CVE-2021-22155
- EPSS 0.37%
- Veröffentlicht 13.05.2021 00:15:07
- Zuletzt bearbeitet 21.11.2024 05:49:36
An Authentication Bypass vulnerability in the SAML Authentication component of BlackBerry Workspaces Server (deployed with Appliance-X) version(s) 10.1, 9.1 and earlier could allow an attacker to potentially gain access to the application in the cont...
CVE-2020-11652
- EPSS 94.27%
- Veröffentlicht 30.04.2020 17:15:12
- Zuletzt bearbeitet 03.04.2025 19:52:25
An issue was discovered in SaltStack Salt before 2019.2.4 and 3000 before 3000.2. The salt-master process ClearFuncs class allows access to some methods that improperly sanitize paths. These methods allow arbitrary directory access to authenticated u...
CVE-2020-1938
- EPSS 94.47%
- Veröffentlicht 24.02.2020 22:15:12
- Zuletzt bearbeitet 28.03.2025 17:15:49
When using the Apache JServ Protocol (AJP), care must be taken when trusting incoming connections to Apache Tomcat. Tomcat treats AJP connections as having higher trust than, for example, a similar HTTP connection. If such connections are available t...