Lucene search
K

754 matches found

CNNVD
CNNVD
added 2025/10/30 12:0 a.m.3 views

Nagios XI 安全漏洞

Nagios XI is a suite of IT infrastructure monitoring solutions from US-based Nagios. The solution supports monitoring and alerting of applications, services, operating systems and more. A security vulnerability exists in Nagios XI versions prior to 5.8.2 and CCM versions prior to 3.1.1, which ste...

5.4CVSS5.9AI score0.00383EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/10/30 12:0 a.m.5 views

PT-2025-44532

Name of the Vulnerable Software and Affected Versions Nagios XI versions prior to 2012R1.3 Description Nagios XI is affected by a SQL injection issue in the legacy Core Configuration Manager CCM interface. Authenticated users can manipulate SQL queries by providing crafted input to specific CCM...

9.8CVSS7.2AI score0.0102EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/10/30 12:0 a.m.4 views

Nagios XI 安全漏洞

Nagios XI is a suite of IT infrastructure monitoring solutions from the US-based Nagios. The solution supports monitoring and alerting of applications, services, operating systems and more. A security vulnerability exists in Nagios XI versions prior to 5.7.4 and CCM versions prior to 3.0.7, which...

5.4CVSS5.9AI score0.00383EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/10/28 12:0 a.m.8 views

Microsoft Endpoint Configuration Manager (CVE-2025-59501)

The Microsoft Endpoint Configuration Manager application installed on the remote host is missing a security hotfix documented in the vendor advisory. It is, therefore, affected by an elevation of privilege vulnerability. An attacker could exploit this vulnerability by modifying the user principal...

4.8CVSS5.9AI score0.03063EPSS
Exploits0References4
Microsoft CVE
Microsoft CVE
added 2025/10/24 2:0 p.m.14 views

Microsoft Configuration Manager Spoofing Vulnerability

Authentication bypass by spoofing in Microsoft Configuration Manager allows an authorized attacker to perform spoofing over an adjacent network...

4.8CVSS6.8AI score0.03063EPSS
Exploits0
Kaspersky
Kaspersky
added 2025/10/24 12:0 a.m.5 views

KLA89722 Multiple vulnerability in Microsoft System Center

Multiple vulnerability was found in Microsoft System Center. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2025-59501 Related products Microsoft-Configuration-Manager CVE list CVE-2025-59501 warning Solution Install necessary updates from the KB...

4.8CVSS6.6AI score0.03063EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/10/24 12:0 a.m.7 views

PT-2025-44654

Name of the Vulnerable Software and Affected Versions Microsoft Configuration Manager affected versions not specified Description An authentication bypass through spoofing exists in Microsoft Configuration Manager. This allows an authorized attacker to perform spoofing attacks over an adjacent...

4.8CVSS6.3AI score0.03063EPSS
Exploits0References12
CNNVD
CNNVD
added 2025/10/24 12:0 a.m.3 views

Microsoft Configuration Manager 安全漏洞

Microsoft Configuration Manager is a Microsoft solution for managing computers and servers within an organization that helps IT departments keep software up-to-date, set configuration and security policies, and monitor system status. A security vulnerability exists in Microsoft Configuration...

4.8CVSS6.6AI score0.03063EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/10/17 12:0 a.m.3 views

Microsoft Endpoint Configuration Manager (October 2025)

The Microsoft Endpoint Configuration Manager application installed on the remote host is missing a security hotfix documented in KB34503790. It is, therefore, affected by multiple vulnerabilities: - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges...

8.8CVSS5.8AI score0.00622EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/10/15 5:44 p.m.1 views

CVE-2025-55320

Improper neutralization of special elements used in an sql command 'sql injection' in Microsoft Configuration Manager allows an authorized attacker to elevate privileges over an adjacent network...

6.8CVSS6.9AI score0.00622EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/15 5:44 p.m.3 views

CVE-2025-59213

Improper neutralization of special elements used in an sql command 'sql injection' in Microsoft Configuration Manager allows an unauthorized attacker to elevate privileges locally...

8.4CVSS7AI score0.00336EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/14 6:30 p.m.6 views

EUVD-2025-34289

Improper neutralization of special elements used in an sql command 'sql injection' in Microsoft Configuration Manager allows an unauthorized attacker to elevate privileges locally...

8.4CVSS6.4AI score0.00336EPSS
Exploits0References2
NCSC
NCSC
added 2025/10/14 6:27 p.m.5 views

Vulnerabilities fixed in Microsoft System Center

Microsoft has fixed vulnerabilities in System Center Configuration Manager. A malicious party could exploit the vulnerabilities to grant themselves elevated privileges, potentially gaining access to sensitive data or executing arbitrary code with elevated privileges. For successful misuse, the...

8.4CVSS7.3AI score0.00622EPSS
Exploits0
NVD
NVD
added 2025/10/14 5:16 p.m.3 views

CVE-2025-59213

Improper neutralization of special elements used in an sql command 'sql injection' in Microsoft Configuration Manager allows an unauthorized attacker to elevate privileges over an adjacent network...

8.8CVSS0.00336EPSS
Exploits0References1
OSV
OSV
added 2025/10/14 5:16 p.m.3 views

CVE-2025-59213

Improper neutralization of special elements used in an sql command 'sql injection' in Microsoft Configuration Manager allows an unauthorized attacker to elevate privileges over an adjacent network...

8.8CVSS5.8AI score0.00336EPSS
Exploits0References1
OSV
OSV
added 2025/10/14 5:15 p.m.3 views

CVE-2025-55320

Improper neutralization of special elements used in an sql command 'sql injection' in Microsoft Configuration Manager allows an authorized attacker to elevate privileges over an adjacent network...

6.8CVSS5.8AI score0.00622EPSS
Exploits0References1
NVD
NVD
added 2025/10/14 5:15 p.m.6 views

CVE-2025-55320

Improper neutralization of special elements used in an sql command 'sql injection' in Microsoft Configuration Manager allows an authorized attacker to elevate privileges over an adjacent network...

6.8CVSS0.00622EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/14 5:1 p.m.1 views

CVE-2025-59213 Configuration Manager Elevation of Privilege Vulnerability

...

8.8CVSS6.6AI score0.00336EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/10/14 5:1 p.m.4 views

CVE-2025-59213

Improper neutralization of special elements used in an sql command 'sql injection' in Microsoft Configuration Manager allows an unauthorized attacker to elevate privileges over an adjacent network...

8.8CVSS5.5AI score0.00336EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2025/10/14 5:1 p.m.6 views

CVE-2025-59213 Configuration Manager Elevation of Privilege Vulnerability

...

8.8CVSS0.00336EPSS
Exploits0References1
Rows per page
Query Builder