Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-46757

Malicious code in bioql PyPI...

6.4CVSS6.6AI score0.0011EPSS
Exploits0References1
OSV
OSV
added 2024/06/12 5:15 p.m.3 views

CVE-2024-5558

CWE-367: Time-of-check Time-of-use TOCTOU Race Condition vulnerability exists that could cause escalation of privileges when an attacker abuses a limited admin account...

6.4CVSS5.8AI score0.0011EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/12 4:26 p.m.26 views

CVE-2024-5558

CWE-367: Time-of-check Time-of-use TOCTOU Race Condition vulnerability exists that could cause escalation of privileges when an attacker abuses a limited admin account...

6.4CVSS0.0011EPSS
Exploits0References1
CVE
CVE
added 2024/06/12 4:26 p.m.53 views

CVE-2024-5558

CVE-2024-5558 is a TOCTOU race condition vulnerability in Schneider Electric SpaceLogic AS-P (and AS-B) prior to or at version 5.0.3, enabling privilege escalation via abuse of a restricted admin account. The Red Hat/NVD entries describe CWE-367; CNNVD specifies SpaceLogic AS-P v5.0.3 and earlier...

6.4CVSS7.3AI score0.0011EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/06/11 12:0 a.m.7 views

PT-2024-4202 · Schneider Electric · Spacelogic As-B

Name of the Vulnerable Software and Affected Versions: Schneider Electric SpaceLogic AS-P and SpaceLogic AS-B affected versions not specified Description: A Time-of-check Time-of-use TOCTOU Race Condition issue exists, potentially allowing an attacker to escalate privileges by abusing a limited...

6.4CVSS7.1AI score0.0011EPSS
Exploits0References6
OSV
OSV
added 2017/10/28 12:29 a.m.4 views

CVE-2017-15948

Perch Content Management System 3.0.3 allows unrestricted file upload with resultant XSS via the Asset Title field in conjunction with the Select File field. This is exploitable with a Limited Admin account...

4.8CVSS5.7AI score0.00589EPSS
Exploits3References1
Prion
Prion
added 2017/10/28 12:29 a.m.16 views

Unrestricted file upload

Perch Content Management System 3.0.3 allows unrestricted file upload with resultant XSS via the Asset Title field in conjunction with the Select File field. This is exploitable with a Limited Admin account...

3.5CVSS5.1AI score0.00589EPSS
Exploits3References1Affected Software1
Cvelist
Cvelist
added 2017/10/28 12:0 a.m.31 views

CVE-2017-15948

Perch Content Management System 3.0.3 allows unrestricted file upload with resultant XSS via the Asset Title field in conjunction with the Select File field. This is exploitable with a Limited Admin account...

5.2AI score0.00589EPSS
Exploits3References1
Cvelist
Cvelist
added 2014/01/10 4:0 p.m.24 views

CVE-2013-5009

The Management Console in Symantec Endpoint Protection SEP 11.x before 11.0.7.4 and 12.x before 12.1.2 RU2 and Endpoint Protection Small Business Edition 12.x before 12.1.2 RU2 does not properly perform authentication, which allows remote authenticated users to gain privileges by leveraging acces...

6.4AI score0.00784EPSS
Exploits0References3
Rows per page
Query Builder