8 matches found
CVE-2025-9273
CData API Server MySQL Misconfiguration Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of CData API Server. Authentication is required to exploit this vulnerability. The specific flaw exists within the...
The vulnerability of the ConvertFromJson method in the monitoring and security management tool Trend Micro Apex Central allows a attacker to execute arbitrary code in the context of NETWORK SERVICE.
The vulnerability of the ConvertFromJson method in the Trend Micro Apex Central security monitoring and management tool is related to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to execute arbitrary code in the context of NETWORK SERVICE...
CVE-2021-34995
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Commvault CommCell 11.22.22. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...
The vulnerability of the UpdateActionsProperties method in the SolarWinds Orion Platform’s network monitoring software allows a hacker to execute arbitrary code.
The vulnerability of the UpdateActionsProperties method in the SolarWinds Orion Platform software monitoring solution is related to insufficient comparison. Exploiting this vulnerability allows a remote attacker to execute arbitrary code in the context of NETWORK SERVICE...
The vulnerability of the DownloadCenterUploadHandler class in the CommCell storage management software allows a attacker to execute arbitrary code in the context of NETWORK SERVICE.
The vulnerability of the DownloadCenterUploadHandler class in the CommCell storage management software is related to the lack of restrictions on file downloads. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of NETWORK SERVICE remotely...
CVE-2021-34997
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Commvault CommCell 11.22.22. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...
Commvault CommCell Arbitrary File Upload Vulnerability (CNVD-2021-101452)
Commvault CommCell enables fast, large-scale backup and recovery of virtual machines, structured and unstructured data.An arbitrary file upload vulnerability exists in the DownloadCenterUploadHandler class in versions of Commvault CommCell prior to 11.25, which could be exploited by an attacker t...
Commvault CommCell DownloadCenterUploadHandler Arbitrary File Upload Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Commvault CommCell. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...