4568 matches found
CVE-2024-23686
DependencyCheck for Maven 9.0.0 to 9.0.6, for CLI version 9.0.0 to 9.0.5, and for Ant versions 9.0.0 to 9.0.5, when used in debug mode, allows an attacker to recover the NVD API Key from a log file...
Integration Objects OPC UA Server Toolkit Security Vulnerability
Integration Objects OPC UA Server Toolkit is a toolkit for developing OPC UA servers from Integration Objects. A security vulnerability exists in Integration Objects OPC UA Server Toolkit that originated from allowing an attacker to write malicious content to a log file...
CVE-2023-51062
An unauthenticated log file read in the component log-smblog-save of QStar Archive Solutions RELEASE3-0 Build 7 Patch 0 allows attackers to disclose the SMB Log contents via executing a crafted command...
Command injection
An unauthenticated log file read in the component log-smblog-save of QStar Archive Solutions RELEASE3-0 Build 7 Patch 0 allows attackers to disclose the SMB Log contents via executing a crafted command...
CVE-2023-51062
Summary : CVE-2023-51062 affects QStar Archive Solutions, RELEASE_3-0 Build 7 Patch 0. An unauthenticated read of the log-smblog-save component can disclose SMB log contents when a crafted command is executed. The NVD/CVSS indicates network access with low complexity and no privileges required, r...
CVE-2023-51062
An unauthenticated log file read in the component log-smblog-save of QStar Archive Solutions RELEASE3-0 Build 7 Patch 0 allows attackers to disclose the SMB Log contents via executing a crafted command...
CVE-2023-51062
An unauthenticated log file read in the component log-smblog-save of QStar Archive Solutions RELEASE3-0 Build 7 Patch 0 allows attackers to disclose the SMB Log contents via executing a crafted command...
The vulnerability of the Common Log File System (CLFS) log management subsystem in Windows operating systems allows attackers to escalate their privileges.
The vulnerability of the Common Log File System CLFS log management subsystem in Windows operating systems is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to enhance their privileges...
Microsoft Common Log File System Elevation of Privilege Vulnerability
The Microsoft Common Log File System is Microsoft's Common Log File System CLFS API provides a log file subsystem that can be used by dedicated client applications and shared by multiple clients to optimize log access. Microsoft Common Log File System elevation of privilege vulnerability. An...
CVE-2023-5504
Summary (CVE-2023-5504) The BackWPup WordPress backup plugin is affected by a directory traversal vulnerability in versions up to and including 4.0.1, exploitable via the Log File Folder. The underlying issue allows an authenticated attacker with plugin access to store backups in arbitrary server...
CVE-2024-21668 Insertion of Sensitive Information into Log File in react-native-mmkv
react-native-mmkv is a library that allows easy use of MMKV inside React Native applications. Before version 2.11.0, the react-native-mmkv logged the optional encryption key for the MMKV database into the Android system log. The key can be obtained by anyone with access to the Android Debugging...
CVE-2024-20653
Microsoft Common Log File System Elevation of Privilege Vulnerability...
CVE-2024-20653
Microsoft Common Log File System Elevation of Privilege Vulnerability...
Privilege escalation
Microsoft Common Log File System Elevation of Privilege Vulnerability...
CVE-2024-20653 Microsoft Common Log File System Elevation of Privilege Vulnerability
...
CVE-2024-20653
Technical details about CVE-2024-20653 (affected product, specific component, root cause, impact, and remediation) are not publicly provided in the connected documents you supplied. Monitor for updates from official advisories to confirm affected software and fixes.
Microsoft Common Log File System Elevation of Privilege Vulnerability
...
Microsoft Windows Common Log File System Driver 安全漏洞
The Microsoft Common Log File System is Microsoft's Common Log File System CLFS API provides a log file subsystem that can be used by dedicated client applications and shared by multiple clients to optimize log access. Microsoft Common Log File System elevation of privilege vulnerability. An...
PT-2024-1033 · Microsoft · Common Log File System +1
Name of the Vulnerable Software and Affected Versions: Microsoft Common Log File System affected versions not specified Description: The issue is related to insufficient access control in the Common Log File System CLFS of Windows operating systems. Exploitation of this issue may allow an attacke...
GHSA-GHMW-RWH8-6QMR pyload Log Injection vulnerability
Summary A log injection vulnerability was identified in pyload. This vulnerability allows any unauthenticated actor to inject arbitrary messages into the logs gathered by pyload. Details pyload will generate a log entry when attempting to sign in with faulty credentials. This entry will be in the...