References to Advisories, Solutions, and Tools By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information…

CVE-2023-3550 Detail Description Mediawiki v1.40.0 does not validate namespaces used in XML files. Therefore, if the instance administrator allows XML file uploads, a remote attacker with a low-privileged user account…

References to Advisories, Solutions, and Tools By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information…

CVE-2023-38346 Detail Description An issue was discovered in Wind River VxWorks 6.9 and 7. The function “tarExtract“ implements TAR file extraction and thereby also processes files within an archive that…

References to Advisories, Solutions, and Tools By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information…

CVE-2023-33972 Detail Received This vulnerability has been received by the NVD and has not been analyzed. Description Scylladb is a NoSQL data store using the seastar framework, compatible with Apache…

CVE-2023-20186 Detail Awaiting Analysis This vulnerability is currently awaiting analysis. Description A vulnerability in the Authentication, Authorization, and Accounting (AAA) feature of Cisco IOS Software and Cisco IOS XE Software…

CVE-2023-20187 Detail Awaiting Analysis This vulnerability is currently awaiting analysis. Description A vulnerability in the Multicast Leaf Recycle Elimination (mLRE) feature of Cisco IOS XE Software for Cisco ASR 1000…

CVE-2023-20202 Detail Awaiting Analysis This vulnerability is currently awaiting analysis. Description A vulnerability in the Wireless Network Control daemon (wncd) of Cisco IOS XE Software for Wireless LAN Controllers could…

CVE-2023-20223 Detail Awaiting Analysis This vulnerability is currently awaiting analysis. Description A vulnerability in Cisco DNA Center could allow an unauthenticated, remote attacker to read and modify data in a…