8 matches found
CVE-2026-11667
Out of bounds read in WebRTC in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the GPU process to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...
CVE-2019-11667
Unauthorized access to contact information in Micro Focus Service Manager, versions 9.41, 9.50, 9.51, 9.52, 9.60, 9.61, 9.62. The vulnerability could be exploited to allow unauthorized access to private data...
CVE-2025-11667
A vulnerability was found in code-projects Automated Voting System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/addcandidatemodal.php.. The manipulation of the argument firstname results in sql injection. The attack can be executed remotely. The exploit has...
CVE-2024-11667
A directory traversal vulnerability in the web management interface of Zyxel ATP series firmware versions V5.00 through V5.38, USG FLEX series firmware versions V5.00 through V5.38, USG FLEX 50W series firmware versions V5.10 through V5.38, and USG20W-VPN series firmware versions V5.10 through...
VulnCheck KEV: CVE-2024-11667
Multiple Zyxel firewalls contain a path traversal vulnerability in the web management interface that could allow an attacker to download or upload files via a crafted URL...
CVE-2019-11667
CVE-2019-11667 affects Micro Focus Service Manager, with confirmed impact across versions 9.41, 9.50, 9.51, 9.52, 9.60, 9.61, and 9.62. The available descriptions state that an unauthorized actor could access contact information and private data. The connected documents corroborate the affected v...
CVE-2017-1000233
OpenProject before 6.1.6 and 7.x before 7.0.3 mishandles session expiry, which allows remote attackers to perform APIv3 requests indefinitely by leveraging a hijacked session. Affected versions: prior to 6.1.6 and prior to 7.0.3. Remediation: upgrade to OpenProject 6.1.6 or newer, or 7.0.3 or new...
CVE-2017-11667
OpenProject is affected before 6.1.6 and 7.x before 7.0.3. The root cause is mishandling of session expiry, enabling remote attackers to perform APIv3 requests indefinitely via a hijacked session. Remediation: upgrade to OpenProject 6.1.6 or 7.0.3 or later, where the security fixes were released....