Lucene search
K

1406 matches found

EUVD
EUVD
added 2026/04/09 6:31 p.m.6 views

EUVD-2026-20932

A Dynamic-link Library Injection vulnerability in OSGeo Project MapServer before v8.0 allows attackers to execute arbitrary code via a crafted executable...

6.3AI score0.00316EPSS
Exploits0References3
NVD
NVD
added 2026/04/09 6:16 p.m.8 views

CVE-2026-30478

A Dynamic-link Library Injection vulnerability in GatewayGeo MapServer for Windows version 5 allows attackers to escalate privileges via a crafted executable...

8.8CVSS0.00172EPSS
Exploits0References2
OSV
OSV
added 2026/04/09 5:16 p.m.5 views

UBUNTU-CVE-2026-30479

A Dynamic-link Library Injection vulnerability in OSGeo Project MapServer before v8.0 allows attackers to execute arbitrary code via a crafted executable...

9.1CVSS6.2AI score0.00316EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/04/09 12:0 a.m.9 views

PT-2026-31656

A Dynamic-link Library Injection vulnerability in GatewayGeo MapServer for Windows version 5 allows attackers to escalate privileges via a crafted executable...

8.8CVSS5.9AI score0.00172EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/04/09 12:0 a.m.8 views

GatewayGeo MapServer 安全漏洞

GatewayGeo MapServer is an open-source geographic information system map service and spatial data publishing platform developed by GatewayGeo. There is a security vulnerability present in GatewayGeo MapServer for Windows, which stems from dynamic link library injection. This vulnerability could...

8.8CVSS5.8AI score0.00172EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/04/09 12:0 a.m.6 views

CVE-2026-30478

A Dynamic-link Library Injection vulnerability in GatewayGeo MapServer for Windows version 5 allows attackers to escalate privileges via a crafted executable...

5.9AI score0.00172EPSS
Exploits0References3
CVE
CVE
added 2026/04/09 12:0 a.m.9 views

CVE-2026-30479

CVE-2026-30479 affects OSGeo MapServer, prior to version 8.0. The issue is a Dynamic-link Library (DLL) Injection vulnerability that allows an attacker to execute arbitrary code through a crafted executable. The cited documents consistently describe the vulnerability as enabling arbitrary code ex...

9.1CVSS6.3AI score0.00316EPSS
Exploits0References2
CVE
CVE
added 2026/04/09 12:0 a.m.13 views

CVE-2026-30478

CVE-2026-30478 describes a DLL injection vulnerability in GatewayGeo MapServer for Windows version 5 that allows privilege escalation via a crafted executable. According to the CVE entry, the attack is local with low attack complexity and no user interaction, and it yields high impact on confiden...

8.8CVSS5.9AI score0.00172EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/04/09 12:0 a.m.8 views

PT-2026-31645

A Dynamic-link Library Injection vulnerability in OSGeo Project MapServer before v8.0 allows attackers to execute arbitrary code via a crafted executable...

6.3AI score0.00316EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/04/09 12:0 a.m.2 views

CVE-2026-30479

A Dynamic-link Library Injection vulnerability in OSGeo Project MapServer before v8.0 allows attackers to execute arbitrary code via a crafted executable...

6.3AI score0.00316EPSS
Exploits0References3
The Hacker News
The Hacker News
added 2026/04/06 10:7 a.m.5 views

Qilin and Warlock Ransomware Use Vulnerable Drivers to Disable 300+ EDR Tools

Threat actors associated with Qilin and Warlock ransomware operations have been observed using the bring your own vulnerable driver BYOVD technique to silence security tools running on compromised hosts, according to findings from Cisco Talos and Trend Micro. Qilin attacks analyzed by Talos have...

5.9AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/04/04 4:59 a.m.3 views

CVE-2025-59710

An issue was discovered in Biztalk360 before 11.5. Because of incorrect access control, any user is able to request the loading a DLL file. During the loading, a method is called. An attacker can craft a malicious DLL, upload it to the server, and use it to achieve remote code execution on the...

8.8CVSS6.5AI score0.00459EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/04/03 11:2 p.m.2 views

CVE-2026-28728

Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis True Image Windows before build 42902...

6.7CVSS6.7AI score0.00096EPSS
Exploits0References1
NVD
NVD
added 2026/04/03 3:16 p.m.3 views

CVE-2025-59710

An issue was discovered in Biztalk360 before 11.5. Because of incorrect access control, any user is able to request the loading a DLL file. During the loading, a method is called. An attacker can craft a malicious DLL, upload it to the server, and use it to achieve remote code execution on the...

8.8CVSS0.00459EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/03 12:0 a.m.21 views

CVE-2025-59710

An issue was discovered in Biztalk360 before 11.5. Because of incorrect access control, any user is able to request the loading a DLL file. During the loading, a method is called. An attacker can craft a malicious DLL, upload it to the server, and use it to achieve remote code execution on the...

0.00459EPSS
Exploits0References1
NVD
NVD
added 2026/04/02 6:16 p.m.2 views

CVE-2026-27774

Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis True Image Windows before build 42902...

6.7CVSS0.00096EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/02 5:5 p.m.17 views

CVE-2026-27774

Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis True Image Windows before build 42902...

6.7CVSS0.00096EPSS
Exploits0References1
CVE
CVE
added 2026/04/02 5:5 p.m.10 views

CVE-2026-27774

CVE-2026-27774 affects Acronis True Image for Windows prior to build 42902. The issue is a DLL hijacking vulnerability that leads to local privilege escalation. Documentation lists the root cause as DLL search/loading issues; attack vector is local with high confidentiality/integrity/availability...

6.7CVSS6.7AI score0.00096EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2026/04/02 12:0 a.m.7 views

Acronis True Image 代码问题漏洞

Acronis True Image is a renowned data backup and restoration software developed by the Swiss company Acronis. This software can be used to create drive and disk images, and to restore those images when a clean system is required. Previous versions of Acronis True Image, such as version 42902, had...

6.7CVSS6.7AI score0.00096EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/31 6:31 p.m.3 views

EUVD-2026-17476

Uncontrolled search path elements in Anthropic Claude for Windows installer Claude Setup.exe versions prior to 1.1.3363 allow local privilege escalation via DLL search-order hijacking. The installer loads DLLs e.g., profapi.dll from its own directory after UAC elevation, enabling arbitrary code...

4.7CVSS6.4AI score0.00177EPSS
Exploits0References2
Rows per page
Query Builder