14 matches found
F5 Networks BIG-IP : BIG-IP iControl SOAP vulnerability (K000160926)
The version of F5 Networks BIG-IP installed on the remote host is prior to 17.1.3.1 / 17.5.1.4 / 21.0.0.1. It is, therefore, affected by a vulnerability as referenced in the K000160926 advisory. An authenticated attacker with the Resource Administrator or Administrator role can create SNMP...
CVE-2026-42924
An authenticated attacker with the Resource Administrator or Administrator role can create SNMP configuration objects through iControl SOAP resulting in privilege escalation. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...
CVE-2025-42924
creationtimestamp| type| source ---|---|--- 2025-11-11 03:09:43+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m5d5xeven22n 2025-11-11 03:55:50+00:00| seen| https://bsky.app/profile/jos1264.social.skynetcloud.site.ap.brid.gy/post/3m5dajlrnxyl2...
CVE-2023-42924
A logic issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.2, macOS Ventura 13.6.3. An app may be able to access sensitive user data...
CVE-2023-42924
creationtimestamp| type| source ---|---|--- 2024-01-02 09:36:35+00:00| seen| https://t.me/ctinow/161625...
CVE-2023-42924
A logic issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.2, macOS Ventura 13.6.3. An app may be able to access sensitive user data...
CVE-2023-42924
A logic issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.2, macOS Ventura 13.6.3. An app may be able to access sensitive user data...
CVE-2023-42924
CVE-2023-42924 is a logic-issue vulnerability in macOS components that could allow an app to access sensitive user data. It is fixed in macOS Sonoma 14.2 and macOS Ventura 13.6.3. The CVE’s NVD entry notes a Local attack vector with user interaction required and a High confidentiality impact, wit...
CVE-2023-42924
A logic issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.2, macOS Ventura 13.6.3. An app may be able to access sensitive user data...
Forma LMS <= 3.1.0 Multiple Vulnerabilities
Forma LMS is prone to multiple vulnerabilities. Copyright C 2022 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation...
CVE-2022-42924
creationtimestamp| type| source ---|---|--- 2022-10-31 23:13:27+00:00| seen| https://t.me/cibsecurity/52320 2025-05-05 14:20:38+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/14867...
CVE-2022-42924 SQL injection in Forma LMS
Forma LMS on its 3.1.0 version and earlier is vulnerable to a SQL injection vulnerability. The exploitation of this vulnerability could allow an authenticated attacker with the role of student to perform a SQL injection on the 'dynfilter' parameter in the...
CVE-2022-42924
Forma LMS
KingCMS 0.6 - 'CONFIG[AdminPath]' Remote File Inclusion
source: https://www.securityfocus.com/bid/42924/info KingCMS is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information or to execute arbitrary script code in the...