Show filters
1,987 Total Results
Displaying 291-300 of 1,987
Sort by:
Attacker Value
Unknown
CVE-2023-4607
Disclosure Date: October 25, 2023 (last updated February 25, 2025)
An authenticated XCC user can change permissions for any user through a crafted API command.
0
Attacker Value
Unknown
CVE-2023-46659
Disclosure Date: October 25, 2023 (last updated February 25, 2025)
Jenkins Edgewall Trac Plugin 1.13 and earlier does not escape the Trac website URL on the build page, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission.
0
Attacker Value
Unknown
CVE-2023-4089
Disclosure Date: October 17, 2023 (last updated February 25, 2025)
On affected Wago products an remote attacker with administrative privileges can access files to which he has already access to through an undocumented local file inclusion. This access is logged in a different log file than expected.
0
Attacker Value
Unknown
CVE-2023-36559
Disclosure Date: October 13, 2023 (last updated October 19, 2023)
Microsoft Edge (Chromium-based) Spoofing Vulnerability
0
Attacker Value
Unknown
CVE-2023-45219
Disclosure Date: October 10, 2023 (last updated February 25, 2025)
Exposure of Sensitive Information vulnerability exist in an undisclosed BIG-IP TMOS shell (tmsh) command which may allow an authenticated attacker with resource administrator role privileges to view sensitive information.
Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
0
Attacker Value
Unknown
CVE-2023-43611
Disclosure Date: October 10, 2023 (last updated February 25, 2025)
The BIG-IP Edge Client Installer on macOS does not follow best practices for elevating privileges during the installation process. This vulnerability is due to an incomplete fix for CVE-2023-38418. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated
0
Attacker Value
Unknown
CVE-2023-42768
Disclosure Date: October 10, 2023 (last updated February 25, 2025)
When a non-admin user has been assigned an administrator role via an iControl REST PUT request and later the user's role is reverted back to a non-admin role via the Configuration utility, tmsh, or iControl REST. BIG-IP non-admin user can still have access to iControl REST admin resource. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
0
Attacker Value
Unknown
CVE-2023-41964
Disclosure Date: October 10, 2023 (last updated February 25, 2025)
The BIG-IP and BIG-IQ systems do not encrypt some sensitive information written to Database (DB) variables.
Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
0
Attacker Value
Unknown
CVE-2023-41085
Disclosure Date: October 10, 2023 (last updated February 25, 2025)
When IPSec is configured on a Virtual Server, undisclosed traffic can cause TMM to terminate.
Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
0
Attacker Value
Unknown
CVE-2023-40542
Disclosure Date: October 10, 2023 (last updated February 25, 2025)
When TCP Verified Accept is enabled on a TCP profile that is configured on a Virtual Server, undisclosed requests can cause an increase in memory resource utilization. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated
0
