Lucene search
K

17 matches found

RedhatCVE
RedhatCVE
added 2025/06/10 12:15 p.m.5 views

CVE-2025-27563

in OpenHarmony v5.0.3 and prior versions allow a local attacker cause information leak through get permission...

5.5CVSS4.4AI score0.0011EPSS
Exploits0References1
NVD
NVD
added 2025/06/08 12:15 p.m.7 views

CVE-2025-27563

in OpenHarmony v5.0.3 and prior versions allow a local attacker cause information leak through get permission...

5.5CVSS0.0011EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/08 11:47 a.m.11 views

CVE-2025-27563 security_access_token has an improper preservation of permissions vulnerability

in OpenHarmony v5.0.3 and prior versions allow a local attacker cause information leak through get permission...

3.3CVSS5.5AI score0.0011EPSS
Exploits0References1
CVE
CVE
added 2025/06/08 11:47 a.m.54 views

CVE-2025-27563

OpenHarmony vulnerability CVE-2025-27563 affects OpenHarmony v5.0.3 and earlier. A local attacker can cause information leakage due to improper preservation of permissions when accessing the get permission. The issue is explicitly described across multiple sources as a local information leak with...

5.5CVSS3.7AI score0.0011EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/06/08 11:47 a.m.18 views

CVE-2025-27563 security_access_token has an improper preservation of permissions vulnerability

in OpenHarmony v5.0.3 and prior versions allow a local attacker cause information leak through get permission...

3.3CVSS0.0011EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:32 a.m.10 views

CVE-2023-27563

The n8n package 0.218.0 for Node.js allows Escalation of Privileges...

8.8CVSS6.9AI score0.01222EPSS
Exploits1References1
Circl
Circl
added 2024/03/05 6:27 p.m.5 views

CVE-2024-27563

creationtimestamp| type| source ---|---|--- 2024-03-05 18:27:07+00:00| seen| https://t.me/ctinow/200546 2024-03-05 18:27:13+00:00| seen| https://t.me/ctinow/200552...

6.5CVSS4.8AI score0.00417EPSS
Exploits1References2
OSV
OSV
added 2024/03/05 5:15 p.m.3 views

CVE-2024-27563

A Server-Side Request Forgery SSRF in the getFileFromRepo function of WonderCMS v3.1.3 allows attackers to force the application to make arbitrary requests via injection of crafted URLs into the pluginThemeUrl parameter...

5.3CVSS7.2AI score
Exploits0References1
CVE
CVE
added 2024/03/05 12:0 a.m.48 views

CVE-2024-27563

CVE-2024-27563 is an SSRF in WonderCMS v3.1.3, traced to the getFileFromRepo function. The flaw lets an attacker coerce the application to make arbitrary outbound requests by injecting crafted URLs into the pluginThemeUrl parameter. Affected software: WonderCMS 3.1.3 (PHP-based CMS). Root cause: ...

6.5CVSS7.2AI score0.00417EPSS
Exploits1References1Affected Software1
Circl
Circl
added 2023/05/10 6:19 p.m.7 views

CVE-2023-27563

creationtimestamp| type| source ---|---|--- 2023-05-10 18:19:34+00:00| seen| https://t.me/cibsecurity/63751 2025-01-28 03:22:55+00:00| seen| Telegram/6iaewjPdbCDRdiqhBPlwojJn5HWNVd503rhzISLQnTtYyCl...

8.8CVSS8.1AI score0.01222EPSS
Exploits1References1
vulnersOsv
vulnersOsv
added 2023/05/10 3:30 p.m.6 views

n8n-nodes-accelo (>=0.1.0 <=0.1.9), n8n-nodes-closeio (=0.1.0) +7 more potentially affected by CVE-2023-27563 via n8n (>=0.138.0 <=0.214.5)

n8n NPM version =0.138.0, =0.1.0, =0.18.0, =0.1.0, =0.1.0, =0.2.14, =0.1.0, =0.1.0, =0.1.7 Source cves: CVE-2023-27563 Source advisory: OSV:GHSA-97CP-MR4M-9MCF...

8.8CVSS7.2AI score0.01222EPSS
Exploits1
CVE
CVE
added 2023/05/10 12:0 a.m.84 views

CVE-2023-27563

The CVE-2023-27563 entry concerns the n8n package 0.218.0 for Node.js. A root cause described in connected sources is a lack of object checks when merging user-supplied fields with the server object in the updateCurrentUser path (MeController), enabling an authenticated user to escalate privilege...

8.8CVSS8.7AI score0.01222EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2023/05/10 12:0 a.m.21 views

CVE-2023-27563

The n8n package 0.218.0 for Node.js allows Escalation of Privileges...

9AI score0.01222EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2023/05/10 12:0 a.m.10 views

CVE-2023-27563

The n8n package 0.218.0 for Node.js allows Escalation of Privileges...

8.8AI score0.01222EPSS
Exploits1References3
Circl
Circl
added 2022/08/31 2:36 a.m.3 views

CVE-2022-27563

creationtimestamp| type| source ---|---|--- 2022-08-31 02:36:03+00:00| seen| https://t.me/cibsecurity/49087...

7.5CVSS7.3AI score0.00686EPSS
Exploits0References1
CVE
CVE
added 2022/08/30 9:25 p.m.60 views

CVE-2022-27563

CVE-2022-27563 affects HCL VersionVault Express. An unauthenticated attacker can overload a section of VersionVault Express, producing a denial-of-service condition. Public references in the dataset cite affected versions (e.g., HCL VersionVault Express 2.0.1/2.1.0 in CNVD) and describe the impac...

7.5CVSS7.5AI score0.00686EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/08/30 9:25 p.m.21 views

CVE-2022-27563 Overload/denial of service affects HCL VersionVault Express

An unauthenticated user can overload a part of HCL VersionVault Express and cause a denial of service...

7.5CVSS7.7AI score0.00686EPSS
Exploits0References1
Rows per page
Query Builder