Lucene search
K

8 matches found

ATTACKERKB
ATTACKERKB
added 2026/06/08 11:27 p.m.8 views

CVE-2026-11667

Out of bounds read in WebRTC in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the GPU process to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

5.5AI score0.00215EPSS
Exploits0References3Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/09 10:10 a.m.9 views

CVE-2019-11667

Unauthorized access to contact information in Micro Focus Service Manager, versions 9.41, 9.50, 9.51, 9.52, 9.60, 9.61, 9.62. The vulnerability could be exploited to allow unauthorized access to private data...

7.5CVSS6.6AI score0.01071EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/14 7:42 a.m.5 views

CVE-2025-11667

A vulnerability was found in code-projects Automated Voting System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/addcandidatemodal.php.. The manipulation of the argument firstname results in sql injection. The attack can be executed remotely. The exploit has...

8.8CVSS6.9AI score0.00386EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/11/27 9:39 a.m.65 views

CVE-2024-11667

A directory traversal vulnerability in the web management interface of Zyxel ATP series firmware versions V5.00 through V5.38, USG FLEX series firmware versions V5.00 through V5.38, USG FLEX 50W series firmware versions V5.10 through V5.38, and USG20W-VPN series firmware versions V5.10 through...

7.5CVSS7.1AI score0.03017EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2024/11/21 12:0 a.m.3 views

VulnCheck KEV: CVE-2024-11667

Multiple Zyxel firewalls contain a path traversal vulnerability in the web management interface that could allow an attacker to download or upload files via a crafted URL...

9.8CVSS5.8AI score0.03017EPSS
Exploits0References1
CVE
CVE
added 2019/09/17 5:13 p.m.75 views

CVE-2019-11667

CVE-2019-11667 affects Micro Focus Service Manager, with confirmed impact across versions 9.41, 9.50, 9.51, 9.52, 9.60, 9.61, and 9.62. The available descriptions state that an unauthorized actor could access contact information and private data. The connected documents corroborate the affected v...

7.5CVSS7.2AI score0.01071EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2017/11/17 6:0 p.m.37 views

CVE-2017-1000233

OpenProject before 6.1.6 and 7.x before 7.0.3 mishandles session expiry, which allows remote attackers to perform APIv3 requests indefinitely by leveraging a hijacked session. Affected versions: prior to 6.1.6 and prior to 7.0.3. Remediation: upgrade to OpenProject 6.1.6 or newer, or 7.0.3 or new...

8.1AI score0.0142EPSS
Exploits0
CVE
CVE
added 2017/07/26 8:0 p.m.50 views

CVE-2017-11667

OpenProject is affected before 6.1.6 and 7.x before 7.0.3. The root cause is mishandling of session expiry, enabling remote attackers to perform APIv3 requests indefinitely via a hijacked session. Remediation: upgrade to OpenProject 6.1.6 or 7.0.3 or later, where the security fixes were released....

8.1CVSS8AI score0.0142EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder