CVE-2022-26374

Uncontrolled search path in the installation binaries for IntelR SEAPI all versions may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2025-26374

A CWE-862 "Missing Authorization" in maxprofile/users/routes.lua users endpoint in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated low-privileged attacker to enumerate users via crafted HTTP requests...

CVE-2025-26374

creationtimestamp| type| source ---|---|--- 2025-02-12 16:02:46+00:00| seen| https://t.me/cvedetector/17870 2025-02-12 16:05:58+00:00| seen| https://infosec.exchange/users/cve/statuses/113991769016516633...

CVE-2025-26374

A CWE-862 "Missing Authorization" in maxprofile/users/routes.lua users endpoint in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated low-privileged attacker to enumerate users via crafted HTTP requests...

CVE-2025-26374

A CWE-862 "Missing Authorization" in maxprofile/users/routes.lua users endpoint in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated low-privileged attacker to enumerate users via crafted HTTP requests...

CVE-2025-26374

CVE-2025-26374 affects Q-Free MaxTime ≤ 2.11.0. The issue is CWE-862 Missing Authorization in maxprofile/users/routes.lua, enabling an authenticated low-priv attacker to enumerate users via crafted HTTP requests. Impact: potential disclosure of user identities; mitigation/patch details are not pr...

CVE-2023-26374

Adobe Dimension 3.4.8 and earlier is affected by an out-of-bounds read vulnerability (CVE-2023-26374) that can disclose sensitive memory and bypass ASLR. Exploitation requires user interaction (victim must open a malicious file). The issue is documented across multiple sources (NVD/NCSC/CNVD/CVEL...

Adobe Dimension < 3.4.9 Multiple Vulnerabilities (APSB23-27) (macOS)

The version of Adobe Dimension installed on the remote macOS host is prior to 3.4.9. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB23-27 advisory. - Adobe Dimension version 3.4.8 and earlier is affected by an out-of-bounds write vulnerability that could result in...

Adobe Dimension < 3.4.9 Multiple Vulnerabilities (APSB23-27)

The version of Adobe Dimension installed on the remote Windows host is prior to 3.4.9. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB23-27 advisory. - Adobe Dimension version 3.4.8 and earlier is affected by an out-of-bounds write vulnerability that could result ...

Intel® SEAPI Advisory

Summary: A potential security vulnerability in the Intel® Single Event API SEAPI software may allow escalation of privilege. Intel is not releasing updates to mitigate this potential vulnerability and has issued a Product Discontinuation Notice for the Intel® SEAPI software. Vulnerability Details...

CVE-2021-26374

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none...

CVE-2022-26374

creationtimestamp| type| source ---|---|--- 2022-08-19 00:22:42+00:00| seen| https://t.me/cibsecurity/48399 2025-02-25 17:23:19+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/5335...

CVE-2022-26374

CVE-2022-26374 concerns Intel’s SEAPI: “Uncontrolled search path in the installation binaries” could permit an authenticated user to escalate privileges locally. Affected: Intel SEAPI binaries across all versions. Root cause: installation binaries load from an uncontrolled search path, enabling p...

CVE-2022-26374

Uncontrolled search path in the installation binaries for IntelR SEAPI all versions may allow an authenticated user to potentially enable escalation of privilege via local access...

Oracle XDB component PITRIG_DROPMETADATA buffer overflow

Added: 11/23/2007 CVE: CVE-2007-4517 BID: 26374 OSVDB: 39918 Background The PITRIGDROPMETADATA function is included in the XDB.XDBPITRIGPKG package which is included with Oracle Database. Problem A buffer overflow vulnerability in the PITRIGDROPMETADATA function allows remote, authenticated...

CVE-2021-26374

CVE-2021-26374 is rejected/not used and does not represent an active vulnerability entry.

CVE-2020-26374

CVE-2020-26374 entry is rejected/not used and does not represent an active vulnerability.

CVE-2021-26374

...