Lucene search
K

25 matches found

RedhatCVE
RedhatCVE
added 2026/02/14 7:22 p.m.9 views

CVE-2025-14349

Privilege Defined With Unsafe Actions, Missing Authentication for Critical Function vulnerability in Universal Software Inc. FlexCity/Kiosk allows Accessing Functionality Not Properly Constrained by ACLs, Privilege Escalation.This issue affects FlexCity/Kiosk: from 1.0 before 1.0.36...

8.8CVSS5.4AI score0.00361EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/14 7:22 p.m.11 views

CVE-2026-1619

Authorization Bypass Through User-Controlled Key vulnerability in Universal Software Inc. FlexCity/Kiosk allows Exploitation of Trusted Identifiers.This issue affects FlexCity/Kiosk: from 1.0 before 1.0.36...

8.3CVSS5.4AI score0.00297EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/14 7:22 p.m.15 views

CVE-2026-1618

Authentication Bypass Using an Alternate Path or Channel vulnerability in Universal Software Inc. FlexCity/Kiosk allows Privilege Escalation.This issue affects FlexCity/Kiosk: from 1.0 before 1.0.36...

8.8CVSS5.4AI score0.00383EPSS
Exploits0References1
NVD
NVD
added 2026/02/13 2:16 p.m.5 views

CVE-2026-1619

Authorization Bypass Through User-Controlled Key vulnerability in Universal Software Inc. FlexCity/Kiosk allows Exploitation of Trusted Identifiers. This issue affects FlexCity/Kiosk: from 1.0 before 1.0.36...

8.3CVSS0.00297EPSS
Exploits0References2
OSV
OSV
added 2026/02/13 2:16 p.m.4 views

CVE-2026-1619

Authorization Bypass Through User-Controlled Key vulnerability in Universal Software Inc. FlexCity/Kiosk allows Exploitation of Trusted Identifiers.This issue affects FlexCity/Kiosk: from 1.0 before 1.0.36...

8.3CVSS5.8AI score
Exploits0References1
OSV
OSV
added 2026/02/13 2:16 p.m.3 views

CVE-2026-1618

Authentication Bypass Using an Alternate Path or Channel vulnerability in Universal Software Inc. FlexCity/Kiosk allows Privilege Escalation.This issue affects FlexCity/Kiosk: from 1.0 before 1.0.36...

8.8CVSS5.8AI score0.00383EPSS
Exploits0References1
OSV
OSV
added 2026/02/13 2:16 p.m.5 views

CVE-2025-14349

Privilege Defined With Unsafe Actions, Missing Authentication for Critical Function vulnerability in Universal Software Inc. FlexCity/Kiosk allows Accessing Functionality Not Properly Constrained by ACLs, Privilege Escalation.This issue affects FlexCity/Kiosk: from 1.0 before 1.0.36...

8.8CVSS5.8AI score0.00361EPSS
Exploits0References1
NVD
NVD
added 2026/02/13 2:16 p.m.5 views

CVE-2025-14349

Privilege Defined With Unsafe Actions, Missing Authentication for Critical Function vulnerability in Universal Software Inc. FlexCity/Kiosk allows Accessing Functionality Not Properly Constrained by ACLs, Privilege Escalation. This issue affects FlexCity/Kiosk: from 1.0 before 1.0.36...

8.8CVSS0.00361EPSS
Exploits0References2
NVD
NVD
added 2026/02/13 2:16 p.m.6 views

CVE-2026-1618

Authentication Bypass Using an Alternate Path or Channel vulnerability in Universal Software Inc. FlexCity/Kiosk allows Privilege Escalation. This issue affects FlexCity/Kiosk: from 1.0 before 1.0.36...

8.8CVSS0.00383EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/02/13 1:20 p.m.4 views

CVE-2026-1619 IDOR in Universal Sotware's FlexCity/Kiosk

Authorization Bypass Through User-Controlled Key vulnerability in Universal Software Inc. FlexCity/Kiosk allows Exploitation of Trusted Identifiers. This issue affects FlexCity/Kiosk: from 1.0 before 1.0.36...

8.3CVSS5.4AI score0.00297EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/02/13 1:20 p.m.35 views

CVE-2026-1619 IDOR in Universal Sotware's FlexCity/Kiosk

Authorization Bypass Through User-Controlled Key vulnerability in Universal Software Inc. FlexCity/Kiosk allows Exploitation of Trusted Identifiers. This issue affects FlexCity/Kiosk: from 1.0 before 1.0.36...

8.3CVSS0.00297EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/02/13 1:20 p.m.3 views

CVE-2026-1619

Authorization Bypass Through User-Controlled Key vulnerability in Universal Software Inc. FlexCity/Kiosk allows Exploitation of Trusted Identifiers. This issue affects FlexCity/Kiosk: from 1.0 before 1.0.36...

8.3CVSS5.4AI score0.00297EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/02/13 1:20 p.m.18 views

CVE-2026-1619

CVE-2026-1619 is an authorization bypass in Universal Software Inc.'s FlexCity/Kiosk (versions 1.0 up to 1.0.35). The vulnerability stems from a user-controlled key that enables exploitation of trusted identifiers, with CVSS 3.1: AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L (base score 8.3). Affected prod...

8.3CVSS5.4AI score0.00297EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/13 1:14 p.m.6 views

CVE-2026-1618 Admin Account Takeover in Universal Sotware's FlexCity/Kiosk

Authentication Bypass Using an Alternate Path or Channel vulnerability in Universal Software Inc. FlexCity/Kiosk allows Privilege Escalation. This issue affects FlexCity/Kiosk: from 1.0 before 1.0.36...

8.8CVSS5.4AI score0.00383EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/02/13 1:14 p.m.28 views

CVE-2026-1618 Admin Account Takeover in Universal Sotware's FlexCity/Kiosk

Authentication Bypass Using an Alternate Path or Channel vulnerability in Universal Software Inc. FlexCity/Kiosk allows Privilege Escalation. This issue affects FlexCity/Kiosk: from 1.0 before 1.0.36...

8.8CVSS0.00383EPSS
Exploits0References2
CVE
CVE
added 2026/02/13 1:14 p.m.17 views

CVE-2026-1618

CVE-2026-1618 describes an Authentication Bypass in Universal Software Inc. FlexCity/Kiosk, enabling Privilege Escalation. Affected: FlexCity/Kiosk versions prior to 1.0.36 (1.0.1+ through 1.0.35). Root cause: an alternate path or channel allows bypassing authentication, resulting in high-impact ...

8.8CVSS5.4AI score0.00383EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/02/13 1:9 p.m.3 views

CVE-2025-14349

Privilege Defined With Unsafe Actions, Missing Authentication for Critical Function vulnerability in Universal Software Inc. FlexCity/Kiosk allows Accessing Functionality Not Properly Constrained by ACLs, Privilege Escalation. This issue affects FlexCity/Kiosk: from 1.0 before 1.0.36...

8.8CVSS5.8AI score0.00361EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/13 1:9 p.m.6 views

CVE-2025-14349 Business Logic Error in Universal Software's FlexCity/Kiosk

Privilege Defined With Unsafe Actions, Missing Authentication for Critical Function vulnerability in Universal Software Inc. FlexCity/Kiosk allows Accessing Functionality Not Properly Constrained by ACLs, Privilege Escalation. This issue affects FlexCity/Kiosk: from 1.0 before 1.0.36...

8.8CVSS5.8AI score0.00361EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/02/13 1:9 p.m.28 views

CVE-2025-14349 Business Logic Error in Universal Software's FlexCity/Kiosk

Privilege Defined With Unsafe Actions, Missing Authentication for Critical Function vulnerability in Universal Software Inc. FlexCity/Kiosk allows Accessing Functionality Not Properly Constrained by ACLs, Privilege Escalation. This issue affects FlexCity/Kiosk: from 1.0 before 1.0.36...

8.8CVSS0.00361EPSS
Exploits0References2
CVE
CVE
added 2026/02/13 1:9 p.m.17 views

CVE-2025-14349

CVE-2025-14349 affects Universal Software Inc. FlexCity/Kiosk prior to version 1.0.36. The issue is described as a privilege escalation caused by privileges defined with unsafe actions and missing authentication for a critical function, allowing access to functionality not properly constrained by...

8.8CVSS5.8AI score0.00361EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder