CVE-2025-35062 Newforma Info Exchange (NIX) default anonymous access

Newforma Info Exchange NIX before version 2023.1 by default allows anonymous authentication which allows an unauthenticated attacker to exploit additional vulnerabilities that require authentication...

CVE-2025-35062 Newforma Info Exchange (NIX) default anonymous access

Newforma Info Exchange NIX before version 2023.1 by default allows anonymous authentication which allows an unauthenticated attacker to exploit additional vulnerabilities that require authentication...

CVE-2023-24592

Path traversal in the some IntelR oneAPI Toolkits and Component software before version 2023.1 may allow authenticated user to potentially enable escalation of privilege via local access...

CVE-2023-6364

In WhatsUp Gold versions released before 2023.1, a stored cross-site scripting XSS vulnerability has been identified. It is possible for an attacker to craft a XSS payload and store that value within a dashboard component. If a WhatsUp Gold user interacts with the crafted payload, the attacker...

PT-2023-32709 · Ipswitch · Whatsup Gold

Name of the Vulnerable Software and Affected Versions: WhatsUp Gold versions prior to 2023.1 Description: The issue is related to an API endpoint missing an authentication mechanism, allowing an unauthenticated attacker to enumerate ancillary credential information stored within the software...

CVE-2023-24592

Path traversal in the some IntelR oneAPI Toolkits and Component software before version 2023.1 may allow authenticated user to potentially enable escalation of privilege via local access...

PT-2023-19695 · Intel · Intel Oneapi Toolkit

Name of the Vulnerable Software and Affected Versions: IntelR oneAPI Toolkits and Component software versions prior to 2023.1 Description: The issue allows an authenticated user to potentially enable escalation of privilege via local access due to path traversal in the software. Recommendations:...

CVE-2022-48435

In JetBrains PhpStorm before 2023.1 source code could be logged in the local idea.log file...

CVE-2022-48432

In JetBrains IntelliJ IDEA before 2023.1 the bundled version of Chromium wasn't sandboxed...

JetBrains IntelliJ IDEA 安全漏洞

JetBrains IntelliJ IDEA is a set of integrated development environments for the Java language from the Czech company JetBrains. A security vulnerability exists in JetBrains IntelliJ IDEA versions prior to 2023.1, which stems from the possibility that NTLM hashes could be leaked through API method...

JetBrains IntelliJ IDEA 安全漏洞

JetBrains IntelliJ IDEA is a set of integrated development environments for the Java language from the Czech company JetBrains. A security vulnerability exists in JetBrains IntelliJ IDEA versions prior to 2023.1, which stems from an un-sandboxed bundled version of Chromium...

Autodesk Subassembly Composer 缓冲区错误漏洞

Autodesk Subassembly Composer is a component editor from Autodesk USA. Autodesk Subassembly Composer suffers from a buffer error vulnerability that stems from a maliciously crafted PKT file that could lead to a memory corruption vulnerability when used through the SubassemblyComposer.exe...