Lucene search
K

120961 matches found

Vulnrichment
Vulnrichment
added 2026/02/01 2:38 p.m.2 views

CVE-2020-37061 BOOTP Turbo 2.0.1214 - 'BOOTP Turbo' Unquoted Service Path

BOOTP Turbo 2.0.1214 contains an unquoted service path vulnerability that allows local attackers to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted executable path to inject malicious code that will be executed when the service starts with...

8.5CVSS5.9AI score0.00119EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/02/01 12:0 a.m.9 views

PT-2026-5576

Veritas NetBackup 7.0 contains an unquoted service path vulnerability in the NetBackup INET Daemon service that allows local users to potentially execute arbitrary code. Attackers can exploit the unquoted path in C:Program FilesVeritasNetBackupbinbpinetd.exe to inject malicious code that would...

8.5CVSS6.1AI score0.0015EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/01/31 9:14 p.m.11 views

CVE-2026-25129

PsySH is a runtime developer console, interactive debugger, and REPL for PHP. Prior to versions 0.11.23 and 0.12.19, PsySH automatically loads and executes a .psysh.php file from the Current Working Directory CWD on startup. If an attacker can write to a directory that a victim later uses as thei...

7.3CVSS6.5AI score0.0028EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/31 3:21 p.m.7 views

CVE-2026-1699

In the Eclipse Theia Website repository, the GitHub Actions workflow .github/workflows/preview.yml used pullrequesttarget trigger while checking out and executing untrusted pull request code. This allowed any GitHub user to execute arbitrary code in the repository's CI environment with access to...

10CVSS6.2AI score0.00504EPSS
Exploits1References1
EUVD
EUVD
added 2026/01/31 12:30 a.m.8 views

EUVD-2020-30932

Frigate 3.36.0.9 contains a local buffer overflow vulnerability in the Command Line input field that allows attackers to execute arbitrary code. Attackers can craft a malicious payload to overflow the buffer, bypass DEP, and execute commands like launching calc.exe through a specially crafted inp...

8.4CVSS6.3AI score0.00201EPSS
Exploits0References4
EUVD
EUVD
added 2026/01/31 12:30 a.m.6 views

EUVD-2020-30947

FTPDummy 4.80 contains a local buffer overflow vulnerability in its preference file handling that allows attackers to execute arbitrary code. Attackers can craft a malicious preference file with carefully constructed shellcode to trigger a structured exception handler overwrite and execute system...

8.4CVSS6.3AI score0.00157EPSS
Exploits0References4
EUVD
EUVD
added 2026/01/31 12:30 a.m.6 views

EUVD-2020-30952

Nidesoft DVD Ripper 5.2.18 contains a local buffer overflow vulnerability in the License Code registration parameter that allows attackers to execute arbitrary code. Attackers can craft a malicious payload and paste it into the License Code field to trigger a stack-based buffer overflow and execu...

8.4CVSS6.4AI score0.00157EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/31 12:0 a.m.3 views

EulerOS Virtualization 2.10.0 : vim (EulerOS-SA-2026-1202)

According to the versions of the vim packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Vim is an open source, command line text editor. Prior to version 9.1.1552, a path traversal issue in Vims tar.vim plugin can allow...

7.8CVSS5.1AI score0.00731EPSS
Exploits3References8
Tenable Nessus
Tenable Nessus
added 2026/01/31 12:0 a.m.4 views

EulerOS Virtualization 2.10.1 : python-jinja2 (EulerOS-SA-2026-1142)

According to the versions of the python-jinja2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Jinja is an extensible templating engine. Prior to 3.1.6, an oversight in how the Jinja sandboxed environment interacts with...

8.8CVSS6.1AI score0.00465EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/31 12:0 a.m.4 views

IBM WebSphere Application Server Liberty 17.0.0.3 < 26.0.0.2 RCE (7258224)

The version of IBM WebSphere Application Server Liberty running on the remote host is affected by a remote code execution vulnerability as referenced in the 7258224 advisory. - IBM WebSphere Application Server Liberty could allow a privileged user to upload a zip archive containing path traversal...

7.6CVSS6.1AI score0.0039EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/31 12:0 a.m.4 views

EulerOS Virtualization 2.10.0 : freetype (EulerOS-SA-2026-1165)

According to the versions of the freetype package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : An out of bounds write exists in FreeType versions 2.13.0 and below newer versions of FreeType are not vulnerable when attempting ...

8.1CVSS7.2AI score0.23357EPSS
Exploits1References2
NVD
NVD
added 2026/01/30 11:16 p.m.7 views

CVE-2020-37040

Code Blocks 17.12 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by crafting a malicious file name with Unicode characters. Attackers can trigger the vulnerability by pasting a specially crafted payload into the file name field during project...

8.4CVSS0.00188EPSS
Exploits0References4
NVD
NVD
added 2026/01/30 11:16 p.m.5 views

CVE-2020-37042

Frigate Professional 3.36.0.9 contains a local buffer overflow vulnerability in the 'Find Computer' feature that allows attackers to execute arbitrary code by overflowing the computer name input field. Attackers can craft a malicious payload that triggers a buffer overflow, enabling code executio...

8.4CVSS0.00188EPSS
Exploits0References3
NVD
NVD
added 2026/01/30 11:16 p.m.4 views

CVE-2020-37031

Simple Startup Manager 1.17 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting memory through the 'File' input parameter. Attackers can craft a malicious payload with 268 bytes to trigger code execution, bypassing DEP and overwriting memo...

8.6CVSS0.00161EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/01/30 11:16 p.m.6 views

CVE-2020-37040

Code Blocks 17.12 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by crafting a malicious file name with Unicode characters. Attackers can trigger the vulnerability by pasting a specially crafted payload into the file name field during project...

8.4CVSS6.4AI score0.00188EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/01/30 10:7 p.m.4 views

CVE-2020-37049

Frigate 3.36.0.9 contains a local buffer overflow vulnerability in the Command Line input field that allows attackers to execute arbitrary code. Attackers can craft a malicious payload to overflow the buffer, bypass DEP, and execute commands like launching calc.exe through a specially crafted inp...

8.4CVSS6.3AI score0.00201EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/01/30 10:7 p.m.9 views

CVE-2020-37049

CVE-2020-37049 affects Frigate 3.36.0.9. The vulnerability is a local buffer overflow in the Command Line input field that can allow an attacker to execute arbitrary code, bypass DEP, and run commands (e.g., calc.exe) via a specially crafted input sequence. Exploitation details and a PoC exist in...

8.4CVSS6.3AI score0.00201EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/01/30 10:7 p.m.21 views

CVE-2020-37049 Frigate 3.36.0.9 - 'Command Line' Local Buffer Overflow

Frigate 3.36.0.9 contains a local buffer overflow vulnerability in the Command Line input field that allows attackers to execute arbitrary code. Attackers can craft a malicious payload to overflow the buffer, bypass DEP, and execute commands like launching calc.exe through a specially crafted inp...

8.4CVSS0.00201EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/01/30 10:7 p.m.20 views

CVE-2020-37040 Code Blocks 17.12 - 'File Name' Local Buffer Overflow

Code Blocks 17.12 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by crafting a malicious file name with Unicode characters. Attackers can trigger the vulnerability by pasting a specially crafted payload into the file name field during project...

8.4CVSS0.00188EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/01/30 10:7 p.m.3 views

CVE-2020-37040

Code Blocks 17.12 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by crafting a malicious file name with Unicode characters. Attackers can trigger the vulnerability by pasting a specially crafted payload into the file name field during project...

8.4CVSS6.5AI score0.00188EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder