CVE-2021-4030

Cross-Site Request Forgery (CSRF) (CWE-352)

Published: Feb 24, 2022 / Updated: 33mo ago

Original release date: February 28, 2022 Last revised: March 1, 2022 High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info airspan -- mimosa_management_platform MMP: All versions prior to v1.0.3, PTP C-series: Device versions prior to v2.8.6.1, and PTMP C-series and A5x: Device versions prior to v2.5.4.1 does not perform proper authorization checks on multiple API functions. An attacker may gain access to these functions and achieve remote code execution, create a denial-of-service condition, and obtain sensitive information. 2022-02-18 10 CVE-2022-21141 MISC airspan -- mimosa_management_platform MMP: All versions prior to v1.0.3, PTP C-series:

CVE Number Description Base Score Reference CVE-2020-15824 In JetBrains Kotlin from 1.4-M1 to 1.4-RC (as Kotlin 1.3.7x is not affected by the issue. Fixed version is 1.4.0) there is a script-cache privilege escalation vulnerability due to kotlin-main-kts cached scripts in the system temp directory, which is shared by all users... The post Security Bulletin 9 Mar 2022 #macos #macsecurity appeared first on NATIONAL CYBER SECURITY NEWS TODAY .

Zyxel Armor Z1 and Z2 routers are vulnerable to cross-site request forgery, caused by improper validation of user-supplied input. Zyxel Armor Z1 and Z2 routers cross-site request forgery

Security Bulletin 2 Mar 2022 Cyber Security Agency of Singapore

Security Bulletin 9 Mar 2022 Cyber Security Agency of Singapore

Security Bulletin 2 Mar 2022 Cyber Security Agency of Singapore