Severity Medium Analysis Summary An error related to the connection window when handling WINDOW_UPDATE messages can be exploited to exhaust available server-side threads and subsequently cause […]

Severity Medium Analysis Summary CVE-2019-12870 An access of uninitialized pointer vulnerability may allow remote code execution. CVE-2019-12869 An out-of-bounds read vulnerability may allow remote code execution. […]

Severity High Analysis Summary This vulnerability is due to improper validation of user-supplied data in the web-based management interface. An attacker could exploit this vulnerability by […]

Severity High Analysis Summary The vulnerability is due to insufficient authorization enforcement. An attacker could exploit this vulnerability by authenticating to the targeted device and executing […]

Severity Medium Analysis Summary The vulnerability is due to a lack of proper data protection mechanisms. An attacker could exploit this vulnerability by sending a crafted […]

Severity Medium Analysis Summary The vulnerability is due to insufficient authentication of proxy connection requests. An attacker could exploit this vulnerability by sending a malicious HTTPS […]

Severity Medium Analysis Summary A vulnerability in the GZIP decompression engine of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote […]

Severity High Analysis summary A deserialization vulnerability via XMLDecoder in Oracle WebLogic Server Web Services. This remote code execution vulnerability is remotely exploitable without authentication, i.e., […]