Gemalto Admin Control Center, all versions prior to 7.92, uses cleartext HTTP to communicate with www3.safenet-inc.com to obtain language packs. This allows attacker to do man-in-the-middle (MITM) attack and replace original language pack by malicious one.
View Full Alert
CSV Injection (aka Excel Macro Injection or Formula Injection) exists in the export feature in Workday through 32 via a value (provided by a low-privileged user in a contact form…
There is a privilege escalation vulnerability in Huawei PCManager versions earlier than PCManager 126.96.36.199. The attacker can tricking a user to install and run a malicious application to exploit this…