1207 matches found
CVE-2024-23692
Rejetto HTTP File Server, up to and including version 2.3m, is vulnerable to a template injection vulnerability. This vulnerability allows a remote, unauthenticated attacker to execute arbitrary commands on the affected system by sending a specially crafted HTTP request. As of the CVE assignment...
CVE-2023-49335
Zoho ManageEngine ADAudit Plus versions below 7271 allows SQL injection while getting file server details...
CVE-2023-49335
Zoho ManageEngine ADAudit Plus versions below 7271 allows SQL injection while getting file server details...
CVE-2023-49335
Zoho ManageEngine ADAudit Plus versions below 7271 allows SQL injection while getting file server details...
CVE-2023-49335
CVE-2023-49335 affects Zoho ManageEngine ADAudit Plus before build 7271. The issue is a SQL injection vulnerability when obtaining file server details, as documented across multiple sources. Impact is stated as high, with potential disclosure/integrity/availability concerns for affected installat...
CVE-2023-49335
Zoho ManageEngine ADAudit Plus versions below 7271 allows SQL injection while getting file server details...
PT-2024-13728 · Zoho · Zoho Manageengine Adaudit Plus
Name of the Vulnerable Software and Affected Versions: Zoho ManageEngine ADAudit Plus versions below 7271 Description: The issue allows SQL injection while getting file server details. Recommendations: For Zoho ManageEngine ADAudit Plus versions below 7271, update to version 7271 or later to...
The vulnerability of the File Server Resource Manager for Windows operating systems allows attackers to increase their privileges.
The vulnerability of the File Server Resource Manager for Windows operating systems is related to the incorrect handling of symbolic links before accessing a file. Exploiting this vulnerability can allow an attacker to increase their privileges...
PT-2024-22252 · Solarwinds · Serv-U Ftp Server
Name of the Vulnerable Software and Affected Versions: Serv-U FTP server affected versions not specified Description: A highly privileged account can overwrite arbitrary files on the system with log output due to improper sanitization of log file path tags. Recommendations: At the moment, there i...
The vulnerability of the SolarWinds Serv-U File Server file server arises from incorrect path name restrictions for the restricted access directory, allowing a hacker to execute arbitrary code.
The vulnerability of the SolarWinds Serv-U File Server file server is related to an incorrect limitation on the path to the restricted access directory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
Vulnerabilities fixed in Microsoft Windows
Microsoft has fixed vulnerabilities in Windows. A malicious party can exploit the vulnerabilities to launch attacks execute attacks that can lead to the following categories of damage: Denial-of-Service DoS. Circumvention of security measure Remote code execution User rights Spoofing Accessing...
CVE-2024-26216
Windows File Server Resource Management Service Elevation of Privilege Vulnerability...
CVE-2024-26216
Windows File Server Resource Management Service Elevation of Privilege Vulnerability...
CVE-2024-26216 Windows File Server Resource Management Service Elevation of Privilege Vulnerability
...
CVE-2024-26216
CVE-2024-26216 is a Windows vulnerability affecting the Windows File Server Resource Management Service, categorized as a privilege-escalation issue with a CVSS-like score around 7.3 (high) in public guidance. The connected documents confirm the vulnerability is tied to Windows File Server Resour...
CVE-2024-26216 Windows File Server Resource Management Service Elevation of Privilege Vulnerability
...
USN-6724-1 linux, linux-aws, linux-azure, linux-azure-6.5, linux-gcp, linux-gcp-6.5, linux-hwe-6.5, linux-laptop, linux-lowlatency, linux-lowlatency-hwe-6.5, linux-oem-6.5, linux-oracle, linux-oracle-6.5, linux-starfive, linux-starfive-6.5 vulnerabilities
Pratyush Yadav discovered that the Xen network backend implementation in the Linux kernel did not properly handle zero length data request, leading to a null pointer dereference vulnerability. An attacker in a guest VM could possibly use this to cause a denial of service host domain crash...
Windows File Server Resource Management Service Elevation of Privilege Vulnerability
...
PT-2024-3312 · Microsoft · Windows File Server Resource Management Service +1
Name of the Vulnerable Software and Affected Versions: Windows File Server Resource Management Service affected versions not specified Description: The issue is related to an elevation-of-privilege vulnerability in the Windows File Server Resource Management Service. It is caused by incorrect...
PT-2024-26764
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.37 Description The issue is related to a potential use-after-free bug in the Linux kernel's SMB client when walking DFS referrals, mounting, and performing DFS failover. This is resolved by ensuring all...