Lucene search
K

145 matches found

Prion
Prion
added 2019/04/10 6:29 p.m.16 views

Code injection

In Ubiquiti Networks EdgeSwitch X v1.1.0 and prior, an unauthenticated user can use the "local port forwarding" and "dynamic port forwarding" SOCKS proxy functionalities. Remote attackers without credentials can exploit this bug to access local services or forward traffic through the device if SS...

5.8CVSS5.2AI score0.00809EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/01/31 12:0 a.m.88 views

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : Firefox vulnerabilities (USN-3874-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3874-1 advisory. Multiple security issues were discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacke...

10CVSS8AI score0.12658EPSS
Exploits1References8
RedHat Linux
RedHat Linux
added 2008/08/13 2:19 p.m.7 views

Java-API calls in untrusted Javascript allow network privilege escalation

Unspecified vulnerability in Sun JDK and Java Runtime Environment JRE 6 Update 4 and earlier and 5.0 Update 14 and earlier; and SDK and JRE 1.4.216 and earlier; allows remote attackers to access arbitrary network services on the local host via unspecified vectors related to JavaScript and Java AP...

9.3CVSS7.5AI score0.05684EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2008/04/03 4:19 p.m.10 views

Java-API calls in untrusted Javascript allow network privilege escalation

Unspecified vulnerability in Sun JDK and Java Runtime Environment JRE 6 Update 4 and earlier and 5.0 Update 14 and earlier; and SDK and JRE 1.4.216 and earlier; allows remote attackers to access arbitrary network services on the local host via unspecified vectors related to JavaScript and Java AP...

9.3CVSS7.5AI score0.05684EPSS
Exploits0References4
securityvulns
securityvulns
added 2006/04/11 12:0 a.m.121 views

Microsoft Windows system services privilege escalation

There are several local services SSDP Discovery service, Universal Plug and Play Host service allow any authenticated user to configure service. It makes it possible to specify executable file and elevate privilege to Local System. Also vulnerable: HP Software: "Pml Driver HPZ12" HP Printer...

3AI score
Exploits0References4
Rows per page
Query Builder