[Forgot Password]
Login  Register Subscribe

30481

 
 

423868

 
 

256488

 
 

909

 
 

199193

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 31637 Download | Alert*

The host is installed with Ivanti Avalanche 6.x before 6.4.2 and is prone to a server-side request forgery, information disclosure vulnerability. A flaw is present in the application which fails to properly handle issues in validateAMCWSConnection. Successful exploitation could allow attackers to send a specifically crafted web request causing a Server-Side Request Forgery.

The host is installed with Ivanti Avalanche 6.x before 6.4.2 and is prone to a denial of service vulnerability. A flaw is present in the application which fails to properly handle specially crafted data packets. Successful exploitation could allow attackers to memory corruption, denial of service, dos and code execution.

The host is installed with LibreOffice 7.6.x before 7.6.4 or 7.5.x before 7.5.9 and is prone to an arbitrary script execution vulnerability. A flaw is present in the application, which fails to properly handle issues in hyperlinks. Successful exploitation could allows an attacker to launch built-in macros or dispatch built-in internal commands.

The host is installed with Artifex Ghostscript through 10.02.0 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle an issue in the function gdev_prn_open_printer_seekable(). Successful exploitation allows remote attackers to crash the application via a dangling pointer.

The host is installed with Node.js 12.x before 12.22.5, 14.x before 14.17.5, or 16.x before 16.6.2 and is prone to an improper certificate validation vulnerability. A flaw is present in the application which fails to handle the Node.js https API when used incorrectly. Successful exploitation allows an attacker to accept the connections to servers with an expired certificate, when "undefined" was i ...

The host is installed with Node.js 12.x before 12.22.5, 14.x before 14.17.5, or 16.x before 16.6.2 and is prone to a remote code execution vulnerability. A flaw is present in the application which fails to handle an input validation of host names returned by Domain Name Servers in the Node.js DNS library. Successful exploitation allows an attacker to output wrong hostnames (leading to Domain Hijac ...

The host is installed with Node.js 12.x before 12.22.4, 14.x before 14.17.4, or 16.x before 16.6.0 and is prone to a use after free vulnerability. A flaw is present in the application which fails to handle a memory corruption issue. Successful exploitation allows an attacker to change process behavior.

The host is installed with Node.js 6.x before 6.17.0 and is prone to a denial of service vulnerability. A flaw is present in the application which fails to handle a dedicated server.keepAliveTimeout which defaults to 5 seconds. Successful exploitation allows an attacker to cause Keep-alive HTTP and HTTPS connections to remain open and inactive for up to 2 minutes, leadint to a potential denial of ...

The host is installed with Node.js 10.x before 10.9.0 and is prone to a memory disclosure vulnerability. A flaw is present in the application which fails to process an argument that causes Buffer.alloc() to return uninitialized memory. Successful exploitation allows an attacker to derive Buffer.alloc() arguments from user input to return uncleared memory blocks that may contain sensitive informati ...

The host is installed with Node.js 9.7.x before 9.11.2, or 10.x before 10.4.1 and is prone to a denial of service vulnerability. A flaw is present in the application which fails to handle the memory consumed when reading from the network into JavaScript using the net.Socket object directly as a stream. Successful exploitation allows an attacker to cause a denial of service by sending tiny chunks o ...


Pages:      Start    1328    1329    1330    1331    1332    1333    1334    1335    1336    1337    1338    1339    1340    1341    ..   3163

© SecPod Technologies