CVE-2026-0652

creationtimestamp| type| source ---|---|--- 2026-02-12 07:16:09+00:00| seen| https://bsky.app/profile/undercode.bsky.social/post/3menh3nq5jf2t 2026-03-06 11:43:30+00:00| seen| https://bsky.app/profile/glitterbean.wehavecookies.social.ap.brid.gy/post/3mgfabrgdgk72 2026-03-06 16:44:17+00:00| seen|...

CVE-2026-0652

On TP-Link Tapo C260 v1, command injection vulnerability exists due to improper sanitization in certain POST parameters during configuration synchronization. An authenticated attacker can execute arbitrary system commands with high impact on confidentiality, integrity and availability. It may cau...

CVE-2022-0652

Confd log files contain local users', including root’s, SHA512crypt password hashes with insecure access permissions. This allows a local attacker to attempt off-line brute-force attacks against these password hashes in Sophos UTM before version 9.710...

EUVD-2026-0652

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

CVE-2024-0652

A vulnerability was found in PHPGurukul Company Visitor Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file search-visitor.php. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit ha...

CVE-2013-0652

GE Intelligent Platforms Proficy Real-Time Information Portal does not restrict access to methods of an unspecified Java class, which allows remote attackers to obtain a username listing via an RMI call...

CVE-2025-0652

An issue has been discovered in GitLab EE/CE affecting all versions starting from 16.9 before 17.7.7, all versions starting from 17.8 before 17.8.5, all versions starting from 17.9 before 17.9.2 could allow unauthorized users to access confidential information intended for internal use only...

CVE-2025-0652

creationtimestamp| type| source ---|---|--- 2025-03-13 08:55:43+00:00| seen| https://t.me/cvedetector/20193 2025-08-13 13:26:34+00:00| seen| MISP/682bdba3-46b7-4a8f-b7be-c6bf4b4f9868...

CVE-2025-0652 Incorrect Authorization in GitLab

An issue has been discovered in GitLab EE/CE affecting all versions starting from 16.9 before 17.7.7, all versions starting from 17.8 before 17.8.5, all versions starting from 17.9 before 17.9.2 could allow unauthorized users to access confidential information intended for internal use only...

CVE-2025-0652

Removed by vendor...

GitLab 16.9 < 17.7.7 / 17.8 < 17.8.5 / 17.9 < 17.9.2 (CVE-2025-0652)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab EE/CE affecting all versions starting from 16.9 before 17.7.7, all versions starting from 17.8 before 17.8.5, all versions starting from 17.9 before 17.9.2 could...

CVE-2024-0652

The CVE-2024-0652 entry concerns PHPGurukul’s Company Visitor Management System 1.0 and a vulnerability in the file search-visitor.php that allows cross-site scripting. The issue is triggered by insufficient input filtering/escaping, with remote exploitation and a publicly disclosed exploit. Affe...

CVE-2023-0652

Due to a hardlink created in the ProgramData folder during the repair process of the software, the installer MSI of WARP Client for Windows = 2022.12.582.0 allowed a malicious attacker to forge the destination of the hardlink and escalate privileges, overwriting SYSTEM protected files. As...

CVE-2023-0652 Local Privilege Escalation in Cloudflare WARP Installer (Windows)

Due to a hardlink created in the ProgramData folder during the repair process of the software, the installer MSI of WARP Client for Windows = 2022.12.582.0 allowed a malicious attacker to forge the destination of the hardlink and escalate privileges, overwriting SYSTEM protected files. As...

CVE-2023-0652

CVE-2023-0652 is a Local Privilege Escalation in Cloudflare WARP Installer (Windows). The issue stems from a hardlink created in the ProgramData folder during the repair process, where the MSI-based installer could forge the hardlink’s destination, enabling privilege escalation and overwriting SY...

CVE-2022-0652

creationtimestamp| type| source ---|---|--- 2022-03-28 10:46:00+00:00| exploited| https://t.me/truesecator/2776...

CVE-2022-0652

Sophos UTM vulnerability CVE-2022-0652 involves insecure permissions on Confd log files containing SHA512crypt password hashes for local users (including root). A local attacker could perform offline brute-force attacks on these hashes. Affected products are Sophos UTM versions prior to 9.710. Re...

CVE-2021-0652

creationtimestamp| type| source ---|---|--- 2021-10-22 18:39:18+00:00| seen| https://t.me/cibsecurity/31040...

CVE-2021-0652

Technical details for CVE-2021-0652 are not available in the provided connected documents. The Initial document notes a memory corruption in VectorDrawable and local privilege escalation on Android, but there are no specific product/version, exploit, impact, or remediation details in the supplied...

SUSE: Security Advisory (SUSE-SU-2021:0652-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...