CVE-2026-24506

creationtimestamp| type| source ---|---|--- 2026-04-20 21:21:58+00:00| seen| Telegram/itZIvBa41gHmxLOZ4e3ooVdAvJm4yIE4KZd9P4HVJMq4o...

CVE-2020-24506

Out of bound read in a subsystem in the IntelR CSME versions before 12.0.81, 13.0.47, 13.30.17, 14.1.53 and 14.5.32 may allow a privileged user to potentially enable information disclosure via local access...

CVE-2025-24506

A specific authentication strategy allows to learn ids of PAM users associated with certain authentication types...

CVE-2025-24506

creationtimestamp| type| source ---|---|--- 2025-01-30 18:44:13+00:00| seen| https://infosec.exchange/users/cve/statuses/113918781212390614 2025-01-30 22:38:24+00:00| seen| https://t.me/cvedetector/16825 2025-02-06 02:43:28+00:00| seen| Telegram/8kE5fbDq8HNI7lITrdEQck1wFy7hOLsVqS0iQZr7gNJ3IPSI...

CVE-2025-24506

A specific authentication strategy allows to learn ids of PAM users associated with certain authentication types...

CVE-2025-24506

A specific authentication strategy allows to learn ids of PAM users associated with certain authentication types...

CVE-2024-11796

Fuji Electric Monitouch V-SFT V9C File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fuji Electric Monitouch V-SFT. User interaction is required to exploit this vulnerability in th...

CVE-2024-11796 Fuji Electric Monitouch V-SFT V9C File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

Fuji Electric Monitouch V-SFT V9C File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fuji Electric Monitouch V-SFT. User interaction is required to exploit this vulnerability in th...

CVE-2024-11796

Fuji Electric Monitouch V-SFT is affected by an out-of-bounds write in V9C file parsing that can lead to remote code execution. The flaw stems from insufficient validation of user-supplied data, enabling an attacker to write past the end of a buffer and execute code in the context of the vulnerab...

CVE-2024-24506

Cross Site Scripting XSS vulnerability in Lime Survey Community Edition Version v.5.3.32+220817, allows remote attackers to execute arbitrary code via the Administrator email address parameter in the General Setting function...

CVE-2024-24506

Cross Site Scripting XSS vulnerability in Lime Survey Community Edition Version v.5.3.32+220817, allows remote attackers to execute arbitrary code via the Administrator email address parameter in the General Setting function...

CVE-2024-24506

LimeSurvey Community Edition 5.3.32+220817 contains a Cross-Site Scripting (XSS) vulnerability in the General Setting function via the Administrator email address parameter. Exploitation can allow remote execution of scripts in a victim’s browser, potentially enabling session/cookie theft or cred...

CVE-2023-24506

Milesight NCR/camera version 71.8.0.6-r5 exposes credentials through an unspecified request...

CVE-2023-24506

CVE-2023-24506 affects Milesight NCR/camera version 71.8.0.6-r5. Multiple connected sources confirm that credentials are exposed via an unspecified request, leading to a potential confidentiality impact. The CVE has a base score of 7.5 (HIGH) with network attack vector and no user interaction req...

CVE-2023-24506 Milesight NCR/Camera CWE-522: Insufficiently Protected Credentials

Milesight NCR/camera version 71.8.0.6-r5 exposes credentials through an unspecified request...

CVE-2023-24506 Milesight NCR/Camera CWE-522: Insufficiently Protected Credentials

Milesight NCR/camera version 71.8.0.6-r5 exposes credentials through an unspecified request...

Intel CSME, SPS, and LMS Advisory - Lenovo Support US

No description provided...

Security Updates for Microsoft Azure Site Recovery (March 2022)

The Microsoft Azure Site Recovery installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands...

2021.1 IPU – Intel® CSME, SPS and LMS Advisory

Summary: Potential security vulnerabilities in the Intel® Converged Security and Manageability Engine CSME, Server Platform Services SPS, and Intel® Local Manageability Service Intel® LMS may allow escalation of privilege or information disclosure. Intel is releasing firmware and software updates...

CVE-2022-24506

creationtimestamp| type| source ---|---|--- 2022-03-09 20:18:20+00:00| seen| https://t.me/cibsecurity/38613...