CVE-2025-14699 Municorn FAX App biz.faxapp.app path traversal

A security vulnerability has been detected in Municorn FAX App 3.27.0 on Android. This vulnerability affects unknown code of the component biz.faxapp.app. Such manipulation leads to path traversal. The attack needs to be performed locally. The exploit has been disclosed publicly and may be used...

CVE-2019-14699

An issue was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5. An attacker can exploit OS Command Injection in the filename parameter for remote code execution as root. This occurs in the Mainproc executable file, which can be run from the HTTPD web server...

CVE-2020-14699

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.44, prior to 6.0.24 and prior to 6.1.12. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Orac...

openSUSE: Security Advisory for virtualbox (openSUSE-SU-2020:1511-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

openSUSE: Security Advisory for virtualbox (openSUSE-SU-2020:1486-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Oracle VM VirtualBox (Jul 2020 CPU)

The Prior to 5.2.44, prior to 6.0.24, and prior to 6.1.12 versions of VM VirtualBox installed on the remote host are affected by multiple vulnerabilities as referenced in the July 2020 CPU advisory. - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core...

CVE-2020-14699

CVE-2020-14699 affects Oracle VM VirtualBox (Core) with affected versions before 5.2.44, 6.0.24, and 6.1.12. The Oracle description indicates a difficult-to-exploit vulnerability that allows a high-privilege attacker with logon to the infrastructure where VirtualBox executes to compromise Virtual...

CVE-2019-14699

CVE-2019-14699 affects MicroDigital N-series network cameras with firmware up to 6400.0.8.5. The vulnerability lies in the filename parameter processed by the Mainproc executable, which can be invoked via the HTTPD web server and is susceptible to OS command injection. Successful exploitation yie...

CVE-2018-14699

System command injection in the /DroboAccess/enableuser endpoint in Drobo 5N2 NAS version 4.0.5-13.28.96115 allows unauthenticated attackers to execute system commands via the "username" URL parameter...

CVE-2018-14699

CVE-2018-14699 affects Drobo 5N2 NAS (version 4.0.5-13.28.96115) via the /DroboAccess/enable_user endpoint. An unauthenticated attacker can inject commands through the username URL parameter, enabling system command execution. Connected sources corroborate a high–critical impact, with CVSS metric...

CVE-2017-14699

CVE-2017-14699 describes multiple XXE vulnerabilities in ASUS AiCloud on various routers (DSL-AC51/52U/55U, DSL-N55U C1/D1, DSL-AC56U, DSL-N10_C1, N12U C1, N12E C1, N14U/-B1, N16/N16U, N17U, N66U, DSL-AC750). The flaw allows remote authenticated users to read arbitrary files via a crafted DTD in ...

Fedora Update for drupal7-ckeditor FEDORA-2014-14699

Check the version of drupal7-ckeditor SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868496";...