Lucene search
K

38 matches found

CVE
CVE
added 2026/06/09 3:48 a.m.49 views

CVE-2026-41720

CVE-2026-41720 affects Spring LDAP, where DirContextAuthenticationStrategy implementations fail to reject a bind request that uses a non-empty username with an empty or null password. Affected versions include 2.4.0–2.4.4, 3.2.0–3.2.17, 3.3.0–3.3.7, and 4.0.0–4.0.3. The CVE description in both th...

7.4CVSS5.4AI score0.00257EPSS
Exploits0References1
Circl
Circl
added 2026/06/08 7:18 a.m.8 views

CVE-2026-41720

creationtimestamp| type| source ---|---|--- 2026-06-08 07:18:37+00:00| seen| https://cyber.gc.ca/en/alerts-advisories/spring-security-advisory-av26-558...

7.4CVSS4.9AI score0.00257EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:34 a.m.9 views

CVE-2024-41720

Incorrect permission assignment for critical resource issue exists in ZWX-2000CSW2-HN firmware versions prior to Ver.0.3.15, which may allow a network-adjacent authenticated attacker to alter the configuration of the device...

8CVSS6.8AI score0.00238EPSS
Exploits0References1
Circl
Circl
added 2025/10/22 4:10 p.m.5 views

CVE-2025-41720

creationtimestamp| type| source ---|---|--- 2025-10-22 16:10:11+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115418687746464898...

4.3CVSS4.8AI score0.00165EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2022-41720

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - On Windows, restricted files can be accessed via os.DirFS and http.Dir. The os.DirFS function and http.Dir type provide access to a tree of files rooted at a...

7.5CVSS7.3AI score0.0119EPSS
Exploits0References2
Circl
Circl
added 2024/08/05 8:3 a.m.5 views

CVE-2024-41720

creationtimestamp| type| source ---|---|--- 2024-08-05 08:03:06+00:00| seen| https://t.me/cvedetector/2427...

8CVSS7.9AI score0.00238EPSS
Exploits0References1
OSV
OSV
added 2024/08/05 5:15 a.m.13 views

CVE-2024-41720

Incorrect permission assignment for critical resource issue exists in ZWX-2000CSW2-HN firmware versions prior to Ver.0.3.15, which may allow a network-adjacent authenticated attacker to alter the configuration of the device...

8CVSS7.3AI score0.00238EPSS
Exploits0References2
CVE
CVE
added 2024/08/05 4:36 a.m.38 views

CVE-2024-41720

CVE-2024-41720 affects ZWX-2000CSW2-HN firmware versions prior to 0.3.15. The issue is an incorrect permission assignment for a critical resource (CWE-732) that may permit a network-adjacent authenticated attacker to alter the device configuration. Impact is reported as high (C/I/A: HIGH) with an...

8CVSS6.8AI score0.00238EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/08/05 4:36 a.m.20 views

CVE-2024-41720

Incorrect permission assignment for critical resource issue exists in ZWX-2000CSW2-HN firmware versions prior to Ver.0.3.15, which may allow a network-adjacent authenticated attacker to alter the configuration of the device...

7AI score0.00238EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/08/05 4:36 a.m.29 views

CVE-2024-41720

Incorrect permission assignment for critical resource issue exists in ZWX-2000CSW2-HN firmware versions prior to Ver.0.3.15, which may allow a network-adjacent authenticated attacker to alter the configuration of the device...

0.00238EPSS
Exploits0References2
Circl
Circl
added 2024/01/10 3:41 p.m.6 views

CVE-2023-41720

creationtimestamp| type| source ---|---|--- 2024-01-10 15:41:35+00:00| seen| https://t.me/ctinow/165871...

7.8CVSS6.9AI score0.00705EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/12/14 1:56 a.m.42 views

CVE-2023-41720

A vulnerability exists on all versions of Ivanti Connect Secure below 22.6R2 where an attacker with a foothold on an Ivanti Connect Secure ICS appliance can escalate their privileges by exploiting a vulnerable installed application. This vulnerability allows the attacker to gain elevated executio...

7CVSS8AI score0.00705EPSS
Exploits0References1
CVE
CVE
added 2023/12/14 1:56 a.m.154 views

CVE-2023-41720

CVE-2023-41720 affects Ivanti Connect Secure (ICS) on the 22.x branch prior to 22.6R2. An attacker with foothold on an ICS appliance can escalate privileges by exploiting a vulnerable installed application, gaining elevated execution privileges on the system. Affected versions include 22.x varian...

7.8CVSS7AI score0.00705EPSS
Exploits0References1Affected Software1
Ivanti
Ivanti
added 2023/12/04 8:39 p.m.15 views

Security patch release - Ivanti Connect Secure 22.6R2 and 22.6R2.1

Resolutions for Ivanti Connect Secure Security Issues: As part of Ivanti's commitment to continuous security hardening, Ivanti has released a security update for Ivanti Connect Secure. This update resolves important vulnerabilities. To our knowledge, none of the CVEs identified in this review hav...

7.8CVSS8.4AI score0.03366EPSS
Exploits0
OpenVAS
OpenVAS
added 2023/05/31 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2023:2312-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.9AI score0.05623EPSS
Exploits9References34
OpenVAS
OpenVAS
added 2023/03/28 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2023:0871-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7AI score0.04561EPSS
Exploits0References9
OSV
OSV
added 2023/03/22 1:33 p.m.4 views

SUSE-SU-2023:0871-1 Security update for container-suseconnect

This update of container-suseconnect fixes the following issue: - container-suseconnect was rebuilt against the current go1.19 release, fixing security issues and other bugs fixed in go1.19.7. - CVE-2022-41723: Fixed quadratic complexity in HPACK decoding bsc1208270. - CVE-2022-41724: Fixed panic...

7.5CVSS6.9AI score0.04561EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2023/03/07 12:0 a.m.43 views

Oracle Linux 8 : ol8addon (ELSA-2023-18908)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-18908 advisory. - Addresses CVE-2021-34558 - Include patch to fix CVE-2019-9741 - Fixes CVE-2019-6486 - Fixes CVE-2018-16873, CVE-2018-16874, CVE-2018-16875 - Fix...

9.8CVSS6.7AI score0.66252EPSS
Exploits3References9
OpenVAS
OpenVAS
added 2022/12/12 12:0 a.m.15 views

SUSE: Security Advisory (SUSE-SU-2022:4397-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.1AI score0.05623EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/12/12 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2022:4398-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.1AI score0.05623EPSS
Exploits0References2
Rows per page
Query Builder