CVE-2026-6264

creationtimestamp| type| source ---|---|--- 2026-04-14 03:00:29+00:00| seen| https://infosec.exchange/users/offseq/statuses/116400824547176921 2026-04-14 03:00:32+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mjgfaosg362i 2026-04-14 04:00:49+00:00| seen|...

MINI-32QM-6264-V2HX

Bulletin has no description...

CVE-2017-6264 vulnerabilities

Vulnerabilities for packages: linux-qemu, linux-vmware, linux-qemu-melange...

Velociraptor leveraged in ransomware attacks

Cisco Talos has confirmed that ransomware operators are leveraging Velociraptor, an open-source digital forensics and incident response DFIR tool that had not previously been definitively tied to ransomware incidents. We assess with moderate confidence that this activity can be attributed to thre...

EUVD-2020-6264

Malware in sbrugna...

CGA-263J-6264-2XG2

Bulletin has no description...

CVE-2025-6264

Velociraptor allows collection of VQL queries packaged into Artifacts from endpoints. These artifacts can be used to do anything and usually run with elevated permissions. To limit access to some dangerous artifact, Velociraptor allows for those to require high permissions like EXECVE to launch...

CVE-2025-6264

Velociraptor allows collection of VQL queries packaged into Artifacts from endpoints. These artifacts can be used to do anything and usually run with elevated permissions. To limit access to some dangerous artifact, Velociraptor allows for those to require high permissions like EXECVE to launch...

CVE-2025-6264

creationtimestamp| type| source ---|---|--- 2025-06-20 02:43:10+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/18894 2025-06-20 03:44:14+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lrz4qjqujj2k 2025-10-09 12:00:02+00:00| seen|...

CVE-2025-6264 Velociraptor priviledge escalation via UpdateConfig artifact

Velociraptor allows collection of VQL queries packaged into Artifacts from endpoints. These artifacts can be used to do anything and usually run with elevated permissions. To limit access to some dangerous artifact, Velociraptor allows for those to require high permissions like EXECVE to launch...

CVE-2025-6264 Velociraptor priviledge escalation via UpdateConfig artifact

Velociraptor allows collection of VQL queries packaged into Artifacts from endpoints. These artifacts can be used to do anything and usually run with elevated permissions. To limit access to some dangerous artifact, Velociraptor allows for those to require high permissions like EXECVE to launch...

CVE-2025-6264

Velociraptor CVE-2025-6264 describes privilege escalation via the Admin.Client.UpdateClientConfig artifact. The issue arises because this artifact does not enforce an additional required permission, allowing users with COLLECT_CLIENT (usually Investigator) to collect it and update configuration. ...

CVE-2020-6264

SAP Commerce, versions - 6.7, 1808, 1811, 1905, may allow an attacker to access information under certain conditions which would otherwise be restricted, leading to Information Disclosure...

CVE-2024-6264 Post Meta Data Manager <= 1.2.3 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Post Meta Data Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘$metakey’ parameter in all versions up to, and including, 1.2.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

RHEL 8 : insights-client (RHSA-2023:6264)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2023:6264 advisory. Red Hat Insights is a service that provides analysis of registered Red Hat-based systems. The insights- client package can gather the required data...

Ubuntu: Security Advisory (USN-6264-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian: Security Advisory (DLA-561-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2020-6264

SAP Commerce, versions - 6.7, 1808, 1811, 1905, may allow an attacker to access information under certain conditions which would otherwise be restricted, leading to Information Disclosure...

CVE-2020-6264

SAP Commerce, versions - 6.7, 1808, 1811, 1905, may allow an attacker to access information under certain conditions which would otherwise be restricted, leading to Information Disclosure...

CVE-2020-6264

SAP Commerce (versions 6.7, 1808, 1811, 1905) is affected by an information-disclosure vulnerability. The available connected sources indicate an attacker could access information that should be restricted under certain conditions. The exact root cause, vulnerable component/file, exploit details,...