CVE-2021-27277

This vulnerability allows local attackers to escalate privileges on affected installations of SolarWinds Orion Virtual Infrastructure Monitor 2020.2. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific...

CVE-2024-27277

The private key for the IBM Storage Protect Plus Server 10.1.0 through 10.1.16 certificate can be disclosed, undermining the security of the certificate. IBM X-Force ID: 285205...

CVE-2022-27277

InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain an arbitrary file deletion vulnerability via the function sub17C08...

CVE-2020-27277

Delta Electronics DOPSoft Version 4.0.8.21 and prior has a null pointer dereference issue while processing project files, which may allow an attacker to execute arbitrary code...

CVE-2025-27277

creationtimestamp| type| source ---|---|--- 2025-02-24 17:21:48+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/5183...

CVE-2025-27277

Cross-Site Request Forgery CSRF vulnerability in tiefpunkt Add Linked Images To Gallery add-linked-images-to-gallery-v01 allows Cross Site Request Forgery.This issue affects Add Linked Images To Gallery: from n/a through = 1.4...

CVE-2025-27277 WordPress Add Linked Images To Gallery plugin <= 1.4 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in tiefpunkt Add Linked Images To Gallery add-linked-images-to-gallery-v01 allows Cross Site Request Forgery.This issue affects Add Linked Images To Gallery: from n/a through = 1.4...

CVE-2024-27277

creationtimestamp| type| source ---|---|--- 2025-02-14 17:39:47+00:00| seen| Telegram/rlbnNF-jij67DefhaWE2LbN5fl2EUUZ-rkEH-Fpnh2-vyvll 2025-02-14 21:08:31+00:00| seen| Telegram/K8sarjCI4lpJelkAiX3cWLIsbPAN6jAT0RANo8hIHsWipQsW...

CVE-2024-27277

CVE-2024-27277 affects IBM Storage Protect Plus Server (Version 10.1.0–10.1.16). It discloses the private key used in the server certificate, undermining certificate security. Remediation: upgrade to 10.1.16.1 on Linux (Fixing Level 10.1.16.1). Connected sources confirm the affected product/versi...

CVE-2024-27277 IBM Storage Protect Plus Server information disclosure

The private key for the IBM Storage Protect Plus Server 10.1.0 through 10.1.16 certificate can be disclosed, undermining the security of the certificate. IBM X-Force ID: 285205...

CVE-2022-27277

InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain an arbitrary file deletion vulnerability via the function sub17C08...

CVE-2022-27277

The CVE-2022-27277 entry concerns InHand Networks InRouter 900 Industrial 4G Router. A vulnerability in the function sub_17C08 allows arbitrary file deletion. Affected product: InRouter 900 Industrial 4G Router prior to version v1.0.0.r11700. Impact and exposure per the connected data indicate ne...

CVE-2021-27277

CVE-2021-27277 affects SolarWinds Orion Virtual Infrastructure Monitor 2020.2. The issue is a deserialization of untrusted data in the OneTimeJobSchedulerEventsService WCF endpoint due to insufficient validation, enabling local attackers who can run low-privilege code to escalate to SYSTEM and ex...

CVE-2020-27277

Delta Electronics DOPSoft Version 4.0.8.21 and prior has a null pointer dereference issue while processing project files, which may allow an attacker to execute arbitrary code...

CVE-2020-27277

Delta Electronics DOPSoft is affected by CVE-2020-27277 (null pointer dereference) in how it processes project files, potentially enabling arbitrary code execution. The vulnerability affects DOPSoft versions up to 4.0.8.21; the ZDI advisory frames it as a remote code execution flaw in XLS file pa...