11 matches found
CVE-2026-44173
Disclaimer: This data contains information about vulnerable...
CVE-2026-45391
A command injection vulnerability in Cribl Edge for Linux versions 3.2.0 through 4.17.0 allows a local unprivileged user to execute arbitrary commands in the context of the Cribl Edge service account...
CVE-2026-45393 Local privilege escalation to SYSTEM in Cribl Edge for Windows
A vulnerability chain in Cribl Edge for Windows before 4.17.1 allows a local authenticated user to escalate privileges to NT AUTHORITY\SYSTEM. Incorrect default permissions on the Windows installer's authentication directory CWE-276 expose a cryptographic secret used for JWT signing and...
CVE-2026-45393 Local privilege escalation to SYSTEM in Cribl Edge for Windows
A vulnerability chain in Cribl Edge for Windows before 4.17.1 allows a local authenticated user to escalate privileges to NT AUTHORITY\SYSTEM. Incorrect default permissions on the Windows installer's authentication directory CWE-276 expose a cryptographic secret used for JWT signing and...
CVE-2026-45393
Technical details for CVE-2026-45393 are not publicly available in the provided documents. No affected products, impact, or remediation are specified here. Monitor for updates when disclosure is published.
CVE-2026-45392 DOM-based XSS in Cribl Stream
DOM-based cross-site scripting XSS in Cribl Stream before 4.17.1 allows a remote attacker to execute arbitrary JavaScript in the browser of an authenticated user who is tricked into visiting a crafted URL and interacting with the page...
CVE-2026-45391 Local privilege escalation in Cribl Edge for Linux
A command injection vulnerability in Cribl Edge for Linux versions 3.2.0 through 4.17.0 allows a local unprivileged user to execute arbitrary commands in the context of the Cribl Edge service account...
CVE-2023-50876
CVE-2023-50876 is a missing authorization/vulnerability in the Molongui WordPress plugin, described as a broken access control that allows exploitation of incorrectly configured access control security levels. The issue affects Molongui versions from n/a up to 4.7.3. Public sources in the connect...
Microsoft Azure Real Time Operating System 代码注入漏洞
Microsoft Azure Real Time Operating System Azure RTOS is an embedded development kit from Microsoft Corporation USA that includes a small but powerful operating system that delivers reliable, ultra-fast performance for resource-constrained devices. A code injection vulnerability exists in Microso...
CVE-2022-219862
CVE-2022-219862 corresponds to a vulnerability in ASP.NET Core related to HTTP headers pooling that can lead to a denial of service. Connected advisories show affected packages across multiple Linux distributions: MiracleLinux 8: dotnet5.0-5.0.211-1.el8.ML.1 (AXSA:2022-3061:07) — specific package...
Keylime 安全漏洞
Keylime is an open source extensible trust system for Keylime that utilizes TPM technology. There is a security vulnerability in Keylime, no information about this vulnerability is available at this time, please stay tuned to CNNVD or the vendor's announcement...