π¨ CVE-2024-47876
Sakai is a Collaboration and Learning Environment. Starting in version 23.0 and prior to version 23.2, kernel users created with type roleview can log in as a normal user. This can result in illegal access being granted to the system. Version 23.3 fixes this vulnerability.
π@cveNotify
Sakai is a Collaboration and Learning Environment. Starting in version 23.0 and prior to version 23.2, kernel users created with type roleview can log in as a normal user. This can result in illegal access being granted to the system. Version 23.3 fixes this vulnerability.
π@cveNotify
GitHub
Merge commit from fork Β· sakaiproject/sakai@a9aadd9
https://sakaiproject.atlassian.net/browse/SAK-50571
π¨ CVE-2024-30133
HCL Traveler for Microsoft Outlook (HTMO) is susceptible to a control flow vulnerability. The application does not sufficiently manage its control flow during execution, creating conditions in which the control flow can be modified in unexpected ways.
π@cveNotify
HCL Traveler for Microsoft Outlook (HTMO) is susceptible to a control flow vulnerability. The application does not sufficiently manage its control flow during execution, creating conditions in which the control flow can be modified in unexpected ways.
π@cveNotify
Hcl-Software
Security Bulletin: HCL Traveler for Microsoft Outlook (HTMO) is susceptible to a control flow vulnerability (CVE-2024-30133) -β¦
HCL Traveler for Microsoft Outlook (HTMO) is susceptible to a control flow vulnerability which could
π¨ CVE-2024-30109
HCL DRYiCE AEX is impacted by a lack of clickjacking protection in the AEX web application. An attacker can use multiple transparent or opaque layers to trick a user into clicking on a button or link on another page than the one intended.
π@cveNotify
HCL DRYiCE AEX is impacted by a lack of clickjacking protection in the AEX web application. An attacker can use multiple transparent or opaque layers to trick a user into clicking on a button or link on another page than the one intended.
π@cveNotify
Hcl-Software
Security Bulletin: Multiple security vulnerabilities affect HCL DRYiCE AEX - Customer Support
HCL DRYiCE AEX is affected by multiple security vulnerabilities.
π¨ CVE-2024-30110
HCL DRYiCE
AEX product is impacted by lack of input validation vulnerability in a particular web application. A malicious script can be injected into a system which
can cause the system to behave in unexpected ways.
π@cveNotify
HCL DRYiCE
AEX product is impacted by lack of input validation vulnerability in a particular web application. A malicious script can be injected into a system which
can cause the system to behave in unexpected ways.
π@cveNotify
Hcl-Software
Security Bulletin: Multiple security vulnerabilities affect HCL DRYiCE AEX - Customer Support
HCL DRYiCE AEX is affected by multiple security vulnerabilities.
π¨ CVE-2024-30111
HCL DRYiCE AEX product is impacted by Missing
Root Detection vulnerability in the mobile application. The mobile app can be installed in the rooted
device due to which malicious users can gain unauthorized access to the rooted
devices, compromising security and potentially leading to data breaches or
other malicious activities.
π@cveNotify
HCL DRYiCE AEX product is impacted by Missing
Root Detection vulnerability in the mobile application. The mobile app can be installed in the rooted
device due to which malicious users can gain unauthorized access to the rooted
devices, compromising security and potentially leading to data breaches or
other malicious activities.
π@cveNotify
Hcl-Software
Security Bulletin: Multiple security vulnerabilities affect HCL DRYiCE AEX - Customer Support
HCL DRYiCE AEX is affected by multiple security vulnerabilities.
π¨ CVE-2024-30135
HCL DRYiCE AEX is potentially impacted by disclosure of sensitive information in the mobile application when a snapshot is taken.
π@cveNotify
HCL DRYiCE AEX is potentially impacted by disclosure of sensitive information in the mobile application when a snapshot is taken.
π@cveNotify
Hcl-Software
Security Bulletin: Multiple security vulnerabilities affect HCL DRYiCE AEX - Customer Support
HCL DRYiCE AEX is affected by multiple security vulnerabilities.
π¨ CVE-2024-30130
HCL Nomad server on Domino is vulnerable to the cache containing sensitive information which could potentially give an attacker the ability to acquire the sensitive information.
π@cveNotify
HCL Nomad server on Domino is vulnerable to the cache containing sensitive information which could potentially give an attacker the ability to acquire the sensitive information.
π@cveNotify
Hcl-Software
Security Bulletin: HCL Nomad server on Domino is affected by a use of web browser cache containing sensitive information vulnerabilityβ¦
HCL Nomad server on Domino is vulnerable to the cache containing sensitive information, potentially giving
π¨ CVE-2024-30128
HCL Nomad server on Domino is affected by an open proxy vulnerability in which an unauthenticated attacker can mask their original source IP address. This may enable an attacker to trick the user into exposing sensitive information.
π@cveNotify
HCL Nomad server on Domino is affected by an open proxy vulnerability in which an unauthenticated attacker can mask their original source IP address. This may enable an attacker to trick the user into exposing sensitive information.
π@cveNotify
Hcl-Software
Security Bulletin: An open proxy vulnerability affects HCL Nomad server on Domino (CVE-2024-30128) - Customer Support
HCL Nomad server on Domino is affected by an open proxy vulnerability in which attackers can mask their
π¨ CVE-2019-5544
OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the severity of this issue to be in the Critical severity range with a maximum CVSSv3 base score of 9.8.
π@cveNotify
OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the severity of this issue to be in the Critical severity range with a maximum CVSSv3 base score of 9.8.
π@cveNotify