Lucene search
K

1649 matches found

OSV
OSV
added 2024/12/11 2:40 p.m.5 views

SUSE-SU-2024:4295-1 Security update for socat

This update for socat fixes the following issues: - CVE-2024-54661: Fixed arbitrary file overwrite via predictable /tmp directory in socat readline.sh bsc1225462...

9.8CVSS9.5AI score0.00794EPSS
Exploits0References3
SUSE Linux
SUSE Linux
added 2024/12/11 1:6 p.m.3 views

Security update for socat

This update for socat fixes the following issues: CVE-2024-54661: Fixed arbitrary file overwrite via predictable /tmp directory bsc1225462 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can...

5CVSS7.5AI score0.00794EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/11/18 9:4 a.m.15 views

CVE-2024-41972 WAGO: Arbitrary File Overwrite Leading to Privileged File Read in Multiple Devices

A low privileged remote attacker can overwrite an arbitrary file on the filesystem which may lead to an arbitrary file read with root privileges...

6.5CVSS7AI score0.00585EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/11/18 9:4 a.m.11 views

CVE-2024-41971 WAGO: Arbitrary File Overwrite in Multiple Devices

A low privileged remote attacker can overwrite an arbitrary file on the filesystem leading to a DoS and data loss...

8.1CVSS7AI score0.00605EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/11/18 12:0 a.m.5 views

PT-2024-29671 · Wago · Cc100 0751-9X01 +10

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: A low privileged remote attacker can overwrite an arbitrary file on the filesystem, leading to a Denial of Service DoS and data loss. Recommendations: A...

8.1CVSS7.1AI score0.00605EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2024/11/15 3:15 p.m.24 views

CVE-2023-20091 Cisco TelePresence Collaboration Endpoint and RoomOS Software Arbitrary File Overwrite Vulnerability

A vulnerability in the CLI of Cisco TelePresence CE and RoomOS could allow an authenticated, local attacker to overwrite arbitrary files on the local file system of an affected device. This vulnerability is due to improper access controls on files that are on the local file system. An attacker...

5.1CVSS7.1AI score0.00192EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/15 3:15 p.m.19 views

CVE-2023-20091 Cisco TelePresence Collaboration Endpoint and RoomOS Software Arbitrary File Overwrite Vulnerability

A vulnerability in the CLI of Cisco TelePresence CE and RoomOS could allow an authenticated, local attacker to overwrite arbitrary files on the local file system of an affected device. This vulnerability is due to improper access controls on files that are on the local file system. An attacker...

5.1CVSS0.00192EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2024/11/14 8:0 a.m.3 views

Arbitrary File Overwrite in download_model_with_test_data in onnx/onnx

...

8.8CVSS7.9AI score0.01168EPSS
Exploits1
NVD
NVD
added 2024/11/11 2:15 p.m.15 views

CVE-2024-34014

Arbitrary file overwrite during recovery due to improper symbolic link handling. The following products are affected: Acronis Backup plugin for cPanel & WHM Linux before build 1.8.3.818, Acronis Backup plugin for cPanel & WHM Linux before build 1.9.1.892, Acronis Backup extension for Plesk Linux...

5.5CVSS0.00196EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/11/11 1:20 p.m.6 views

CVE-2024-34014

Arbitrary file overwrite during recovery due to improper symbolic link handling. The following products are affected: Acronis Backup plugin for cPanel & WHM Linux before build 1.8.3.818, Acronis Backup plugin for cPanel & WHM Linux before build 1.9.1.892, Acronis Backup extension for Plesk Linux...

5.5CVSS5.5AI score0.00196EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/11 1:20 p.m.19 views

CVE-2024-34014

Arbitrary file overwrite during recovery due to improper symbolic link handling. The following products are affected: Acronis Backup plugin for cPanel & WHM Linux before build 1.8.3.818, Acronis Backup plugin for cPanel & WHM Linux before build 1.9.1.892, Acronis Backup extension for Plesk Linux...

5.5CVSS0.00196EPSS
Exploits0References1
CVE
CVE
added 2024/11/11 1:20 p.m.46 views

CVE-2024-34014

CVE-2024-34014 affects Acronis Backup plugin for cPanel & WHM (Linux) prior to builds 1.8.3.818 and 1.9.1.892, Acronis Backup extension for Plesk prior to 1.8.6.599, and Acronis Backup plugin for DirectAdmin prior to 1.2.2.181. The vulnerability is an arbitrary file overwrite during recovery caus...

5.5CVSS5.5AI score0.00196EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/11/04 12:0 a.m.4 views

PT-2024-34531 · Hornetq · Hornetq

Name of the Vulnerable Software and Affected Versions: hornetq version 2.4.9 Description: An issue in the createTempFile method allows attackers to arbitrarily overwrite files or access sensitive information. Recommendations: For hornetq version 2.4.9, consider disabling the createTempFile method...

9.1CVSS6.7AI score0.00699EPSS
Exploits1References10
CNNVD
CNNVD
added 2024/11/04 12:0 a.m.2 views

HornetQ 安全漏洞

HornetQ is an open source project from HornetQ Open Source for building multi-protocol, embeddable, very high performance clustered asynchronous messaging systems. A security vulnerability exists in HornetQ version v2.4.9, which stems from the createTempFile function allowing an attacker to...

9.1CVSS6.7AI score0.00699EPSS
Exploits1References3
OSV
OSV
added 2024/10/22 7:15 p.m.3 views

CVE-2024-41183

Trend Micro VPN, version 5.8.1012 and below is vulnerable to an arbitrary file overwrite under specific conditions that can lead to elevation of privileges...

7.8CVSS5.9AI score0.01017EPSS
Exploits0References3
NVD
NVD
added 2024/10/22 7:15 p.m.12 views

CVE-2024-41183

Trend Micro VPN, version 5.8.1012 and below is vulnerable to an arbitrary file overwrite under specific conditions that can lead to elevation of privileges...

7.8CVSS0.01017EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/10/22 6:26 p.m.27 views

CVE-2024-41183

Trend Micro VPN, version 5.8.1012 and below is vulnerable to an arbitrary file overwrite under specific conditions that can lead to elevation of privileges...

7.8CVSS0.01017EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/10/22 6:26 p.m.16 views

CVE-2024-41183

Trend Micro VPN, version 5.8.1012 and below is vulnerable to an arbitrary file overwrite under specific conditions that can lead to elevation of privileges...

7.8CVSS7AI score0.01017EPSS
Exploits0References3
CVE
CVE
added 2024/10/22 6:26 p.m.73 views

CVE-2024-41183

CVE-2024-41183 affects Trend Micro VPN/VPN Proxy One Pro. Concrete details in connected sources show a local-privilege-escalation via arbitrary file overwrite in the DEP Manager (for Trend Micro VPN Proxy One Pro) and a similar path in VpnBackgroundController for Trend Micro VPN Proxy One Pro. Af...

7.8CVSS7.1AI score0.01017EPSS
Exploits0References3Affected Software1
Veracode
Veracode
added 2024/10/18 6:24 a.m.4 views

Arbitrary File Overwrite

github.com/fkie-cad/yapscan is vulnerable to Arbitrary File Overwrite. The vulnerability is due to lack of client authentication and improper server permissions, allowing an attacker to forge requests that overwrite arbitrary files on the host system, potentially leading to data loss...

7.4AI score
Exploits0
Rows per page
Query Builder