Lucene search
K

27 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 1:21 a.m.4 views

CVE-2022-21359

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: Optimization Framework. Supported versions that are affected are 8.57, 8.58 and 8.59. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSo...

6.1CVSS6.2AI score0.00825EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/13 7:25 p.m.8 views

CVE-2025-21359

Windows Kernel Security Feature Bypass Vulnerability...

7.8CVSS6.7AI score0.00526EPSS
Exploits0References3
OSV
OSV
added 2025/02/11 6:15 p.m.2 views

CVE-2025-21359

Windows Kernel Security Feature Bypass Vulnerability...

7.8CVSS7.3AI score0.00526EPSS
Exploits0References1
Circl
Circl
added 2025/02/11 6:8 p.m.5 views

CVE-2025-21359

creationtimestamp| type| source ---|---|--- 2025-02-11 18:08:38+00:00| seen| https://www.thezdi.com/blog/2025/2/11/the-february-2025-security-update-review 2025-02-11 18:17:32+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhwbfddpt52d 2025-02-11 19:34:19+00:00| seen|...

7.8CVSS8.5AI score0.00526EPSS
Exploits0References4
OSV
OSV
added 2024/03/06 11:10 a.m.12 views

BIT-TYPO3-2022-23500

TYPO3 is an open source PHP based web content management system. In versions prior to 9.5.38, 10.4.33, 11.5.20, and 12.1.1, requesting invalid or non-existing resources via HTTP triggers the page error handler, which again could retrieve content to be shown as an error message from another page...

7.5CVSS6.3AI score0.00686EPSS
Exploits0References1
Circl
Circl
added 2024/02/13 7:31 p.m.3 views

CVE-2024-21359

creationtimestamp| type| source ---|---|--- 2024-02-13 19:31:42+00:00| seen| https://t.me/ctinow/184072...

8.8CVSS8.5AI score0.01644EPSS
Exploits0References1
NVD
NVD
added 2024/02/13 6:15 p.m.20 views

CVE-2024-21359

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability...

8.8CVSS9AI score0.01644EPSS
Exploits0References1
CVE
CVE
added 2024/02/13 6:2 p.m.253 views

CVE-2024-21359

Technical details for CVE-2024-21359 are not provided in the connected documents. The available data only references a WDAC OLE DB provider RCE vulnerability. Monitor for official advisories to learn affected products, impact, and remediation.

8.8CVSS9.2AI score0.01644EPSS
Exploits0References1Affected Software14
Cvelist
Cvelist
added 2024/02/13 6:2 p.m.25 views

CVE-2024-21359 Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

...

8.8CVSS8.8AI score0.01644EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/02/13 12:0 a.m.194 views

KB5034819: Windows Server 2012 R2 Security Update (February 2024)

The remote Windows host is missing security update 5034819. It is, therefore, affected by multiple vulnerabilities - Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability CVE-2024-21350, CVE-2024-21352, CVE-2024-21358, CVE-2024-21359, CVE-2024-21360, CVE-2024-21361,...

8.8CVSS7.4AI score0.99995EPSS
Exploits0References35
Kaspersky
Kaspersky
added 2024/02/13 12:0 a.m.141 views

KLA63958 Multiple vulnerabilities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, obtain sensitive information, gain privileges, spoof user interface, bypass security restrictions. Below is a complete list of...

8.8CVSS9.7AI score0.99995EPSS
Exploits15References60
Tenable Nessus
Tenable Nessus
added 2024/02/13 12:0 a.m.39 views

KB5034763: Windows 10 Version 21H2 / Windows 10 Version 22H2 Security Update (February 2024)

The remote Windows host is missing security update 5034763. It is, therefore, affected by multiple vulnerabilities - Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability CVE-2024-21350, CVE-2024-21352, CVE-2024-21358, CVE-2024-21359, CVE-2024-21360, CVE-2024-21361,...

8.8CVSS7.5AI score0.95443EPSS
Exploits15References39
Circl
Circl
added 2023/10/30 7:20 p.m.10 views

CVE-2023-21359

creationtimestamp| type| source ---|---|--- 2023-10-30 19:20:00+00:00| seen| https://t.me/cibsecurity/73153 2025-08-11 00:28:53+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lw3k2uzfddv2...

4.4CVSS4.7AI score0.00085EPSS
Exploits0References2
NVD
NVD
added 2023/10/30 5:15 p.m.16 views

CVE-2023-21359

In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure in the Bluetooth server with System execution privileges needed. User interaction is not needed for exploitation...

4.4CVSS4.4AI score0.00085EPSS
Exploits0References1
CVE
CVE
added 2023/10/30 4:56 p.m.51 views

CVE-2023-21359

CVE-2023-21359 concerns Bluetooth: an out-of-bounds read due to a missing bounds check could disclose local information via the Bluetooth server. Exploitation requires SYSTEM privileges; no user interaction. Documented in NVD/Red Hat/CNVD entries and Android 14 notes corroborate a Bluetooth infor...

4.4CVSS5AI score0.00085EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2022/12/13 5:2 p.m.25 views

GHSA-8C28-5MP7-V24H TYPO3 CMS vulnerable to Denial of Service in Page Error Handling

Problem Requesting invalid or non-existing resources via HTTP triggers the page error handler, which again could retrieve content to be shown as an error message from another page. This leads to a scenario in which the application is calling itself recursively - amplifying the impact of the initi...

5.9CVSS6.3AI score0.00686EPSS
Exploits0References7
OSV
OSV
added 2022/09/16 5:16 p.m.47 views

GHSA-FFFR-7X4X-F98Q TYPO3 CMS vulnerable to Denial of Service in Page Error Handling

Meta CVSS: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:F/RL:O/RC:C 5.5 Problem Requesting invalid or non-existing resources via HTTP triggers the page error handler which again could retrieve content to be shown as an error message from another page. This leads to a scenario in which the...

5.9CVSS6.4AI score0.01312EPSS
Exploits0References8
Github Security Blog
Github Security Blog
added 2022/09/16 5:16 p.m.22 views

TYPO3 CMS vulnerable to Denial of Service in Page Error Handling

Meta CVSS: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:F/RL:O/RC:C 5.5 Problem Requesting invalid or non-existing resources via HTTP triggers the page error handler which again could retrieve content to be shown as an error message from another page. This leads to a scenario in which the...

7.5CVSS7.4AI score0.01312EPSS
Exploits0References8Affected Software2
NCSC
NCSC
added 2022/09/13 12:0 a.m.60 views

Vulnerabilities fixed in TYPO3

The Typo3 Association has fixed vulnerabilities in the Core software of the TYPO3 Content Management System. A malicious person could exploit the vulnerabilities to cause a denial-of-service cause, gain access to system information, or launch Perform Cross-Site-Scripting XSS attacks. The...

7.5CVSS6.8AI score0.01731EPSS
Exploits0
Circl
Circl
added 2022/01/19 2:41 p.m.4 views

CVE-2022-21359

creationtimestamp| type| source ---|---|--- 2022-01-19 14:41:52+00:00| seen| https://t.me/cibsecurity/35852...

6.1CVSS7.1AI score0.00825EPSS
Exploits0References1
Rows per page
Query Builder