Medium - CVE-2025-1224 - A vulnerability classified as critical was...
A vulnerability classified as critical was found in ywoa up to 2024.07.03. This vulnerability affects the function listNameBySql of the file com/cloudweb/oa/mapper/xml/UserMapper.xml. The...
High - CVE-2024-12673 - An improper privilege vulnerability was...
An improper privilege vulnerability was reported in a BIOS customization feature of Lenovo Vantage on SMB notebook devices which could allow a local attacker to elevate privileges on the system....
NA - CVE-2025-0108 - An authentication bypass in the Palo Alto...
An authentication bypass in the Palo Alto Networks PAN-OS software enables an unauthenticated attacker with network access to the management web interface to bypass the authentication otherwise...
NA - CVE-2025-0109 - An unauthenticated file deletion vulnerability...
An unauthenticated file deletion vulnerability in the Palo Alto Networks PAN-OS management web interface enables an unauthenticated attacker with network access to the management web interface to...
NA - CVE-2025-0110 - A command injection vulnerability in the Palo...
A command injection vulnerability in the Palo Alto Networks PAN-OS OpenConfig plugin enables an authenticated administrator with the ability to make gNMI requests to the PAN-OS management web...
NA - CVE-2025-0111 - An authenticated file read vulnerability in the...
An authenticated file read vulnerability in the Palo Alto Networks PAN-OS software enables an authenticated attacker with network access to the management web interface to read files on the PAN-OS...
NA - CVE-2025-0113 - A problem with the network isolation mechanism...
A problem with the network isolation mechanism of the Palo Alto Networks Cortex XDR Broker VM allows attackers unauthorized access to Docker containers from the host network used by Broker VM. This...
Medium - CVE-2025-1226 - A vulnerability was found in ywoa up to...
A vulnerability was found in ywoa up to 2024.07.03. It has been declared as critical. This vulnerability affects unknown code of the file /oa/setup/setup.jsp. The manipulation leads to improper...