CVE-2023-3049

Unrestricted Upload of File with Dangerous Type vulnerability in TMT Lockcell allows Command Injection.This issue affects Lockcell: before 15.

Publication date: Tue, 13 Jun 2023 17:15:00 +0000

Cyber News related to CVE-2023-3049

Vulnerability Summary for the Week of November 27, 2023 - PrimaryVendor - Product apple - multiple products Description A memory corruption vulnerability was addressed with improved locking. Published 2023-12-01 CVSS Score not yet calculated Source & Patch Info CVE-2023-48842 PrimaryVendor - Product dell - ...
6 months ago Cisa.gov

CVE-2024-37051 - GitHub access token could be exposed to third-party sites in JetBrains IDEs after version 2023.1 and less than: IntelliJ IDEA 2023.1.7, 2023.2.7, 2023.3.7, 2024.1.3, 2024.2 EAP3; Aqua 2024.1.2; CLion 2023.1.7, 2023.2.4, 2023.3.5, 2024.1.3, 2024.2 ...
2 weeks ago Tenable.com

CVE-2023-3049 - Unrestricted Upload of File with Dangerous Type vulnerability in TMT Lockcell allows Command Injection.This issue affects Lockcell: before 15. ...
10 months ago

Patching Perforce perforations: Critical RCE vulnerability discovered in Perforce Helix Core Server - Sig 11,887 p4api vs2017 static openssl3 p4api-2023.1.2468153-vs2017 static. Sig 11,847 p4api vs2017 static p4api-2023.1.2468153-vs2017 static. Sig 10,187 p4api vs2017 static vsdebug openssl3 p4api-2023.1.2468153-vs2017 static vsdebug. Sig 10,147 ...
6 months ago Microsoft.com

CVE-2015-3051 - Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-9161, ...
7 years ago

CVE-2015-3049 - Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-9161, ...
7 years ago

CVE-2015-3052 - Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-9161, ...
7 years ago

CVE-2015-3050 - Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-9161, ...
7 years ago

CVE-2015-3057 - Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-9161, ...
7 years ago

CVE-2015-3056 - Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-9161, ...
7 years ago

CVE-2015-3070 - Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-9161, ...
7 years ago

CVE-2015-3076 - Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-9161, ...
7 years ago

CVE-2015-3046 - Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-9161, ...
7 years ago

CVE-2013-3971 - IBM Maximo Asset Management 7.1 through 7.1.1.12 and 7.5 before 7.5.0.5 allows remote authenticated users to bypass intended access restrictions via unspecified vectors, a different vulnerability than CVE-2013-3049. ...
6 years ago

CVE-2013-3049 - IBM Maximo Asset Management 7.1 through 7.1.1.12 and 7.5 before 7.5.0.5 allows remote authenticated users to bypass intended access restrictions via unspecified vectors, a different vulnerability than CVE-2013-3971. ...
6 years ago

CVE-2021-3049 - An improper authorization vulnerability in the Palo Alto Networks Cortex XSOAR server enables an authenticated network-based attacker with investigation read permissions to download files from incident investigations of which they are aware but are ...
1 year ago

CVE-2005-3049 - PhpMyFaq 1.5.1 stores data files under the web document root with insufficient access control and predictable filenames, which allows remote attackers to obtain sensitive information via a direct request to the data/tracking[DATE] file. ...
6 years ago

CVE-2017-3049 - Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier have an exploitable heap overflow vulnerability in the image conversion engine, related to internal tile manipulation in TIFF files. Successful ...
6 years ago

CVE-2006-3049 - Multiple cross-site scripting (XSS) vulnerabilities in booking3.php in Mole Group Ticket Booking Script allow remote attackers to inject arbitrary web script or HTML via the (1) name, (2) address1, (3) address2, (4) county, (5) postcode, (6) email, ...
6 years ago

CVE-2007-3049 - Cross-site scripting (XSS) vulnerability in index.php in Buttercup web file manager (BWFM) May 2007 allows remote attackers to inject arbitrary web script or HTML via the title parameter. ...
6 years ago

CVE-2008-3049 - The PDF Generator 2 (pdf_generator2) extension 0.5.0 and earlier for TYPO3 allows attackers to obtain sensitive information via unspecified vectors. ...
6 years ago

CVE-2010-3049 - Cisco IOS before 12.2(33)SXI allows local users to cause a denial of service (device reboot). ...
6 years ago

CVE-2016-3049 - IBM OpenPages GRC Platform 7.1, 7.2, and 7.3 is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site. ...
6 years ago

CVE-2009-3049 - Opera before 10.00 does not properly display all characters in Internationalized Domain Names (IDN) in the address bar, which allows remote attackers to spoof URLs and conduct phishing attacks, related to Unicode and Punycode. ...
5 years ago

CVE-2018-3049 - Vulnerability in the Oracle FLEXCUBE Enterprise Limits and Collateral Management component of Oracle Financial Services Applications (subcomponent: Infrastructure). Supported versions that are affected are 12.3.0, 14.0.0 and 14.1.0. Easily ...
4 years ago

Latest Cyber News

30 Best Cyber Security Search Engines - 18 minutes ago
How to protect data at rest and in transit - 39 minutes ago
Sony Enters Crypto Exchange Arena with Acquisition of Amber - 39 minutes ago
Cyber Insurance demand fall as businesses bolster their cybersecurity infrastructure - 1 hour ago
Cyber Insurance demand fall as businesses bolster their cybersecurity infrastructure - 1 hour ago
Cyber Insurance demand fall as businesses bolster their cybersecurity infrastructure - 1 hour ago
Cyber Insurance demand fall as businesses bolster their cybersecurity infrastructure - 1 hour ago
Police allege 'evil twin' in-flight Wi-Fi used to steal info The Register - 1 hour ago
Water Sigbin Hackers Exploit Oracle WebLogic Vulnerabilities - 1 hour ago
Indonesian government didn't backup ransomwared data The Register - 2 hours ago
Product showcase: Protect digital identities with Swissbit's iShield Key Pro - 2 hours ago
Portainer: Open-source Docker and Kubernetes management - 2 hours ago
Why every company needs a DDoS response plan - 2 hours ago
Microsoft tells more customers their emails have been stolen The Register - 3 hours ago
Preparing for Q-Day as NIST nears approval of PQC standards - 3 hours ago
Infosec products of the month: June 2024 - 4 hours ago
CVE-2024-38525 - 6 hours ago
CVE-2024-6419 - 6 hours ago
CVE-2024-6418 - 7 hours ago
CVE-2024-6417 - 7 hours ago

Cyber Trends (last 7 days)

Okta - 7 months ago
23andMe - 6 months ago
Kimsuky - 7 months ago
LogoFAIL - 6 months ago
Gh0st rat - 7 months ago

Trending Cyber News (last 7 days)

Cyber Insurance demand fall as businesses bolster their cybersecurity infrastructure - 1 hour ago
30 Best Cyber Security Search Engines - 18 minutes ago
Cyber Insurance demand fall as businesses bolster their cybersecurity infrastructure - 1 hour ago
Sony Enters Crypto Exchange Arena with Acquisition of Amber - 39 minutes ago
How to protect data at rest and in transit - 39 minutes ago
Cyber Insurance demand fall as businesses bolster their cybersecurity infrastructure - 1 hour ago
Police allege 'evil twin' in-flight Wi-Fi used to steal info The Register - 1 hour ago
Cyber Insurance demand fall as businesses bolster their cybersecurity infrastructure - 1 hour ago
CVE-2024-6419 - 6 hours ago
Water Sigbin Hackers Exploit Oracle WebLogic Vulnerabilities - 1 hour ago
Why every company needs a DDoS response plan - 2 hours ago
Portainer: Open-source Docker and Kubernetes management - 2 hours ago
Product showcase: Protect digital identities with Swissbit's iShield Key Pro - 2 hours ago
Indonesian government didn't backup ransomwared data The Register - 2 hours ago
Microsoft tells more customers their emails have been stolen The Register - 3 hours ago
Preparing for Q-Day as NIST nears approval of PQC standards - 3 hours ago
Infosec products of the month: June 2024 - 4 hours ago
CVE-2024-6416 - 8 hours ago
CVE-2024-6418 - 7 hours ago
CVE-2024-6417 - 7 hours ago