Lucene search
K

11 matches found

SUSE CVE
SUSE CVE
added 2025/05/16 3:8 a.m.5 views

SUSE CVE-2021-1234

A vulnerability in the cluster management interface of Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to view sensitive information on an affected system. To be affected by this vulnerability, the vManage software must be in cluster mode. This vulnerability is due t...

5.3CVSS6.5AI score0.00765EPSS
Exploits1References3
Circl
Circl
added 2024/11/18 3:52 p.m.10 views

CVE-2021-1234

creationtimestamp| type| source ---|---|--- 2024-11-18 15:52:40+00:00| seen| https://infosec.exchange/users/cve/statuses/113504757865674846 2025-04-10 03:33:13+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmgkzglhv22h 2025-09-01 17:58:46+00:00| seen|...

5.3CVSS6.1AI score0.00765EPSS
Exploits1References7
CVE
CVE
added 2024/11/18 3:45 p.m.96 views

CVE-2021-1234

Affected product/edition: Cisco SD-WAN vManage Software (cluster mode)\nVulnerability summary: In the cluster management interface, there is an absence of authentication for sensitive information, allowing an unauthenticated, remote attacker to view sensitive data by sending a crafted request.\nR...

5.3CVSS5.2AI score0.00765EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2023/04/19 8:15 p.m.14 views

Integer overflow

In PVRSRVBridgePhysmemNewRamBackedLockedPMR of the PowerVR kernel driver, a missing size check means there is a possible integer overflow that could allow out-of-bounds heap access. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction i...

4.3CVSS7.7AI score0.00091EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2022/06/22 9:22 p.m.21 views

Unsafe deserialisation in the PKI implementation scheme of NVFlare

Impact NVFLARE contains a vulnerability in its PKI implementation module, where The CA credentials are transported via pickle and no safe deserialization. The deserialization of Untrusted Data may allow an unprivileged network attacker to cause Remote Code Execution, Denial Of Service, and Impact...

9.8CVSS9.1AI score0.0193EPSS
Exploits0References5Affected Software1
wpexploit
wpexploit
added 2021/04/20 12:0 a.m.283 views

Kaswara Modern VC Addons (0-day) - Unauthenticated Arbitrary File Upload

The plugin allows unauthenticated arbitrary file upload via the 'uploadFontIcon' AJAX action. The supplied zipfile being unzipped in the wp-content/uploads/kaswara/fontsicon directory with no checks for malicious files such as PHP. The vendor has been unresponsive to both the reporter and Envato,...

7.5CVSS1.6AI score0.4214EPSS
Exploits3References1
CNVD
CNVD
added 2021/02/03 12:0 a.m.24 views

YCCMS file upload vulnerability

Yccms is a Php-based lightweight CMS builder from the Yccms team. yccms 3.3 has a file upload vulnerability, which stems from an error in the xhUp function's determination of request parameters and can be exploited by attackers to cause remote code execution...

9.8CVSS4.3AI score0.02827EPSS
Exploits1References1
Openbugbounty
Openbugbounty
added 2020/04/03 9:36 p.m.10 views

x.emailuk.thewhitecompany.com Open Redirect vulnerability

Open Bug Bounty ID: OBB-1132103 Security Researcher gazcbm Helped patch 0 vulnerabilities Received 0 Coordinated Disclosure badges , found a security vulnerability affecting x.emailuk.thewhitecompany.com website and its users. Following coordinated and responsible vulnerability disclosure...

0.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2020/03/29 12:4 a.m.8 views

trick.sextgem.com Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1127203 Security Researcher g0bl1nsec Helped patch 3768 vulnerabilities Received 4 Coordinated Disclosure badges Received 3 recommendations , a holder of 4 badges for responsible and coordinated disclosure, found a security vulnerability affecting trick.sextgem.com website...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2018/04/09 12:0 a.m.47 views

PMS 0.42 - Local Stack-Based Overflow (ROP)

Exploit Author: Juan Sacco - http://exploitpack.com Tested on: Kali i686 GNU/Linux Description: PMS 0.42 is prone to a local unauthenticated stack-based overflow The vulnerability is due to an unproper filter of user supplied input while reading the configuration file and parsing the malicious...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.14 views

BroadWin WebAccess SCADA/HMI Client Remote Code Execution

No description provided by source. html bBroadWin WebAccess SCADA/HMI Remote Code Execution Vulnerability 0day/bbrbr WebAccess is the first fully web browser-based software package forbr human-machine interfaces HMI, and supervisory control and databr acquisition SCADA. bwocxrun.ocx ActiveX...

7.1AI score
Exploits0
Rows per page
Query Builder