Lucene search
K

70 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2014-3812

Malware in sbrugna...

6.1CVSS6.1AI score0.0167EPSS
Exploits3References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2014-3813

Malware in sbrugna...

4.3CVSS6.1AI score0.01914EPSS
Exploits3References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2012-1319

Malware in sbrugna...

4.3CVSS6.1AI score0.02564EPSS
Exploits1References11
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2005-1335

Malware in sbrugna...

7.5CVSS6.4AI score0.01889EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2011-1416

Malware in sbrugna...

5CVSS6.1AI score0.02289EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2014-3814

Malware in sbrugna...

4.3CVSS6.1AI score0.01914EPSS
Exploits3References5
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2020-15591

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fexsrv in FEX aka Frams' Fast File EXchange before fex-201609192 allows eval injection for unauthenticated remote code execution. CVE-2020-15591 Note that Nessu...

9.8CVSS8.6AI score0.03803EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/22 7:8 p.m.5 views

CVE-2021-20791

Improper access control vulnerability in RevoWorks Browser 2.1.230 and earlier allows an attacker to bypass access restriction and to exchange unauthorized files between the local environment and the isolated environment or settings of the web browser via unspecified vectors...

9.3CVSS6.8AI score0.00815EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/11/26 12:0 a.m.5 views

The vulnerability of the video file exchange function in Jitsi Meet software, which allows attackers to upload arbitrary video files.

The vulnerability of the video file exchange function in Jitsi Meet software for conducting video conferences is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to upload arbitrary video files remotely...

10CVSS5.5AI score0.00728EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/06/27 12:0 a.m.5 views

The vulnerability of the software for FileCatalyst Workflow’s file exchange mechanism lies in the lack of protective measures for the SQL query structure, allowing attackers to exploit their privileges.

The vulnerability of the FileCatalyst Workflow file sharing software relates to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to enhance their privileges by injecting specially crafted SQL queries...

10CVSS8.1AI score0.90067EPSS
Exploits5References4
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2024/02/29 12:0 a.m.24 views

JVN#35928117: Protection mechanism failure in RevoWorks

RevoWorks SCVX and RevoWorks Browser provided by J's Communication Co., Ltd. enable users to execute web browsers in the sandboxed environment isolated from the client's local environment. In the products, file exchange between the sandboxed environment and local environment is prohibited in...

9.1CVSS9.2AI score0.00485EPSS
Exploits0
The Hacker News
The Hacker News
added 2023/04/01 4:51 a.m.106 views

Cacti, Realtek, and IBM Aspera Faspex Vulnerabilities Under Active Exploitation

Critical security flaws in Cacti, Realtek, and IBM Aspera Faspex are being exploited by various threat actors in hacks targeting unpatched systems. This entails the abuse of CVE-2022-46169 CVSS score: 9.8 and CVE-2021-35394 CVSS score: 9.8 to deliver MooBot and ShellBot aka PerlBot, Fortinet...

10CVSS10.3AI score0.99968EPSS
Exploits55
CNVD
CNVD
added 2022/12/26 12:0 a.m.21 views

Unspecified Vulnerability in ZOHO ManageEngine Device Control Plus (CNVD-2023-00006)

ZOHO ManageEngine Device Control Plus is a USB device control software from ZOHO USA. It is used to control, block and monitor all removable devices connected to the computer. A security vulnerability exists in ZOHO ManageEngine Device Control Plus version 10.1.2228.15, which originates from the...

7.8CVSS7.2AI score0.00952EPSS
Exploits1References1
CNVD
CNVD
added 2022/12/26 12:0 a.m.18 views

Unspecified Vulnerability in ZOHO ManageEngine Device Control Plus

ZOHO ManageEngine Device Control Plus is a USB device control software from ZOHO USA. It is used to control, block and monitor all removable devices connected to the computer. A security vulnerability exists in ZOHO ManageEngine Device Control Plus version 10.1.2228.15 that originates from the...

7.8CVSS7.2AI score0.01124EPSS
Exploits1References1
ICS
ICS
added 2022/11/22 12:0 a.m.41 views

Phoenix Contact Automation Worx

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Phoenix Contact Equipment: Automation Worx Software Suite Vulnerabilities: Improper Restriction of Operations within the Bounds of a Memory Buffer, Out-of-bounds Read 2. RISK EVALUATION Successful exploitation of these...

7.8CVSS8.3AI score0.00207EPSS
Exploits0References4
OSV
OSV
added 2022/03/17 4:15 p.m.1 views

UBUNTU-CVE-2020-15591

fexsrv in FEX aka Frams' Fast File EXchange before fex-201609192 allows eval injection for unauthenticated remote code execution...

9.8CVSS7.5AI score0.03803EPSS
Exploits1References4
Prion
Prion
added 2022/03/17 4:15 p.m.16 views

Remote code execution

fexsrv in FEX aka Frams' Fast File EXchange before fex-201609192 allows eval injection for unauthenticated remote code execution...

7.5CVSS9.8AI score0.03803EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2022/03/17 12:0 a.m.3 views

PT-2022-8576 · F*Ex · F*Ex

Name of the Vulnerable Software and Affected Versions: FEX aka Frams' Fast File EXchange versions prior to fex-20160919 2 Description: The issue allows for eval injection, which can be used for unauthenticated remote code execution. Recommendations: For versions prior to fex-20160919 2, update to...

9.8CVSS9.8AI score0.03803EPSS
Exploits1References10
CNNVD
CNNVD
added 2022/03/17 12:0 a.m.4 views

F*EX 代码注入漏洞

FEX is a Perl-based HTTP file exchange service from the individual developer sahwar in Bulgaria. A security vulnerability exists in FEX that allows eval injection for unauthenticated remote code execution...

9.8CVSS8.7AI score0.03803EPSS
Exploits1References4
OSV
OSV
added 2021/09/17 2:15 a.m.3 views

CVE-2021-20791

Improper access control vulnerability in RevoWorks Browser 2.1.230 and earlier allows an attacker to bypass access restriction and to exchange unauthorized files between the local environment and the isolated environment or settings of the web browser via unspecified vectors...

9.3CVSS7.3AI score0.00815EPSS
Exploits0References2
Rows per page
Query Builder