12 matches found
📄 Splunk Enterprise 9.1.5 / 9.2.2 Vulnerability Scanner
This PHP script is a defensive vulnerability checker for CVE-2024-36985 affecting Splunk Enterprise. It authenticates to a Splunk instance using provided credentials, retrieves the installed Splunk version, and determines whether it falls within the vulnerable ranges. The script then enumerates...
CVE-2020-36985
creationtimestamp| type| source ---|---|--- 2026-01-28 14:00:19+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mdigokf5ls2m...
MAL-2025-36985 Malicious code in tl-creat (npm)
The package tl-creat was found to contain malicious code...
CVE-2024-36985
creationtimestamp| type| source ---|---|--- 2024-07-03 12:18:30+00:00| seen| https://t.me/truesecator/5927 2025-01-15 17:55:11+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/1828 2025-02-28 11:26:07+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/5872 2026-01-04...
CVE-2024-36985
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10, a low-privileged user that does not hold the admin or power Splunk roles could cause a Remote Code Execution through an external lookup that references the “splunkarchiver“ application...
CVE-2024-36985
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10, a low-privileged user that does not hold the admin or power Splunk roles could cause a Remote Code Execution through an external lookup that references the “splunkarchiver“ application...
CVE-2024-36985 Remote Code Execution (RCE) through an external lookup due to “copybuckets.py“ script in the “splunk_archiver“ application in Splunk Enterprise
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10, a low-privileged user that does not hold the admin or power Splunk roles could cause a Remote Code Execution through an external lookup that references the “splunkarchiver“ application...
CVE-2024-36985 Remote Code Execution (RCE) through an external lookup due to “copybuckets.py“ script in the “splunk_archiver“ application in Splunk Enterprise
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10, a low-privileged user that does not hold the admin or power Splunk roles could cause a Remote Code Execution through an external lookup that references the “splunkarchiver“ application...
CVE-2022-36985
An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x through 9.1.0.1 and related NetBackup products. An attacker with unprivileged local access to a Windows NetBackup Primary server could potentially escalate their privileges...
CVE-2022-36985
CVE-2022-36985 affects Veritas NetBackup on Windows: vulnerable in NetBackup 8.1.x–8.1.2, 8.2, 8.3.x–8.3.0.2, 9.x–9.0.0.1, and 9.1.x–9.1.0.1. An unprivileged local attacker on a NetBackup Primary server could escalate privileges. Connected documents confirm affected versions and local-privilege-e...
WUZHI CMS SQL Injection Vulnerability (CNVD-2022-36985)
Wuzhi WUZHI CMS is a PHP and MySQL based open source content management system CMS from Wuzhi.WUZHI CMS version 4.1.0 is vulnerable to SQL injection, which originates from the grouppid parameter of /coreframe/app/member/admin/group.php. parameter lacks validation for external input SQL statements...
CVE-2021-36985
CVE-2021-36985: Concrete details in connected records indicate a code-injection vulnerability in Huawei smartphone software (EMUI/Magic UI on Android). It affects Huawei devices, enabling resource exhaustion and potential device reboot. Root cause: code injection in the Huawei smartphone stack. E...