NA - CVE-2025-0781 - An attacker can bypass the sandboxing of Nasal...
An attacker can bypass the sandboxing of Nasal scripts and arbitrarily write to any file path that the user has permission to modify at the operating-system level.
NA - CVE-2024-13484 - A flaw was found in ArgoCD. The...
A flaw was found in ArgoCD. The openshift.io/cluster-monitoring label is applied to all namespaces that deploy an ArgoCD CR instance, allowing the namespace to create a rogue PrometheusRule. This...
NA - CVE-2025-23053 - A privilege escalation vulnerability exists in...
A privilege escalation vulnerability exists in the web-based management interface of HPE Aruba Networking Fabric Composer. Successful exploitation could allow an authenticated low privilege...
NA - CVE-2025-23054 - A vulnerability in the web-based management...
A vulnerability in the web-based management interface of HPE Aruba Networking Fabric Composer could allow an authenticated low privilege operator user to perform operations not allowed by their...
NA - CVE-2025-23055 - A vulnerability in the web management interface...
A vulnerability in the web management interface of HPE Aruba Networking Fabric Composer could allow an authenticated remote attacker to conduct a stored cross-site scripting (XSS) attack. If...
NA - CVE-2025-23056 - A vulnerability in the web management interface...
A vulnerability in the web management interface of HPE Aruba Networking Fabric Composer could allow an authenticated remote attacker to conduct a stored cross-site scripting (XSS) attack. If...
NA - CVE-2025-23057 - A vulnerability in the web management interface...
A vulnerability in the web management interface of HPE Aruba Networking Fabric Composer could allow an authenticated remote attacker to conduct a stored cross-site scripting (XSS) attack. If...
NA - CVE-2025-0631 - A Credential Exposure Vulnerability exists in...
A Credential Exposure Vulnerability exists in the above-mentioned product and version. The vulnerability is due to using HTTP resulting in credentials being sent in clear text.
Medium - CVE-2025-0783 - A vulnerability, which was classified as...
A vulnerability, which was classified as problematic, was found in pankajindevops scale up to 20241113. This affects an unknown part of the component API Endpoint. The manipulation leads to...
NA - CVE-2025-22217 - Avi Load Balancer contains an unauthenticated...
Avi Load Balancer contains an unauthenticated blind SQL Injection vulnerability which was privately reported to VMware. Patches are available to remediate this vulnerability in affected VMware...