8 matches found
CVE-2025-52048
Frappe CVE-2025-52048 affects Frappe 15.x.x prior to 15.72.0 and 14.x.x prior to 14.96.10. The vulnerability is a SQL Injection in the add_tag() function located at frappe/desk/doctype/tag/tag.py, where the dt parameter can be exploited to extract data from the database. Remediation: upgrade to F...
CVE-2024-52048
A LogServer link following vulnerability in Trend Micro Apex One could allow a local attacker to escalate privileges on affected installations. This vulnerability is similar to, but not identical to CVE-2024-52049. Please note: an attacker must first obtain the ability to execute low-privileged...
CVE-2024-52048
A LogServer link following vulnerability in Trend Micro Apex One could allow a local attacker to escalate privileges on affected installations. This vulnerability is similar to, but not identical to CVE-2024-52049. Please note: an attacker must first obtain the ability to execute low-privileged...
CVE-2024-52048
creationtimestamp| type| source ---|---|--- 2024-12-31 16:15:17+00:00| seen| https://infosec.exchange/users/cve/statuses/113748326308653723 2024-12-31 16:15:18+00:00| seen| https://infosec.exchange/users/cve/statuses/113748326324509203 2024-12-31 16:15:50+00:00| seen|...
CVE-2024-52048
The connected Red Hat and NVD entries confirm CVE-2024-52048 affects Trend Micro Apex One via a LogServer link vulnerability that allows local privilege escalation. An attacker must first execute low-privileged code on the target system; no public exploit details or affected version/patch informa...
CVE-2024-52048
A LogServer link following vulnerability in Trend Micro Apex One could allow a local attacker to escalate privileges on affected installations. This vulnerability is similar to, but not identical to CVE-2024-52049. Please note: an attacker must first obtain the ability to execute low-privileged...
CVE-2023-52048
creationtimestamp| type| source ---|---|--- 2024-02-28 21:26:55+00:00| seen| https://t.me/ctinow/195877 2024-02-28 21:27:05+00:00| seen| https://t.me/ctinow/195887...
CVE-2023-52048
RuoYi v4.7.8 contains a cross-site scripting (XSS) vulnerability in the /system/notice/ component (CVE-2023-52048). The CVSS 3.1 base score is 4.7 (Medium) with network access, requiring user interaction; no public exploit details are provided in the documents. Remediation/fix status is not expli...