Lucene search
K

224 matches found

CNVD
CNVD
added 2019/06/13 12:0 a.m.2 views

SAP E-Commerce Code Injection Vulnerability

SAP E-Commerce is a set of e-commerce solutions from Germany's SAP. A code injection vulnerability exists in SAP E-Commerce, which arises from the failure of a network system or product to properly filter specific elements of externally entered data during the construction of a code segment, and...

6.8CVSS7.6AI score0.00858EPSS
Exploits0References1
CNVD
CNVD
added 2019/03/27 12:0 a.m.1 views

Phoenix Contact RAD-80211-XD/HP-BUS and Phoenix Contact RAD-80211-XD Command Injection Vulnerability

The Phoenix Contact RAD-80211-XD/HP-BUS and Phoenix Contact RAD-80211-XD are both high power WLAN wireless transceivers from Phoenix Contact, Germany. A command injection vulnerability exists in the PHOENIX CONTACT RAD-80211-XD and RAD-80211-XD/HP-BUS, which can be exploited by an attacker to...

9CVSS7.8AI score0.03463EPSS
Exploits0References1
Kitploit
Kitploit
added 2019/03/18 8:25 p.m.140 views

Armory - A Tool Meant To Take In A Lot Of External And Discovery Data From A Lot Of Tools, Add It To A Database And Correlate All Of Related Information

Armory is a tool meant to take in a lot of external and discovery data from a lot of tools, add it to a database and correlate all of related information. It isn't meant to replace any specific tool. It is meant to take the output from various tools, and use it to feed other tools. Additionally, ...

7.5AI score
Exploits0References1
exploitpack
exploitpack
added 2019/02/19 12:0 a.m.19 views

Find a Place CMS Directory 1.5 - assetsexternaldata_2.php cate SQL Injection

Find a Place CMS Directory 1.5 - assetsexternaldata2.php cate SQL Injection Exploit Title: Find a Place CMS Directory 1.5 - 'assets/external/data2.php cate' SQL Injection Google Dork: inurl:"assets/external/data.php" Date: 14 Feb 2019 Exploit Author: Deyaa Muhammad Author EMail: contact at deyaa....

0.4AI score
Exploits0
Github Security Blog
Github Security Blog
added 2019/01/17 1:56 p.m.24 views

modulemd uses an unsafe function for processing externally provided data

modulemd 1.3.1 and earlier uses an unsafe function for processing externally provided data, leading to remote code execution...

9.8CVSS3.6AI score0.028EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2019/01/10 12:0 a.m.5 views

PT-2019-7860 · Modulemd · Modulemd

Name of the Vulnerable Software and Affected Versions: modulemd versions 1.3.1 and earlier Description: The issue is related to the use of an unsafe function for processing externally provided data, which can lead to remote code execution. Recommendations: For modulemd versions 1.3.1 and earlier,...

9.8CVSS9.5AI score0.028EPSS
Exploits0References8
BDU FSTEC
BDU FSTEC
added 2018/09/07 12:0 a.m.8 views

The vulnerability of web-based services of microprogramming software for programmable logic controllers from Schneider Electric—Modicon Premium, Modicon Quantum, and Modicon M340—allows a intruder to trigger a service failure.

The vulnerability of web-based services for microprogramming software-controlled Schneider Electric Modicon Premium, Modicon Quantum, and Modicon M340 devices lies in the fact that the operation data is stored outside of the buffer in memory. Exploiting this vulnerability allows a malicious actor...

7.8CVSS5.7AI score0.01315EPSS
Exploits0References3
OSV
OSV
added 2018/04/24 7:29 p.m.3 views

UBUNTU-CVE-2017-12082

An exploitable integer overflow exists in the 'CustomData' Mesh loading functionality of the Blender open-source 3d creation suite. A .blend file with a specially crafted external data file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the...

8.8CVSS7.9AI score0.02022EPSS
Exploits1References4
OSV
OSV
added 2018/04/24 7:29 p.m.2 views

DEBIAN-CVE-2017-12082

An exploitable integer overflow exists in the 'CustomData' Mesh loading functionality of the Blender open-source 3d creation suite. A .blend file with a specially crafted external data file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the...

7.8CVSS8AI score0.02022EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2018/04/24 12:0 a.m.5 views

PT-2018-3107 · Blender Foundation +1 · Blender +1

Name of the Vulnerable Software and Affected Versions: Blender affected versions not specified Description: The issue is caused by an integer overflow in the 'CustomData' Mesh loading functionality. This can be exploited by a specially crafted .blend file with an external data file, leading to a...

10CVSS8.6AI score0.0265EPSS
Exploits21References87
BDU FSTEC
BDU FSTEC
added 2018/02/02 12:0 a.m.4 views

The vulnerability of the Apache XML-RPC library (ws-xmlrpc) arises from the possibility of retrieving data from external sources without sufficient verification. This allows attackers to execute arbitrary code.

The vulnerability of the Apache XML-RPC library exists due to the retrieval of data from an external source without sufficient verification. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted serializable Java object, with the use of the...

9.8CVSS8.2AI score0.14876EPSS
Exploits1References9Affected Software1
RedHat Linux
RedHat Linux
added 2017/06/19 1:24 p.m.3 views

libntirpc: Memory leak when failing to parse XDR strings or bytearrays

It was found that due to the way rpcbind uses libtirpc libntirpc, a memory leak can occur when parsing specially crafted XDR messages. An attacker sending thousands of messages to rpcbind could cause its memory usage to grow without bound, eventually causing it to be terminated by the OOM killer...

7.8CVSS7AI score0.81921EPSS
Exploits4References5
BDU FSTEC
BDU FSTEC
added 2017/06/05 12:0 a.m.9 views

The vulnerability of the xdr_bytes and xdr_string functions in the library that handles system calls and core glibc functions allows a attacker to cause a service failure.

The vulnerabilities of the xdrbytes and xdrstring functions in the library that handles system calls and core glibc functions are related to the reclamation of unreliable data stored in memory after deserialization of buffers. Exploiting these vulnerabilities allows a remote attacker to cause a...

7.8CVSS7.5AI score0.0767EPSS
Exploits0References6Affected Software1
RedHat Linux
RedHat Linux
added 2017/05/22 3:42 a.m.6 views

libntirpc: Memory leak when failing to parse XDR strings or bytearrays

It was found that due to the way rpcbind uses libtirpc libntirpc, a memory leak can occur when parsing specially crafted XDR messages. An attacker sending thousands of messages to rpcbind could cause its memory usage to grow without bound, eventually causing it to be terminated by the OOM killer...

7.8CVSS7AI score0.81921EPSS
Exploits4References5
OSV
OSV
added 2016/03/25 6:38 a.m.15 views

MGASA-2016-0122 Updated moodle packages fix security vulnerability

In Moodle before 2.8.11, teachers who otherwise were not supposed to see students' emails could see them in the participants list CVE-2016-2151. In Moodle before 2.8.11, Moodle traditionally trusted content from external DB, however it was decided that external datasources may not be aware of web...

8.8CVSS5.2AI score0.01931EPSS
Exploits0References14
Mageia
Mageia
added 2016/03/25 6:38 a.m.33 views

Updated moodle packages fix security vulnerability

In Moodle before 2.8.11, teachers who otherwise were not supposed to see students' emails could see them in the participants list CVE-2016-2151. In Moodle before 2.8.11, Moodle traditionally trusted content from external DB, however it was decided that external datasources may not be aware of web...

8.8CVSS1.6AI score0.01931EPSS
Exploits0References13
exploitpack
exploitpack
added 2015/08/19 12:0 a.m.15 views

Flash Boundless Tunes - Universal SOP Bypass Through ActionSctipts Sound Object

Flash Boundless Tunes - Universal SOP Bypass Through ActionSctipts Sound Object Source: https://code.google.com/p/google-security-research/issues/detail?id=354&can=1&q=label%3AProduct-Flash%20modified-after%3A2015%2F8%2F17&sort=id 90-day deadline tracking for...

0.1AI score
Exploits0
RedHat Linux
RedHat Linux
added 2015/04/09 5:9 a.m.1 views

krb5: kadmind doubly frees partial deserialization results (MITKRB5-SA-2015-001)

A double-free flaw was found in the way MIT Kerberos handled invalid External Data Representation XDR data. An authenticated user could use this flaw to crash the MIT Kerberos administration server kadmind, or other applications using Kerberos libraries, using specially crafted XDR packets...

9CVSS7.2AI score0.06213EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2015/03/25 12:0 a.m.17 views

IT-Grundschutz M4.004: Geeigneter Umgang mit Laufwerken für Wechselmedien und externen Datenspeichern

IT-Grundschutz M4.004: Geeigneter Umgang mit Laufwerken für Wechselmedien und externen Datenspeicher. Stand: 14. Ergänzungslieferung 14. EL. OpenVAS Vulnerability Test $Id: GSHBM4004.nasl 7883 2017-11-23 11:22:59Z emoss $ IT-Grundschutz, 14. EL, Maßnahme 4.004 Authors: Thomas Rotter Copyright:...

0.3AI score
Exploits0References1
RedHat Linux
RedHat Linux
added 2015/03/05 9:38 a.m.58 views

krb5: kadmind doubly frees partial deserialization results (MITKRB5-SA-2015-001)

A double-free flaw was found in the way MIT Kerberos handled invalid External Data Representation XDR data. An authenticated user could use this flaw to crash the MIT Kerberos administration server kadmind, or other applications using Kerberos libraries, using specially crafted XDR packets...

9CVSS7.2AI score0.06213EPSS
Exploits0References5
Rows per page
Query Builder