Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.7 views

EUVD-2024-54857

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00456EPSS
Exploits0References9
RedhatCVE
RedhatCVEadded 2025/08/09 12:23 a.m.11 views

CVE-2024-42048

OpenOrange Business Framework version 1.15.5 installs to a directory with overly permissive access control, allowing all authenticated users to write to the installation path. In combination with the application's behavior of loading DLLs from this location, this allows for DLL hijacking and may...

6.5CVSS7.8AI score0.00456EPSS
Exploits0References1
NVD
NVDadded 2025/08/07 5:15 p.m.4 views

CVE-2024-42048

OpenOrange Business Framework version 1.15.5 installs to a directory with overly permissive access control, allowing all authenticated users to write to the installation path. In combination with the application's behavior of loading DLLs from this location, this allows for DLL hijacking and may...

6.5CVSS0.00456EPSS
Exploits0References9
Cvelist
Cvelistadded 2025/08/07 12:0 a.m.9 views

CVE-2024-42048

OpenOrange Business Framework version 1.15.5 installs to a directory with overly permissive access control, allowing all authenticated users to write to the installation path. In combination with the application's behavior of loading DLLs from this location, this allows for DLL hijacking and may...

0.00456EPSS
Exploits0References9
CNNVD
CNNVDadded 2025/08/07 12:0 a.m.3 views

OpenOrange Business Framework 安全漏洞

OpenOrange Business Framework is a business application framework from OpenOrange, Inc. A security vulnerability exists in OpenOrange Business Framework version 1.15.5 that originates from providing write access to the installation directory to an unprivileged user...

6.5CVSS6.8AI score0.00456EPSS
Exploits0References10
CVE
CVEadded 2025/08/07 12:0 a.m.23 views

CVE-2024-42048

OpenOrange Business Framework v1.15.5 permits unprivileged write access to its installation directory, enabling DLL hijacking due to loading DLLs from that path. This could lead to arbitrary code execution and privilege escalation, per CVE-2024-42048 and linked sources. No remediation details are...

6.5CVSS7.3AI score0.00456EPSS
Exploits0References9
Vulnrichment
Vulnrichmentadded 2025/08/07 12:0 a.m.4 views

CVE-2024-42048

OpenOrange Business Framework version 1.15.5 installs to a directory with overly permissive access control, allowing all authenticated users to write to the installation path. In combination with the application's behavior of loading DLLs from this location, this allows for DLL hijacking and may...

7.3AI score0.00456EPSS
Exploits0References9
Positive Technologies
Positive Technologiesadded 2025/08/07 12:0 a.m.5 views

PT-2025-32284 · Unknown · Openorange Business Framework

Name of the Vulnerable Software and Affected Versions: OpenOrange Business Framework version 1.15.5 Description: OpenOrange Business Framework versions 1.15.5 allows unprivileged users to write to the installation directory. Recommendations: Restrict write access to the installation directory for...

6.5CVSS6.5AI score0.00456EPSS
Exploits0References12
Rows per page
Query Builder