Lucene search
K

13 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.10 views

EUVD-2016-8700

Malware in sbrugna...

6.1CVSS6.1AI score0.07007EPSS
Exploits6References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-39788

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00295EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2025/01/10 8:18 a.m.14 views

Security Bulletin: Due to the use of Eclipse Jetty, IBM App Connect Professional is vulnerable to bypass security restrictions

Summary Eclipse Jetty is used within IBM App Connect Professional Vulnerability Details CVEID:CVE-2024-6763 DESCRIPTION: Eclipse Jetty could allow a remote attacker to bypass security restrictions, caused by improper validation on the authority segment of a URI in the HttpURI class. By sending a...

6.5CVSS5.5AI score0.01037EPSS
Exploits1Affected Software1
Vulnrichment
Vulnrichment
added 2024/12/10 8:42 p.m.15 views

CVE-2024-54040 Adobe Connect | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Connect versions 12.6, 11.4.7 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

5.4CVSS5.5AI score0.00394EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/05/30 12:0 a.m.7 views

The vulnerability of the CONNECT v5 component of the Eclipse Mosquitto messaging broker allows a attacker to cause a service failure.

The vulnerability of the CONNECT v5 component of the Eclipse Mosquitto messaging broker is related to the lack of memory release after the effective lifespan of the component. Exploiting this vulnerability could allow a malicious actor to cause service failures...

7.8CVSS7.1AI score0.00675EPSS
Exploits0References4Affected Software3
The Hacker News
The Hacker News
added 2024/05/21 7:13 a.m.56 views

NextGen Healthcare Mirth Connect Under Attack - CISA Issues Urgent Warning

The U.S. Cybersecurity and Infrastructure Security Agency CISA on Monday added a security flaw impacting NextGen Healthcare Mirth Connect to its Known Exploited Vulnerabilities KEV catalog, citing evidence of active exploitation. The flaw, tracked as CVE-2023-43208 CVSS score: N/A, concerns a cas...

10CVSS9.2AI score0.99991EPSS
Exploits62
Positive Technologies
Positive Technologies
added 2023/09/15 12:0 a.m.4 views

PT-2023-30110 · Unknown · Saphira Connect

Name of the Vulnerable Software and Affected Versions: Saphira Connect versions prior to 9 Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for SQL Injection attacks. Recommendations: For...

9.8CVSS9.7AI score0.00812EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/04/12 12:0 a.m.5 views

PT-2022-18957 · Bentley · Microstation Connect

Name of the Vulnerable Software and Affected Versions: Bentley MicroStation CONNECT version 10.16.02.34 Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a malicio...

7.8CVSS7.8AI score0.00647EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/04/07 12:0 a.m.5 views

Bentley Systems MicroStation 缓冲区错误漏洞

Bentley Systems MicroStation is a Cad software platform for 2D and 3D design and drafting from Bentley Systems, USA. A buffer error vulnerability exists in Bentley MicroStation CONNECT version 10.16.02.34. An attacker could exploit the vulnerability to execute code in the current process...

7.8CVSS7.8AI score0.00647EPSS
Exploits0References5
CNNVD
CNNVD
added 2022/04/07 12:0 a.m.5 views

Bentley Systems MicroStation 缓冲区错误漏洞

Bentley Systems MicroStation is a Cad software platform for 2D and 3D design and drafting from Bentley Systems, USA. A buffer error vulnerability exists in Bentley MicroStation CONNECT version 10.16.02.34. An attacker could exploit the vulnerability to execute code in the current process...

7.8CVSS7.8AI score0.00951EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2022/02/18 8:15 p.m.7 views

CVE-2021-46647

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT 10.16.0.80. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

7.8CVSS7.6AI score0.02087EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2019/12/18 12:0 a.m.2 views

IBM API Connect Weak Encryption Vulnerability

IBM API Connect APIConnect is a suite of integrated solutions for managing the API lifecycle from IBM USA. The product supports creating, running, managing, and securing APIs, microservices, and more. A security vulnerability exists in IBM API Connect version 2018.4.1.7 that stems from the...

7.5CVSS6.7AI score0.00792EPSS
Exploits0References1
NVD
NVD
added 2017/12/09 6:29 a.m.16 views

CVE-2017-11287

An issue was discovered in Adobe Connect 9.6.2 and earlier versions. A reflected cross-site scripting vulnerability exists that can result in information disclosure...

6.1CVSS5.8AI score0.02921EPSS
Exploits0References3
Rows per page
Query Builder