ECHO-B947-D52E-7241

Bulletin has no description...

RockyLinux 9 : rust-bootupd (RLSA-2025:7241)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:7241 advisory. rust-openssl: rust openssl ssl::selectnextproto use after free CVE-2025-24898 Tenable has extracted the preceding description block directly from the RockyLinux...

CVE-2025-7241 IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability

IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the...

CVE-2025-7241 IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability

IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the...

CVE-2025-7241

creationtimestamp| type| source ---|---|--- 2025-07-08 03:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-489/...

Oracle Linux 9 : rust-bootupd (ELSA-2025-7241)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2025-7241 advisory. 0.2.27-3 - spec: remove ExcludeArch ix86 as this is c9s Resolves: RHEL-77736, RHEL-79091 0.2.27-2 - Add git to the build requires Resolves: RHEL-77736, RHEL-790...

CVE-2006-7241

The Image Viewer component in IBM FileNet P8 Application Engine P8AE 3.5.1 before 3.5.1-002 removes a user from an ACL when the user is denied all permissions for an annotation, which might allow remote authenticated users to bypass intended access restrictions in opportunistic circumstances...

CVE-2023-7241

creationtimestamp| type| source ---|---|--- 2025-02-12 15:10:09+00:00| seen| https://bsky.app/profile/neodyme.io/post/3lhyhf44inc2b...

CVE-2024-7241

Panda Security Dome Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Panda Security Dome. An attacker must first obtain the ability to execute low-privileged code on the target system in order to...

PT-2024-33254 · Zohocorp · Zoho Manageengine Admanager Plus

Name of the Vulnerable Software and Affected Versions: Zohocorp ManageEngine ADManager Plus versions 7241 and prior Description: The issue is related to SQL Injection in the Archived Audit Report. This allows for potential exploitation. Recommendations: For versions 7241 and prior, update to a...

CVE-2023-7241

Privilege Escalation in WRSA.EXE in Webroot Antivirus 8.0.1X- 9.0.35.12 on Windows64 bit and 32 bit allows malicious software to abuse WRSA.EXE to delete arbitrary and protected files...

CVE-2023-7241 Webroot Antivirus COM-Hijacking LPE

Privilege Escalation in WRSA.EXE in Webroot Antivirus 8.0.1X- 9.0.35.12 on Windows64 bit and 32 bit allows malicious software to abuse WRSA.EXE to delete arbitrary and protected files...

CVE-2023-7241

CVE-2023-7241 affects Webroot Antivirus WRSA.EXE, with privilege escalation on Windows (64-bit and 32-bit) versions 8.0.1X through 9.0.35.12. The issue allows a malicious program to abuse WRSA.EXE to delete arbitrary and protected files, constituting local privilege escalation with high impact to...

CVE-2023-7241 Webroot Antivirus COM-Hijacking LPE

Privilege Escalation in WRSA.EXE in Webroot Antivirus 8.0.1X- 9.0.35.12 on Windows64 bit and 32 bit allows malicious software to abuse WRSA.EXE to delete arbitrary and protected files...

Schneider Electric Modicon Premium, Modicon Quantum, Modicon M340, and Modicon BMXNOR0200 Use of Hard-Coded Credentials (CVE-2018-7241)

Hard coded accounts exist in Schneider Electric's Modicon Premium, Modicon Quantum, Modicon M340, and BMXNOR0200 controllers in all versions of the communication modules. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information...

WordPress WP Database Backup Plugin <= 5.7.1 Information Disclosure Vulnerability

The WordPress plugin Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it...

CVE-2020-7241

The CVE concerns the WordPress WP Database Backup plugin (affected through 5.5, with related OpenVAS entry for

Design/Logic Flaw

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Epic Games Launcher versions prior to 8.2.2. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw...

CVE-2018-17707

Epic Games Launcher protocol handler vulnerability (com.epicgames.launcher) affects versions prior to 8.2.2. A crafted URI can trigger a system call using a user-supplied string, enabling remote code execution in the current user context. User interaction is required (visiting a malicious page or...

CVE-2018-17707

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Epic Games Launcher versions prior to 8.2.2. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw...