A flaw was found in pritunl-client before version 1.0.1116.6. A lack of signature verification leads to sensitive information leakage
Published at: July 21, 2020 at 01:15PM
View on website
Etiqueta: government
New vulnerability on the NVD: CVE-2018-21036
Sails.js before v1.0.0-46 allows attackers to cause a denial of service with a single request because there is no error handler in sails-hook-sockets to handle an empty pathname in a WebSocket request.
Published at: July 21, 2020 at 10:15AM
View on website
New vulnerability on the NVD: CVE-2019-12000
HPE has found a potential Remote Access Restriction Bypass in HPE MSE Msg Gw application E-LTU prior to version 3.2 when HTTPS is used between the USSD and an external USSD service logic application. Update to version 3.2 and update the HTTPS configuration as described in the HPE MSE Messaging Gateway Configuration and Operations Guide.
Published at: July 17, 2020 at 06:15PM
View on website
New vulnerability on the NVD: CVE-2019-4090
"HCL Campaign is vulnerable to cross-site scripting when a user provides XSS scripts in Campaign Description field."
Published at: July 17, 2020 at 04:15PM
View on website
New vulnerability on the NVD: CVE-2019-20909
An issue was discovered in GNU LibreDWG through 0.9.3. There is a NULL pointer dereference in the function dwg_encode_LWPOLYLINE in dwg.spec.
Published at: July 16, 2020 at 02:15PM
View on website
Educ Arte Económico 