Lucene search
K

273 matches found

CNNVD
CNNVD
added 2024/11/13 12:0 a.m.6 views

Intel Binary Configuration Tool 安全漏洞

Intel Binary Configuration Tool is a utility program from Intel Corporation that is used to change configuration settings embedded in Intel FSP Firmware Support Package binaries. A security vulnerability exists in Intel Binary Configuration Tool versions prior to 3.4.5 that stems from incorrect...

6.7CVSS6.5AI score0.00144EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/11/13 12:0 a.m.4 views

Intel Binary Configuration Tool 代码问题漏洞

Intel Binary Configuration Tool is an Intel Corporation utility program for changing configuration settings embedded in Intel FSP Firmware Support Package binaries. A code issue vulnerability exists in Intel Binary Configuration Tool versions prior to 3.4.5 that stems from an uncontrolled search...

6.7CVSS6.8AI score0.00175EPSS
Exploits0References2
Intel
Intel
added 2024/11/12 12:0 a.m.9 views

Intel® Binary Configuration Tool Software Advisory

Summary: Potential security vulnerabilities in some Intel® Binary Configuration Tool software may allow escalation of privilege. Intel is releasing software updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2024-25647 Description: Incorrect default permissions...

6.7CVSS7.3AI score0.00175EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/10/21 12:0 a.m.6 views

The vulnerability of the TMOS Shell configuration tool, which is used for managing monitors in the BIG-IP Access Policy Manager, as well as in programs like BIG-IP Advanced Firewall Manager, BIG-IP Advanced Web Application Firewall, BIG-IP Analytics, BIG-IP Application Acceleration Manager, BIG-IP Application Security Manager, BIG-IP Application Visibility and Reporting (AVR), BIG-IP Camer-Grade NAT (CGNAT), BIG-IP DDos Hybrid Defender, BIG-IP Domain Name System, BIG-IP Edge Gateway, BIG-IP Fraud Protection Service, BIG-IP Global Traffic Manager, BIG-IP Link Controller, BIG-IP Local Traffic Manager, BIG-IP Policy Inforcement Manager, BIG-IP SSL Orchestrator, BIG-IP Webaccelerator, and BIG-IP WebSafe, allows a perpetrator to increase their privileges.

The vulnerability of the TMOS Shell configuration tool, which is used for managing monitors in the BIG-IP Access Policy Manager, as well as programs like BIG-IP Advanced Firewall Manager, BIG-IP Advanced Web Application Firewall, BIG-IP Analytics, BIG-IP Application Acceleration Manager, BIG-IP...

9CVSS5.5AI score0.10582EPSS
Exploits1References3Affected Software19
BDU FSTEC
BDU FSTEC
added 2024/08/27 12:0 a.m.7 views

The vulnerability of the Rails Html Sanitizer configuration tool for Rails applications stems from improper handling of input data during web page generation. This allows attackers to perform cross-site scripting attacks.

The vulnerability of the Rails Html Sanitizer configuration tool for Rails applications is related to the use of Rails in conjunction with Loofah. Exploiting this vulnerability allows a remote attacker to perform cross-site scripting attacks...

6.4CVSS6.3AI score0.00867EPSS
Exploits1References7Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/08/14 12:0 a.m.8 views

The software for configuring and managing Accutech Manager is vulnerable; this vulnerability stems from copying buffers without checking the size of the input data, which can lead to service failures.

The vulnerability of the software for configuring and managing Accutech Manager lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to cause service failures by sending specially crafted...

7.8CVSS5.5AI score0.00484EPSS
Exploits0References2Affected Software1
Citrix
Citrix
added 2024/07/13 12:0 a.m.13 views

Error: "Cannot upgrade Citrix StoreFront with Receiver for HTML5" when upgrading to StoreFront 2.x

The following error is generated whenupgrading to StoreFront 2.x: "Error Cannot upgrade Storefront for Receiver for HTML5 Use the Citrix HTML5 HDX Engine Configuration tool to remove Receiver from HTML5 from all currently configured Receiver for Web sites. Then, uninstall Receiver for HTML5 and t...

7.1AI score
Exploits0
NVD
NVD
added 2024/05/31 6:15 p.m.14 views

CVE-2024-5176

Insufficiently Protected Credentials vulnerability in Baxter Welch Allyn Configuration Tool may allow Remote Services with Stolen Credentials.This issue affects Welch Allyn Configuration Tool: versions 1.9.4.1 and prior...

9.4CVSS6.7AI score0.00477EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/31 5:26 p.m.22 views

CVE-2024-5176 Vulnerability in Welch Allyn Configuration Tool Software

Insufficiently Protected Credentials vulnerability in Baxter Welch Allyn Configuration Tool may allow Remote Services with Stolen Credentials.This issue affects Welch Allyn Configuration Tool: versions 1.9.4.1 and prior...

9.4CVSS6.7AI score0.00477EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/31 5:26 p.m.15 views

CVE-2024-5176 Vulnerability in Welch Allyn Configuration Tool Software

Insufficiently Protected Credentials vulnerability in Baxter Welch Allyn Configuration Tool may allow Remote Services with Stolen Credentials.This issue affects Welch Allyn Configuration Tool: versions 1.9.4.1 and prior...

9.4CVSS7AI score0.00477EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/05/31 12:0 a.m.3 views

Baxter Welch Allyn Configuration Tool Security Vulnerability

The Baxter Welch Allyn Configuration Tool is a monitor from Baxter, Inc. A security vulnerability exists in Baxter Welch Allyn Configuration Tool version 1.9.4.1 and prior versions, which stems from insufficient credential protection in the Configuration Tool and could allow remote servicing with...

9.4CVSS6.9AI score0.00477EPSS
Exploits0References2
ICS
ICS
added 2024/05/30 6:0 a.m.17 views

Baxter Welch Allyn Configuration Tool

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.4 ATTENTION : Exploitable remotely Vendor : Baxter Equipment : Welch Allyn Configuration Tool Vulnerability : Insufficiently Protected Credentials 2. RISK EVALUATION Successful exploitation of this vulnerability could lead to the unintended exposure of...

9.4CVSS6.6AI score0.00477EPSS
Exploits0References10
CVE
CVE
added 2024/05/14 10:1 a.m.79 views

CVE-2023-46280

CVE-2023-46280 is an out-of-bounds read vulnerability reported in Siemens products (SCT, SIMATIC tools, WinCC OA, WinCC Runtime/Portal, S7 tools, PDM, TIA Portal components, SINEC NMS, etc.). The flaw can lead to a Blue Screen of Death by corrupting kernel state on Windows when exploited locally ...

8.2CVSS6.8AI score0.0026EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/05/14 12:0 a.m.6 views

Siemens多款产品 缓冲区错误漏洞

S7 PCT Port Configuration Tool is a PC-based software for parameterizing Siemens IO link master modules and third-party IO link devices.Security Configuration Tool SCT is an engineering software for security devices such as the SCALANCE-S or CP 443- 1Advanced.SIMATIC Automation Tool allows...

8.2CVSS6.6AI score0.0026EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2024/04/10 12:0 a.m.7 views

The vulnerability of the Intel Binary Configuration Tool’s configuration modification utility lies in its uncontrolled search path, which allows an attacker to exploit their privileges.

The vulnerability of the Intel Binary Configuration Tool’s configuration modification utility is related to an uncontrolled element in the search process. Exploiting this vulnerability could allow a attacker to enhance their privileges...

6.7CVSS6.6AI score0.00191EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2024/02/14 2:15 p.m.25 views

CVE-2023-24591

Uncontrolled search path in some IntelR Binary Configuration Tool software before version 3.4.4 may allow an authenticated user to potentially enable escalation of privilege via local access...

7.8CVSS6.7AI score0.00191EPSS
Exploits0References1
Prion
Prion
added 2024/02/14 2:15 p.m.15 views

Design/Logic Flaw

Uncontrolled search path in some IntelR Binary Configuration Tool software before version 3.4.4 may allow an authenticated user to potentially enable escalation of privilege via local access...

3.5CVSS7.3AI score0.00191EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/02/14 1:38 p.m.18 views

CVE-2023-24591

Uncontrolled search path in some IntelR Binary Configuration Tool software before version 3.4.4 may allow an authenticated user to potentially enable escalation of privilege via local access...

6.7CVSS7.1AI score0.00191EPSS
Exploits0References1
CVE
CVE
added 2024/02/14 1:38 p.m.40 views

CVE-2023-24591

CVE-2023-24591 affects Intel® Binary Configuration Tool (BCT) software prior to version 3.4.4. The root cause is an uncontrolled search path vulnerability in the tool, which could allow an authenticated local user to escalate privileges. Impact is local privilege escalation with high confidential...

7.8CVSS6.7AI score0.00191EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/02/14 12:0 a.m.6 views

Intel Binary Configuration Tool Security Vulnerability

Intel Binary Configuration Tool is an Intel Corporation utility program for changing configuration settings embedded in Intel FSP Firmware Support Package binaries. A security vulnerability previously existed in version 3.4.4 of the Intel Binary Configuration Tool software, which stemmed from an...

7.8CVSS6.8AI score0.00191EPSS
Exploits0References2
Rows per page
Query Builder