Lucene search
K

30 matches found

Circl
Circl
added 2026/06/23 2:6 p.m.4 views

CVE-2018-20841

creationtimestamp| type| source ---|---|--- 2026-06-23 14:06:21+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/b21d7141-02c8-447c-954b-610dc9b2731f 2026-06-30 12:18:56+00:00| exploited|...

10CVSS7.3AI score0.47901EPSS
Exploits1References2
Packet Storm News
Packet Storm News
added 2026/06/08 12:0 a.m.6 views

Windows Notepad WebDAV UNC Reference Markdown File Generator

This Metasploit auxiliary module is a file-format generation tool intended for security testing of a CVE-2026-20841 related to Windows Notepad Markdown handling. It produces a Markdown file containing a UNC WebDAV-style path embedded as a clickable link for behavioral analysis...

7.8CVSS5.8AI score0.1165EPSS
Exploits9
GithubExploit
GithubExploit
added 2026/02/26 5:21 a.m.182 views

Exploit for Command Injection in Microsoft

🛡️ CVE-2026-20841-PoC - Simple Proof of Concept Tool !Downl...

7.8CVSS6.2AI score0.1165EPSS
Exploits9
Packet Storm
Packet Storm
added 2026/02/26 12:0 a.m.133 views

📄 Windows Notepad Markdown Link Code Execution

The Windows Notepad App Microsoft Store version fails to properly validate protocol handlers in markdown links. When a user Ctrl+Click on a crafted link in a .md file, Notepad passes the raw URI to ShellExecuteExW without sufficient filtering. This allows execution of arbitrary binaries in two...

7.8CVSS5.9AI score0.1165EPSS
Exploits9
Tenable Nessus
Tenable Nessus
added 2026/02/11 12:0 a.m.35 views

Microsoft Windows Notepad < 11.2510 Command Injection (February 2026)

The Windows 'Microsoft Windows Notepad' app installed on the remote host is prior to version 11.2510. It is, therefore, affected by a command injection vulnerability: - Improper neutralization of special elements used in a command allows an unauthorized attacker to execute code over a network...

7.8CVSS6.3AI score0.1165EPSS
Exploits9References2
Cvelist
Cvelist
added 2026/02/10 5:51 p.m.24 views

CVE-2026-20841 Windows Notepad App Remote Code Execution Vulnerability

...

7.8CVSS0.1165EPSS
Exploits9References1
ATTACKERKB
ATTACKERKB
added 2026/02/10 5:51 p.m.10 views

CVE-2026-20841

Improper neutralization of special elements used in a command 'command injection' in Windows Notepad App allows an unauthorized attacker to execute code locally...

8.8CVSS5.8AI score0.1165EPSS
Exploits9References2Affected Software1
Kaspersky
Kaspersky
added 2026/02/10 12:0 a.m.5 views

KLA90876 ACE vulnerability in Microsoft Apps

A remote code execution vulnerability was found in Microsoft Apps. Malicious users can exploit this vulnerability to execute arbitrary code, bypass security restrictions. Original advisories CVE-2026-20841 Exploitation Public exploits exist for this vulnerability. Malware exists for this...

7.8CVSS6.5AI score0.1165EPSS
Exploits9References4
RedhatCVE
RedhatCVE
added 2026/01/09 10:8 a.m.14 views

CVE-2019-20841

An issue was discovered in Mattermost Server before 5.18.0, 5.17.2, 5.16.4, 5.15.4, and 5.9.7. CSRF can sometimes occur via a crafted web site for account takeover attacks...

8.8CVSS6.9AI score0.00426EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:37 a.m.19 views

CVE-2024-20841

Improper Handling of Insufficient Privileges in Samsung Account prior to version 14.8.00.3 allows local attackers to access data...

5.5CVSS6.7AI score0.00171EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:6 a.m.5 views

CVE-2023-20841

In imgsys, there is a possible out of bounds write due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07326455; Issue ID: ALPS07326441...

6.5CVSS6.6AI score0.00094EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:17 p.m.6 views

CVE-2021-20841

Improper access control in Management screen of EC-CUBE 2 series 2.11.2 to 2.17.1 allows a remote authenticated attacker to bypass access restriction and to alter System settings via unspecified vectors...

6.5CVSS6.6AI score0.01276EPSS
Exploits1References1
Circl
Circl
added 2024/03/05 6:22 a.m.5 views

CVE-2024-20841

creationtimestamp| type| source ---|---|--- 2024-03-05 06:22:32+00:00| seen| https://t.me/ctinow/199937 2024-03-05 06:27:20+00:00| seen| https://t.me/ctinow/199950...

5.5CVSS6AI score0.00171EPSS
Exploits0References2
NVD
NVD
added 2024/03/05 5:15 a.m.11 views

CVE-2024-20841

Improper Handling of Insufficient Privileges in Samsung Account prior to version 14.8.00.3 allows local attackers to access data...

5.5CVSS5.1AI score0.00171EPSS
Exploits0References1
CVE
CVE
added 2024/03/05 4:44 a.m.53 views

CVE-2024-20841

The CVE-2024-20841 issue affects Samsung Account on Samsung mobile devices, where versions prior to 14.8.00.3 improperly handle privileges, allowing local attackers to access data (confidentiality impact). Root cause: insufficient privilege checks enabling data exposure. Affected: Samsung Account...

5.5CVSS5.1AI score0.00171EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/03/05 4:44 a.m.22 views

CVE-2024-20841

Improper Handling of Insufficient Privileges in Samsung Account prior to version 14.8.00.3 allows local attackers to access data...

5.1CVSS5.4AI score0.00171EPSS
Exploits0References1
OSV
OSV
added 2023/09/04 3:15 a.m.4 views

CVE-2023-20841

In imgsys, there is a possible out of bounds write due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07326455; Issue ID: ALPS07326441...

6.5CVSS5.7AI score
Exploits0References1
CVE
CVE
added 2023/09/04 2:27 a.m.72 views

CVE-2023-20841

CVE-2023-20841 affects imgsys and is described as an out-of-bounds write caused by missing valid range checking, enabling local escalation of privileges with System execution privileges needed. User interaction is required for exploitation. Reported patch ID: ALPS07326455 (Issue ID: ALPS07326441)...

6.5CVSS6.6AI score0.00094EPSS
Exploits0References1Affected Software4
Cvelist
Cvelist
added 2022/08/10 8:10 a.m.32 views

CVE-2022-20841 Cisco Small Business RV Series Routers Vulnerabilities

Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an unauthenticated, remote attacker to execute arbitrary code or cause a denial of service DoS condition on an affected device. For more information about these vulnerabilities, see the...

9CVSS9.7AI score0.02877EPSS
Exploits0References1
Malwarebytes
Malwarebytes
added 2022/08/07 11:14 a.m.39 views

Patch now! Cisco VPN routers are vulnerable to remote control

Cisco has released a security advisory about several vulnerabilities in the Cisco Small Business RV series routers, covering the RV160, RV260, RV340, and RV345. There are no workarounds available that address these vulnerabilities, so you need to patch. Vulnerabilities The vulnerabilities are...

10AI score0.02877EPSS
Exploits0
Rows per page
Query Builder