Lucene search
K

14 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 1:18 a.m.8 views

CVE-2022-30358

OvalEdge 5.2.8.0 and earlier is affected by an Account Takeover vulnerability via a POST request to /user/updatePassword via the userId and newPsw parameters. Authentication is required...

8.8CVSS6.9AI score0.00513EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:26 p.m.6 views

CVE-2021-30358

Mobile Access Portal Native Applications who's path is defined by the administrator with environment variables may run applications from other locations by the Mobile Access Portal Agent...

7.2CVSS6.9AI score0.27466EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/29 3:21 p.m.18 views

CVE-2025-30358

Mesop is a Python-based UI framework that allows users to build web applications. A class pollution vulnerability in Mesop prior to version 0.14.1 allows attackers to overwrite global variables and class attributes in certain Mesop modules during runtime. This vulnerability could directly lead to...

8.1CVSS8.1AI score0.00629EPSS
Exploits0References1
Circl
Circl
added 2025/03/27 4:39 p.m.8 views

CVE-2025-30358

creationtimestamp| type| source ---|---|--- 2025-03-27 16:39:09+00:00| seen| https://t.me/cvedetector/21300...

8.1CVSS4.8AI score0.00629EPSS
Exploits0References1
CVE
CVE
added 2025/03/27 2:49 p.m.72 views

CVE-2025-30358

Mesop is a Python-based UI framework. A class pollution vulnerability in Mesop before 0.14.1 allows attackers to overwrite global variables and class attributes at runtime in certain modules, enabling DoS on the server and potential identity confusion (e.g., impersonating assistants or system rol...

8.1CVSS8AI score0.00629EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/03/27 2:49 p.m.30 views

CVE-2025-30358 Mesop Class Pollution vulnerability leads to DoS and Jailbreak attacks

Mesop is a Python-based UI framework that allows users to build web applications. A class pollution vulnerability in Mesop prior to version 0.14.1 allows attackers to overwrite global variables and class attributes in certain Mesop modules during runtime. This vulnerability could directly lead to...

8.1CVSS0.00629EPSS
Exploits0References2
Circl
Circl
added 2024/10/25 8:25 p.m.4 views

CVE-2022-30358

creationtimestamp| type| source ---|---|--- 2024-10-25 20:25:52+00:00| seen| https://t.me/cvedetector/8964...

8.8CVSS4.8AI score0.00513EPSS
Exploits1References1
CVE
CVE
added 2024/04/02 8:17 p.m.75 views

CVE-2024-30358

CVE-2024-30358 is a Foxit PDF Reader AcroForm Use-After-Free remote code execution vulnerability. The flaw arises from not validating the existence of an object before performing operations on it during AcroForm handling, allowing an attacker to execute code in the process context after a user vi...

7.8CVSS8.2AI score0.0081EPSS
Exploits0References2Affected Software2
Circl
Circl
added 2021/10/19 6:33 p.m.4 views

CVE-2021-30358

creationtimestamp| type| source ---|---|--- 2021-10-19 18:33:20+00:00| seen| https://t.me/cibsecurity/30787...

7.2CVSS7AI score0.27466EPSS
Exploits0References1
NVD
NVD
added 2021/10/19 2:15 p.m.17 views

CVE-2021-30358

Mobile Access Portal Native Applications who's path is defined by the administrator with environment variables may run applications from other locations by the Mobile Access Portal Agent...

7.2CVSS0.27466EPSS
Exploits0References2
CVE
CVE
added 2021/10/19 1:32 p.m.118 views

CVE-2021-30358

CVE-2021-30358 affects Check Point Mobile Access Portal Native Applications when the administrator configures a path with environment variables; the Mobile Access Portal Agent may run an arbitrary application from a crafted location. The issue arises due to how the agent handles environment-varia...

7.2CVSS6.9AI score0.27466EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/10/19 1:32 p.m.16 views

CVE-2021-30358

Mobile Access Portal Native Applications who's path is defined by the administrator with environment variables may run applications from other locations by the Mobile Access Portal Agent...

7.2AI score0.27466EPSS
Exploits0References2
CheckPoint Security
CheckPoint Security
added 2021/10/17 12:0 a.m.94 views

Mobile Access Portal Agent before Build 800007042 runs Arbitrary Applications

Cause Mobile Access Portal Agent runs predefined Native Applications. If administrator configured such application with environment variables in the path, Portal Agent may run an arbitrary application that was placed in a specially created location. Symptoms - When environment variables are used ...

7.2CVSS7.2AI score0.27466EPSS
Exploits0
seebug.org
seebug.org
added 2008/07/25 12:0 a.m.18 views

EMC Centera Universal Access username参数SQ注入漏洞

BUGTRAQ ID: 30358 CENTERA Universal Access是EMC公司的CENTERA存储系统的管理软件。 CENTERA Universal Access没有正确过滤CUA Module Login中的用户名字段,远程攻击者可以通过“--”句法绕过出口令检查,使用表格中第一个可用的用户名登录。在执行几次尝试或通过搜索CUA Module中的Accounts标签后,攻击者就可以收集所有用户名列表,然后选择出管理员帐号并在用户名后添加“--”登录到系统。 EMC Centera Universal Access 4.04735.p4 EMC ---...

6.9AI score
Exploits0
Rows per page
Query Builder