Lucene search
K

13 matches found

NVD
NVD
added 2022/12/30 10:15 p.m.6 views

CVE-2020-12532

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none...

Exploits0
Prion
Prion
added 2021/03/15 5:15 p.m.24 views

Default credentials

A vulnerability has been identified in Solid Edge SE2020 All versions SE2020MP13, Solid Edge SE2021 All Versions SE2021MP4. Affected applications lack proper validation of user-supplied data when parsing PAR files. This could result in an out of bounds write past the end of an allocated structure...

6.8CVSS7.7AI score0.0144EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2019/08/26 6:15 p.m.19 views

CVE-2019-12532

Improper access control in the Insyde software tools may allow an authenticated user to potentially enable escalation of privilege, or information disclosure via local access. This is a software vulnerability, not a firmware issue. Affected tools include: H2OFFT version 3.025.28,...

7.8CVSS7.5AI score0.00403EPSS
Exploits0References3
CVE
CVE
added 2019/08/26 5:6 p.m.126 views

CVE-2019-12532

Insyde software tools (H2OFFT 3.02–5.28; 100.00.00.00–100.00.08.23; 200.00.00.01–200.00.00.05; H2OOAE <200.00.00.02; H2OSDE <200.00.00.07; H2OUVE <200.00.02.02; H2OPCM <100.00.06.00; H2OELV

7.8CVSS7.3AI score0.00403EPSS
Exploits0References3Affected Software6
RedhatCVE
RedhatCVE
added 2018/06/25 2:19 a.m.52 views

CVE-2018-12532

JBoss RichFaces 4.5.3 through 4.5.17 allows unauthenticated remote attackers to inject an arbitrary expression language EL variable mapper and execute arbitrary Java code via a MediaOutputResource's resource request, aka RF-14309...

9.8CVSS7.4AI score0.07046EPSS
Exploits2References2
NVD
NVD
added 2018/06/18 12:29 p.m.30 views

CVE-2018-12532

JBoss RichFaces 4.5.3 through 4.5.17 allows unauthenticated remote attackers to inject an arbitrary expression language EL variable mapper and execute arbitrary Java code via a MediaOutputResource's resource request, aka RF-14309...

9.8CVSS9.7AI score0.07046EPSS
Exploits1References3
OSV
OSV
added 2018/06/18 12:29 p.m.28 views

CVE-2018-12532

JBoss RichFaces 4.5.3 through 4.5.17 allows unauthenticated remote attackers to inject an arbitrary expression language EL variable mapper and execute arbitrary Java code via a MediaOutputResource's resource request, aka RF-14309...

9.8CVSS9.9AI score
Exploits0References3
Cvelist
Cvelist
added 2018/06/18 12:0 p.m.20 views

CVE-2018-12532

JBoss RichFaces 4.5.3 through 4.5.17 allows unauthenticated remote attackers to inject an arbitrary expression language EL variable mapper and execute arbitrary Java code via a MediaOutputResource's resource request, aka RF-14309...

9.8AI score0.07046EPSS
Exploits1References3
CVE
CVE
added 2018/06/18 12:0 p.m.101 views

CVE-2018-12532

CVE-2018-12532 affects JBoss RichFaces 4.5.3 through 4.5.17. It allows unauthenticated remote attackers to inject an arbitrary Expression Language (EL) variable mapper and execute arbitrary Java code via a MediaOutputResource’s resource request (RF-14309). This is a server-side code execution ris...

9.8CVSS9.6AI score0.07046EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2018/02/15 10:0 p.m.61 views

CVE-2017-12532

HPE Intelligent Management Center PLAT 7.3 (E0504) contains a remote code execution vulnerability due to Expression Language injection in faultInfo_content.jsf (beanName handling). This allows an attacker to execute arbitrary code on the target, with network access and low privileges. The issue i...

9CVSS8.9AI score0.0572EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 1976/01/01 12:0 a.m.14 views

CVE-2025-12532

...

Exploits0
CVE
CVE
added 1976/01/01 12:0 a.m.6 views

CVE-2025-12532

CVE-2025-12532 is rejected and not used as stated.

6.6AI score
Exploits0
CVE
CVE
added 1976/01/01 12:0 a.m.40 views

CVE-2020-12532

CVE-2020-12532 is rejected/not used; this candidate number is unused by its CNA.

6.8AI score
Exploits0
Rows per page
Query Builder