CVE-2026-2747

creationtimestamp| type| source ---|---|--- 2026-03-04 12:26:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgabqdunt627...

CVE-2023-2747

The initialization vector IV used by the secure engine SE for encrypting data stored in the SE flash memory is uninitialized...

CVE-2025-2747

An authentication bypass vulnerability in Kentico Xperience allows authentication bypass via the Staging Sync Server component password handling for the server defined None type. Authentication bypass allows an attacker to control administrative objects.This issue affects Xperience through 13.0.1...

CVE-2025-2747

creationtimestamp| type| source ---|---|--- 2025-03-24 19:40:27+00:00| seen| https://bsky.app/profile/cyberalerts.bsky.social/post/3ll5j5ea2q522 2025-03-24 20:39:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ll5mhfxkvq2w 2025-03-24 20:48:56+00:00| seen|...

CVE-2025-2747

An authentication bypass vulnerability in Kentico Xperience allows authentication bypass via the Staging Sync Server component password handling for the server defined None type. Authentication bypass allows an attacker to control administrative objects.This issue affects Xperience through 13.0.1...

CVE-2025-2747

Kentico Xperience 13 CMS is affected by an authentication bypass in the Staging Sync Server component, due to password handling for the server-defined None type. This allows bypass of authentication and potential control of administrative objects, with impact stated up to version 13.0.178. A reme...

CVE-2025-20644

In Modem, there is a possible memory corruption due to incorrect error handling. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2024-2747

CWE-428: Unquoted search path or element vulnerability exists in Easergy Studio, which could cause privilege escalation when a valid user replaces a trusted file name on the system and reboots the machine...

CVE-2024-2747

CWE-428: Unquoted search path or element vulnerability exists in Easergy Studio, which could cause privilege escalation when a valid user replaces a trusted file name on the system and reboots the machine...

CVE-2024-2747

CVE-2024-2747 affects Schneider Electric Easergy Studio. The root cause is CWE-428: an unquoted search path/element, allowing a local attacker with low privileges to escalate privileges by replacing a trusted file name and rebooting the system. Impact is described as high for confidentiality, int...

CVE-2019-2747

creationtimestamp| type| source ---|---|--- 2023-11-15 16:53:22+00:00| seen| https://t.me/BABATATASASA/5989...

CVE-2023-2747

The initialization vector IV used by the secure engine SE for encrypting data stored in the SE flash memory is uninitialized...

CVE-2023-2747 Uninitialized IV in Silicon Labs SE FW v2.0.0 through v 2.2.1 for internally stored data

The initialization vector IV used by the secure engine SE for encrypting data stored in the SE flash memory is uninitialized...

CVE-2023-2747

The CVE-2023-2747 issue concerns an uninitialized initialization vector (IV) used by the Secure Engine (SE) to encrypt data stored in SE flash memory, impacting Silicon Labs Gecko SDK/SE firmware. Concrete details from connected documents indicate the affected firmware range is Gecko SE firmware ...

CVE-2023-2747 Uninitialized IV in Silicon Labs SE FW v2.0.0 through v 2.2.1 for internally stored data

The initialization vector IV used by the secure engine SE for encrypting data stored in the SE flash memory is uninitialized...

K03444640: MySQL vulnerabilities CVE-2019-2740, CVE-2019-2741, CVE-2019-2743, CVE-2019-2746, and CVE-2019-2747

Security Advisory Description CVE-2019-2740 Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: XML. Supported versions that are affected are 5.6.44 and prior, 5.7.26 and prior and 8.0.16 and prior. Easily exploitable vulnerability allows low privileged attacker with...

CVE-2022-2747

creationtimestamp| type| source ---|---|--- 2022-08-11 12:32:01+00:00| seen| https://t.me/cibsecurity/47937...

CVE-2022-2747

CVE-2022-2747 affects SourceCodester Simple Online Book Store. The vulnerability resides in book.php where the book_isbn parameter is manipulated, enabling SQL injection. Attacks can be carried out remotely without authentication, with potential high impact on confidentiality, integrity, and avai...

CVE-2022-2747 SourceCodester Simple Online Book Store book.php sql injection

A vulnerability was found in SourceCodester Simple Online Book Store and classified as critical. This issue affects some unknown processing of the file book.php. The manipulation of the argument bookisbn leads to sql injection. The attack may be initiated remotely. The associated identifier of th...

SUSE: Security Advisory (SUSE-SU-2020:2747-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...