Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1501 matches found

VulnCheck KEV
VulnCheck KEVadded 2021/07/02 12:0 a.m.2 views

VulnCheck KEV: CVE-2021-34527

Microsoft Windows Print Spooler contains an unspecified vulnerability due to the Windows Print Spooler service improperly performing privileged file operations. Successful exploitation allows an attacker to perform remote code execution with SYSTEM privileges. The vulnerability is also known...

9CVSS7.9AI score0.9424EPSS
Exploits41References1
Microsoft CVE
Microsoft CVEadded 2021/07/01 7:0 a.m.132 views

Windows Print Spooler Remote Code Execution Vulnerability

A remote code execution vulnerability exists when the Windows Print Spooler service improperly performs privileged file operations. An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An attacker could then install programs; view, change, or...

9.3CVSS9AI score0.94314EPSS
Exploits75
Positive Technologies
Positive Technologiesadded 2021/06/28 12:0 a.m.4 views

PT-2021-3528

Name of the Vulnerable Software and Affected Versions Microsoft Windows Print Spooler affected versions not specified Description The Windows Print Spooler service contains a flaw in how it handles file operations, potentially allowing a remote attacker to execute arbitrary code with SYSTEM...

9CVSS9.7AI score0.9424EPSS
Exploits41References143
Zero Day Initiative
Zero Day Initiativeadded 2021/06/10 12:0 a.m.29 views

Schneider Electric IGSS WSP and CGF File Parsing Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Schneider Electric IGSS. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

7.8CVSS4AI score0.00611EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2021/06/10 12:0 a.m.36 views

Adobe RoboHelp Server folderId Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe RoboHelp Server. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the RoboHelp server...

8.8CVSS4.8AI score0.16254EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2021/05/26 12:0 a.m.22 views

Schneider Electric C-Gate < 2.11.6 Multiple Vulnerabilities

Binary data schneiderelectriccgateicsa-21-105-01.nbin...

8.8CVSS7.8AI score0.11338EPSS
Exploits1References5
Zero Day Initiative
Zero Day Initiativeadded 2021/05/14 12:0 a.m.88 views

QNAP NAS MusicStation Directory Traversal Arbitrary File Creation Vulnerability

This vulnerability allows network-adjacent attackers to create arbitrary files on affected installations of QNAP NAS. Authentication is not required to exploit this vulnerability. The specific flaw exists within the MusicStation application. When parsing the arttype request parameter, the process...

7.1CVSS3.2AI score0.0259EPSS
Exploits2References1
Zero Day Initiative
Zero Day Initiativeadded 2021/05/13 12:0 a.m.45 views

Adobe InCopy DOCX File Parsing Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe InCopy. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the conversion of DOC...

7.8CVSS5.2AI score0.02801EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2021/05/13 12:0 a.m.52 views

Adobe Illustrator DOCX File Parsing Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Illustrator. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the conversion o...

7.8CVSS5AI score0.04287EPSS
Exploits0References1
Prion
Prionadded 2021/04/29 5:15 p.m.9 views

Design/Logic Flaw

This vulnerability allows local attackers to delete arbitrary files on affected installations of Parallels Desktop 16.1.1-49141. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists...

2.1CVSS6AI score0.00134EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2021/04/29 4:31 p.m.13 views

CVE-2021-31421

This vulnerability allows local attackers to delete arbitrary files on affected installations of Parallels Desktop 16.1.1-49141. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists...

3.2CVSS6.2AI score0.00134EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiativeadded 2021/04/23 12:0 a.m.71 views

Autodesk FBX Review ZIP File Parsing Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk FBX Review. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

7.8CVSS4.2AI score0.55343EPSS
Exploits0References1
Prion
Prionadded 2021/04/22 6:15 p.m.12 views

Design/Logic Flaw

This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.1.1-49141. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists withi...

4.6CVSS8.1AI score0.00052EPSS
Exploits0References2Affected Software1
Zero Day Initiative
Zero Day Initiativeadded 2021/04/22 12:0 a.m.41 views

Schneider Electric C-Bus Toolkit PROJECT RESTORE Directory Traversal Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Schneider Electric C-Bus Toolkit. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

6.5CVSS1.9AI score0.07646EPSS
Exploits1References2
Zero Day Initiative
Zero Day Initiativeadded 2021/04/22 12:0 a.m.41 views

Schneider Electric C-Bus Toolkit ACCESS SAVE Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Schneider Electric C-Bus Toolkit. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

8.8CVSS4AI score0.11338EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiativeadded 2021/04/22 12:0 a.m.49 views

Schneider Electric C-Bus Toolkit CBZ File Parsing Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Schneider Electric C-Bus Toolkit. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within t...

7.8CVSS4AI score0.10783EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiativeadded 2021/04/21 12:0 a.m.38 views

Parallels Desktop Toolgate Directory Traversal Arbitrary File Deletion Vulnerability

This vulnerability allows local attackers to delete arbitrary files on affected installations of Parallels Desktop. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the...

3.2CVSS2.5AI score0.00134EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEVadded 2021/04/16 12:0 a.m.2 views

VulnCheck KEV: CVE-2019-1069

A privilege escalation vulnerability exists in the way the Task Scheduler Service validates certain file operations...

7.8CVSS7.1AI score0.32495EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiativeadded 2021/04/15 12:0 a.m.51 views

Parallels Desktop Toolgate Directory Traversal Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the Toolgat...

8.2CVSS3.3AI score0.00052EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2021/04/15 12:0 a.m.54 views

Microsoft Windows Installer Service Untrusted File Path Arbitrary File Write Vulnerability

This vulnerability allows local attackers to write data to arbitrary files on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

7.3CVSS5.1AI score0.11468EPSS
Exploits1References1
Rows per page
Query Builder