closure Library up to 20200224 URL Parser information disclosure

Vuldb Updates
9 months 1 week ago
A vulnerability was found in Google Closure Library up to 20200224. It has been rated as problematic. This issue affects some unknown processing of the component URL Parser. The manipulation leads to information disclosure. The identification of this vulnerability is CVE-2020-8910. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2020-1800 | Huawei P30 up to 10.0.0 Access Control Crafted Application authorization (sa-20200325-02)

Vuldb Updates
9 months 1 week ago
A vulnerability, which was classified as critical, was found in Huawei P30 up to 10.0.0. Affected is an unknown function of the component Access Control. The manipulation as part of Crafted Application leads to incorrect authorization. This vulnerability is traded as CVE-2020-1800. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2020-9066 | Huawei Smart Phone up to 10.0.1 Application improper authentication (sa-20200325-01)

Vuldb Updates
9 months 1 week ago
A vulnerability classified as critical was found in Huawei Smart Phone up to 10.0.1. Affected by this vulnerability is an unknown functionality. The manipulation as part of Application leads to improper authentication. This vulnerability is known as CVE-2020-9066. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

Chinese Hackers Exploit SAP RCE Vulnerability to Upload Supershell Backdoors

Cyber Security News
9 months 1 week ago

A critical remote code execution vulnerability in SAP NetWeaver Visual Composer (CVE-2025-31324) is being actively exploited by a Chinese threat actor to compromise enterprise systems worldwide. The vulnerability allows attackers to achieve remote code execution by uploading malicious web shells through the vulnerable /developmentserver/metadatauploader endpoint. Exploitation has been observed primarily targeting manufacturing environments, where compromised […]

The post Chinese Hackers Exploit SAP RCE Vulnerability to Upload Supershell Backdoors appeared first on Cyber Security News.

Tushar Subhra Dutta

CVE-2001-1107 | Snapstream Personal Video Station 1.2a Password Storage SSD.ini cleartext storage (EDB-21035 / XFDB-6917)

Vuldb Updates
9 months 1 week ago
A vulnerability, which was classified as critical, has been found in Snapstream Personal Video Station 1.2a. This issue affects some unknown processing of the file SSD.ini of the component Password Storage. The manipulation leads to cleartext storage of sensitive information. The identification of this vulnerability is CVE-2001-1107. The attack may be initiated remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2025-25014

CVE Trends
9 months 1 week ago
Currently trending CVE - Hype Score: 4 - A Prototype pollution vulnerability in Kibana leads to arbitrary code execution via crafted HTTP requests to machine learning and reporting endpoints.

Managed ad