21 matches found
CVE-2026-29053
creationtimestamp| type| source ---|---|--- 2026-03-05 06:21:27+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgc5t5stv72h 2026-03-30 08:00:15+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mib6yut7xf23 2026-04-22 00:00:04+00:00| published-proof-of-concept|...
sign-alex (=1.0.1) potentially affected by CVE-2026-29053 via ghost (=1.26.2)
ghost NPM version =1.26.2 is affected by a known vulnerability. The following packages have a transitive dependency on ghost and may be impacted: - sign-alex =1.0.1 Source cves: CVE-2026-29053 Source advisory: OSV:GHSA-CGC2-RCRH-QR5X...
CVE-2023-29053
A vulnerability has been identified in JT Open All versions V11.3.2.0, JT Utilities All versions V13.3.0.0. The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted JT files. This could allow an attacker to execute code in the...
CVE-2022-29053
A missing cryptographic steps vulnerability CWE-325 in the functions that encrypt the keytab files in FortiOS version 7.2.0, 7.0.0 through 7.0.5 and below 7.0.0 may allow an attacker in possession of the encrypted file to decipher it...
CVE-2020-29053
HRSALE 2.0.0 allows XSS via the admin/project/projectscalendar setdate parameter...
CVE-2024-29053 Microsoft Defender for IoT Remote Code Execution Vulnerability
...
CVE-2024-29053
CVE-2024-29053 affects Microsoft Defender for IoT . Public sources describe a Remote Code Execution (RCE) vulnerability in Defender for IoT that can be exploited via a path traversal involved with the file-upload/update mechanism. An attacker must be authenticated and have access to the update/fi...
CVE-2024-29053 Microsoft Defender for IoT Remote Code Execution Vulnerability
...
KLA65506 Multiple vulnerabilities in Microsoft System Center
Multiple vulnerabilities were found in Microsoft System Center. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Microsoft Defender for IoT can be exploited...
CVE-2023-29053
creationtimestamp| type| source ---|---|--- 2023-04-11 14:23:34+00:00| seen| https://t.me/cibsecurity/61850...
CVE-2023-29053
Summary: CVE-2023-29053 affects Siemens JT Open (all versions before 11.3.2.0) and JT Utilities (all versions before 13.3.0.0). The vulnerability is an out-of-bounds read past the end of an allocated structure while parsing specially crafted JT files, which could allow code execution in the conte...
CVE-2023-29053
A vulnerability has been identified in JT Open All versions V11.3.2.0, JT Utilities All versions V13.3.0.0. The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted JT files. This could allow an attacker to execute code in the...
CVE-2023-29053
A vulnerability has been identified in JT Open All versions V11.3.2.0, JT Utilities All versions V13.3.0.0. The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted JT files. This could allow an attacker to execute code in the...
Siemens JT Open and JT Utilities
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please seeSiemens' ProductCERT Security Advisories CERT Services | Services |...
Fortinet Fortigate Flaws over keytab encryption scheme (FG-IR-22-158)
The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-22-158 advisory. - A missing cryptographic steps vulnerability CWE-325 in the functions that encrypt the keytab files in FortiOS version 7.2.0...
CVE-2022-29053
creationtimestamp| type| source ---|---|--- 2022-09-06 22:13:21+00:00| seen| https://t.me/cibsecurity/49334...
CVE-2022-29053
A missing cryptographic steps vulnerability CWE-325 in the functions that encrypt the keytab files in FortiOS version 7.2.0, 7.0.0 through 7.0.5 and below 7.0.0 may allow an attacker in possession of the encrypted file to decipher it...
CVE-2022-29053
Summary (CVE-2022-29053) FortiOS contains a cryptographic-steps flaw in the encryption of keytab files. The issue affects FortiOS versions 7.2.0, 7.0.0 through 7.0.5, and below 7.0.0, where a missing cryptographic step could let an attacker with the encrypted file decipher its contents. The avail...
CVE-2021-29053
Multiple SQL injection vulnerabilities in Liferay Portal 7.3.5 and Liferay DXP 7.3 before fix pack 1 allow remote authenticated users to execute arbitrary SQL commands via the classPKField parameter to 1 CommerceChannelRelFinder.countByCC, or 2 CommerceChannelRelFinder.findByCC...
CVE-2021-29053
CVE-2021-29053 affects Liferay Portal 7.3.5 and Liferay DXP 7.3 (before fix pack 1). The vulnerability is SQL injection in CommerceChannelRelFinder.countByC_C and CommerceChannelRelFinder.findByC_C via the classPKField parameter, allowing remote authenticated users to execute arbitrary SQL comman...