Lucene search
K

55 matches found

CNNVD
CNNVD
added 2023/01/23 12:0 a.m.4 views

ONLYOFFICE 授权问题漏洞

Ascensio System ONLYOFFICE is an office software from Ascensio System, Latvia. A security vulnerability exists in all versions of ONLYOFFICE prior to 2021-11-08, which stems from being affected by incorrect access control. Due to a weak default URL signature key, it is possible to forge a signed...

7.5CVSS7.3AI score0.012EPSS
Exploits0References4
CNVD
CNVD
added 2022/11/17 12:0 a.m.8 views

WordPress reSmush.it Image Optimizer License Issue Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. An authorization issue...

4.3CVSS6.6AI score0.00486EPSS
Exploits2References1
CNNVD
CNNVD
added 2022/09/09 12:0 a.m.3 views

OpenHarmony 授权问题漏洞

OpenHarmony is a kind of Hongmeng operating system open source project of China OpenAtom Foundation Foundation. A security vulnerability exists in OpenHarmony-v3.1.2 version and earlier versions, which can be exploited by LAN attackers to bypass distributed privilege control...

6.2CVSS5.9AI score0.00183EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/08/16 12:0 a.m.4 views

WWBN AVideo 授权问题漏洞

WWBN AVideo is a video platform builder written in PHP by the WWBN team. A security vulnerability exists in WWBN AVideo version 11.6, which stems from an incorrect password check in the login function...

8.8CVSS7.3AI score0.01587EPSS
Exploits1References4
CNNVD
CNNVD
added 2022/07/06 12:0 a.m.6 views

Priority Software Priority 授权问题漏洞

Priority Software Priority is an ERP solution from Priority Software, Israel. A security vulnerability exists in Priority Software Priority. An attacker could exploit the vulnerability to verify which users are in the system and which are not...

5.5CVSS5.2AI score0.0041EPSS
Exploits0References2
CNVD
CNVD
added 2022/06/24 12:0 a.m.57 views

Jenkins Jianliao Notification Plugin License Issue Vulnerability

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is an application. Jenkins Plugin is an application that provides hundreds of plugins to support building, deploying, and automating any project. An attacker with overall/read permissions could exploit this vulnerability to...

4CVSS1.3AI score0.00525EPSS
Exploits0Affected Software1
Citrix
Citrix
added 2022/06/03 12:0 a.m.7 views

Remote Desktop License Issue with RDS Per Device CALs

Users might see the following error message. Remote Desktop License IssueThere is a problem with your Remote Desktop License, and your session will be disconnected in 60 minutes. Contact your system administrator to fix this problem Screenshot: It occurs when VDA uses RDS Per Device CALs, User...

7.1AI score
Exploits0
CNNVD
CNNVD
added 2022/04/12 12:0 a.m.5 views

Microsoft Windows App Store 权限许可和访问控制问题漏洞

Microsoft Windows App Store is an application store for downloading software from Microsoft Corporation USA. A vulnerability exists in the Microsoft Windows App Store with privilege license and access control issues. The following products and editions are affected: Windows 10 Version 20H2 for...

7.8CVSS7.7AI score0.00609EPSS
Exploits0References6
CNNVD
CNNVD
added 2022/02/08 12:0 a.m.5 views

Jetbrains JetBrains IntelliJ IDEA 权限许可和访问控制问题漏洞

Jetbrains JetBrains IntelliJ IDEA is a suite of integrated development environments for the Java language from the Czech company JetBrains Jetbrains. IntelliJ IDEA suffers from a privilege license and access control issue vulnerability that stems from the application not properly imposing securit...

7.8CVSS7.6AI score0.00372EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/12/09 12:0 a.m.3 views

Hillrom Welch Allyn CardioProducts 授权问题漏洞

Hillrom Welch Allyn CardioProducts is a comprehensive cardiopulmonary data management system from Hillrom USA that works the way you do, allowing you to transform any computer or laptop into an efficient diagnostic solution. A security vulnerability exists in Hillrom Welch Allyn CardioProducts,...

9.8CVSS8.3AI score0.01076EPSS
Exploits0References5
CNVD
CNVD
added 2021/10/19 12:0 a.m.13 views

ShinHer StudyOnline System License Issue Vulnerability

ShinHer StudyOnline System is a school administration system from ShinHer, China. " feature is not controlled by permissions. An attacker could use this vulnerability to access other users' message board content by setting URL parameters after logging in with user privileges...

4CVSS2.9AI score0.0074EPSS
Exploits0
CNVD
CNVD
added 2021/10/14 12:0 a.m.17 views

Emlog Authorization Issues Vulnerabilities

Emlog is a PHP and MySQL based CMS builder for Emlog personal developers. A license issue vulnerability exists in Emlog, which stems from the product's lack of an effective restriction added to the admin/plugin.php file deletion feature. An attacker can exploit this vulnerability to delete...

5.5CVSS6.9AI score0.00921EPSS
Exploits1Affected Software1
CNNVD
CNNVD
added 2021/10/12 12:0 a.m.5 views

Microsoft Win32k 权限许可和访问控制问题漏洞

Microsoft Win32k is a system file for Windows multi-user administration by Microsoft Corporation USA. Microsoft Windows Win32K is vulnerable to privilege license and access control issues. The following products and editions are affected:Windows 10 Version 21H1 for x64-based Systems,Windows 10...

7.8CVSS7.2AI score0.01968EPSS
Exploits0References5
CNNVD
CNNVD
added 2021/10/01 12:0 a.m.4 views

Emlog 授权问题漏洞

Emlog is a PHP and MySQL based CMS builder for Emlog personal developers. A license issue vulnerability exists in Emlog, which stems from the product's lack of an effective restriction added to the admin/plugin.php file deletion feature. An attacker can exploit this vulnerability to delete...

6.5CVSS5.8AI score0.00921EPSS
Exploits1References2
CNNVD
CNNVD
added 2021/06/16 12:0 a.m.3 views

Tenable Network Security Nessus 权限许可和访问控制问题漏洞

Tenable Network Security Nessus is an open source system vulnerability scanner from Tenable Network Security, USA. A security vulnerability exists in Nessus Agent 8.2.4 and earlier versions on Windows systems that allows authenticated local administrators to run specific Windows executables as a...

6.7CVSS6.5AI score0.00348EPSS
Exploits0References4
CNNVD
CNNVD
added 2021/06/10 12:0 a.m.5 views

LabCup 授权问题漏洞

LabCup is a laboratory and research organization software management system from LabCup Ireland. It helps academic researchers and safety officers with chemical inventory management, risk assessment and compliance. An authorization issue vulnerability exists in LabCup, which arises from the abili...

3.5CVSS5AI score0.00684EPSS
Exploits0References2
CNVD
CNVD
added 2021/03/25 12:0 a.m.3 views

SIEMENS DIGSI 4 Privilege License and Access Control Issues Vulnerability

SIEMENS DIGSI 4 is a driver from SIEMENS USA. Provides device driver functionality. A privilege license and access control issue vulnerability exists in SIEMENS DIGSI 4. The vulnerability stems from the fact that several folders in \%PATH\% can be written to by a normal user, and can be exploited...

7.8CVSS7.7AI score0.00342EPSS
Exploits0References1
CNVD
CNVD
added 2021/01/30 12:0 a.m.49 views

Siemens Simatic Hmi License Issue Vulnerability

Siemens Simatic Hmi is a device from Siemens Germany that provides human-computer interaction for industrial automation equipment. Siemens Simatic Hmi has an authorization issue vulnerability that can be exploited by an attacker to run code via an unauthenticated Telnet exploit use...

9.8CVSS7AI score0.05176EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/01/12 12:0 a.m.9 views

Microsoft Windows splwow64 License Issue Vulnerability

Microsoft Windows splwow64 is a printing-related program on Windows systems from Microsoft Corporation USA. Microsoft splwow64 suffers from a License Issue vulnerability, for which no information is available at this time, please stay tuned to CNNVD or the vendor's announcement. The following...

7.8CVSS6.9AI score0.01229EPSS
Exploits0References9
CNNVD
CNNVD
added 2021/01/12 12:0 a.m.11 views

Microsoft Windows Licensing Issues Vulnerabilities

Microsoft Windows is an operating system for personal devices from Microsoft Corporation. There is a license issue vulnerability in Microsoft Windows, no information about this vulnerability is available at this time, please stay tuned to CNNVD or vendor announcements. The following products and...

7.8CVSS6.6AI score0.00776EPSS
Exploits0References4
Rows per page
Query Builder