CVE-2026-41109

creationtimestamp| type| source ---|---|--- 2026-05-12 15:53:17+00:00| seen| https://advisories.ncsc.nl/advisory?id=NCSC-2026-0143 2026-05-12 16:38:43+00:00| seen| https://www.thezdi.com/blog/2026/5/12/the-may-2026-security-update-review 2026-05-13 01:08:48+00:00| seen|...

CVE-2023-41109

SmartNode SN200 aka SN200 3.21.2-23021 allows unauthenticated OS Command Injection...

CVE-2021-41109

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to version 4.10.4, for regular non-LiveQuery queries, the session token is removed from the response, but for LiveQuery payloads it is currently not. If a user has a LiveQuery subscriptio...

CVE-2024-41109

creationtimestamp| type| source ---|---|--- 2024-07-30 18:15:08+00:00| seen| https://t.me/cvedetector/2039...

CVE-2024-41109 Pimcore vulnerable to disclosure of system and database information behind /admin firewall

Pimcore's Admin Classic Bundle provides a backend user interface for Pimcore. Navigating to /admin/index/statistics with a logged in Pimcore user exposes information about the Pimcore installation, PHP version, MYSQL version, installed bundles and all database tables and their row count in the...

SmartNode SN200 3.21.2-23021 OS Command Injection

Advisory ID: SYSS-2023-019 Product: SmartNode SN200 Analog Telephone Adapter ATA & VoIP Gateway Manufacturer: Patton LLC Affected Versions: = 3.21.2-23021 Tested Versions: 2.21.1-22041, 3.21.2-23021, 3.22.0-23083 Vulnerability Type: OS Command Injection CWE-78 Vulnerability Type: Improper Access...

SmartNode SN200 3.21.2-23021 OS Command Injection Vulnerability

Product: SmartNode SN200 Analog Telephone Adapter ATA & VoIP Gateway Manufacturer: Patton LLC Affected Versions: = 3.21.2-23021 Tested Versions: 2.21.1-22041, 3.21.2-23021, 3.22.0-23083 Vulnerability Type: OS Command Injection CWE-78 Vulnerability Type: Improper Access Control CWE-284 Risk Level:...

CVE-2023-41109

creationtimestamp| type| source ---|---|--- 2023-08-29 00:16:59+00:00| seen| https://t.me/cibsecurity/69322 2023-12-31 00:20:25+00:00| seen| https://t.me/arpsyndicate/2263 2023-12-31 04:03:09+00:00| seen| https://t.me/arpsyndicate/2291 2025-01-31 00:00:00+00:00| seen| The Shadowserver...

CVE-2023-41109

SmartNode SN200 aka SN200 3.21.2-23021 allows unauthenticated OS Command Injection...

CVE-2023-41109

The SmartNode SN200 Analog Telephone Adapter / VoIP Gateway (firmware 3.21.2-23021 and earlier) is affected by an unauthenticated OS command injection (CWE-78). Public advisories (SySS SYSS-2023-019) and PT-2023-8337 indicate the vulnerability stems from improper handling in the Network Diagnosti...

CVE-2022-41109

Windows Win32k Elevation of Privilege Vulnerability...

CVE-2022-41109 Windows Win32k Elevation of Privilege Vulnerability

...

Microsoft Windows Multiple Vulnerabilities (KB5019964)

This host is missing a critical security update according to Microsoft KB5019964 SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Microsoft Windows Multiple Vulnerabilities (KB5019959)

This host is missing an important security update according to Microsoft KB5019959 SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

CVE-2022-41109

Technical details about CVE-2022-41109 (affected products, root cause, impact, fix) are not provided in the supplied documents. The connected entries reference patches and related issues but do not disclose vulnerability specifics.

Microsoft Windows Win32k Elevation of Privilege (CVE-2022-41109)

An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

KB5019980: Windows 11 22H2 Security Update (November 2022)

The remote Windows host is missing security update 5019980. It is, therefore, affected by multiple vulnerabilities - AMD: CVE-2022-23824 IBPB and Return Address Predictor Interactions CVE-2022-23824 - Windows Group Policy Elevation of Privilege Vulnerability CVE-2022-37992, CVE-2022-41086 - Windo...

CVE-2021-41109

creationtimestamp| type| source ---|---|--- 2021-09-30 18:13:23+00:00| seen| https://t.me/cibsecurity/29722...

@bigegg/parse-server-schema-config (>=1.0.5 <=1.0.10), @peterpme/parse-server-mailgun (>=2.4.8 <=2.5.11) +19 more potentially affected by CVE-2021-41109 via parse-server (>=2.0.8 <=3.10.0)

parse-server NPM version =2.0.8, =1.0.5, =2.4.8, =1.0.0, =0.1.1, =0.0.2, =1.0.0, =0.1.0, =0.1.7, =0.0.1, =0.0.0, =1.0.0, =1.0.0, =1.4.0 and more Source cves: CVE-2021-41109 Source advisory: OSV:GHSA-7PR3-P5FM-8R9X...

CVE-2021-41109

CVE-2021-41109 refers to a vulnerability in Parse Server where, before version 4.10.4, LiveQuery payloads leaked session tokens for users with a LiveQuery subscription on the Parse.User class. The root cause is that LiveQuery payloads included session tokens while regular queries did not. The adv...