18 matches found
CVE-2024-41987
The TEM Opera Plus FM Family Transmitter application interface allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited to perform certain actions with administrative privileges if a logged-in user visits a...
EUVD-2025-41987
Malicious code in sari-bakwan4-sluey npm...
EUVD-2023-41987
Malicious code in bioql PyPI...
CVE-2023-41987
This issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14. An app may be able to access sensitive user data...
CVE-2021-41987
In the SCEP Server of RouterOS in certain Mikrotik products, an attacker can trigger a heap-based buffer overflow that leads to remote code execution. The attacker must know the scepservername value. This affects RouterOS 6.46.8, 6.47.9, and 6.47.10...
CVE-2024-41987
creationtimestamp| type| source ---|---|--- 2024-10-03 20:48:05+00:00| seen| https://t.me/cvedetector/6921...
CVE-2024-41987
The TEM Opera Plus FM Family Transmitter application interface allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited to perform certain actions with administrative privileges if a logged-in user visits a...
MikroTik RouterOS Out-of-bounds Write (CVE-2021-41987)
In the SCEP Server of RouterOS in certain Mikrotik products, an attacker can trigger a heap-based buffer overflow that leads to remote code execution. The attacker must know the scepservername value. This affects RouterOS 6.46.8, 6.47.9, and 6.47.10. This plugin only works with Tenable.ot. Please...
CVE-2023-41987
creationtimestamp| type| source ---|---|--- 2024-01-21 10:16:49+00:00| seen| https://t.me/ctinow/170792 2025-06-17 16:41:13+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/18619...
CVE-2023-41987
This issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14. An app may be able to access sensitive user data...
CVE-2023-41987
The CVE-2023-41987 entry concerns a macOS Sonoma 14 vulnerability where an app may access sensitive user data due to insufficient checks. The connected sources (NVD/Red Hat/PRION/CVL) confirm that Apple resolved the issue in macOS Sonoma 14 with a patch that improves checks, addressing a data-acc...
CVE-2022-41987
Cross-Site Request Forgery CSRF vulnerability in LearningTimes BadgeOS plugin = 3.7.1.6 versions...
CVE-2022-41987
CVE-2022-41987: A Cross-Site Request Forgery (CSRF) vulnerability in the LearningTimes BadgeOS WordPress plugin is present in versions
CVE-2022-41987 WordPress BadgeOS Plugin <= 3.7.1.6 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in LearningTimes BadgeOS plugin = 3.7.1.6 versions...
WordPress BadgeOS Plugin <= 3.7.1.6 is vulnerable to Cross Site Request Forgery (CSRF)
Software BadgeOS Type Plugin Vulnerable versions = 3.7.1.6 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2022-41987 Patch priority Low CVSS severity Low 6.3 Developer Claim ownership PSID ece317dfb61e Credits István Márton Required...
MikroTik RouterOS RCE Vulnerability (CVE-2021-41987)
MikroTik RouterOS is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2021-41987
In the SCEP Server of RouterOS in certain Mikrotik products, an attacker can trigger a heap-based buffer overflow that leads to remote code execution. The attacker must know the scepservername value. This affects RouterOS 6.46.8, 6.47.9, and 6.47.10...
CVE-2021-41987
The vulnerability CVE-2021-41987 affects MikroTik RouterOS SCEP Server in specific releases (RouterOS 6.46.8, 6.47.9, 6.47.10). A heap-based buffer overflow can be triggered by an attacker who knows the scep_server_name value, leading to remote code execution. Multiple sources (NVD entry and Red ...