Lucene search
K

56 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 2:27 a.m.24 views

CVE-2024-42024

A vulnerability that allows an attacker in possession of the Veeam ONE Agent service account credentials to perform remote code execution on the machine where the Veeam ONE Agent is installed...

9.1CVSS7.8AI score0.01254EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/04 10:41 p.m.5 views

CVE-2024-8733

A potential security vulnerability has been identified in the HP One Agent for certain HP PC products, which might allow for escalation of privilege. HP is releasing software updates to mitigate this potential vulnerability...

8CVSS7.3AI score0.00166EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/10/03 12:0 a.m.7 views

The vulnerability of the performance and status collection utility in HP One Agent, a microprogramming software for HP laptops, allows attackers to enhance their privileges.

The vulnerability of the HP One Agent performance and status monitoring tool for laptop HP microcomputer software involves the use of an unreliable search path. Exploiting this vulnerability can allow attackers to enhance their privileges...

8CVSS5.5AI score0.00166EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2024/10/02 7:12 p.m.41 views

CVE-2024-8733

CVE-2024-8733 concerns HP One Agent on certain HP PC products, with a potential privilege escalation. Documents indicate the affected component is HP One Agent (bundled with HP Application Enabling Software Driver) and identify the root cause as a privilege escalation vector, but do not specify e...

8CVSS8.1AI score0.00166EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/02 7:12 p.m.17 views

CVE-2024-8733 HP One Agent Software – Potential Privilege Escalation

A potential security vulnerability has been identified in the HP One Agent for certain HP PC products, which might allow for escalation of privilege. HP is releasing software updates to mitigate this potential vulnerability...

8CVSS0.00166EPSS
Exploits0References1
Hewlett-Packard
Hewlett-Packard
added 2024/10/02 12:0 a.m.21 views

HP One Agent Software – Potential Privilege Escalation

A potential security vulnerability has been identified in the HP One Agent for certain HP PC products, which might allow for escalation of privilege. HP is releasing software updates to mitigate this potential vulnerability. Mitigation is available in HP Application Enabling Software Driver versi...

8CVSS7.5AI score0.00166EPSS
Exploits0
CNNVD
CNNVD
added 2024/10/02 12:0 a.m.6 views

HP One Agent Software 安全漏洞

HP One Agent is an application from Hewlett-Packard HP USA. A security vulnerability exists in HP One Agent Software that stems from an elevation of privilege issue...

8CVSS7.1AI score0.00166EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/09/09 12:0 a.m.6 views

The vulnerability of the Veeam ONE monitoring software, related to deficiencies in access control, allows a perpetrator to execute arbitrary code on systems where the Veeam ONE Agent is installed.

The vulnerability of the Veeam ONE monitoring software relates to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to execute arbitrary code on systems where the Veeam ONE Agent is installed...

9.1CVSS8.4AI score0.01254EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2024/09/07 5:15 p.m.4 views

CVE-2024-42024

A vulnerability that allows an attacker in possession of the Veeam ONE Agent service account credentials to perform remote code execution on the machine where the Veeam ONE Agent is installed...

8.8CVSS6.4AI score0.01254EPSS
Exploits0References1
NVD
NVD
added 2024/09/07 5:15 p.m.44 views

CVE-2024-42024

A vulnerability that allows an attacker in possession of the Veeam ONE Agent service account credentials to perform remote code execution on the machine where the Veeam ONE Agent is installed...

9.1CVSS0.01254EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/09/07 4:11 p.m.38 views

CVE-2024-42024

A vulnerability that allows an attacker in possession of the Veeam ONE Agent service account credentials to perform remote code execution on the machine where the Veeam ONE Agent is installed...

9.1CVSS0.01254EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/09/07 4:11 p.m.28 views

CVE-2024-42024

A vulnerability that allows an attacker in possession of the Veeam ONE Agent service account credentials to perform remote code execution on the machine where the Veeam ONE Agent is installed...

9.1CVSS7.8AI score0.01254EPSS
Exploits0References1
CVE
CVE
added 2024/09/07 4:11 p.m.85 views

CVE-2024-42024

CVE-2024-42024 affects Veeam ONE. The flaw allows an attacker with the Veeam ONE Agent service account credentials to perform remote code execution on the host where ONE is installed. Affected product: Veeam ONE (12.x line). Root cause: improper access control enabling RCE when credentials are pr...

9.1CVSS7.8AI score0.01254EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2024/01/23 9:15 p.m.14 views

CVE-2023-52094

An updater link following vulnerability in the Trend Micro Apex One agent could allow a local attacker to abuse the updater to delete an arbitrary folder, leading for a local privilege escalation on affected installations. Please note: an attacker must first obtain the ability to execute...

7.8CVSS7.8AI score0.00311EPSS
Exploits0References2
Prion
Prion
added 2024/01/23 9:15 p.m.19 views

Design/Logic Flaw

An updater link following vulnerability in the Trend Micro Apex One agent could allow a local attacker to abuse the updater to delete an arbitrary folder, leading for a local privilege escalation on affected installations. Please note: an attacker must first obtain the ability to execute...

4.3CVSS7.6AI score0.00311EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/01/23 8:40 p.m.15 views

CVE-2023-52094

An updater link following vulnerability in the Trend Micro Apex One agent could allow a local attacker to abuse the updater to delete an arbitrary folder, leading for a local privilege escalation on affected installations. Please note: an attacker must first obtain the ability to execute...

8AI score0.00311EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/09/07 12:0 a.m.6 views

PT-2023-8405 · Trend Micro +1 · Trend Micro Deep Security +2

Name of the Vulnerable Software and Affected Versions: Trend Micro Deep Security versions 20.0 Trend Micro Cloud One - Endpoint and Workload Security Agent affected versions not specified Description: The issue is related to a link following vulnerability in the Anti-Malware module of Trend Micro...

7.8CVSS7.9AI score0.0031EPSS
Exploits0References10
OSV
OSV
added 2023/03/10 9:15 p.m.3 views

CVE-2023-25147

An issue in the Trend Micro Apex One agent could allow an attacker who has previously acquired administrative rights via other means to bypass the protection by using a specifically crafted DLL during a specific update process. Please note: an attacker must first obtain administrative access on t...

6.7CVSS6.9AI score0.00233EPSS
Exploits0References1
OSV
OSV
added 2022/10/10 9:15 p.m.4 views

CVE-2022-41747

An improper certification validation vulnerability in Trend Micro Apex One agents could allow a local attacker to load a DLL file with system service privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in...

7.8CVSS6AI score0.0023EPSS
Exploits0References2
OSV
OSV
added 2022/09/28 9:15 p.m.4 views

CVE-2022-40709

An Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code o...

3.3CVSS5.8AI score0.00417EPSS
Exploits0References2
Rows per page
Query Builder