138 matches found
CVE-2021-47822
DiskBoss Service 12.2.18 contains an unquoted service path vulnerability in its binary path configuration that allows local attackers to execute code with elevated privileges. Attackers can exploit the unquoted path by placing malicious executables in potential path locations to gain system-level...
CVE-2021-47822 DiskBoss Service 12.2.18 - 'diskbsa.exe' Unquoted Service Path
DiskBoss Service 12.2.18 contains an unquoted service path vulnerability in its binary path configuration that allows local attackers to execute code with elevated privileges. Attackers can exploit the unquoted path by placing malicious executables in potential path locations to gain system-level...
CVE-2021-47822
DiskBoss Service 12.2.18 contains an unquoted service path vulnerability in its binary path configuration that allows local attackers to execute code with elevated privileges. Attackers can exploit the unquoted path by placing malicious executables in potential path locations to gain system-level...
CVE-2021-47822 DiskBoss Service 12.2.18 - 'diskbsa.exe' Unquoted Service Path
DiskBoss Service 12.2.18 contains an unquoted service path vulnerability in its binary path configuration that allows local attackers to execute code with elevated privileges. Attackers can exploit the unquoted path by placing malicious executables in potential path locations to gain system-level...
CVE-2021-47822
DiskBoss Service 12.2.18 has an unquoted service path vulnerability in diskbsa.exe, enabling local attackers to run code with elevated privileges during service startup. The root cause is an unquoted binary path in the service configuration, allowing a malicious executable placed in a search path...
Flexense DiskBoss Service code-related vulnerabilities
Flexense DiskBoss Service is a file storage analysis software developed by Flexense Corporation. Version 12.2.18 of Flexense DiskBoss Service contains a code vulnerability. This vulnerability stems from the binary path configuration, where service paths are defined without quotes, which may lead ...
PT-2026-3278
DiskBoss Service 12.2.18 contains an unquoted service path vulnerability in its binary path configuration that allows local attackers to execute code with elevated privileges. Attackers can exploit the unquoted path by placing malicious executables in potential path locations to gain system-level...
CVE-2020-36880
Flexsense DiskBoss 7.7.14 contains a local buffer overflow vulnerability in the 'Reports and Data Directory' field that allows an attacker to execute arbitrary code on the system...
CVE-2020-36882
Flexsense DiskBoss 7.7.14 allows unauthenticated attackers to upload arbitrary files via /Command/Search Files/Directory field, leading to a denial of service by crashing the application...
CVE-2020-36881
Flexsense DiskBoss 7.7.14 contains a local buffer overflow vulnerability in the 'Input Directory' component that allows unauthenticated attackers to execute arbitrary code on the system. Attackers can exploit this by pasting a specially crafted directory path into the 'Add Input Directory' field...
CVE-2020-36882
Flexsense DiskBoss 7.7.14 allows unauthenticated attackers to upload arbitrary files via /Command/Search Files/Directory field, leading to a denial of service by crashing the application...
CVE-2020-36881
Flexsense DiskBoss 7.7.14 contains a local buffer overflow vulnerability in the 'Input Directory' component that allows unauthenticated attackers to execute arbitrary code on the system. Attackers can exploit this by pasting a specially crafted directory path into the 'Add Input Directory' field...
CVE-2020-36880
Flexsense DiskBoss 7.7.14 contains a local buffer overflow vulnerability in the 'Reports and Data Directory' field that allows an attacker to execute arbitrary code on the system...
CVE-2020-36880
Flexsense DiskBoss 7.7.14 contains a local buffer overflow vulnerability in the 'Reports and Data Directory' field that allows an attacker to execute arbitrary code on the system...
CVE-2020-36882 Flexsense DiskBoss Application Crash Denial of Service
Flexsense DiskBoss 7.7.14 allows unauthenticated attackers to upload arbitrary files via /Command/Search Files/Directory field, leading to a denial of service by crashing the application...
CVE-2020-36882 Flexsense DiskBoss Application Crash Denial of Service
Flexsense DiskBoss 7.7.14 allows unauthenticated attackers to upload arbitrary files via /Command/Search Files/Directory field, leading to a denial of service by crashing the application...
EUVD-2020-30829
Flexsense DiskBoss 7.7.14 allows unauthenticated attackers to upload arbitrary files via /Command/Search Files/Directory field, leading to a denial of service by crashing the application...
CVE-2020-36882
Flexsense DiskBoss 7.7.14 is affected by CVE-2020-36882. An unauthenticated attacker can upload arbitrary files through the Directory field in the /Command/Search Files/ API endpoint, causing a denial of service via application crash. The vulnerability is tied to the DiskBoss software (Flexsense)...
CVE-2020-36881 Flexsense DiskBoss 'Add Input Directory' Buffer Overflow
Flexsense DiskBoss 7.7.14 contains a local buffer overflow vulnerability in the 'Input Directory' component that allows unauthenticated attackers to execute arbitrary code on the system. Attackers can exploit this by pasting a specially crafted directory path into the 'Add Input Directory' field...
CVE-2020-36881
Flexsense DiskBoss 7.7.14 contains a local buffer overflow in the Input Directory component. An unauthenticated attacker can craft a directory path via the Add Input Directory field to execute arbitrary code on the system. The CVE entry notes high impact (code execution) with local attack vector ...