CWE:
 

Tytuł
Data
Autor
Med.
Lepin EP-KP001 KP001_V19 Authentication Bypass
20.06.2022
Matthias Deeg
Med.
MATESO GmbH Password Safe And Repository 7.4.4 b2247 SQL Injection
12.04.2017
Matthias Deeg
Med.
FrontRange DSM 7.2.2.2331 Multiple Vulns
30.04.2015
Matthias Deeg


Common Weakness Enumeration (CWE)

CVE
Szczegóły
Opis
2023-08-10
Waiting for details
CVE-2023-29320

Updating...
 

 
Adobe Acrobat Reader versions 23.003.20244 (and earlier) and 20.005.30467 (and earlier) are affected by an Violation of Secure Design Principles vulnerability that could result in arbitrary code execution in the context of the current user by bypassing the API blacklisting feature. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

 
2021-09-01
Low
CVE-2021-36061

Vendor: Adobe
Software: Connect
 

 
Adobe Connect version 11.2.2 (and earlier) is affected by a secure design principles violation vulnerability via the 'pbMode' parameter. An unauthenticated attacker could leverage this vulnerability to edit or delete recordings on the Connect environment. Exploitation of this issue requires user interaction in that a victim must publish a link of a Connect recording.

 
2021-06-28
Low
CVE-2021-28583

Vendor: Magento
Software: Magento
 

 
Magento versions 2.4.2 (and earlier), 2.4.1-p1 (and earlier) and 2.3.6-p1 (and earlier) are affected by a Violation of Secure Design Principles vulnerability in RMA PDF filename formats. Successful exploitation could allow an attacker to get unauthorized access to restricted resources.

 

 


Copyright 2024, cxsecurity.com

 

Back to Top