Lucene search
K

98 matches found

RedhatCVE
RedhatCVE
added 2026/03/26 3:10 p.m.4 views

CVE-2026-1715

An input validation vulnerability was reported in the DeviceSettingsSystemAddin used in Lenovo Vantage and Lenovo Baiying that could allow a local authenticated user to modify arbitrary registry keys with elevated privileges...

7.1CVSS5.9AI score0.00148EPSS
Exploits0References1
Circl
Circl
added 2026/03/25 9:40 p.m.4 views

CVE-2026-1715

creationtimestamp| type| source ---|---|--- 2026-03-25 21:40:09+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mhw2idsajd2u...

7.1CVSS5.8AI score0.00148EPSS
Exploits0References1
CVE
CVE
added 2026/03/11 8:22 p.m.11 views

CVE-2026-1715

CVE-2026-1715 describes an input-validation vulnerability in the Lenovo ecosystem involving the DeviceSettingsSystemAddin used by Lenovo Vantage and Lenovo Baiying. The issue allows a local authenticated user to modify arbitrary registry keys with elevated privileges, indicating a failure in vali...

7.1CVSS5.9AI score0.00148EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/02/03 12:0 a.m.6 views

AlmaLinux 10 : golang-github-openprinting-ipp-usb (ALSA-2026:1715)

The remote AlmaLinux 10 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2026:1715 advisory. crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate CVE-2025-61729 Tenable has extracted the preceding descriptio...

7.5CVSS7.2AI score0.00459EPSS
Exploits2References3
EUVD
EUVD
added 2026/01/09 12:0 a.m.5 views

EUVD-2026-1715

In TIM BPM Suite/ TIM FLOW through 9.1.2 multiple Authorization Bypass vulnerabilities exists which allow a low privileged user to download password hashes of other user, access work items of other user, modify restricted content in workflows, modify the applications logo and manipulate the profi...

5.4CVSS6.5AI score0.00195EPSS
Exploits0References4
CNVD
CNVD
added 2025/10/17 12:0 a.m.3 views

Rockwell Automation 1715-AENTR EtherNet/IP Adapter Denial of Service Vulnerability (CNVD-2025-24581)

The Rockwell Automation 1715-AENTR EtherNet/IP Adapter is a redundant Ethernet adapter module from Rockwell Automation. A denial of service vulnerability exists in the Rockwell Automation 1715-AENTR EtherNet/IP Adapter, which can be exploited by an attacker to cause a web server to crash...

7.7CVSS6.8AI score0.00303EPSS
Exploits0References1
CNVD
CNVD
added 2025/10/17 12:0 a.m.4 views

Rockwell Automation 1715-AENTR EtherNet/IP Adapter Denial of Service Vulnerability

The Rockwell Automation 1715-AENTR EtherNet/IP Adapter is a redundant Ethernet adapter module from Rockwell Automation. A denial of service vulnerability exists in the Rockwell Automation 1715-AENTR EtherNet/IP Adapter, which stems from improper handling of specially crafted payloads by CIP...

7.7CVSS6.8AI score0.00293EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/14 12:51 p.m.5 views

CVE-2025-9178 Rockwell Automation 1715 EtherNet/IP Comms Module Denial-Of-Service Vulnerability

A denial-of-service security issue exists in the affected product and version. The security issue is caused through CIP communication using crafted payloads. The security issue could result in no CIP communication with 1715 EtherNet/IP Adapter.A restart is required to recover...

7.7CVSS0.00293EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/14 12:48 p.m.7 views

CVE-2025-9177 Rockwell Automation 1715 EtherNet/IP Comms Module Denial-Of-Service Vulnerability

A denial-of-service security issue exists in the affected product and version. The security issue stems from a high number of requests sent to the web server. This could result in a web server crash however; this does not impact I/O control or communication . A power cycle is required to recover...

7.7CVSS0.00303EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/14 12:48 p.m.4 views

CVE-2025-9177 Rockwell Automation 1715 EtherNet/IP Comms Module Denial-Of-Service Vulnerability

A denial-of-service security issue exists in the affected product and version. The security issue stems from a high number of requests sent to the web server. This could result in a web server crash however; this does not impact I/O control or communication . A power cycle is required to recover...

7.7CVSS6.2AI score0.00303EPSS
Exploits0References1
ICS
ICS
added 2025/10/14 6:0 a.m.6 views

Rockwell Automation 1715 EtherNet/IP Comms Module

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to cause the web server to crash, requiring a restart to recover. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities, such...

6.6AI score
Exploits0References13
RedhatCVE
RedhatCVE
added 2025/05/23 7:50 a.m.6 views

CVE-2024-20113

In ccu, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09036814; Issue ID: MSV-1715...

6.7CVSS7.2AI score0.00079EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:4 a.m.7 views

CVE-2023-1715

A logic error when using mbstrpos to check for potential XSS payload in Bitrix24 22.0.300 allows attackers to bypass XSS sanitisation via placing HTML tags at the begining of the payload...

9CVSS6AI score0.00594EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:30 a.m.13 views

CVE-2016-1715

The swin.sys kernel driver in McAfee Application Control MAC 6.1.0 before build 706, 6.1.1 before build 404, 6.1.2 before build 449, 6.1.3 before build 441, and 6.2.0 before build 505 on 32-bit Windows platforms allows local users to cause a denial of service memory corruption and system crash or...

6.6CVSS7AI score0.02314EPSS
Exploits0References1
NVD
NVD
added 2024/11/04 2:15 a.m.11 views

CVE-2024-20113

In ccu, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09036814; Issue ID: MSV-1715...

6.7CVSS0.00079EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/04 1:48 a.m.11 views

CVE-2024-20113

In ccu, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09036814; Issue ID: MSV-1715...

0.00079EPSS
Exploits0References1
CVE
CVE
added 2024/11/04 1:48 a.m.40 views

CVE-2024-20113

The CVE-2024-20113 entry concerns the MediaTek chipset component “ccu,” where a missing bounds check can cause an out-of-bounds write. This leads to local privilege escalation with SYSTEM execution privileges required, and no user interaction is needed for exploitation. Multiple connected sources...

6.7CVSS7.2AI score0.00079EPSS
Exploits0References1Affected Software1
Circl
Circl
added 2024/08/01 7:3 a.m.4 views

CVE-2024-1715

creationtimestamp| type| source ---|---|--- 2024-08-01 07:03:41+00:00| seen| https://t.me/cvedetector/2207...

4.8AI score
Exploits0References1
Circl
Circl
added 2023/11/04 5:44 p.m.4 views

CVE-2023-1715

creationtimestamp| type| source ---|---|--- 2023-11-04 17:44:37+00:00| seen| Telegram/993IQTAEI9abMkOWl8mkHJFNRp2-d18TbGN-UxF0pN3nA 2023-11-04 22:44:13+00:00| seen| https://t.me/poxek/3380 2023-11-04 23:56:08+00:00| seen| https://t.me/bhcat/192 2023-11-06 16:50:46+00:00| published-proof-of-concep...

9CVSS5.5AI score0.00594EPSS
Exploits1References3
NVD
NVD
added 2023/11/01 10:15 a.m.17 views

CVE-2023-1715

A logic error when using mbstrpos to check for potential XSS payload in Bitrix24 22.0.300 allows attackers to bypass XSS sanitisation via placing HTML tags at the begining of the payload...

9CVSS8.9AI score0.00594EPSS
Exploits1References1
Rows per page
Query Builder