Lucene search
K

124 matches found

OSV
OSV
added 2024/03/12 9:15 a.m.3 views

CVE-2024-25999

An unauthenticated local attacker can perform a privilege escalation due to improper input validation in the OCPP agent service...

7.8CVSS5.8AI score0.00408EPSS
Exploits0References1
Prion
Prion
added 2024/03/12 9:15 a.m.13 views

Input validation

An unauthenticated local attacker can perform a privilege escalation due to improper input validation in the OCPP agent service...

4.6CVSS7.3AI score0.00408EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/03/12 8:11 a.m.20 views

CVE-2024-25999 PHOENIX CONTACT: Privilege escalation in the OCPP agent service

An unauthenticated local attacker can perform a privilege escalation due to improper input validation in the OCPP agent service...

8.4CVSS7.1AI score0.00408EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/03/12 8:11 a.m.16 views

CVE-2024-25999 PHOENIX CONTACT: Privilege escalation in the OCPP agent service

An unauthenticated local attacker can perform a privilege escalation due to improper input validation in the OCPP agent service...

8.4CVSS8.6AI score0.00408EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.31 views

EulerOS 2.0 SP9 : qemu (EulerOS-SA-2023-2906)

According to the versions of the qemu package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. This flaw allows a crafted guest driver to execute HW commands whe...

8.8CVSS6.9AI score0.01606EPSS
Exploits0References6
OSV
OSV
added 2023/11/22 5:15 p.m.5 views

CVE-2023-20241

Multiple vulnerabilities in Cisco Secure Client Software, formerly AnyConnect Secure Mobility Client, could allow an authenticated, local attacker to cause a denial of service DoS condition on an affected system. These vulnerabilities are due to an out-of-bounds memory read from Cisco Secure Clie...

5.5CVSS5.8AI score0.00197EPSS
Exploits0References1
NVD
NVD
added 2023/11/22 5:15 p.m.21 views

CVE-2023-20240

Multiple vulnerabilities in Cisco Secure Client Software, formerly AnyConnect Secure Mobility Client, could allow an authenticated, local attacker to cause a denial of service DoS condition on an affected system. These vulnerabilities are due to an out-of-bounds memory read from Cisco Secure Clie...

5.5CVSS0.00197EPSS
Exploits0References1
Prion
Prion
added 2023/11/22 5:15 p.m.18 views

Out-of-bounds

Multiple vulnerabilities in Cisco Secure Client Software, formerly AnyConnect Secure Mobility Client, could allow an authenticated, local attacker to cause a denial of service DoS condition on an affected system. These vulnerabilities are due to an out-of-bounds memory read from Cisco Secure Clie...

1.7CVSS6.9AI score0.00197EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2023/11/22 5:10 p.m.68 views

CVE-2023-20241

Cisco Secure Client Software (formerly AnyConnect) is affected by multiple DoS vulnerabilities due to an out-of-bounds memory read. An authenticated, local attacker who has credentials on a multi-user system can exploit this by logging in while another user is active, sending crafted packets to a...

5.5CVSS5.4AI score0.00197EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/11/22 5:10 p.m.10 views

CVE-2023-20240

Multiple vulnerabilities in Cisco Secure Client Software, formerly AnyConnect Secure Mobility Client, could allow an authenticated, local attacker to cause a denial of service DoS condition on an affected system. These vulnerabilities are due to an out-of-bounds memory read from Cisco Secure Clie...

5.5CVSS6.1AI score0.00197EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/10/31 2:34 a.m.3 views

SUSE CVE-2019-10146

A Reflected Cross Site Scripting flaw was found in all pki-core 10.x.x versions module from the pki-core server due to the CA Agent Service not properly sanitizing the certificate request page. An attacker could inject a specially crafted value that will be executed on the victim's browser...

4.7CVSS6.2AI score0.00661EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/10/31 2:34 a.m.1 views

SUSE CVE-2019-10179

A vulnerability was found in all pki-core 10.x.x versions, where the Key Recovery Authority KRA Agent Service did not properly sanitize recovery request search page, enabling a Reflected Cross Site Scripting XSS vulnerability. An attacker could trick an authenticated victim into executing special...

4.3CVSS6.1AI score0.00919EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/06/06 12:0 a.m.2 views

PT-2023-3203 · Trend Micro · Trend Micro Apex One Security Agent +1

Name of the Vulnerable Software and Affected Versions: Trend Micro Apex One Security Agent affected versions not specified Trend Micro Apex One as a Service affected versions not specified Description: The issue is related to the use of dangerous methods or functions in the Trend Micro Apex One a...

7.8CVSS7.3AI score0.00234EPSS
Exploits0References10
ATTACKERKB
ATTACKERKB
added 2023/03/28 1:15 p.m.3 views

CVE-2022-47529

Insecure Win32 memory objects in Endpoint Windows Agents in RSA NetWitness Platform before 12.2 allow local and admin Windows user accounts to modify the endpoint agent service configuration: to either disable it completely or run user-supplied code or commands, thereby bypassing tamper-protectio...

6.7CVSS6.7AI score0.0157EPSS
Exploits5References9
OSV
OSV
added 2023/03/28 1:15 p.m.8 views

CVE-2022-47529

Insecure Win32 memory objects in Endpoint Windows Agents in RSA NetWitness Platform before 12.2 allow local and admin Windows user accounts to modify the endpoint agent service configuration: to either disable it completely or run user-supplied code or commands, thereby bypassing tamper-protectio...

6.7CVSS5.8AI score0.0157EPSS
Exploits5References8
NVD
NVD
added 2022/06/15 10:15 p.m.16 views

CVE-2022-30154

Microsoft File Server Shadow Copy Agent Service RVSS Elevation of Privilege Vulnerability...

5.3CVSS0.01526EPSS
Exploits0References2
OSV
OSV
added 2022/06/15 10:15 p.m.1 views

CVE-2022-30154

Microsoft File Server Shadow Copy Agent Service RVSS Elevation of Privilege Vulnerability...

5.3CVSS5.8AI score0.01526EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/06/15 9:51 p.m.26 views

CVE-2022-30154 Microsoft File Server Shadow Copy Agent Service (RVSS) Elevation of Privilege Vulnerability

...

5.3CVSS7.4AI score0.01526EPSS
Exploits0References1
NVD
NVD
added 2021/06/16 6:15 p.m.19 views

CVE-2021-1568

A vulnerability in Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to cause a denial of service DoS condition on an affected system. This vulnerability is due to uncontrolled memory allocation. An attacker could exploit this vulnerability by copyin...

5.5CVSS0.00208EPSS
Exploits0References1
Prion
Prion
added 2021/06/16 6:15 p.m.26 views

Design/Logic Flaw

A vulnerability in Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to cause a denial of service DoS condition on an affected system. This vulnerability is due to uncontrolled memory allocation. An attacker could exploit this vulnerability by copyin...

2.1CVSS5.3AI score0.00208EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder