Lucene search
K

9 matches found

BDU FSTEC
BDU FSTEC
added 2025/07/04 12:0 a.m.5 views

The vulnerability of the OAM service of the Nokia Single RAN network management platform allows a hacker to enhance their privileges.

The vulnerability of the OAM service of the Nokia Single RAN network management platform is related to incorrect restrictions on the path name to the catalog, leading to errors in privilege management. Exploiting this vulnerability can allow attackers to enhance their privileges...

6.4CVSS5.5AI score0.00135EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/01/17 12:0 a.m.8 views

The vulnerability of the Ivanti EPM endpoint management software lies in the improper restriction of path names in the catalog, which allows a malicious actor to gain unauthorized access to protected information.

The vulnerability of the Ivanti EPM endpoint management software is related to incorrect restrictions on path names in the catalog. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected information...

10CVSS8.1AI score0.99762EPSS
Exploits1References5
BDU FSTEC
BDU FSTEC
added 2025/01/17 12:0 a.m.6 views

The vulnerability of the Ivanti EPM endpoint management software lies in the improper restriction of path names in the catalog, which allows a malicious actor to gain unauthorized access to protected information.

The vulnerability of the Ivanti EPM endpoint management software is related to incorrect restrictions on path names in the catalog. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected information...

10CVSS8.1AI score0.88518EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2024/11/14 12:0 a.m.4 views

The vulnerability of the Podman software for managing and starting OCI containers arises from improper restrictions on the path name of a limited catalog. This allows a malicious actor to trigger a service failure.

The vulnerability of the Podman software for managing and starting OCI containers is related to improper restrictions on the path name of a limited catalog. Exploiting this vulnerability allows an attacker who operates remotely to trigger a service failure by using a specially created symbolic li...

6.8CVSS7AI score0.01345EPSS
Exploits0References8Affected Software8
BDU FSTEC
BDU FSTEC
added 2024/07/12 12:0 a.m.9 views

The vulnerability of the “Document Approval Service” software lies in the improper limitation of the path name to the catalog, which allows a violator to gain access to read and write local files.

The vulnerability of the “Service for Document Approval” software is related to incorrect restrictions on the path to the catalog. Exploiting this vulnerability can allow an attacker who operates remotely to gain read and write access to local files...

7.7CVSS5.5AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/06/07 12:0 a.m.7 views

The vulnerability of the Redmine DMSF plugin, a project and task management system, arises from incorrect restrictions on the path to the restricted catalog. This allows attackers to gain read, modify, or delete access to files.

The vulnerability of the Redmine DMSF plugin, a project and task management system, is related to an incorrect restriction on the path to the restricted catalog. Exploiting this vulnerability could allow a malicious actor to gain read, modify, or delete access to files...

9CVSS7.6AI score0.00497EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/01/12 12:0 a.m.5 views

The vulnerability of the web-server of the FANUC Robotics Virtual Robot Controller software allows a hacker to circumvent existing restrictions on the name of the catalog.

The vulnerability of the FANUC Robotics Virtual Robot Controller software’s web server is related to an incorrect restriction on the path to the restricted catalog. Exploiting this vulnerability could allow a perpetrator to circumvent existing restrictions on the catalog path by sending a special...

5.3CVSS6AI score0.03412EPSS
Exploits3References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/12/07 12:0 a.m.6 views

The vulnerability of the SAP Customer Relationship Management (CRM) system regarding customer relationship management, related to incorrect restrictions on the path to the restricted catalog, allows a perpetrator to execute arbitrary commands.

The vulnerability of the SAP Customer Relationship Management CRM system regarding customer relationship management is related to incorrect restrictions on the path to the restricted catalog. Exploitation of this vulnerability could allow a malicious actor to execute arbitrary commands remotely...

6.6CVSS7.5AI score0.29229EPSS
Exploits5References7Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/08/25 12:0 a.m.8 views

The vulnerabilities of the implementations of functions based on the AJAX technology, such as motor_load_more(), motor_gallery_load_more(), motor_quick_view(), and motor_project_quick_view(), in the “Motor – Cars, Parts, Service, Equipments and Accessories” theme. This theme is part of the WooCommerce store and uses the WordPress content management system. These vulnerabilities allow an attacker to execute arbitrary PHP code or gain unauthorized access to protected information.

The vulnerability of implementations based on the AJAX technology—motorloadmore, motorgalleryloadmore, motorquickview, and motorprojectquickview—in the “Motor: Cars, Parts, Service, Equipment, and Accessories” theme. This vulnerability is related to shortcomings in path name restrictions for the...

9.8CVSS8.2AI score0.02633EPSS
Exploits2References5Affected Software1
Rows per page
Query Builder