Siemens APE1808 Improper Neutralization of Special Elements used in an OS Command (CVE-2025-4230)

A command injection vulnerability in Palo Alto Networks PAN-OS software enables an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. To be able to exploit this issue, the user must have access to the PAN-OS CLI. This plugin only works with...

cy-ai-trainer (>=0.0.1 <=0.0.2), llama-index-packs-vanna (>=0.0.1 <=0.3.0) +1 more potentially affected by CVE-2026-4230 via vanna (>=0.0.30 <=2.0.2)

vanna PYPI version =0.0.30, =0.0.1, =0.0.1, =1.0.0, =2.0.0 Source cves: CVE-2026-4230 Source advisory: SNYK:PYTHON-VANNA-15674519...

EUVD-2022-4230

Malicious code in bioql PyPI...

Debian dla-4230 : xdmx - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4230 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4230-1 [email protected]...

CVE-2025-4230

A command injection vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. To be able to exploit this issue, the user must have access to the PAN-OS CLI. The security risk posed by this...

CVE-2025-4230 PAN-OS: Authenticated Admin Command Injection Vulnerability Through CLI

A command injection vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. To be able to exploit this issue, the user must have access to the PAN-OS CLI. The security risk posed by this...

CVE-2025-4230

creationtimestamp| type| source ---|---|--- 2025-06-11 14:00:00+00:00| seen| https://security.paloaltonetworks.com/CVE-2025-4230 2025-06-11 19:03:31+00:00| seen| https://bsky.app/profile/ripjyr.bsky.social/post/3lre3w2cxq52h 2025-06-13 00:32:33+00:00| seen|...

CVE-2022-4230

The WP Statistics WordPress plugin before 13.2.9 does not escape a parameter, which could allow authenticated users to perform SQL Injection attacks. By default, the affected feature is available to users with the manageoptions capability admin+, however the plugin has a settings to allow low...

CVE-2024-4230

External Control of File Name or Path vulnerability in Edgecross Basic Software for Windows versions 1.00 and later and Edgecross Basic Software for Developers versions 1.00 and later allows a malicious local attacker to execute an arbitrary malicious code, resulting in information disclosure,...

CVE-2024-4230

creationtimestamp| type| source ---|---|--- 2024-12-19 07:30:11+00:00| seen| https://infosec.exchange/users/cve/statuses/113678313763260774 2024-12-19 09:48:05+00:00| seen| https://t.me/cvedetector/13311...

CVE-2024-4230

External Control of File Name or Path vulnerability in Edgecross Basic Software for Windows versions 1.00 and later and Edgecross Basic Software for Developers versions 1.00 and later allows a malicious local attacker to execute an arbitrary malicious code, resulting in information disclosure,...

CVE-2024-4230

CVE-2024-4230 affects Edgecross Basic Software for Windows (1.00 and later) and Edgecross Basic Software for Developers (1.00 and later). The root cause is an External Control of File Name or Path vulnerability that could allow a local attacker to execute arbitrary code, with potential for inform...

CVE-2024-4230

External Control of File Name or Path vulnerability in Edgecross Basic Software for Windows versions 1.00 and later and Edgecross Basic Software for Developers versions 1.00 and later allows a malicious local attacker to execute an arbitrary malicious code, resulting in information disclosure,...

Oracle Siebel CRM (July 2014 CPU)

The versions of Oracle Siebel CRM installed on the remote host are affected by multiple vulnerabilities as referenced in the July 2014 CPU advisory. - Vulnerability in the Siebel Travel & Transportation component of Oracle Siebel CRM subcomponent: Diary. Supported versions that are affected are...

SUSE: Security Advisory (SUSE-SU-2023:4230-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2023-4230 ioLogik 4000 Series: Server Banner Information Disclosure

A vulnerability has been identified in ioLogik 4000 Series ioLogik E4200 firmware versions v1.6 and prior, which has the potential to facilitate the collection of information on ioLogik 4000 Series devices. This vulnerability may enable attackers to gather information for the purpose of assessing...

CVE-2023-4230

Affected product/versions: ioLogik 4000 Series (ioLogik E4200) firmware v1.6 and prior. Root cause: lack of protection for service data in the web server, enabling a remote attacker to access protected information. Impact: potential exposure of information about the device and its configuration t...

Important: Red Hat Security Advisory: kpatch-patch security update

An update for kpatch-patch is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availabl...

RHEL 9 : kpatch-patch (RHSA-2023:4230)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:4230 advisory. This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Security Fixe...

SUSE CVE-2016-4230

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4173, CVE-2016-4174,...