Posted by Angelo Barbosa | Nov 24, 2023 | CVE
A vulnerability, which was classified as problematic, was found in LibTIFF. Affected is the function TIFFOpen of the file tif_dirread.c of the component File Handler. The manipulation leads to resource consumption. This vulnerability is traded as CVE-2023-6277. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this...
Read MorePosted by Angelo Barbosa | Nov 24, 2023 | CVE
A vulnerability, which was classified as problematic, has been found in Checkmk up to 2.0.0p39/2.1.0p36/2.2.0p14. This issue affects some unknown processing of the component User-Message Handler. The manipulation leads to cross-site request forgery. The identification of this vulnerability is CVE-2023-6251. The attack may be initiated remotely. There is no exploit available. It is recommended to apply a patch to fix this...
Read MorePosted by Angelo Barbosa | Nov 24, 2023 | CVE
A vulnerability classified as problematic was found in Apache DolphinScheduler 3.0.0/3.0.1. This vulnerability affects unknown code. The manipulation leads to information disclosure. This vulnerability was named CVE-2023-48796. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected...
Read MorePosted by Angelo Barbosa | Nov 24, 2023 | CVE
A vulnerability classified as critical has been found in Tongda OA 2017 up to 11.9. This affects an unknown part of the file general/wiki/cp/ct/delete.php. The manipulation of the argument PROJ_ID_STR leads to sql injection.This vulnerability is uniquely identified as CVE-2023-6276. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected...
Read MorePosted by Angelo Barbosa | Nov 24, 2023 | CVE
Number one vulnerability management and threat intelligence platform documenting and explaining vulnerabilities since 1970.
Read More