CVE-2019-14852
- EPSS 0.07%
- Veröffentlicht 18.03.2021 20:15:12
- Zuletzt bearbeitet 21.11.2024 04:27:29
A flaw was found in 3scale’s APIcast gateway that enabled the TLS 1.0 protocol. An attacker could target traffic using this weaker protocol and break its encryption, gaining access to unauthorized information. Version shipped in Red Hat 3scale API Ma...
CVE-2021-20252
- EPSS 0.34%
- Veröffentlicht 23.02.2021 23:15:13
- Zuletzt bearbeitet 21.11.2024 05:46:12
A flaw was found in Red Hat 3scale API Management Platform 2. The 3scale backend does not perform preventive handling on user-requested date ranges in certain queries allowing a malicious authenticated user to submit a request with a sufficiently lar...
CVE-2019-10216
- EPSS 0.53%
- Veröffentlicht 27.11.2019 13:15:10
- Zuletzt bearbeitet 21.11.2024 04:18:40
In ghostscript before version 9.50, the .buildfont1 procedure did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. An attacker could abuse this flaw by creating a specially crafted PostScript file that coul...