Lucene search
K

35 matches found

BDU FSTEC
BDU FSTEC
added 2023/07/24 12:0 a.m.8 views

The vulnerability of the Hitachi Replication Manager (HRpM) platform, related to the failure to take measures to neutralize special elements used in the expression language of the operator, allows a perpetrator to execute arbitrary code.

The vulnerability of the Hitachi Replication Manager HRpM platform relates to the failure to take measures to neutralize special elements used in the expression language. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

7.5CVSS7.7AI score0.00451EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/08/15 12:0 a.m.9 views

The vulnerability of Siemens’ software and hardware infrastructure, which arises due to the failure to take measures to neutralize specific elements, allows a perpetrator to execute arbitrary code.

Siemens’ software-hardware vulnerabilities exist due to the lack of measures taken to neutralize these special elements. Exploiting these vulnerabilities allows a remote attacker to execute arbitrary code...

9.1CVSS7.7AI score0.01318EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/06/30 12:0 a.m.6 views

The vulnerability in the LDAP Account Manager web application exists due to the failure to take measures to neutralize special elements, allowing attackers to execute arbitrary code.

The vulnerability of the LDAP Account Manager web application exists due to the failure to take measures to neutralize special elements. Exploiting this vulnerability allows a malicious actor to execute arbitrary code, provided that the /config/templates/pdf/ directory is accessible to users...

7.5CVSS7.1AI score0.0215EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/06/09 12:0 a.m.6 views

The vulnerability of the Tuleap lifecycle management system, which arises from the failure to take measures to neutralize special elements, allows a perpetrator to forcibly suspend an account or gain control over another account.

The vulnerability of the Tuleap application lifecycle management system exists due to the failure to take measures to neutralize specific elements. Exploiting this vulnerability can allow a malicious actor, operating remotely and with administrative privileges, to temporarily disable a user accou...

8.5CVSS7.1AI score0.0148EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/03/23 12:0 a.m.9 views

The vulnerability of the software platform for developing and managing online stores Magento Commerce allows a hacker to execute arbitrary code.

The vulnerability of the Magento Commerce software development and management platform is related to the lack of measures taken to neutralize special elements used in the operating system. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9.1CVSS7.7AI score0.02292EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/10/21 12:0 a.m.6 views

The vulnerability of the microprogramming software used in Polycom CX5100 and CX5500 teleconferencing stations stems from the lack of measures taken to neutralize special elements used in the operating system. This allows attackers to exploit their privileges.

The vulnerability of the microprogramming software used in Polycom CX5100 and CX5500 conference call stations exists due to the lack of measures taken to neutralize the special elements used in the operating system. Exploiting this vulnerability can allow attackers to enhance their privileges...

9.1CVSS5.5AI score
Exploits0References1Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/09/10 12:0 a.m.6 views

The vulnerability of the FUEL CMS content management system, which arises due to the failure to take measures to neutralize special elements, allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the functions in the fuel/modules/fuel/config/fuelconstants.php and fuel/modules/fuel/libraries/Asset.php files of the FUEL CMS content management system exists due to the lack of measures taken to neutralize these special elements. Exploiting this vulnerability can allow a...

9.3CVSS7.5AI score0.01294EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/08/24 12:0 a.m.6 views

The vulnerability of the commercial vBulletin web forum exists due to the lack of measures to neutralize special elements, allowing attackers to execute arbitrary commands.

The vulnerability of the commercial forum engine vBulletin exists due to the failure to address the issue of eliminating specific elements. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands using the ajax/render/widgettabbedcontainertabpanel request...

10CVSS8.4AI score0.8774EPSS
Exploits2References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/05/19 12:0 a.m.7 views

The vulnerability of Cisco Enterprise NFV Infrastructure Software (NFVIS) lies in the lack of measures to neutralize special elements used in operating system commands, allowing attackers to execute arbitrary commands with root privileges.

The vulnerability of Cisco Enterprise NFV Infrastructure Software NFVIS is related to the lack of measures taken to neutralize special elements used in operating system commands. Exploiting this vulnerability allows an attacker to execute arbitrary commands with root privileges...

7.8CVSS7.6AI score0.00666EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/04/06 12:0 a.m.7 views

The vulnerability of the configuration management system and remote execution of operations, related to the lack of measures to neutralize special elements, allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of configuration management systems and remote execution of operations related to Salt is related to the lack of measures to neutralize special elements. Exploiting this vulnerability allows a malicious actor to gain access to confidential data, compromise its integrity, and cau...

9.8CVSS7.7AI score0.99585EPSS
Exploits5References11Affected Software6
BDU FSTEC
BDU FSTEC
added 2020/07/03 12:0 a.m.5 views

The vulnerability of Azure DevOps Server’s software development tools, related to the failure to take measures to neutralize special elements, allows attackers to compromise the confidentiality and integrity of the protected information.

The vulnerability of Azure DevOps Server lies in the lack of measures taken to neutralize specific elements. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality and integrity of the protected information...

6.1CVSS6.8AI score0.0182EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/05/26 12:0 a.m.5 views

The vulnerability of the Adobe Digital Editions e-book reading program, which exists due to the failure to take measures to neutralize special elements, allows a violator to execute arbitrary code.

The vulnerability of the Adobe Digital Editions e-book reading program exists due to the lack of measures taken to neutralize specific elements. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS8.1AI score0.0715EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/12/26 12:0 a.m.6 views

The vulnerability of the McAfee Advanced Threat Defense software arises from the lack of measures taken to neutralize its special elements, allowing attackers to execute arbitrary commands.

The vulnerability of the McAfee Advanced Threat Defense security tool exists due to the failure to take measures to neutralize specific elements within it. Exploiting this vulnerability allows a malicious actor, operating remotely, to execute arbitrary commands by sending specially crafted HTTP...

8.4CVSS8AI score0.01198EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/09/19 12:0 a.m.3 views

The vulnerability of the do_ed_script function in the GNU Patch software’s source code (src/pch.c) allows a malicious actor to access confidential information and execute arbitrary commands, due to the lack of measures taken to neutralize special elements used in the operating system’s command syntax.

The vulnerability of the doedscript function in the GNU Patch software lies in its failure to prevent the neutralization of special elements used in the operating system’s commands. Exploiting this vulnerability can allow an attacker to access confidential information and execute arbitrary comman...

7.8CVSS5.8AI score0.0453EPSS
Exploits0References16Affected Software5
BDU FSTEC
BDU FSTEC
added 2019/02/05 12:0 a.m.4 views

The vulnerability of the Cisco Webex Teams collaboration software exists due to the lack of measures taken to neutralize special elements used in the operating system’s command sequence. This allows attackers to execute arbitrary commands.

The vulnerability of the Cisco Webex Teams collaboration software exists because measures are not taken to neutralize the special elements used in the operating system’s command sequence. Exploiting this vulnerability allows an attacker to execute arbitrary commands with privileges of the target...

7.8CVSS7.6AI score0.46891EPSS
Exploits3References3Affected Software1
Rows per page
Query Builder