Lucene search
K

21 matches found

Circl
Circl
added 2024/12/26 11:6 a.m.10 views

CVE-2020-11798

creationtimestamp| type| source ---|---|--- 2024-12-26 11:06:30+00:00| seen| https://bsky.app/profile/securitycipher.bsky.social/post/3le7dfcbplx2j 2026-04-10 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2026-04-10 2026-06-23 14:06:20+00:00| exploited|...

5.3CVSS6AI score0.45241EPSS
Exploits3References3
Cvelist
Cvelist
added 2024/11/27 11:34 p.m.32 views

CVE-2024-11798 Fuji Electric Monitouch V-SFT X1 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

Fuji Electric Monitouch V-SFT X1 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fuji Electric Monitouch V-SFT. User interaction is required to exploit this vulnerability in tha...

7.8CVSS0.00264EPSS
Exploits0References1
Circl
Circl
added 2024/11/27 5:0 a.m.17 views

CVE-2024-11798

creationtimestamp| type| source ---|---|--- 2024-11-27 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-24-1624/ 2024-11-28 00:12:52+00:00| seen| https://infosec.exchange/users/cve/statuses/113557685634941663...

7.8CVSS7.1AI score0.00264EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2023/04/06 12:0 a.m.281 views

Mitel MiCollab AWV 8.1.2.4 / 9.1.3 Directory Traversal / LFI

Exploit Title: Mitel MiCollab AWV 8.1.2.4 and 9.1.3 - Directory Traversal and LFI Date: 2022-10-14 Fix Date: 2020-05 Exploit Author: Kahvi-0 Github: https://github.com/Kahvi-0 Vendor Homepage: https://www.mitel.com/ Vendor Security Advisory:...

5.3CVSS5.6AI score0.45241EPSS
Exploits3
0day.today
0day.today
added 2023/04/06 12:0 a.m.209 views

Mitel MiCollab AWV 8.1.2.4 and 9.1.3 - Directory Traversal / Local File Inclusion Vulnerability

Exploit Title: Mitel MiCollab AWV 8.1.2.4 and 9.1.3 - Directory Traversal and LFI Fix Date: 2020-05 Exploit Author: Kahvi-0 Github: https://github.com/Kahvi-0 Vendor Homepage: https://www.mitel.com/ Vendor Security Advisory:...

5.3CVSS5.6AI score0.45241EPSS
Exploits3
Exploit DB
Exploit DB
added 2023/04/06 12:0 a.m.244 views

Mitel MiCollab AWV 8.1.2.4 and 9.1.3 - Directory Traversal and LFI

Exploit Title: Mitel MiCollab AWV 8.1.2.4 and 9.1.3 - Directory Traversal and LFI Date: 2022-10-14 Fix Date: 2020-05 Exploit Author: Kahvi-0 Github: https://github.com/Kahvi-0 Vendor Homepage: https://www.mitel.com/ Vendor Security Advisory:...

5.3CVSS5.3AI score0.45241EPSS
Exploits3
CVE
CVE
added 2020/06/10 12:0 a.m.75 views

CVE-2020-11798

CVE-2020-11798 affects Mitel MiCollab AWV’s web conference component. Versions prior to 8.1.2.4 and 9.x prior to 9.1.3 are vulnerable to a Directory Traversal flaw caused by insufficient access validation, allowing an attacker to access arbitrary files in restricted server directories via a craft...

5.3CVSS5AI score0.45241EPSS
In wildExploits3References3Affected Software1
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.33 views

Huawei EulerOS: Security Advisory for thrift (EulerOS-SA-2019-1458)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.2AI score0.08188EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2019/10/17 2:54 p.m.116 views

Important: Red Hat Security Advisory: Red Hat JBoss Data Virtualization 6.4.8 security update

An update is now available for Red Hat JBoss Data Virtualization. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

9.8CVSS7.6AI score0.93972EPSS
Exploits10References16
RedHat Linux
RedHat Linux
added 2019/06/18 7:52 p.m.161 views

Important: Red Hat Security Advisory: Red Hat Fuse 7.3.1 security update

A micro version update from 7.3 to 7.3.1 is now available for Red Hat Fuse. The purpose of this text-only errata is to inform you about the security issues fixed in this release. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scorin...

9.8CVSS7.9AI score0.8904EPSS
Exploits6References8
RedhatCVE
RedhatCVE
added 2019/01/17 5:19 p.m.31 views

CVE-2018-11798

A flaw was found in the Node.js static web server in Apache Thrift, where it allowed a remote user to access files outside of the set web servers' docroot path. An attacker could use this flaw to possibly access unauthorized files and sensitive information...

7.5CVSS5.5AI score0.04875EPSS
Exploits0References2
CVE
CVE
added 2019/01/07 6:0 p.m.391 views

CVE-2018-11798

The CVE-2018-11798 entry concerns Apache Thrift Node.js static web server (versions 0.9.2–0.11.0) where a remote attacker can access files outside the webroot docroot. Connected sources also reference CVE-2018-1320 in the Thrift TSaslTransport SASL handshake validation issue. NVD metrics cite a b...

6.5CVSS6.6AI score0.04875EPSS
Exploits0References5Affected Software1
Chainguard
Chainguard
added 2019/01/07 6:0 p.m.28 views

CVE-2018-11798 vulnerabilities

Vulnerabilities for packages: trino, druid...

6.5CVSS6.8AI score0.04875EPSS
Exploits0
Wolfi
Wolfi
added 2019/01/07 6:0 p.m.37 views

CVE-2018-11798 vulnerabilities

Vulnerabilities for packages: trino...

6.5CVSS6.9AI score0.04875EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2019/01/07 5:29 p.m.32 views

CVE-2018-11798

The Apache Thrift Node.js static web server in versions 0.9.2 through 0.11.0 have been determined to contain a security vulnerability in which a remote user has the ability to access files outside the set webservers docroot path...

6.5CVSS6.7AI score0.04875EPSS
Exploits0References4
Prion
Prion
added 2017/10/13 1:29 p.m.18 views

Memory corruption

ChakraCore and Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability"...

7.6CVSS7.6AI score0.69163EPSS
Exploits20References4Affected Software1
Prion
Prion
added 2017/10/13 1:29 p.m.16 views

Memory corruption

ChakraCore and Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability"...

7.6CVSS7.6AI score0.69163EPSS
Exploits20References3
CVE
CVE
added 2017/10/13 1:0 p.m.83 views

CVE-2017-11798

CVE-2017-11798 affects Microsoft Edge on Windows 10 (Gold, 1511, 1607, 1703) and Windows Server 2016. The vulnerability stems from how the scripting engine handles objects in memory, enabling an attacker to execute arbitrary code in the context of the current user. The CVSS metrics from the initi...

7.6CVSS7.8AI score0.08761EPSS
Exploits0References3Affected Software1
Check Point Advisories
Check Point Advisories
added 2017/10/10 12:0 a.m.8 views

Microsoft Edge Scripting Engine Memory Corruption (CVE-2017-11798)

A remote code execution vulnerability exists in Microsoft Edge. The vulnerability is due to the way Microsoft Edge handles objects in memory. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page...

7.6CVSS7.8AI score0.08761EPSS
Exploits0
exploitpack
exploitpack
added 2015/12/16 12:0 a.m.19 views

Wireshark - iseries_parse_packet Heap Buffer Overflow

Wireshark - iseriesparsepacket Heap Buffer Overflow Source: https://code.google.com/p/google-security-research/issues/detail?id=650 The following crash due to a heap-based buffer overflow can be observed in an ASAN build of Wireshark current git master, by feeding a malformed file to tshark "$...

1.2AI score
Exploits0
Rows per page
Query Builder