CVE-2024-34329

Insecure permissions in Entrust Datacard XPS Card Printer Driver 8.5 and earlier without the dxp1-patch-E24-004 patch allows unauthenticated attackers to execute arbitrary code as SYSTEM via a crafted DLL payload...

EUVD-2018-5201

Malware in sbrugna...

EUVD-2024-34725

Malicious code in bioql PyPI...

CVE-2024-34329

Insecure permissions in Entrust Datacard XPS Card Printer Driver 8.5 and earlier without the dxp1-patch-E24-004 patch allows unauthenticated attackers to execute arbitrary code as SYSTEM via a crafted DLL payload...

CVE-2024-34329

Insecure permissions in Entrust Datacard XPS Card Printer Driver 8.5 and earlier without the dxp1-patch-E24-004 patch allows unauthenticated attackers to execute arbitrary code as SYSTEM via a crafted DLL payload...

CVE-2024-34329

Insecure permissions in Entrust Datacard XPS Card Printer Driver 8.5 and earlier without the dxp1-patch-E24-004 patch allows unauthenticated attackers to execute arbitrary code as SYSTEM via a crafted DLL payload...

CVE-2024-34329

CVE-2024-34329 affects Entrust Datacard XPS Card Printer Driver (versions 8.5 and earlier). The root cause is insecure permissions in the driver allowed by default installation paths, enabling unauthenticated local attackers to execute arbitrary code as SYSTEM via a crafted DLL payload. Multiple ...

PT-2024-25789 · Entrust Datacard · Entrust Datacard Xps Card Printer Driver

Name of the Vulnerable Software and Affected Versions: Entrust Datacard XPS Card Printer Driver versions 8.5 and earlier without the dxp1-patch-E24-004 patch Entrust Datacard XPS Card Printer Driver versions 8.4 and earlier Description: The issue is related to insecure permissions in the Entrust...

Entrust Datacard Syntera CS Cross-Site Scripting Vulnerability

Entrust Datacard Syntera CS is an integrated suite for connecting Datacard distribution systems and specialized software from Entrust Datacard USA. A cross-site scripting vulnerability exists in version 5.x of Entrust Datacard Syntera CS. The vulnerability can be exploited by a remote attacker to...

CVE-2018-13252

Entrust Datacard Syntera CS 5.x has XSS via the name field of "Domain or Computer Name" in the login page...

CVE-2018-13252

Entrust Datacard Syntera CS 5.x has XSS via the name field of "Domain or Computer Name" in the login page...

Design/Logic Flaw

Entrust Datacard Syntera CS 5.x has XSS via the name field of "Domain or Computer Name" in the login page...

CVE-2018-13252

Entrust Datacard Syntera CS 5.x has XSS via the name field of "Domain or Computer Name" in the login page...

CVE-2018-13252

Entrust Datacard Syntera CS 5.x is affected by a Cross-Site Scripting (XSS) vulnerability in the login page, exploitable via the name field of the omain or Computer Name field. The Connected CNVD entry confirms a 5.x version impact and remote code execution is described as possible through the ...

CVE-2018-13252

Entrust Datacard Syntera CS 5.x has XSS via the name field of "Domain or Computer Name" in the login page...