Security
Headlines

Headlines Latest CVEs

Tag

#apache

CVE-2023-37682: Judging Management System using PHP and MySQL Free Source Code

Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /php-jms/deductScores.php.

1 year ago

#sql #vulnerability #web #apache #php

CVE-2023-4009: Ops Manager Server Changelog — MongoDB Ops Manager 5.0

In MongoDB Ops Manager v5.0 prior to 5.0.22 and v6.0 prior to 6.0.17 it is possible for an authenticated user with project owner or project user admin access to generate an API key with the privileges of org owner resulting in privilege escalation.

CVE-2023-36877: Azure Apache Oozie Spoofing Vulnerability

**According to the CVSS metric, user interaction is required (UI:R). What interaction would the user have to do?** An attacker would have to send the victim a malicious file that the victim would have to execute.

1 year ago

Microsoft Security Response Center

#vulnerability #apache #Azure HDInsights #Security Vulnerability

CVE-2023-36881: Azure Apache Ambari Spoofing Vulnerability

**According to the CVSS metric, user interaction is required (UI:R). What interaction would the user have to do?** An attacker would have to send the victim a malicious file that the victim would have to execute.

1 year ago

Microsoft Security Response Center

#vulnerability #apache #Azure HDInsights #Security Vulnerability

CVE-2023-35393: Azure Apache Hive Spoofing Vulnerability

**According to the CVSS metric, user interaction is required (UI:R). What interaction would the user have to do?** An attacker would have to send the victim a malicious file that the victim would have to execute.

1 year ago

Microsoft Security Response Center

#vulnerability #apache #Azure HDInsights #Security Vulnerability

CVE-2023-38188: Azure Apache Hadoop Spoofing Vulnerability

**According to the CVSS metric, user interaction is required (UI:R). What interaction would the user have to do?** An attacker would have to send the victim a malicious file that the victim would have to execute.

1 year ago

Microsoft Security Response Center

#vulnerability #apache #Azure HDInsights #Security Vulnerability

CVE-2023-38188: Azure Apache Hadoop Spoofing Vulnerability

**According to the CVSS metric, user interaction is required (UI:R). What interaction would the user have to do?** An attacker would have to send the victim a malicious file that the victim would have to execute.

1 year ago

Microsoft Security Response Center

#vulnerability #web #apache #Azure HDInsights #Security Vulnerability

CVE-2023-35393: Azure Apache Hive Spoofing Vulnerability

**According to the CVSS metric, user interaction is required (UI:R). What interaction would the user have to do?** An attacker would have to send the victim a malicious file that the victim would have to execute.

1 year ago

Microsoft Security Response Center

#vulnerability #web #apache #Azure HDInsights #Security Vulnerability

CVE-2023-36877: Azure Apache Oozie Spoofing Vulnerability

**According to the CVSS metric, user interaction is required (UI:R). What interaction would the user have to do?** An attacker would have to send the victim a malicious file that the victim would have to execute.

1 year ago

Microsoft Security Response Center

#vulnerability #web #apache #Azure HDInsights #Security Vulnerability

CVE-2023-36881: Azure Apache Ambari Spoofing Vulnerability

**According to the CVSS metric, user interaction is required (UI:R). What interaction would the user have to do?** An attacker would have to send the victim a malicious file that the victim would have to execute.

1 year ago

Microsoft Security Response Center

#vulnerability #web #apache #Azure HDInsights #Security Vulnerability