35 matches found
CVE-2026-7277
creationtimestamp| type| source ---|---|--- 2026-04-29 12:50:14+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mkn56yjc7r2m 2026-05-12 16:46:39+00:00| seen| https://vulnerability.circl.lu/bundle/20100033-b137-47a0-b98c-568c18deda5a...
CVE-2008-7277
Open Ticket Request System OTRS before 2.3.0-beta4 checks for the rw permission, instead of the configured merge permission, during authorization of merge operations, which might allow remote authenticated users to bypass intended access restrictions by merging two tickets...
CVE-2019-7277
Optergy Proton/Enterprise devices allow Unauthenticated Internal Network Information Disclosure...
CGA-JHX9-P2RX-7277
Bulletin has no description...
CVE-2025-7277
IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the...
CVE-2025-7277
IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the...
CVE-2025-7277 IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability
IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the...
CVE-2025-7277
CVE-2025-7277 affects IrfanView CADImage Plugin and its DWG file parsing. The vulnerability arises from insufficient validation of user-supplied data during DWG parsing, leading to a memory corruption condition that can be exploited to execute arbitrary code in the plugin process. Successful expl...
CVE-2025-7277 IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability
IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the...
CVE-2024-7277
A vulnerability was found in itsourcecode Alton Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/menu.php of the component Add a Menu. The manipulation of the argument image leads to unrestricted upload. The attack may be...
CVE-2024-7277 itsourcecode Alton Management System Add a Menu menu.php unrestricted upload
A vulnerability was found in itsourcecode Alton Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/menu.php of the component Add a Menu. The manipulation of the argument image leads to unrestricted upload. The attack may be...
Oracle Linux 9 : open-vm-tools (ELSA-2023-7277)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-7277 advisory. - Address CVE-2023-34058 - BZ 2246963 - SAML token signature token bypass. Tenable has extracted the preceding description block directly from the Orac...
Important: Red Hat Security Advisory: open-vm-tools security update
An update for open-vm-tools is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...
RHEL 9 : open-vm-tools (RHSA-2023:7277)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:7277 advisory. The Open Virtual Machine Tools are the open source implementation of the VMware Tools. They are a set of guest operating system virtualizati...
CVE-2020-7277
Protection mechanism failure in all processes in McAfee Endpoint Security ENS for Windows prior to 10.7.0 April 2020 Update allows local users to stop certain McAfee ENS processes, reducing the protection offered...
CVE-2020-7277
CVE-2020-7277 (McAfee Endpoint Security for Windows) is a local-privilege issue in ENS prior to the 10.7.0 April 2020 Update. The vulnerability is a protection mechanism failure that allows local users to stop certain ENS processes, reducing protection. Connected sources (SB10309) confirm affecte...
CVE-2019-7277
Optergy Proton/Enterprise devices allow Unauthenticated Internal Network Information Disclosure...
CVE-2019-7277
CVE-2019-7277 (Optergy Proton/Enterprise) affects Optergy Proton/Enterprise Building Management System. Public sources cite an unauthenticated internal network information disclosure vulnerability, enabling an attacker to obtain sensitive system details (e.g., internal IP, hostname, DNS informati...
CVE-2018-7277
CVE-2018-7277 affects RLE Wi-MGR/FDS-Wi 6.2 devices. A persistent XSS in the device web server, exploited via the BACnet implementation, allows remote attackers to inject malicious JavaScript. The issue is described as similar to a Cross Protocol Injection with SNMP. No explicit remediation or pa...
Ubuntu: Security Advisory (USN-3314-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...