12 matches found
PT-2026-48871
Name of the Vulnerable Software and Affected Versions remotion version 4.0.409 Description An arbitrary file write issue exists, allowing an attacker to write files to an unintended location on the system. Recommendations At the moment, there is no information about a newer version that contains ...
PT-2026-48870
Name of the Vulnerable Software and Affected Versions remotion version 4.0.409 Description A remote code execution RCE issue was discovered, which allows an attacker to execute arbitrary code on the target system. Recommendations At the moment, there is no information about a newer version that...
EUVD-2025-30121
Malicious code in bioql PyPI...
CVE-2022-30121
The “LANDeskR Management Agent” service exposes a socket and once connected, it is possible to launch commands only for signed executables. This is a security bug that allows a limited user to get escalated admin privileges on their system...
CVE-2021-30121
Semi-authenticated local file inclusion The contents of arbitrary files can be returned by the webserver Example request: https://x.x.x.x/KLC/js/Kaseya.SB.JS/js.aspx?path=C:\Kaseya\WebPages\dl.asp A valid sessionId is required but can be easily obtained via CVE-2021-30118...
CVE-2022-30121
creationtimestamp| type| source ---|---|--- 2022-09-23 18:19:41+00:00| seen| https://t.me/cibsecurity/50348...
CVE-2022-30121
The “LANDeskR Management Agent” service exposes a socket and once connected, it is possible to launch commands only for signed executables. This is a security bug that allows a limited user to get escalated admin privileges on their system...
CVE-2022-30121
The “LANDeskR Management Agent” service exposes a socket and once connected, it is possible to launch commands only for signed executables. This is a security bug that allows a limited user to get escalated admin privileges on their system...
CVE-2022-30121
The “LANDeskR Management Agent” service exposes a socket and once connected, it is possible to launch commands only for signed executables. This is a security bug that allows a limited user to get escalated admin privileges on their system...
CVE-2022-30121
The “LANDeskR Management Agent” service exposes a socket and once connected, it is possible to launch commands only for signed executables. This is a security bug that allows a limited user to get escalated admin privileges on their system...
CVE-2022-30121
CVE-2022-30121 affects Ivanti/LANDesk Management Agent. The vulnerability arises because the LANDesk Management Agent service exposes a socket that, once connected, allows execution of commands only for signed executables, enabling a limited user to escalate to admin privileges on the host. Docum...
CVE-2021-30121
CVE-2021-30121 is described as a semi-authenticated local file inclusion vulnerability. The NVD description shows an attacker could fetch contents of arbitrary files via the webserver (example: Kaseya-related path) and notes that a valid sessionId is required, which can be obtained via CVE-2021-3...