CVE-2026-42977 Windows Push Notifications Elevation of Privilege Vulnerability

...

CVE-2026-42977

creationtimestamp| type| source ---|---|--- 2026-06-09 15:44:28+00:00| seen| https://advisories.ncsc.nl/advisory?id=NCSC-2026-0181 2026-06-09 16:12:18+00:00| seen| https://www.thezdi.com/blog/2026/6/9/the-june-2026-security-update-review...

CVE-2025-42977

SAP NetWeaver Visual Composer contains a Directory Traversal vulnerability caused by insufficient validation of input paths provided by a high-privileged user. This allows an attacker to read or modify arbitrary files, resulting in a high impact on confidentiality and a low impact on integrity...

CVE-2025-42977

creationtimestamp| type| source ---|---|--- 2025-06-10 01:33:53+00:00| seen| Telegram/VjI6o5iinQgIrx0kweQ6vZ4ijUEDsimPFeQ2gUe4Yzczac...

CVE-2025-42977

CVE-2025-42977 concerns SAP NetWeaver Visual Composer and is a directory-traversal vulnerability caused by insufficient validation of input paths provided by a high-privileged user. The affected component is the SAP NetWeaver Visual Composer environment; the underlying issue is improper input pat...

CVE-2021-42977

NoMachine Enterprise Desktop is affected by Integer Overflow. IOCTL Handler 0x22001B in the NoMachine Enterprise Desktop above 4.0.346 and below 7.7.4 allow local attackers to execute arbitrary code in kernel mode or cause a denial of service memory corruption and OS crash via specially crafted I...

CVE-2023-42977

A path handling issue was addressed with improved validation. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to break out of its sandbox...

CVE-2023-42977

creationtimestamp| type| source ---|---|--- 2025-04-11 15:24:57+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114320021678810637 2025-04-11 17:38:13+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmkkp5xnjc2h 2025-04-11 17:51:07+00:00| seen|...

CVE-2023-42977

A path handling issue was addressed with improved validation. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to break out of its sandbox...

CVE-2023-42977

CVE-2023-42977 concerns a path-handling issue in Apple platforms that could allow an app to break out of its sandbox. The connected documents specify that the vulnerability affects Apple iOS prior to 17 and iPadOS prior to 17, and macOS Sonoma prior to 14, with the root cause described as a path ...

CVE-2024-42977

creationtimestamp| type| source ---|---|--- 2024-08-15 20:09:03+00:00| seen| https://t.me/cvedetector/3260...

CVE-2024-42977

Tenda FH1206 v02.03.01.35 was discovered to contain a stack overflow via the qos parameter in the fromqossetting function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted POST request...

CVE-2022-42977

The Netic User Export add-on before 1.3.5 for Atlassian Confluence has the functionality to generate a list of users in the application, and export it. During export, the HTTP request has a fileName parameter that accepts any file on the system e.g., an SSH private key to be downloaded...

CVE-2022-42977

The Netic User Export add-on before 1.3.5 for Atlassian Confluence has the functionality to generate a list of users in the application, and export it. During export, the HTTP request has a fileName parameter that accepts any file on the system e.g., an SSH private key to be downloaded...

CVE-2022-42977

The Netic User Export add-on before 1.3.5 for Atlassian Confluence has the functionality to generate a list of users in the application, and export it. During export, the HTTP request has a fileName parameter that accepts any file on the system e.g., an SSH private key to be downloaded...

CVE-2022-42977

The Netic User Export add-on before 1.3.5 for Atlassian Confluence has the functionality to generate a list of users in the application, and export it. During export, the HTTP request has a fileName parameter that accepts any file on the system e.g., an SSH private key to be downloaded...

CVE-2022-42977

The CVE-2022-42977 relates to the Netic User Export add-on for Atlassian Confluence (before version 1.3.5). The vulnerability arises from the export functionality, where the HTTP request’s fileName parameter can specify any file on the system, enabling retrieval of arbitrary files (e.g., SSH priv...

CVE-2021-42977

creationtimestamp| type| source ---|---|--- 2021-12-07 22:22:10+00:00| seen| https://t.me/cibsecurity/33498...

CVE-2021-42977

NoMachine Enterprise Desktop is affected by an integer overflow in the IOCTL handler 0x22001B. Vulnerable versions are above 4.0.346 and below 7.7.4. Local attackers can exploit this to execute arbitrary code in kernel mode or cause a denial of service via specially crafted I/O Request Packets, l...