Lucene search
K

156 matches found

NVD
NVD
added 2025/11/12 7:15 p.m.7 views

CVE-2025-61667

The Datadog Agent collects events and metrics from hosts and sends them to Datadog. A vulnerability within the Datadog Linux Host Agent versions 7.65.0 through 7.70.2 exists due to insufficient permissions being set on the opt/datadog-agent/python-scripts/pycache directory during installation. Co...

7CVSS0.00106EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/10 1:31 a.m.8 views

CVE-2025-11535

MongoDB Connector for BI installation via MSI on Windows leaves ACLs unset on custom install directories allows Privilege Escalation.This issue affects MongoDB Connector for BI: from 2.0.0 through 2.14.24...

8.8CVSS7AI score0.00114EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-18671

Malware in sbrugna...

9.8CVSS9.4AI score0.02756EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.11 views

EUVD-2025-20269

Malicious code in bioql PyPI...

8.2CVSS6.5AI score0.00217EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-33715

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.01194EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-27593

Malicious code in bioql PyPI...

7.8CVSS6.6AI score0.00181EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-39269

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00814EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/10 12:0 a.m.11 views

CVE-2025-57392

BenimPOS Masaustu 3.0.x is affected by insecure file permissions. The application installation directory grants Everyone and BUILTIN\Users groups FILEALLACCESS, allowing local users to replace or modify .exe and .dll files. This may lead to privilege escalation or arbitrary code execution upon...

0.00181EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/08/10 6:14 p.m.14 views

CVE-2012-10051

Photodex ProShow Producer version 5.0.3256 contains a stack-based buffer overflow vulnerability in the handling of plugin load list files. When a specially crafted load file is placed in the installation directory, the application fails to properly validate its contents, leading to a buffer...

8.4CVSS7.1AI score0.00352EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/09 5:3 p.m.7 views

CVE-2025-36014

IBM Integration Bus for z/OS 10.1.0.0 through 10.1.0.5 is vulnerable to code injection by a privileged user with access to the IIB install directory...

8.2CVSS6.6AI score0.00217EPSS
Exploits0References1
OSV
OSV
added 2025/07/07 5:15 p.m.10 views

CVE-2025-36014

IBM Integration Bus for z/OS 10.1.0.0 through 10.1.0.5 is vulnerable to code injection by a privileged user with access to the IIB install directory...

6.7CVSS5.8AI score0.00217EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/07/07 4:15 p.m.4 views

CVE-2025-36014

IBM Integration Bus for z/OS 10.1.0.0 through 10.1.0.5 is vulnerable to code injection by a privileged user with access to the IIB install directory...

8.2CVSS5.8AI score0.00217EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2025/06/06 12:0 a.m.3 views

Tenable Network Monitor Elevation of Privilege Vulnerability

Tenable Network Monitor is an open source system vulnerability scanner developed by Tenable Inc. in the United States, mainly used for network vulnerability scanning and security assessment. Tenable Network Monitor suffers from an elevation of privilege vulnerability, which stems from improperly...

7.8CVSS6.9AI score0.0014EPSS
Exploits0References1
OSV
OSV
added 2025/06/02 6:15 p.m.4 views

CVE-2025-20298

In Universal Forwarder for Windows versions below 9.4.2, 9.3.4, 9.2.6, and 9.1.9, a new installation of or an upgrade to an affected version can result in incorrect permissions assignment in the Universal Forwarder for Windows Installation directory by default, C:\Program...

8CVSS5.8AI score0.00248EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:12 p.m.15 views

CVE-2022-36563

Incorrect access control in the install directory C:\RailsInstaller of Rubyinstaller2 v3.1.2 and below allows authenticated attackers to execute arbitrary code via overwriting binaries located in the directory...

8.8CVSS7.8AI score0.00814EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:1 a.m.5 views

CVE-2014-5093

Status2k does not remove the install directory allowing credential reset...

9.8CVSS6.9AI score0.03798EPSS
Exploits6References1
Snyk
Snyk
added 2025/02/01 6:40 a.m.6 views

Arbitrary Code Execution

Overview Affected versions of this package are vulnerable to Arbitrary Code Execution by implanting a malicious wheel file in pip's installation directory, which will replace the module being installed and get executed during installation. Note: The specific vulnerable behavior arises because...

6.7CVSS6.9AI score
Exploits0References3
CNNVD
CNNVD
added 2024/02/21 12:0 a.m.4 views

OpenVPN Security Vulnerabilities

OpenVPN is a software package from US-based OpenVPN for creating encrypted tunnels for Virtual Private Networks VPNs, which uses the OpenSSL library to encrypt data and control information, and allows the created VPN to be authenticated using a public key, an electronic certificate, or a...

8.4CVSS6.7AI score0.00214EPSS
Exploits0References2
OSV
OSV
added 2024/01/05 2:15 p.m.6 views

CVE-2024-0246

A vulnerability classified as problematic has been found in IceWarp 12.0.2.1/12.0.3.1. This affects an unknown part of the file /install/ of the component Utility Download Handler. The manipulation of the argument lang with the input 1%27"%26%25alertdocument.domain leads to cross site scripting. ...

6.1CVSS3.8AI score0.00391EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/01/05 12:0 a.m.5 views

PT-2024-15408 · Icewarp · Icewarp

Name of the Vulnerable Software and Affected Versions: IceWarp versions 12.0.2.1 through 12.0.3.1 Description: A problematic issue has been discovered, affecting the Utility Download Handler component in the /install/ file. The issue can be exploited by manipulating the lang argument with a...

6.1CVSS4.5AI score0.00391EPSS
Exploits0References3
Rows per page
Query Builder