14 matches found
EUVD-2020-28441
Malware in sbrugna...
The vulnerability of the eXchange Layer component in the application development environment for programmable logic controllers ISaGRAF Runtime Rockwell Automation allows a hacker to execute arbitrary code.
The vulnerability of the eXchange Layer component in the application development environment for ISaGRAF Runtime Rockwell Automation relates to errors in processing the relative path to the restricted-access directory. Exploiting this vulnerability may allow a remote attacker to execute arbitrary...
McAfee Data Exchange Layer < 6.0.0.280 Privilege Escalation (SB10383)
The instance of McAfee Datat Exchange Layer Broker for Windows installed on the remote host is prior to 6.0.0.280 and therefore affected by a privilege escalation vulnerability. This vulnerability potentially allows local users to gain elevated privileges by exploiting weak directory controls in...
McAfee Data Exchange Layer Broker Installed (Windows)
Binary data mcafeedxlwininstalled.nbin...
CLSA-2022-1657561632 Fixed CVEs in openssh-5.3p1: CVE-2016-10708, CVE-2016-10012
CVE-2016-10708: fix crash in packet handling code by moving inbound NEWKEYS handling to kex layer - CVE-2016-10012: abandon the fix due to compression mode issues...
CVE-2020-25176
Some commands used by the Rockwell Automation ISaGRAF Runtime Versions 4.x and 5.x eXchange Layer IXL protocol perform various file operations in the file system. Since the parameter pointing to the file name is not checked for reserved characters, it is possible for a remote, unauthenticated...
Rockwell Automation ISaGRAF 路径遍历漏洞
Rockwell Automation ISaGRAF is an automation software technology for creating integrated automation solutions from Rockwell Automation. It is designed to be scalable and portable and is suitable for developing small controllers and large distributed automation systems. A security vulnerability...
CVE-2020-7314
Privilege Escalation Vulnerability in the installer in McAfee Data Exchange Layer DXL Client for Mac shipped with McAfee Agent MA for Mac prior to MA 5.6.6 allows local users to run commands as root via incorrectly applied permissions on temporary files...
CVE-2020-7314
Privilege Escalation Vulnerability in the installer in McAfee Data Exchange Layer DXL Client for Mac shipped with McAfee Agent MA for Mac prior to MA 5.6.6 allows local users to run commands as root via incorrectly applied permissions on temporary files...
CVE-2020-7252
Unquoted service executable path in DXL Broker in McAfee Data eXchange Layer DXL Framework 6.0.0 and earlier allows local users to cause a denial of service and malicious file execution via carefully crafted and named executable files...
CVE-2020-7252
Unquoted service executable path in DXL Broker in McAfee Data eXchange Layer DXL Framework 6.0.0 and earlier allows local users to cause a denial of service and malicious file execution via carefully crafted and named executable files...
CVE-2020-7252
CVE-2020-7252 affects McAfee Data eXchange Layer (DXL) Framework, specifically the DXL Broker. The issue is an unquoted service executable path in DXL Broker versions up to 6.0.0 and earlier, which local users can exploit to trigger a denial of service and execute arbitrary files via carefully cr...
CVE-2020-7252 Unquoted service executable path
Unquoted service executable path in DXL Broker in McAfee Data eXchange Layer DXL Framework 6.0.0 and earlier allows local users to cause a denial of service and malicious file execution via carefully crafted and named executable files...
McAfee DXL Platform and McAfee TIE Server Information Disclosure Vulnerability
McAfee DXL Platform and McAfee TIE Server are both products of McAfee, Inc. McAfee DXL Platform is a data exchange layer platform. McAfee TIE Server is a network threat defense server. An information disclosure vulnerability exists in McAfee DXL Platform version 5.0.1 HF2 prior to version 5.x,...