Lucene search
K

232 matches found

Cvelist
Cvelist
added 2019/05/21 8:7 p.m.31 views

CVE-2019-12270

OpenText Brava! Enterprise and Brava! Server 7.5 through 16.4 configure excessive permissions by default on Windows. During installation, a displaylistcache file share is created on the Windows server with full read and write permissions for the Everyone group at both the NTFS and Share levels. T...

7.3AI score0.01518EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2019/05/10 12:0 a.m.70 views

Pulse Policy Secure Multiple Vulnerabilities (SA44101)

According to its self-reported version, the version of Pulse Policy Secure running on the remote host is affected by multiple vulnerabilities. - A session hijacking vulnerability exists in PPS. An unauthenticated, remote attacker can exploit this, to perform actions in the user or administrator...

9.8CVSS7.2AI score0.98617EPSS
Exploits16References6
Tenable Nessus
Tenable Nessus
added 2019/05/10 12:0 a.m.279 views

Pulse Connect Secure Multiple Vulnerabilities (SA44101)

According to its self-reported version, the version of Pulse Connect Secure running on the remote host is affected by multiple vulnerabilities. - An arbitrary file read vulnerability exists in PCS. An unauthenticated, remote attacker can exploit this, via specially crafted URI, to read arbitrary...

10CVSS7AI score0.99999EPSS
Exploits40References16
CNVD
CNVD
added 2019/04/29 12:0 a.m.2 views

Pulse Secure Pulse Connect Secure Path Traversal Vulnerability

Pulse Secure Pulse Connect Secure a.k.a. PCS, formerly known as Juniper Junos Pulse is a suite of SSL VPN solutions from Pulse Secure in the United States. A security vulnerability exists in Network File Share NFS in Pulse Secure PCS. An attacker could exploit this vulnerability to write arbitrar...

8.6CVSS6.7AI score0.14953EPSS
Exploits1References1
NVD
NVD
added 2019/04/09 5:29 a.m.33 views

CVE-2019-10634

An XSS vulnerability in the Zyxel NAS 326 version 5.21 and below allows a remote authenticated attacker to inject arbitrary JavaScript or HTML via the user, group, and file-share description fields...

5.4CVSS5.1AI score0.00837EPSS
Exploits1References1
Prion
Prion
added 2019/04/09 5:29 a.m.19 views

Cross site scripting

An XSS vulnerability in the Zyxel NAS 326 version 5.21 and below allows a remote authenticated attacker to inject arbitrary JavaScript or HTML via the user, group, and file-share description fields...

3.5CVSS5AI score0.00837EPSS
Exploits1References1Affected Software1
n0where
n0where
added 2018/06/18 8:42 p.m.31 views

Network Share Sniffer and Auto-Mounter for Crawling Remote File Systems: sharesniffer

sharesniffer is a network analysis tool for finding open and closed file shares on your local network. It includes auto-network discovery and auto-mounting of any open cifs and nfs shares. How to use Example to find all hosts on any local network with open/closed nfs/smb shares: python...

0.3AI score
Exploits0References1
Citrix
Citrix
added 2018/01/19 12:0 a.m.5 views

App Layering: Benign messages in the ELM conosle

There are a number of messages that normally appear on the ELM VM console that are in fact benign and not an indication of any problem. These are messages that Linux outputs internally and not errors or problems reported by the App Layering software. These are normal messages that are produced...

7.3AI score
Exploits0
Citrix
Citrix
added 2017/12/18 12:0 a.m.6 views

App Layering: Test SMB File Share function says permissions incorrect

When configuring a Network File Share for the ELM in App Layering, you get the error "Permissions incorrect on the file share for the path: . Please contact Support for more information."...

7.1AI score
Exploits0
OSV
OSV
added 2017/10/13 1:29 p.m.2 views

CVE-2017-11829

Microsoft Windows 10 allows an elevation of privilege vulnerability when the Windows Update Delivery Optimization does not properly enforce file share permissions...

5.5CVSS5.8AI score0.03784EPSS
Exploits0References3
NVD
NVD
added 2017/10/13 1:29 p.m.24 views

CVE-2017-11829

Microsoft Windows 10 allows an elevation of privilege vulnerability when the Windows Update Delivery Optimization does not properly enforce file share permissions...

5.5CVSS5.4AI score0.03784EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2017/10/13 1:29 p.m.3 views

CVE-2017-11829

Microsoft Windows 10 allows an elevation of privilege vulnerability when the Windows Update Delivery Optimization does not properly enforce file share permissions...

5.5CVSS5.5AI score0.03784EPSS
Exploits0References4
Prion
Prion
added 2017/10/13 1:29 p.m.19 views

Privilege escalation

Microsoft Windows 10 allows an elevation of privilege vulnerability when the Windows Update Delivery Optimization does not properly enforce file share permissions...

2.1CVSS5.7AI score0.03784EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2017/10/13 1:0 p.m.32 views

CVE-2017-11829

Microsoft Windows 10 allows an elevation of privilege vulnerability when the Windows Update Delivery Optimization does not properly enforce file share permissions...

7.3AI score0.03784EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2017/10/10 7:0 a.m.30 views

Windows Update Delivery Optimization Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists when the Windows Update Delivery Optimization does not properly enforce file share permissions. An attacker who successfully exploited the vulnerability could overwrite files that require higher privileges than what the attacker already has. To explo...

5.5CVSS2.8AI score0.03784EPSS
Exploits0
Prion
Prion
added 2017/01/23 9:59 p.m.29 views

Design/Logic Flaw

Untrusted search path vulnerability in Snort 2.9.7.0-WIN32 allows remote attackers to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse tcapi.dll that is located in the same folder on a remote file share as a pcap file that is being processed...

6.8CVSS8.1AI score0.04431EPSS
Exploits2References5Affected Software1
RedHat Linux
RedHat Linux
added 2016/10/26 2:22 p.m.19 views

Moderate: Red Hat Security Advisory: openstack-manila-ui security update

An update for openstack-manila-ui is now available for Red Hat Enterprise Linux OpenStack Platform 7.0 Kilo for RHEL 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

5.4CVSS5.9AI score0.01266EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2016/10/26 2:22 p.m.27 views

Moderate: Red Hat Security Advisory: openstack-manila-ui security update

An update for openstack-manila-ui is now available for Red Hat OpenStack Platform 8.0 Liberty. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...

5.4CVSS5.9AI score0.01266EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2016/10/26 2:22 p.m.29 views

Moderate: Red Hat Security Advisory: openstack-manila-ui security update

An update for openstack-manila-ui is now available for Red Hat OpenStack Platform 9.0 Mitaka. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for eac...

5.4CVSS5.9AI score0.01266EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/10/13 12:0 a.m.46 views

UPnP File Share Detection

According to its UPnP data, the remote device hosts a 'Content Directory'. Therefore, an adjacent user can read shared files on the host. This is often associated with a media server. TRUSTED...

5.5AI score
Exploits0References1
Rows per page
Query Builder