|
314291
|
5.5 |
MEDIUM
Local
|
cisco
|
duo_authentication_for_epic
|
A vulnerability in Cisco Duo Epic for Hyperdrive could allow an authenticated, local attacker to view sensitive information in cleartext on an affected system.
This vulnerability is due to imprope…
|
CWE-311
Missing Encryption of Sensitive Data
|
CVE-2024-20503
|
2024-09-14 04:24 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314292
|
9.8 |
CRITICAL
Network
|
fabianros
|
hospital_management_system
|
A vulnerability was found in code-projects Hospital Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file index.php of the component L…
|
CWE-89
SQL Injection
|
CVE-2024-8368
|
2024-09-14 04:23 |
2024-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314293
|
3.9 |
LOW
Physics
|
redhat
opensc_project
|
enterprise_linux
opensc
|
A vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK. An attacker could use a crafted USB Device or Smart Card, which would present the system with a specially craft…
|
CWE-908
Use of Uninitialized Resource
|
CVE-2024-45617
|
2024-09-14 04:21 |
2024-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314294
|
3.9 |
LOW
Physics
|
redhat
opensc_project
|
enterprise_linux
opensc
|
A vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK. An attacker could use a crafted USB Device or Smart Card, which would present the system with a specially craft…
|
CWE-908
Use of Uninitialized Resource
|
CVE-2024-45616
|
2024-09-14 04:21 |
2024-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314295
|
3.9 |
LOW
Physics
|
redhat
opensc_project
|
enterprise_linux
opensc
|
A vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK.
The problem is missing initialization of variables expected to be initialized (as arguments to other function…
|
CWE-908
Use of Uninitialized Resource
|
CVE-2024-45615
|
2024-09-14 04:21 |
2024-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314296
|
5.4 |
MEDIUM
Network
|
wpzoom
|
wpzoom_portfolio
|
The WPZOOM Portfolio Lite – Filterable Portfolio Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘align’ attribute within the 'wp:wpzoom-blocks' Gutenberg block in al…
|
CWE-79
Cross-site Scripting
|
CVE-2024-8276
|
2024-09-14 04:19 |
2024-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314297
|
6.5 |
MEDIUM
Network
|
microfocus
|
netiq_advanced_authentication
|
A vulnerability identified in storing and reusing information in Advance Authentication. This issue can lead to leakage of sensitive data to unauthorized user. The issue affects NetIQ Advance Authent…
|
CWE-312
Cleartext Storage of Sensitive Information
|
CVE-2021-22509
|
2024-09-14 03:05 |
2024-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314298
|
8.8 |
HIGH
Adjacent
|
microfocus
|
netiq_advanced_authentication
|
Insufficient or weak TLS protocol version identified in Advance authentication client server communication when specific service is accessed between devices. This issue affects NetIQ Advance Authent…
|
CWE-326
Inadequate Encryption Strength
|
CVE-2021-38121
|
2024-09-14 03:04 |
2024-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314299
|
7.2 |
HIGH
Network
|
microfocus
|
netiq_advanced_authentication
|
A vulnerability identified in Advance Authentication that allows bash command Injection in administrative controlled functionality of backup due to improper
handling in provided command parameters. T…
|
CWE-77
Command Injection
|
CVE-2021-38120
|
2024-09-14 03:04 |
2024-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314300
|
8.2 |
HIGH
Network
|
microfocus
|
netiq_advanced_authentication
|
A Cross-Site Scripting vulnerable identified in NetIQ Advance Authentication that impacts the server functionality and disclose sensitive information.
This issue affects NetIQ Advance Authentication …
|
CWE-79
Cross-site Scripting
|
CVE-2021-38122
|
2024-09-14 03:03 |
2024-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
