Przykłady dla Common Weakness Enumeration - CXSecurity.com

Nic nie znaleziono w bazie WLB2

Common Weakness Enumeration (CWE)

CVE

Szczegóły

Opis

2024-08-14

	CVE-2024-35136	Updating...	IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) federated server 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query under certain conditions. IBM X-Force ID: 291307.
	CVE-2024-31882	Updating...	IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 is vulnerable to a denial of service, under specific configurations, as the server may crash when using a specially crafted SQL statement by an authenticated user. IBM X-Force ID: 287614.

2021-01-20

Low

CVE-2021-1349

Vendor: Cisco
Software: Sd-wan vmanage

A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct Cypher query language injection attacks on an affected system. The vulnerability is due to insufficient input validation by the web-based management interface. An attacker could exploit this vulnerability by sending crafted HTTP requests to the interface of an affected system. A successful exploit could allow the attacker to obtain sensitive information.

2019-05-22

High

CVE-2018-7829

Updating...

An Improper Neutralization of Special Elements in Query vulnerability exists in the 1st Gen. Pelco Sarix Enhanced Camera and Spectra Enhanced PTZ Camera which allows an attacker to execute arbitrary system commands.

2017-08-23

High

CVE-2017-12904

Vendor: Debian
Software: Debian linux

Improper Neutralization of Special Elements used in an OS Command in bookmarking function of Newsbeuter versions 0.7 through 2.9 allows remote attackers to perform user-assisted code execution by crafting an RSS item that includes shell code in its title and/or URL.

Copyright 2024, cxsecurity.com