11 matches found
EUVD-2023-51267
Malicious code in bioql PyPI...
CVE-2023-47132
An issue discovered in N-able N-central before 2023.6 and earlier allows attackers to gain escalated privileges via API calls...
CVE-2024-45113
CVE-2024-45113 affects ColdFusion versions 2023.6, 2021.12 and earlier, introducing an Improper Authentication vulnerability that can lead to privilege escalation. An attacker could gain unauthorized access without user interaction, with a network attack vector and no required privileges. The bas...
Adobe ColdFusion 授权问题漏洞
Adobe ColdFusion is a suite of rapid application development platforms from the American company Audobee Adobe. The platform includes an integrated development environment and a scripting language. Adobe ColdFusion 2023.6, prior to version 2021.12 has an authorization issue vulnerability that ste...
CVE-2024-20767
ColdFusion versions 2023.6, 2021.12 and earlier are affected by an Improper Access Control vulnerability that could result in arbitrary file system read. An attacker could leverage this vulnerability to access or modify restricted files. Exploitation of this issue does not require user interactio...
PT-2024-6652 · Adobe · Coldfusion
Name of the Vulnerable Software and Affected Versions: ColdFusion versions 2023.6, 2021.12 and earlier Description: The issue is related to weaknesses in the authentication procedure of the ColdFusion platform. This can be exploited by a remote attacker to gain unauthorized access and escalate...
CVE-2023-47132
An issue discovered in N-able N-central before 2023.6 and earlier allows attackers to gain escalated privileges via API calls...
N-able N-central Security Vulnerabilities
N-able N-central is an RMM platform from N-able, Inc. providing large-scale management, automation and orchestration capabilities for sophisticated MSPs and IT professionals. A security vulnerability exists in N-able N-central version 2023.6 and prior versions, which stems from a vulnerability th...
Mulvad VPN Security Breach
Mulvad VPN is Mulvad's Mulvad VPN client application for desktop and mobile devices. A security vulnerability exists in Mulvad VPN Windows prior to version 2023.6-beta1, which stems from insufficiently restricted directory permissions that allow any local, non-privileged user to escalate...
PT-2023-31553 · Mullvad · Mullvad Vpn Windows App
Name of the Vulnerable Software and Affected Versions: Mullvad VPN Windows app versions prior to 2023.6-beta1 Description: An issue was discovered in the Mullvad VPN Windows app, where insufficient permissions on a directory allow any local unprivileged user to escalate privileges to SYSTEM...
PT-2023-6728 · Open Design Alliance · Open Design Alliance Drawings Sdk
Name of the Vulnerable Software and Affected Versions: Open Design Alliance Drawings SDK versions prior to 2023.6 Description: The issue is related to a heap-based buffer overflow in the parsing of DWG files. This occurs due to a lack of proper validation of the length of user-supplied XRecord da...