Lucene search
K

65 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-29715

Malicious code in bioql PyPI...

5.3CVSS6.6AI score0.00441EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-29714

Malicious code in bioql PyPI...

5.3CVSS6.6AI score0.00524EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-29717

Malicious code in bioql PyPI...

6.1CVSS6.6AI score0.0044EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-29713

Malicious code in bioql PyPI...

4.1CVSS6.6AI score0.00536EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-29710

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00362EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:18 a.m.7 views

CVE-2024-31841

An issue was discovered in Italtel Embrace 1.6.4. The web server fails to sanitize input data, allowing remote unauthenticated attackers to read arbitrary files on the filesystem...

7.5CVSS7.2AI score0.00804EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:17 a.m.8 views

CVE-2024-31846

An issue was discovered in Italtel Embrace 1.6.4. The web application does not restrict or incorrectly restricts access to a resource from an unauthorized actor...

7.5CVSS6.9AI score0.00665EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:39 a.m.8 views

CVE-2024-31842

An issue was discovered in Italtel Embrace 1.6.4. The web application inserts the access token of an authenticated user inside GET requests. The query string for the URL could be saved in the browser's history, passed through Referers to other web sites, stored in web logs, or otherwise recorded ...

8.8CVSS6.2AI score0.00384EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/14 2:46 a.m.10 views

CVE-2024-31847

An issue was discovered in Italtel Embrace 1.6.4. A stored cross-site scripting XSS vulnerability allows authenticated and unauthenticated remote attackers to inject arbitrary web script or HTML into a GET parameter. This reflects/stores the user input without sanitization...

6.1CVSS5.3AI score0.0044EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/14 2:44 a.m.9 views

CVE-2024-31843

An issue was discovered in Italtel Embrace 1.6.4. The Web application does not properly check the parameters sent as input before they are processed on the server side. This allows authenticated users to execute commands on the Operating System...

4.1CVSS7.1AI score0.00536EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/14 2:43 a.m.7 views

CVE-2024-31845

An issue was discovered in Italtel Embrace 1.6.4. The product does not neutralize or incorrectly neutralizes output that is written to logs. The web application writes logs using a GET query string parameter. This parameter can be modified by an attacker, so that every action he performs is...

5.3CVSS6.7AI score0.00441EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/14 2:37 a.m.14 views

CVE-2024-31844

An issue was discovered in Italtel Embrace 1.6.4. The server does not properly handle application errors. In some cases, this leads to a disclosure of information about the server. An unauthenticated user is able craft specific requests in order to make the application generate an error. Inside a...

5.3CVSS6.7AI score0.00524EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/14 2:35 a.m.10 views

CVE-2024-31840

An issue was discovered in Italtel Embrace 1.6.4. The web application inserts cleartext passwords in the HTML source code. An authenticated user is able to edit the configuration of the email server. Once the user access the edit function, the web application fills the edit form with the current...

6.5CVSS6.6AI score0.00362EPSS
Exploits1References1
OSV
OSV
added 2024/08/20 8:15 p.m.2 views

CVE-2024-31842

An issue was discovered in Italtel Embrace 1.6.4. The web application inserts the access token of an authenticated user inside GET requests. The query string for the URL could be saved in the browser's history, passed through Referers to other web sites, stored in web logs, or otherwise recorded ...

8.8CVSS5.8AI score0.00384EPSS
Exploits0References1
NVD
NVD
added 2024/08/20 8:15 p.m.9 views

CVE-2024-31842

An issue was discovered in Italtel Embrace 1.6.4. The web application inserts the access token of an authenticated user inside GET requests. The query string for the URL could be saved in the browser's history, passed through Referers to other web sites, stored in web logs, or otherwise recorded ...

8.8CVSS0.00384EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/20 12:0 a.m.17 views

CVE-2024-31842

An issue was discovered in Italtel Embrace 1.6.4. The web application inserts the access token of an authenticated user inside GET requests. The query string for the URL could be saved in the browser's history, passed through Referers to other web sites, stored in web logs, or otherwise recorded ...

0.00384EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/08/20 12:0 a.m.3 views

Italtel Embrace 安全漏洞

Italtel Embrace is a software-only, cloud-enabled Web application server from Italtel. It can be used to enable WebRTC services in a TLC network or as a standalone WebRTC service. A security vulnerability exists in Italtel Embrace version 1.6.4, which originates when the web application inserts a...

8.8CVSS6.2AI score0.00384EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/08/20 12:0 a.m.5 views

PT-2024-24239 · Italtel · Italtel Embrace

Name of the Vulnerable Software and Affected Versions: Italtel Embrace version 1.6.4 Description: An issue was discovered in the web application where the access token of an authenticated user is inserted inside GET requests. The query string for the URL could be saved in the browser's history,...

8.8CVSS6.5AI score0.00384EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2024/08/20 12:0 a.m.11 views

CVE-2024-31842

An issue was discovered in Italtel Embrace 1.6.4. The web application inserts the access token of an authenticated user inside GET requests. The query string for the URL could be saved in the browser's history, passed through Referers to other web sites, stored in web logs, or otherwise recorded ...

6.2AI score0.00384EPSS
Exploits0References1
CVE
CVE
added 2024/08/20 12:0 a.m.55 views

CVE-2024-31842

Italtel Embrace 1.6.4 is affected by a vulnerability where the web application inserts an authenticated user’s access token into GET requests. The token appears in the URL’s query string and can be stored in browser history, Referer headers, web logs, or other sources, enabling attackers to use t...

8.8CVSS6.4AI score0.00384EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder