Lucene search
K

20 matches found

Microsoft CVE
Microsoft CVE
added 2026/06/09 2:0 p.m.8 views

Chromium: CVE-2026-11064 Uninitialized Use in GPU

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.5CVSS5.4AI score0.0025EPSS
Exploits0
Circl
Circl
added 2026/06/05 1:24 p.m.7 views

CVE-2026-11064

creationtimestamp| type| source ---|---|--- 2026-06-05 13:24:01+00:00| seen| https://infosec.exchange/users/cR0w/statuses/116697713800926918 2026-06-07 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities20260608 2026-06-09 18:00:00+00:00| seen|...

6.5CVSS5.3AI score0.0025EPSS
Exploits0References3
NVD
NVD
added 2026/06/04 11:17 p.m.6 views

CVE-2026-11064

Race in GPU in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.0025EPSS
Exploits0References2
OSV
OSV
added 2025/09/27 2:15 p.m.5 views

CVE-2025-11064

A security flaw has been discovered in Campcodes Online Learning Management System 1.0. Impacted is an unknown function of the file /admin/teachers.php. The manipulation of the argument department results in sql injection. It is possible to launch the attack remotely. The exploit has been release...

9.8CVSS5.7AI score0.00441EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2024/11/19 12:0 a.m.6 views

Geo Vision (CVE-2019-11064)

A vulnerability of remote credential disclosure was discovered in Advan VD-1 firmware versions up to 230. An attacker can export system configuration which is not encrypted to get the administrator's account and password in plain text via cgibin/ExportSettings.cgi?Export=1 without any...

9.8CVSS7.3AI score0.01942EPSS
Exploits1References4
Circl
Circl
added 2024/11/11 7:43 a.m.6 views

CVE-2024-11064

creationtimestamp| type| source ---|---|--- 2024-11-11 07:43:33+00:00| seen| https://infosec.exchange/users/cve/statuses/113463198548061741 2024-11-11 10:15:08+00:00| seen| https://t.me/cvedetector/10486 2024-11-13 12:21:24+00:00| seen| https://t.me/truesecator/6423...

7.2CVSS4.8AI score0.01325EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/11/11 7:35 a.m.15 views

CVE-2024-11064 D-Link DSL6740C - OS Command Injection

The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through a specific functionality provided by SSH and Telnet...

7.2CVSS8.2AI score0.01325EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/11/11 7:35 a.m.14 views

CVE-2024-11064 D-Link DSL6740C - OS Command Injection

The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through a specific functionality provided by SSH and Telnet...

7.2CVSS0.01325EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/07/13 12:0 a.m.42 views

TYPO3 9.x < 9.5.17 / 10.x < 10.4.2 Multiple Vulnerabilities

The version of TYPO3 installed on the remote host is 9.x prior to 9.5.17 or 10.x prior to 10.4.2. It is, therefore, affected by multiple vulnerabilities: - A cross-site scripting XSS vulnerability exists in Typo3's form engine component due to improper validation of user-supplied input before...

10CVSS7.2AI score0.0199EPSS
Exploits0References8
Circl
Circl
added 2020/06/20 1:55 a.m.4 views

CVE-2016-11064

creationtimestamp| type| source ---|---|--- 2020-06-20 01:55:13+00:00| seen| https://t.me/cibsecurity/12955...

9.8CVSS8.7AI score0.01285EPSS
Exploits0References1
OSV
OSV
added 2020/06/19 8:15 p.m.16 views

CVE-2016-11064

An issue was discovered in Mattermost Desktop App before 3.4.0. Strings could be executed as code via injection...

9.8CVSS7.4AI score
Exploits0References1
CVE
CVE
added 2020/06/19 7:22 p.m.42 views

CVE-2016-11064

Mattermost Desktop App fixed for CVE-2016-11064. Before 3.4.0, it is vulnerable to code execution via injection where strings could be executed as code. Affected component: Mattermost Desktop App. Root cause: injection allowing code execution through untrusted input during code segment constructi...

9.8CVSS9.6AI score0.01285EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2020/05/13 11:15 p.m.38 views

CVE-2020-11064

In TYPO3 CMS greater than or equal to 9.0.0 and less than 9.5.17 and greater than or equal to 10.0.0 and less than 10.4.2, it has been discovered that HTML placeholder attributes containing data of other database records are vulnerable to cross-site scripting. A valid backend user account is need...

5.4CVSS6.1AI score0.0054EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/05/13 10:50 p.m.39 views

CVE-2020-11064 Cross-Site Scripting in TYPO3 CMS

In TYPO3 CMS greater than or equal to 9.0.0 and less than 9.5.17 and greater than or equal to 10.0.0 and less than 10.4.2, it has been discovered that HTML placeholder attributes containing data of other database records are vulnerable to cross-site scripting. A valid backend user account is need...

5.4CVSS5.4AI score0.0054EPSS
Exploits0References1
CVE
CVE
added 2020/05/13 10:50 p.m.102 views

CVE-2020-11064

TYPO3 CMS vulnerability CVE-2020-11064: Cross-site scripting in the Form Engine via HTML placeholder attributes containing data from other database records. A valid backend user is required to exploit. Affected ranges: 9.0.0–9.5.16 and 10.0.0–10.4.1. The issue is fixed in TYPO3 9.5.17 and 10.4.2....

5.4CVSS5.4AI score0.0054EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/08/29 12:19 a.m.175 views

CVE-2019-11064

The CVE-2019-11064 issue affects Advan VD-1 firmware (up to v230). It enables remote credential disclosure: an attacker can export the unencrypted system configuration via cgibin/ExportSettings.cgi?Export=1 without authentication, exposing administrator account and password in plain text. This is...

9.8CVSS9.4AI score0.01942EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2018/10/05 9:0 p.m.48 views

CVE-2018-11064

The CVE-2018-11064 entry applies to Dell EMC Unity OE (4.3.0.x, 4.3.1.x) and UnityVSA OE (4.3.0.x, 4.3.1.x). A local, authenticated attacker can exploit an Incorrect File Permissions flaw to alter multiple library files in the service tools, potentially enabling arbitrary code execution with elev...

7.8CVSS7.8AI score0.00392EPSS
Exploits0References2Affected Software2
Circl
Circl
added 2018/10/01 4:59 p.m.7 views

CVE-2018-11064

creationtimestamp| type| source ---|---|--- 2018-10-01 16:59:19+00:00| seen| MISP/5bb251b0-8710-4aab-bf7e-31960a021402...

7.8CVSS7AI score0.00392EPSS
Exploits0
NVD
NVD
added 2017/10/10 8:29 p.m.20 views

CVE-2017-11064

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, a buffer overread is observed during processing of ACANL80211VENDORSUBCMDEXTSCANPNOSETPASSPOINTLIST and QCANL80211VENDORSUBCMDEXTSCANPNOSETLIST cfg80211 vendor commands in...

7.5CVSS7.4AI score0.00514EPSS
Exploits0References2
CVE
CVE
added 2017/10/10 8:0 p.m.48 views

CVE-2017-11064

CVE-2017-11064 is a WLAN vulnerability affecting Android for MSM (and variants) where a buffer overread occurs while processing ACA_NL80211_VENDOR_SUBCMD_EXTSCAN_PNO_SET_PASSPOINT_LIST and QCA_NL80211_VENDOR_SUBCMD_EXTSCAN_PNO_SET_LIST in __wlan_hdd_cfg80211_set_passpoint_list and hdd_extscan_pas...

7.5CVSS7.3AI score0.00514EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder