Lucene search
K

19 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 8:48 a.m.7 views

CVE-2024-21861

Uncontrolled search path in some IntelR GPA Framework software before version 2023.4 may allow an authenticated user to potentially enable escalation of privilege via local access...

7.8CVSS7AI score0.00178EPSS
Exploits0References1
NCSC
NCSC
added 2025/05/14 8:16 a.m.9 views

Vulnerability fixed in Ivanti Neurons for ITSM

Ivanti has fixed a vulnerability in Ivanti Neurons On-prem for ITSM Versions for 2023.4, 2024.2, and 2024.3 The vulnerability involves a critical authentication bypass that allows remote, unauthenticated attackers to gain administrative access. This could lead to unauthorized actions within the...

9.8CVSS9.4AI score0.01871EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/05/13 12:0 a.m.4 views

PT-2025-20908 · Ivanti · Ivanti Neurons For Itsm

Name of the Vulnerable Software and Affected Versions: Ivanti Neurons for ITSM versions prior to 2023.4 Ivanti Neurons for ITSM versions 2024.2 Ivanti Neurons for ITSM versions 2024.3 Description: An authentication bypass in Ivanti Neurons for ITSM allows a remote unauthenticated attacker to gain...

9.8CVSS9.8AI score0.01871EPSS
Exploits0References17
OSV
OSV
added 2024/08/13 7:15 p.m.4 views

CVE-2024-7569

An information disclosure vulnerability in Ivanti ITSM on-prem and Neurons for ITSM versions 2023.4 and earlier allows an unauthenticated attacker to obtain the OIDC client secret via debug information...

9.8CVSS7.3AI score0.01639EPSS
Exploits0References1
Kitploit
Kitploit
added 2024/05/31 12:30 p.m.78 views

Ars0N-Framework - A Modern Framework For Bug Bounty Hunting

Howdy! My name is Harrison Richardson, or rs0n arson when I want to feel cooler than I really am. The code in this repository started as a small collection of scripts to help automate many of the common Bug Bounty hunting processes I found myself repeating. Over time, I built a simple web...

7AI score
Exploits0References4
OSV
OSV
added 2024/05/16 9:16 p.m.4 views

CVE-2024-21861

Uncontrolled search path in some IntelR GPA Framework software before version 2023.4 may allow an authenticated user to potentially enable escalation of privilege via local access...

7.8CVSS5.8AI score0.00178EPSS
Exploits0References1
OSV
OSV
added 2024/05/16 9:16 p.m.5 views

CVE-2024-21788

Uncontrolled search path in some IntelR GPA software before version 2023.4 may allow an authenticated user to potentially enable escalation of privilege via local access...

7.8CVSS5.8AI score0.00191EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/05/16 12:0 a.m.3 views

Intel Graphics Performance Analyzers 安全漏洞

Intel Graphics Performance Analyzers Intel GPA is a graphics performance analyzer from Intel Corporation USA. A security vulnerability previously existed in Intel Graphics Performance Analyzers version 2023.4, which stemmed from the presence of an uncontrolled search path issue. It could allow an...

7.8CVSS6.6AI score0.00178EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/05/16 12:0 a.m.4 views

Intel Graphics Performance Analyzers 安全漏洞

Intel Graphics Performance Analyzers Intel GPA is a graphics performance analyzer from Intel Corporation USA. A security vulnerability previously existed in Intel Graphics Performance Analyzers version 2023.4, which stemmed from the presence of an uncontrolled search path issue. It could allow an...

7.8CVSS6.6AI score0.00191EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2024/05/14 12:0 a.m.3 views

VulnCheck KEV: CVE-2023-46808

An file upload vulnerability in Ivanti ITSM before 2023.4, allows an authenticated remote user to perform file writes to the server. Successful exploitation may lead to execution of commands in the context of non-root user...

9.9CVSS6AI score0.02001EPSS
Exploits0References1
Intel
Intel
added 2024/05/14 12:0 a.m.11 views

Intel® GPA Framework Software Advisory

Summary: Potential security vulnerabilities in some Intel® Graphics Performance Analyzers GPA and Intel® GPA Framework software may allow escalation of privilege. Intel is releasing software updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2024-21861...

7.8CVSS7.3AI score0.00191EPSS
Exploits0
OSV
OSV
added 2024/03/31 2:15 a.m.5 views

CVE-2023-46808

An file upload vulnerability in Ivanti ITSM before 2023.4, allows an authenticated remote user to perform file writes to the server. Successful exploitation may lead to execution of commands in the context of non-root user...

9.9CVSS5.9AI score0.02001EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/03/20 12:0 a.m.3 views

PT-2024-2363 · Ivanti · Ivanti Itsm

Name of the Vulnerable Software and Affected Versions: Ivanti ITSM versions prior to 2023.4 Description: The issue is related to an file upload vulnerability, which allows an authenticated remote user to perform file writes to the server. This can lead to the execution of commands in the context ...

9.9CVSS9.8AI score0.12844EPSS
Exploits0References16
Tenable Nessus
Tenable Nessus
added 2024/02/08 12:0 a.m.40 views

SolarWinds Platform 2023.4.0 < 2024.1 Multiple Vulnerabilities SQLI

The version of SolarWinds Platform installed on the remote host is prior to 2024.1. It is, therefore, affected by multiple vulnerabilities as referenced in the solarwindsplatform20241 advisory. - SQL Injection Remote Code Execution Vulnerability was found using a create statement in the SolarWind...

8CVSS8.4AI score0.01578EPSS
Exploits0References4
HackRead
HackRead
added 2023/12/06 7:20 p.m.14 views

Kali Linux 2023.4 is Out: Cloud ARM64, Hyper-V, Pi 5, & More!

By Waqas Kali Linux Unveils Feature Rich 2023.4 Release with Cloud ARM64, Vagrant Hyper-V, Raspberry Pi 5, and More! This is a post from HackRead.com Read the original post: Kali Linux 2023.4 is Out: Cloud ARM64, Hyper-V, Pi 5, & More!...

7.3AI score
Exploits0
NCSC
NCSC
added 2023/11/07 12:0 a.m.4 views

Vulnerabilities fixed in SolarWinds Platform and Network Configuration Manager

SolarWinds has fixed vulnerabilities in SolarWinds Platform and Network Configuration Manager. A malicious party could exploit the vulnerabilities to gain access to system data or execute arbitrary code, possibly with SYSTEM privileges. SolarWinds has released updates to fix the vulnerabilities...

8.8CVSS7.7AI score0.02729EPSS
Exploits0
CNNVD
CNNVD
added 2023/11/03 12:0 a.m.5 views

Ivanti Automation Security Breach

Ivanti Automation is an application from Ivanti USA. It simplifies the management of complex hybrid environments by automating infrastructure, cloud and workspace automation. A security vulnerability exists in Ivanti Automation versions prior to 2023.4 that stems from insecure inter-process...

8.8CVSS6.8AI score0.00761EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/11/01 12:0 a.m.9 views

PT-2023-27244 · Solarwinds · Solarwinds Platform

Name of the Vulnerable Software and Affected Versions: SolarWinds Platform version 2023.4 Description: The issue is related to an insecure job execution mechanism, which can lead to other attacks. This vulnerability may result in Denial of Service DoS or Cross-Site Scripting XSS attacks...

8.8CVSS7.8AI score0.00419EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2023/08/04 12:15 a.m.4 views

CVE-2023-30297

An issue found in N-able Technologies N-central Server before 2023.4 allows a local attacker to execute arbitrary code via the monitoring function of the server...

7CVSS7.3AI score0.00167EPSS
Exploits0References3
Rows per page
Query Builder