Lucene search
K

313 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 4:44 p.m.9 views

CVE-2020-5975

NVIDIA GeForce NOW, versions prior to 2.0.23 on Windows and macOS, contains a vulnerability in the desktop application software that includes sensitive information as part of a URL, which may lead to information disclosure...

7.5CVSS6.4AI score0.0109EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:39 p.m.7 views

CVE-2020-3808

Creative Cloud Desktop Application versions 5.0 and earlier have a time-of-check to time-of-use toctou race condition vulnerability. Successful exploitation could lead to arbitrary file deletion...

5.9CVSS6.8AI score0.01354EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 4:20 p.m.9 views

CVE-2020-14454

An issue was discovered in Mattermost Desktop App before 4.4.0. Attackers can open web pages in the desktop application because server redirection is mishandled, aka MMSA-2020-0008...

6.1CVSS6.9AI score0.00746EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 3:26 p.m.11 views

CVE-2020-28249

Joplin 1.2.6 for Desktop allows XSS via a LINK element in a note...

6.1CVSS5.8AI score0.03027EPSS
Exploits3
RedhatCVE
RedhatCVE
added 2025/05/22 8:49 a.m.4 views

CVE-2019-7093

Creative Cloud Desktop Application installer versions 4.7.0.400 and earlier have an insecure library loading dll hijacking vulnerability. Successful exploitation could lead to privilege escalation...

7.8CVSS6.9AI score0.03279EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/05/14 12:0 a.m.2 views

Zoom Workplace 安全漏洞

Zoom Workplace is a desktop application from Zoom USA. A security vulnerability exists in Zoom Workplace that stems from a competitive condition that could lead to elevated privileges...

8.8CVSS6.7AI score0.0013EPSS
Exploits0References2
OSV
OSV
added 2025/05/09 12:15 p.m.7 views

CVE-2025-1087

Kong Insomnia Desktop Application before 11.0.2 contains a template injection vulnerability that allows attackers to execute arbitrary code. The vulnerability exists due to insufficient validation of user-supplied input when processing template strings, which can lead to arbitrary JavaScript...

9.3CVSS7.5AI score
Exploits0References2
CVE
CVE
added 2025/05/09 11:37 a.m.76 views

CVE-2025-1087

CVE-2025-1087 : Kong Insomnia Desktop Application prior to 11.0.2 contains a template injection flaw that allows arbitrary code execution. The issue arises from insufficient validation of user-supplied input during template string processing, enabling arbitrary JavaScript execution within the app...

9.3CVSS7.7AI score0.00991EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/02/25 12:0 a.m.6 views

Zoom Workplace 安全漏洞

Zoom Workplace is a desktop application from Zoom USA. A security vulnerability exists in Zoom Workplace that stems from an improper assignment of ownership and could lead to information disclosure...

6.5CVSS6.4AI score0.00292EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/25 12:0 a.m.6 views

Zoom Workplace 安全漏洞

Zoom Workplace is a desktop application from Zoom USA. A security vulnerability exists in Zoom Workplace that stems from a business logic error that could lead to compromised information being accessed by unauthenticated users over the network...

7.5CVSS6.5AI score0.00341EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/28 4:28 a.m.10 views

CVE-2024-50307

Use of potentially dangerous function issue exists in Chatwork Desktop Application Windows versions prior to 2.9.2. If a user clicks a specially crafted link in the application, an arbitrary file may be downloaded from an external website and executed. As a result, arbitrary code may be executed ...

5.5CVSS7.3AI score0.00251EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/28 4:28 a.m.18 views

CVE-2024-50307

Use of potentially dangerous function issue exists in Chatwork Desktop Application Windows versions prior to 2.9.2. If a user clicks a specially crafted link in the application, an arbitrary file may be downloaded from an external website and executed. As a result, arbitrary code may be executed ...

5.5CVSS0.00251EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/22 12:0 a.m.19 views

CVE-2024-48605

An issue in Helakuru Desktop Application v1.1 allows a local attacker to execute arbitrary code via the lack of proper validation of the wow64log.dll file...

0.00535EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/10/22 12:0 a.m.14 views

CVE-2024-48605

An issue in Helakuru Desktop Application v1.1 allows a local attacker to execute arbitrary code via the lack of proper validation of the wow64log.dll file...

7.8AI score0.00535EPSS
Exploits1References4
CVE
CVE
added 2024/10/22 12:0 a.m.46 views

CVE-2024-48605

CVE-2024-48605 describes a vulnerability in the Helakuru Desktop Application v1.1 where a local attacker can execute arbitrary code due to improper validation of the wow64log.dll . The issue is rooted in DLL hijacking/validation weakness allowing local privilege escalation. The NVD entry assigns ...

7.8CVSS7.6AI score0.00535EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2024/10/01 12:0 a.m.12 views

CVE-2024-25661

In Infinera TNMS Transcend Network Management System 19.10.3, cleartext storage of sensitive information in memory of the desktop application TNMS Client allows guest OS administrators to obtain various users' passwords by reading memory dumps of the desktop application...

6.4AI score0.00126EPSS
Exploits0References1
CVE
CVE
added 2024/10/01 12:0 a.m.48 views

CVE-2024-25661

Infinera TNMS 19.10.3 is affected by CVE-2024-25661 due to cleartext storage of sensitive information in memory of the TNMS Client desktop app. This allows guest OS administrators to obtain user passwords by reading memory dumps. The vulnerability is local with high impact on confidentiality, int...

7.7CVSS6.4AI score0.00126EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/09/30 12:0 a.m.12 views

CVE-2024-28807

An issue was discovered in Infinera hiT 7300 5.60.50. Cleartext storage of sensitive information in the memory of the @CT desktop management application allows guest OS administrators to obtain various users' passwords by accessing memory dumps of the desktop application...

0.00115EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/09/30 12:0 a.m.15 views

CVE-2024-28807

An issue was discovered in Infinera hiT 7300 5.60.50. Cleartext storage of sensitive information in the memory of the @CT desktop management application allows guest OS administrators to obtain various users' passwords by accessing memory dumps of the desktop application...

6.6AI score0.00115EPSS
Exploits0References1
NVD
NVD
added 2024/09/26 6:15 p.m.10 views

CVE-2024-45989

Monica AI Assistant desktop application v2.3.0 is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor. A prompt injection allows an attacker to modify chatbot answer with an unloaded image that exfiltrates the user's sensitive chat data of the current session to a malicious...

4CVSS0.00315EPSS
Exploits0References2
Rows per page
Query Builder