16 matches found
Security Bulletin: IBM Virtualization Engine TS7700 is susceptible to Elevation of Privilege conditions due to the use of IBM Storage Virtualize
Summary IBM Virtualization Engine TS7700 is susceptible to Elevation of Privilege conditions due to the use of IBM Storage Virtualize CVE-2025-36120. TS7700 uses IBM Storage Virtualize to perform operations related to storage virtualization and internal system configuration tasks. Vulnerability...
CVE-2025-36120
creationtimestamp| type| source ---|---|--- 2025-08-18 14:06:13+00:00| seen| Telegram/ZFAhKaQ5x80bL7hByvF9h0qIvrR0A2DOR6YW6YJRgsNRXZM...
CVE-2024-36120
javascript-deobfuscator removes common JavaScript obfuscation techniques. In affected versions crafted payloads targeting expression simplification can lead to code execution. This issue has been patched in version 1.1.0. Users are advised to update. Users unable to upgrade should disable the...
CVE-2024-36120 javascript-deobfuscator crafted payload can lead to code execution
javascript-deobfuscator removes common JavaScript obfuscation techniques. In affected versions crafted payloads targeting expression simplification can lead to code execution. This issue has been patched in version 1.1.0. Users are advised to update. Users unable to upgrade should disable the...
CVE-2024-36120
CVE-2024-36120 concerns the javascript-deobfuscator library. Affected versions allow crafted payloads that target the expression simplification feature to cause code execution. The issue is mitigated by updating to version 1.1.0; if upgrading is not possible, users should disable the expression s...
CVE-2024-36120 javascript-deobfuscator crafted payload can lead to code execution
javascript-deobfuscator removes common JavaScript obfuscation techniques. In affected versions crafted payloads targeting expression simplification can lead to code execution. This issue has been patched in version 1.1.0. Users are advised to update. Users unable to upgrade should disable the...
CVE-2022-36120
creationtimestamp| type| source ---|---|--- 2022-08-26 07:29:36+00:00| seen| https://t.me/cibsecurity/48836...
CVE-2022-36120
CVE-2022-36120 affects Blue Prism Enterprise 6.0–7.01. In a misconfigured environment exposing the Blue Prism Application server, an authenticated user with low/no privileges can abuse the getChartData admin function to bypass access controls and cause the server to execute any MSSQL stored proce...
CVE-2022-36120
An issue was discovered in Blue Prism Enterprise 6.0 through 7.01. In a misconfigured environment that exposes the Blue Prism Application server, it is possible for an authenticated user to reverse engineer the Blue Prism software and circumvent access controls for the getChartData administrative...
CVE-2020-36120
Buffer Overflow in the "sixelencoderencodebytes" function of Libsixel v1.8.6 allows attackers to cause a Denial of Service DoS...
CVE-2020-36120
Buffer Overflow in the "sixelencoderencodebytes" function of Libsixel v1.8.6 allows attackers to cause a Denial of Service DoS...
CVE-2020-36120
Buffer Overflow in the "sixelencoderencodebytes" function of Libsixel v1.8.6 allows attackers to cause a Denial of Service DoS...
CVE-2020-36120
CVE-2020-36120 affects Libsixel v1.8.6, with a buffer overflow in the sixel_encoder_encode_bytes function that can cause a Denial of Service (DoS). The connected documents confirm the vulnerable component and impact but do not provide remediation details or patched versions within the supplied ma...
cPanel Command Injection Vulnerability (CNVD-2019-36120)
cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. A command injection vulnerability exists in cPanel. An attacker can exploit this vulnerability to execute illegal commands...
CVE-2023-36120
This CVE entry is rejected/not used; it was withdrawn by the CNA as not a security issue.
CVE-2023-36120
...