CVE-2026-39312

SoftEtherVPN is a an open-source cross-platform multi-protocol VPN Program. In 5.2.5188 and earlier, a pre-authentication denial-of-service vulnerability exists in SoftEther VPN Developer Edition 5.2.5188 and likely earlier versions of Developer Edition. An unauthenticated remote attacker can cra...

Amazon Linux 2023 : socat (ALAS2023-2026-1701)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1701 advisory. readline.sh in socat through 1.8.0.1 relies on the /tmp/$USER/stderr2 file. CVE-2024-54661 Tenable has extracted the preceding description block directly from the tested product security advisory. Note...

EUVD-2026-19804

SoftEtherVPN is a an open-source cross-platform multi-protocol VPN Program. In 5.2.5188 and earlier, a pre-authentication denial-of-service vulnerability exists in SoftEther VPN Developer Edition 5.2.5188 and likely earlier versions of Developer Edition. An unauthenticated remote attacker can cra...

CVE-2026-1701

creationtimestamp| type| source ---|---|--- 2026-01-30 19:17:59+00:00| seen| Telegram/xCNGj1TTbKvLiecfleQbdSYCUg38GbVRhl26GliyFWoGt0...

CVE-2026-1701 itsourcecode School Management System index.php sql injection

A security vulnerability has been detected in itsourcecode School Management System 1.0. This issue affects some unknown processing of the file /enrollment/index.php. Such manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

CVE-2026-1701

A security vulnerability has been detected in itsourcecode School Management System 1.0. This issue affects some unknown processing of the file /enrollment/index.php. Such manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

MiracleLinux 7 : java-1.8.0-openjdk-1.8.0.292.b10-1.el7 (AXSA:2021-1701:06)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1701:06 advisory. OpenJDK: Incomplete enforcement of JAR signing disabled algorithms 8249906 CVE-2021-2163 Tenable has extracted the preceding description block directly from...

MiracleLinux 4 : firefox-52.2.0-1.0.1.AXS4 (AXSA:2017-1701:03)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2017-1701:03 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. Security issues fixed with this...

CVE-2025-1701

CVE-2025-1701 is a high-severity vulnerability in the MIM Admin service. An attacker could exploit this vulnerability by sending a specially crafted request over the RMI interface to execute arbitrary code with the privileges of the MIM Admin service. The RMI interface is only accessible locally...

ECHO-1701-B5DF-A98D

Bulletin has no description...

CVE-2025-1701

creationtimestamp| type| source ---|---|--- 2025-06-04 13:34:39+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114625352750029021 2025-06-04 14:21:03+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqrytobufog2 2025-06-04...

CVE-2025-1701 Local Privilege Escalation in MIM Admin Service

CVE-2025-1701 is a high-severity vulnerability in the MIM Admin service. An attacker could exploit this vulnerability by sending a specially crafted request over the RMI interface to execute arbitrary code with the privileges of the MIM Admin service. The RMI interface is only accessible locally...

CVE-2025-1701 Local Privilege Escalation in MIM Admin Service

CVE-2025-1701 is a high-severity vulnerability in the MIM Admin service. An attacker could exploit this vulnerability by sending a specially crafted request over the RMI interface to execute arbitrary code with the privileges of the MIM Admin service. The RMI interface is only accessible locally...

CVE-2025-1701

CVE-2025-1701 affects MIM Admin Service prior to 7.2.13, 7.3.8, or 7.4.3. The issue allows a local attacker with access to the RMI interface (bound to 127.0.0.1) to send a specially crafted request and execute arbitrary code with the privileges of the MIM Admin service. The RMI surface is locally...

CVE-2024-20091

In vdec, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09028313; Issue ID: MSV-1701...

CVE-2024-1701

A vulnerability has been found in keerti1924 PHP-MYSQL-User-Login-System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /edit.php. The manipulation leads to improper access controls. The attack can be launched remotely. The exploit has been...

CVE-2024-1701

creationtimestamp| type| source ---|---|--- 2024-02-21 17:22:09+00:00| seen| https://t.me/ctinow/189796 2024-02-21 17:31:29+00:00| seen| https://t.me/ctinow/189810 2024-03-13 08:36:33+00:00| seen| https://t.me/ctinow/206458 2025-02-12 17:08:02+00:00| published-proof-of-concept|...

CVE-2024-1701 keerti1924 PHP-MYSQL-User-Login-System edit.php access control

A vulnerability has been found in keerti1924 PHP-MYSQL-User-Login-System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /edit.php. The manipulation leads to improper access controls. The attack can be launched remotely. The exploit has been...

CVE-2024-1701

CVE-2024-1701 affects keerti1924’s PHP-MYSQL-User-Login-System v1.0, with the vulnerability isolated to an issue in the /edit.php file that enables improper access controls. The attack is described as remote; the exploit has been disclosed publicly. Connected sources confirm the root cause relate...

MAL-2024-324 Malicious code in wlwz-2312-1701 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a53b4538379b28ed2c7789109e99e83b3d378994d19c2a99746614212434f89e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...