Lucene search
K

22 matches found

NVD
NVD
added 2026/01/21 6:16 p.m.4 views

CVE-2021-47866

WIN-PACK PRO 4.8 contains an unquoted service path vulnerability in the GuardTourService that allows local users to potentially execute code with elevated system privileges. Attackers can exploit the unquoted path in C:\Program Files \WINPAKPRO\WP GuardTour Service.exe to inject malicious code th...

8.5CVSS0.00127EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/01/21 5:27 p.m.2 views

CVE-2021-47866

WIN-PACK PRO 4.8 contains an unquoted service path vulnerability in the GuardTourService that allows local users to potentially execute code with elevated system privileges. Attackers can exploit the unquoted path in C:\Program Files \WINPAKPRO\WP GuardTour Service.exe to inject malicious code th...

8.5CVSS5.6AI score0.00127EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2026/01/21 12:0 a.m.9 views

Honeywell WIN-PACK PRO code issue vulnerability

Honeywell WIN-PACK PRO is a security management platform software developed by the American company Honeywell. Version 4.8 of Honeywell WIN-PACK PRO contains a code vulnerability. This vulnerability stems from the GuardTourService having service paths that are not enclosed in quotes, which may...

8.5CVSS6AI score0.00127EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-8065

Malware in sbrugna...

4.3CVSS4.9AI score0.008EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-47313

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00391EPSS
Exploits0References1
NVD
NVD
added 2025/06/02 8:15 a.m.13 views

CVE-2025-0325

A Guard Tour VAPIX API parameter allowed the use of arbitrary values and can be incorrectly called, allowing an attacker to block access to the guard tour configuration page in the web interface of the Axis device...

4.3CVSS0.00322EPSS
Exploits0References1
CVE
CVE
added 2025/06/02 7:36 a.m.48 views

CVE-2025-0325

CVE-2025-0325 affects Axis devices with the Guard Tour VAPIX API. The vulnerability arises from a parameter that allows arbitrary values and can be invoked inappropriately, enabling an attacker to block access to the guard tour configuration page in the Axis device web interface. The primary impa...

4.3CVSS4.7AI score0.00322EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/02 7:36 a.m.9 views

CVE-2025-0325

A Guard Tour VAPIX API parameter allowed the use of arbitrary values and can be incorrectly called, allowing an attacker to block access to the guard tour configuration page in the web interface of the Axis device...

4.3CVSS7AI score0.00322EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/02 7:36 a.m.26 views

CVE-2025-0325

A Guard Tour VAPIX API parameter allowed the use of arbitrary values and can be incorrectly called, allowing an attacker to block access to the guard tour configuration page in the web interface of the Axis device...

4.3CVSS0.00322EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/06/02 12:0 a.m.6 views

PT-2025-23477 · Axis · Axis Device

Name of the Vulnerable Software and Affected Versions: Axis device affected versions not specified Description: A Guard Tour VAPIX API parameter allowed the use of arbitrary values and can be incorrectly called, allowing an attacker to block access to the guard tour configuration page in the web...

4.3CVSS6.2AI score0.00322EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/23 8:30 a.m.5 views

CVE-2024-6173

51l3nc3, member of the AXIS OS Bug Bounty Program, has found that a Guard Tour VAPIX API parameter allowed the use of arbitrary values allowing for an attacker to block access to the guard tour configuration page in the web interface of the Axis device. Axis has released patched AXIS OS versions...

6.5CVSS6.9AI score0.00391EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:15 p.m.8 views

CVE-2020-16099

In Gallagher Command Centre v8.20 prior to v8.20.1093MR2 it is possible to create Guard Tour events that when accessed via things like reporting cause clients to temporarily hang or disconnect...

4.3CVSS7AI score0.008EPSS
Exploits0
NVD
NVD
added 2024/09/10 5:15 a.m.10 views

CVE-2024-6173

51l3nc3, member of the AXIS OS Bug Bounty Program, has found that a Guard Tour VAPIX API parameter allowed the use of arbitrary values allowing for an attacker to block access to the guard tour configuration page in the web interface of the Axis device. Axis has released patched AXIS OS versions...

6.5CVSS0.00391EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/09/10 5:3 a.m.22 views

CVE-2024-6173

51l3nc3, member of the AXIS OS Bug Bounty Program, has found that a Guard Tour VAPIX API parameter allowed the use of arbitrary values allowing for an attacker to block access to the guard tour configuration page in the web interface of the Axis device. Axis has released patched AXIS OS versions...

6.5CVSS0.00391EPSS
Exploits0References1
CVE
CVE
added 2024/09/10 5:3 a.m.76 views

CVE-2024-6173

CVE-2024-6173 concerns Axis OS: a Guard Tour VAPIX API parameter allows arbitrary values, enabling an attacker to block access to the guard tour configuration page in the Axis web interface. Reported by AXIS OS Bug Bounty participant, the flaw’s impact is described as blocking access (availabilit...

6.5CVSS6.5AI score0.00391EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/09/10 5:3 a.m.10 views

CVE-2024-6173

51l3nc3, member of the AXIS OS Bug Bounty Program, has found that a Guard Tour VAPIX API parameter allowed the use of arbitrary values allowing for an attacker to block access to the guard tour configuration page in the web interface of the Axis device. Axis has released patched AXIS OS versions...

6.5CVSS7.1AI score0.00391EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/09/10 12:0 a.m.4 views

AXIS OS 安全漏洞

AXIS OS is an edge device operating system from Axis Sweden. A security vulnerability exists in AXIS OS versions 6.50 through 11.10, which stems from the Guard Tour VAPIX API parameter that allows the use of arbitrary values...

6.5CVSS6.9AI score0.00391EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/09/09 12:0 a.m.5 views

PT-2024-37433 · Axis · Axis Os

Name of the Vulnerable Software and Affected Versions: AXIS OS affected versions not specified Description: A Guard Tour VAPIX API parameter in Axis devices allows the use of arbitrary values, enabling an attacker to block access to the guard tour configuration page in the web interface. Axis has...

6.5CVSS7.1AI score0.00391EPSS
Exploits0References6
OSV
OSV
added 2020/09/15 2:15 p.m.7 views

CVE-2020-16099

In Gallagher Command Centre v8.20 prior to v8.20.1093MR2 it is possible to create Guard Tour events that when accessed via things like reporting cause clients to temporarily hang or disconnect...

4.3CVSS5.8AI score0.008EPSS
Exploits0References1
Prion
Prion
added 2020/09/15 2:15 p.m.18 views

Command injection

In Gallagher Command Centre v8.20 prior to v8.20.1093MR2 it is possible to create Guard Tour events that when accessed via things like reporting cause clients to temporarily hang or disconnect...

3.5CVSS4.8AI score0.008EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder