9 matches found
CVE-2026-28066
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Legrand legrand allows PHP Local File Inclusion.This issue affects Legrand: from n/a through = 2.17...
CVE-2024-28066
In Unify CP IP Phone firmware 1.10.4.3, Weak Credentials are used a hardcoded root password...
CVE-2024-28066
CVE-2024-28066 affects Unify CP IP Phone firmware 1.10.4.3. The root cause is a hardcoded root password enabling weak credentials, rated CVSSv3.1: 8.8 (HIGH) with Adjacent access, no user interaction required. The Red Hat/NVD/CVE entries corroborate the issue; exploitation status is not documente...
CVE-2023-28066
Dell OS Recovery Tool, versions 2.2.4013 and 2.3.7012.0, contain an Improper Access Control Vulnerability. A local authenticated non-administrator user could potentially exploit this vulnerability in order to elevate privileges on the system...
CVE-2023-28066
CVE-2023-28066 affects Dell OS Recovery Tool, specifically versions 2.2.4013 and 2.3.7012.0. The vulnerability is described as Improper Access Control, where a local authenticated non-administrator user could potentially elevate privileges on the system. The available connected documents confirm ...
GLSA-202208-26 : libarchive: Multiple Vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202208-26 libarchive: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in libarchive. Please review the CVE identifiers referenced below for details. Tenable has extracted the preceding description block...
CVE-2022-28066 affecting package libarchive for versions less than 3.6.1-1
CVE-2022-28066 affecting package libarchive for versions less than 3.6.1-1. An upgraded version of the package is available that resolves this issue...
CVE-2022-28066
creationtimestamp| type| source ---|---|--- 2022-05-04 18:35:10+00:00| seen| https://t.me/cibsecurity/41915...
CVE-2022-28066
CVE-2022-28066 is listed as a duplicate of CVE-2022-26280 and is not the active entry. Connected documents provide concrete details for the underlying issue in libarchive: an out-of-bounds read via the zipx_lzma_alone_init in libarchive versions older than 3.6.1-1. This affects libarchive (3.6.0 ...