Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

OSV
OSVadded 2023/10/05 4:15 p.m.1 views

CVE-2023-45160

In the affected version of the 1E Client, an ordinary user could subvert downloaded instruction resource files, e.g., to substitute a harmful script. by replacing a resource script file created by an instruction at run time with a malicious script. The 1E Client's temporary directory is now locke...

8.8CVSS5.7AI score0.0027EPSS
Exploits0References4
CNNVD
CNNVDadded 2023/10/05 12:0 a.m.1 views

1E Client Backlink Vulnerability

1E Client is an agent-less endpoint management software from 1E Client, Inc. 1E Client suffers from a backlink vulnerability that stems from the presence of an arbitrary file deletion vulnerability...

8.4CVSS7AI score0.00155EPSS
Exploits0References3
CNNVD
CNNVDadded 2023/10/05 12:0 a.m.3 views

1E Client Security Vulnerability

1E Client is an agent-less endpoint management software from 1E Client USA. A security vulnerability exists in 1E Client that originates from allowing an attacker to corrupt command resource files by replacing commands with malicious scripts...

8.8CVSS7.1AI score0.0027EPSS
Exploits0References5
OSV
OSVadded 2020/12/29 9:15 p.m.0 views

CVE-2020-27644

The Inventory module of the 1E Client 5.0.0.745 doesn't handle an unquoted path when executing %PROGRAMFILES%\1E\Client\Tachyon.Performance.Metrics.exe. This may allow remote authenticated users and local users to gain elevated privileges by placing a malicious cryptbase.dll file in %WINDIR%\Temp...

8.8CVSS7AI score0.00821EPSS
Exploits0References1
OSV
OSVadded 2020/12/29 9:15 p.m.1 views

CVE-2020-27643

The %PROGRAMDATA%\1E\Client directory in 1E Client 5.0.0.745 and 4.1.0.267 allows remote authenticated users and local users to create and modify files in protected directories where they would not normally have access to create or modify files via the creation of a junction point to a system...

6.5CVSS6.9AI score0.00821EPSS
Exploits0References1
OSV
OSVadded 2020/12/29 9:15 p.m.0 views

CVE-2020-27645

The Inventory module of the 1E Client 5.0.0.745 doesn't handle an unquoted path when executing %PROGRAMFILES%\1E\Client\Tachyon.Performance.Metrics.exe. This may allow remote authenticated users and local users to gain elevated privileges...

8.8CVSS7AI score0.00821EPSS
Exploits0References1
OSV
OSVadded 2020/12/29 9:15 p.m.1 views

CVE-2020-16268

The MSI installer in 1E Client 4.1.0.267 and 5.0.0.745 allows remote authenticated users and local users to gain elevated privileges via the repair option. This applies to installations that have a TRANSFORM MST with the option to disable the installation of the Nomad module. An attacker may craf...

8.8CVSS7AI score0.00821EPSS
Exploits0References1
CNNVD
CNNVDadded 2020/12/29 12:0 a.m.2 views

1E Client 代码问题漏洞

1E Client is an agent-less endpoint management software from 1E 1E Client USA. An elevation of privilege vulnerability exists in 1E Client version 5.0.0.745. The vulnerability stems from the Inventory module not properly handling unreferenced paths. An authenticated attacker can exploit this...

8.8CVSS5.8AI score0.00662EPSS
Exploits0References2
Rows per page
Query Builder