CVE-2026-33785

A Missing Authorization vulnerability in the CLI of Juniper Networks Junos OS on MX Series allows a local, authenticated user with low privileges to execute specific commands which will lead to a complete compromise of managed devices. Any user logged in, without requiring specific privileges, ca...

EUVD-2025-198222

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in opentext uCMDB allows Stored XSS. The vulnerability could allow an attacker has high level access to UCMDB to create or update data with malicious scripts This issue affects uCMDB: 24.4...

PT-2025-47533

Name of the Vulnerable Software and Affected Versions opentext uCMDB version 24.4 Description A flaw exists in opentext uCMDB that allows for Stored Cross-site Scripting XSS. An attacker with high-level access to uCMDB can create or update data containing malicious scripts. The vulnerability aris...

CVE-2025-60006

Multiple instances of an Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in the CLI of Juniper Networks Junos OS Evolved could be used to elevate privileges and/or execute unauthorized commands. When an attacker executes crafted CLI commands,...

CVE-2025-60006 Junos OS Evolved: OS command injection vulnerabilities fixed

Multiple instances of an Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in the CLI of Juniper Networks Junos OS Evolved could be used to elevate privileges and/or execute unauthorized commands. When an attacker executes crafted CLI commands,...

CVE-2025-59964

A Use of Uninitialized Resource vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS on SRX4700 devices allows an unauthenticated, network-based attacker to cause a Denial of Service DoS. When forwarding-options sampling is enabled, receipt of any traffic destined to the...

Juniper Networks Junos OS SRX 安全漏洞

Juniper Networks Junos OS SRX is a Juniper Networks USA network operating system dedicated to the company's hardware devices. The operating system provides a secure programming interface and the Junos SDK. A security vulnerability exists in Juniper Networks Junos OS SRX version 24.4 up to and...

EUVD-2025-13929

Malicious code in bioql PyPI...

CVE-2025-3476

CVE-2025-3476 targets OpenText Operations Bridge Manager with an Incorrect Authorization flaw that could allow privilege escalation by authenticated users. Affected versions include 2023.05, 23.4, 24.2, and 24.4. Root cause and impact: improper authorization controls enable elevated access for an...

OpenText Operations Bridge Manager 安全漏洞

OpenText Operations Bridge Manager is an enterprise activity and performance management software from OpenText Canada. A security vulnerability exists in OpenText Operations Bridge Manager versions 24.2 and 24.4, which stems from improper authorization and could result in an authenticated user...

OpenText Digital Asset Management SQL注入漏洞

OpenText Digital Asset Management is a Digital Asset Management DAM solution from OpenText Canada that helps organizations centrally manage, organize and distribute digital assets. An SQL injection vulnerability exists in OpenText Digital Asset Management version 24.4 and earlier, which stems fro...

OpenText Content Server 安全漏洞

OpenText Content Server is an enterprise content management software from OpenText Canada. A security vulnerability exists in OpenText Content Server versions 20.2 through 24.4, which stems from improper authorization of the REST API and could result in an unprivileged user deleting external...

PT-2025-3697 · Opentext · Opentext Content Management

Name of the Vulnerable Software and Affected Versions: OpenText Content Management Extended ECM versions 10.0 through 24.4 Description: The issue is related to improper validation of specified input types, allowing parameter injection. An actor with necessary privileges could exploit this to carr...

CVE-2024-10923

OpenText ALM Octane Management is affected (versions 16.2.100 through 24.4) by a Stored XSS flaw due to improper neutralization of input during web page generation. The issue could lead to remote code execution. Root cause is improper input handling in the web page generation path; CVSS suggests ...

OpenText ALM Octane 安全漏洞

OpenText ALM Octane is a quality management software from OpenText Canada. It includes integration planning, continuous integration, test management and release management. A security vulnerability exists in OpenText ALM Octane versions 16.2.100 through 24.4, which stems from the presence of a...

Security Updates for Microsoft Dynamics 365 Business Central (September 2024)

The Microsoft Dynamics 365 Business Central install is missing security updates. It is, therefore, affected by a privilege escalation vulnerability. An authenticated, remote attacker can exploit this to gain privileged or administrator access to the system. Note that Nessus has not attempted to...

Mozilla Firefox ESR < 24.4 Multiple Vulnerabilities

Binary data 701243.prm...

CVE-2014-9483

Emacs 24.4 allows remote attackers to bypass security restrictions...

Security feature bypass

Emacs 24.4 allows remote attackers to bypass security restrictions...

UBUNTU-CVE-2014-9483

Emacs 24.4 allows remote attackers to bypass security restrictions...