Lucene search
K

174 matches found

CNVD
CNVD
added 2020/06/23 12:0 a.m.8 views

ArticaTech Artica Proxy Operating System Command Injection Vulnerability

ArticaTech Artica Proxy is an open source Artica proxy solution from the French company ArticaTech. An operating system command injection vulnerability exists in versions prior to ArticaTech Artica Proxy 4.30.000000 Community Edition. The vulnerability arises from a network system or product not...

10CVSS7.5AI score0.09324EPSS
Exploits1References1
CNVD
CNVD
added 2020/06/23 12:0 a.m.3 views

Limdu Operating System Command Injection Vulnerability

Limdu is a machine learning framework for Node.js by Erel Segal-Halevi Software Developers. An operating system command injection vulnerability exists in the 'trainBatch' function in versions of Limdu prior to 0.95. The vulnerability stems from a network system or product not properly filtering...

9CVSS7.3AI score0.01628EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2020/05/06 4:40 p.m.11 views

CVE-2020-3309 Cisco Firepower Device Manager On-Box Software Arbitrary File Overwrite Vulnerability

A vulnerability in Cisco Firepower Device Manager FDM On-Box software could allow an authenticated, remote attacker to overwrite arbitrary files on the underlying operating system of an affected device. The vulnerability is due to improper input validation. An attacker could exploit this...

6.5CVSS6.9AI score0.01766EPSS
Exploits0References1
CNVD
CNVD
added 2020/04/28 12:0 a.m.2 views

Operating System Command Injection Vulnerability in Multiple NETGEAR Products

NETGEAR R6700 and others are products of NETGEAR, Inc.NETGEAR R6700 is a wireless router.NETGEAR D7800 is a wireless modem.NETGEAR R6900 is a wireless router.NETGEAR D7800 is a wireless modem.NETGEAR D7800 is a wireless modem.NETGEAR D7800 is a wireless modem.NETGEAR R6900 is a wireless router...

6.8CVSS8AI score0.00815EPSS
Exploits0References1
CNVD
CNVD
added 2020/04/24 12:0 a.m.9 views

Command Injection Vulnerability in Multiple NETGEAR Products (CNVD-2021-50928)

NETGEAR EX7000 and others are products of NETGEAR Corporation.NETGEAR EX7000 is a wireless network signal extender.NETGEAR R8500 is a wireless router.NETGEAR D6400 is a wireless modem.NETGEAR R8500 is a wireless router.NETGEAR R8500 is a wireless router.NETGEAR R8500 is a wireless router.NETGEAR...

9.8CVSS7.7AI score0.03353EPSS
Exploits0References1
0day.today
0day.today
added 2020/03/28 12:0 a.m.217 views

Jinfornet Jreport 15.6 - Unauthenticated Directory Traversal Exploit

Exploit for java platform in category web applications Exploit Title: Jinfornet Jreport 15.6 - Unauthenticated Directory Traversal Exploit Author: hongphukt Vendor Homepage: https://www.jinfonet.com/ Software Link: https://www.jinfonet.com/product/download-jreport/ Version: JReport 15.6 Tested on...

7.4AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2020/03/10 12:0 a.m.8 views

The vulnerability of the Win32k component of the Windows operating system, which allows a hacker to increase their privileges

The vulnerability of the Win32k component of the Windows operating system is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to increase their privileges...

7CVSS7.1AI score0.00962EPSS
Exploits0References3
CNVD
CNVD
added 2019/11/12 12:0 a.m.10 views

Pi-Hole Operating System Command Injection Vulnerability

Pi-Hole is a web-grade ad-blocking application. An operating system command injection vulnerability exists in Pi-Hole version 4.3. The vulnerability arises when a network system or product fails to properly filter special characters, commands, etc. during the construction of executable operating...

8.8CVSS7.5AI score0.12467EPSS
Exploits3References1
NVD
NVD
added 2019/10/18 5:15 p.m.40 views

CVE-2019-17526

An issue was discovered in SageMath Sage Cell Server through 2019-10-05. Python Code Injection can occur in the context of an internet facing web application. Malicious actors can execute arbitrary commands on the underlying operating system, as demonstrated by an import'os'.popen'whoami'.read...

10CVSS10AI score0.02999EPSS
Exploits1References3
BDU FSTEC
BDU FSTEC
added 2019/08/02 12:0 a.m.5 views

The vulnerability of the PAN-OS operating system, related to the lack of protection for mission-critical data, allows attackers to enhance their privileges.

The vulnerability of the PAN-OS operating system is related to the lack of protection for operational data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to increase their privileges...

9CVSS5.5AI score0.01683EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2018/05/14 8:29 p.m.5 views

CVE-2017-12127

A password storage vulnerability exists in the operating system functionality of Moxa EDR-810 V4.1 build 17030317. An attacker with shell access could extract passwords in clear text from the device...

4.4CVSS5.8AI score0.0044EPSS
Exploits2References1
Tenable Nessus
Tenable Nessus
added 2018/03/12 12:0 a.m.20 views

Solaris 10 (x86) : 150833-08

Vulnerability in the Solaris component of Oracle Sun Systems Products Suite subcomponent: UNIX filesystem. Supported versions that are affected are 10 and 11.2. Easily exploitable vulnerability requiring logon to Operating System. Successful attack of this vulnerability can result in unauthorized...

4.9CVSS6.4AI score0.00423EPSS
Exploits0References2
OSV
OSV
added 2018/01/04 2:29 p.m.3 views

CVE-2018-0748

The Windows kernel in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way memory...

7.8CVSS7.1AI score0.02775EPSS
Exploits2References5
BDU FSTEC
BDU FSTEC
added 2017/07/06 12:0 a.m.10 views

The vulnerability of the Windows operating system’s kernel driver mode allows attackers to escalate their privileges.

The vulnerability of the Windows operating system’s kernel mode driver is related to improper data handling. Exploiting this vulnerability can allow an attacker, operating locally, to increase their privileges...

7.2CVSS7.2AI score0.01004EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2017/06/30 12:0 a.m.6 views

The vulnerability of the Android operating system, which allows a hacker to compromise the security of information

The vulnerability of the Android operating system is related to deficiencies in controlling access to the modem’s memory. Exploiting this vulnerability can allow a malicious actor to compromise information security remotely...

9.3CVSS7.2AI score0.00563EPSS
Exploits0References3
CNVD
CNVD
added 2017/05/12 12:0 a.m.5 views

Palo Alto Networks PAN-OS Information Disclosure Vulnerability (CNVD-2017-06852)

PAN-OS is a security-specific operating system designed to control Palo Alto Networks' firewalls with a rich set of firewall, management, and network features. An information disclosure vulnerability exists in the management web interface in Palo Alto Networks PAN-OS, which can be exploited by a...

6.5CVSS6.5AI score0.0102EPSS
Exploits0References1
NVD
NVD
added 2017/03/08 1:59 a.m.17 views

CVE-2017-0508

An elevation of privilege vulnerability in the kernel ION subsystem could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing th...

9.3CVSS7.2AI score0.01823EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2017/01/18 12:0 a.m.4 views

The vulnerability of the Android operating system, which allows a intruder to gain unauthorized access to the supervisor’s memory

The vulnerability of the Android operating system’s supervisor exists due to insufficient checking of input data. Exploiting this vulnerability can allow an intruder, operating locally, to gain unauthorized access to the supervisor’s memory using HLOS...

7.2CVSS7.2AI score0.00371EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/07/11 12:0 a.m.6 views

The vulnerability of the Android operating system, which allows a hacker to increase their privileges

The vulnerability of the Wi-Fi component of the Android operating system is related to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor, operating remotely, to enhance their privileges through a specially created application...

9.3CVSS7.2AI score0.00389EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/06/09 12:0 a.m.5 views

Vulnerability of the PHP interpreter and the Mac OS X operating system, allowing attackers to execute arbitrary code

The vulnerability of the phpsnmperror function ext/snmp/snmp.c in the PHP interpreter and the Mac OS X operating system exists due to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

7.5CVSS8.1AI score0.19455EPSS
Exploits1References9Affected Software2
Rows per page
Query Builder