Lucene search
K

52 matches found

BDU FSTEC
BDU FSTEC
added 2024/08/01 12:0 a.m.6 views

The vulnerability of the Packet Forwarding Engine (PFE) module in the Junos OS Evolved operating system of ACX7000 devices allows a attacker to cause a service failure.

The vulnerability of the Packet Forwarding Engine PFE module in the Junos OS Evolved operating system of ACX7000 series devices is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

6.5CVSS5.4AI score0.00246EPSS
Exploits0References4Affected Software1
Redos
Redos
added 2024/07/29 12:0 a.m.44 views

ROS-20240729-17

Vulnerability in modrewrite module of Apache HTTP Server is related to insufficient checking of incoming requests. of incoming requests. Exploitation of the vulnerability could allow a remote attacker, gain unauthorized access to the device by forging requests on behalf of the server...

9.1CVSS6.8AI score0.01536EPSS
Exploits5
Positive Technologies
Positive Technologies
added 2024/06/12 12:0 a.m.6 views

PT-2024-9317 · Microsoft · Groupme

Name of the Vulnerable Software and Affected Versions: GroupMe affected versions not specified Description: An improper access control issue in GroupMe allows an unauthenticated attacker to elevate privileges over a network. This can be achieved by convincing a user to click on a malicious link...

9.8CVSS7AI score0.00788EPSS
Exploits0References11
Redos
Redos
added 2024/06/11 12:0 a.m.29 views

ROS-20240611-10

Vulnerability of uvgetaddrinfo function src/unix/getaddrinfo.c, src/win/getaddrinfo.c of libuv asynchronous I/O library is related to insufficient checking of incoming requests. libuv asynchronous I/O is due to insufficient checking of incoming requests. Exploitation of the vulnerability could...

7.3CVSS6.8AI score0.02003EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.25 views

RHEL 4 : cups (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 4 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - cups: insufficient checking of the HTTP Host: header CVE-2009-0164 Note that Nessus has not tested for this issue b...

6.4CVSS8.8AI score0.02907EPSS
Exploits0References1
NVD
NVD
added 2024/02/13 8:15 p.m.28 views

CVE-2021-46757

Insufficient checking of memory buffer in ASP Secure OS may allow an attacker with a malicious TA to read/write to the ASP Secure OS kernel virtual address space potentially leading to privilege escalation...

7.8CVSS6.5AI score0.00178EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/02/13 7:23 p.m.33 views

CVE-2021-46757

Insufficient checking of memory buffer in ASP Secure OS may allow an attacker with a malicious TA to read/write to the ASP Secure OS kernel virtual address space potentially leading to privilege escalation...

6.8AI score0.00178EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2023/12/11 12:0 a.m.5 views

The vulnerability of the Squid proxy server, related to insufficient checking of exclusive states, allows a hacker to trigger a service failure.

The vulnerability of the Squid proxy server is related to insufficient checking of exceptional states. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

8.6CVSS7.4AI score0.10352EPSS
Exploits0References12Affected Software15
CNNVD
CNNVD
added 2023/08/22 12:0 a.m.4 views

Moodle 安全漏洞

Moodle is a free, open source e-learning software platform, also known as a course management system, learning management system or virtual learning environment. Moodle suffers from a security vulnerability that stems from insufficient checking, resulting in data being compromised...

5.5AI score
Exploits0References1
Cvelist
Cvelist
added 2023/04/25 6:44 a.m.25 views

CVE-2023-22665 Apache Jena: Exposure of arbitrary execution in script engine expressions.

There is insufficient checking of user queries in Apache Jena versions 4.7.0 and earlier, when invoking custom scripts. It allows a remote user to execute arbitrary javascript via a SPARQL query...

6.5AI score0.01324EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2023/04/25 6:44 a.m.30 views

CVE-2023-22665

There is insufficient checking of user queries in Apache Jena versions 4.7.0 and earlier, when invoking custom scripts. It allows a remote user to execute arbitrary javascript via a SPARQL query...

5.4CVSS7.3AI score0.01324EPSS
Exploits0
Prion
Prion
added 2023/03/02 5:15 p.m.21 views

Design/Logic Flaw

The Metform Elementor Contact Form Builder plugin for WordPress is vulnerable to reCaptcha Bypass in versions up to, and including, 3.2.1. This is due to insufficient server side checking on the captcha value submitted during a form submission. This makes it possible for unauthenticated attackers...

5CVSS5.2AI score0.00686EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2022/08/01 1:15 p.m.28 views

CVE-2022-2317

The Simple Membership WordPress plugin before 4.1.3 allows user to change their membership at the registration stage due to insufficient checking of a user supplied parameter...

9.8CVSS0.01126EPSS
Exploits2References1
CVE
CVE
added 2022/08/01 12:52 p.m.91 views

CVE-2022-2317

CVE-2022-2317 affects the WordPress plugin Simple Membership (versions before 4.1.3). The root cause is insufficient validation of a user-supplied parameter during registration, allowing an unauthenticated user to elevate membership privileges by manipulating the level_identifier value (as demons...

9.8CVSS9.4AI score0.01126EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2022/08/01 12:52 p.m.33 views

CVE-2022-2317 Simple Membership < 4.1.3 - Unauthenticated Membership Privilege Escalation

The Simple Membership WordPress plugin before 4.1.3 allows user to change their membership at the registration stage due to insufficient checking of a user supplied parameter...

9.6AI score0.01126EPSS
Exploits2References1
BDU FSTEC
BDU FSTEC
added 2021/08/31 12:0 a.m.5 views

The vulnerability of the Vijeo Designer software lies in the insufficient checking of unusual or exceptional states, which allows a perpetrator to trigger a service failure.

The vulnerability of the Vijeo Designer software is related to insufficient testing of unusual or exceptional states. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause service failures...

7.8CVSS6.9AI score0.01049EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2020/10/09 12:0 a.m.3 views

The vulnerability of the Cisco IOS XE operating system, related to insufficient checking of unusual or exceptional states, allows a intruder to trigger a service failure.

The vulnerability of the Cisco IOS XE operating system is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability can allow a remote attacker to cause service failures...

8.6CVSS7.6AI score0.01402EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/05/13 3:38 p.m.26 views

CVE-2019-15880

In FreeBSD 12.1-STABLE before r356911, and 12.1-RELEASE before p5, insufficient checking in the cryptodev module allocated the size of a kernel buffer based on a user-supplied length allowing an unprivileged process to trigger a kernel panic...

9.4AI score0.01505EPSS
Exploits0References2
OSV
OSV
added 2019/10/29 7:15 p.m.7 views

CVE-2011-0428

Cross Site Scripting XSS in ikiwiki before 3.20110122 could allow remote attackers to insert arbitrary JavaScript due to insufficient checking in comments...

6.1CVSS5.9AI score0.00839EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2019/10/29 7:15 p.m.18 views

CVE-2011-0428

Cross Site Scripting XSS in ikiwiki before 3.20110122 could allow remote attackers to insert arbitrary JavaScript due to insufficient checking in comments...

6.1CVSS7AI score0.00839EPSS
Exploits0References3
Rows per page
Query Builder