Lucene search
K

6 matches found

CVE
CVE
added 2026/02/03 6:29 p.m.13 views

CVE-2026-25236

CVE-2026-25236 affects the PEAR PHP framework. The vulnerability is a SQL injection risk in karma queries caused by unsafe literal substitution for an IN (...) list. Root cause: unsafe literal handling in Karma DAMBLAN-related queries prior to version 1.33.0. Impact: potential SQL injection. Miti...

9.8CVSS5.6AI score0.00266EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2025/02/19 12:0 a.m.5 views

Dell Update Package Framework Local Elevation of Privilege Vulnerability

Dell Update Package Framework is a framework for updating system components from Dell USA. The product focuses on providing installers for drivers, applications, BIOS, and firmware. The Dell Update Package Framework suffers from a local elevation of privilege vulnerability that originates from a...

8.2CVSS7.2AI score0.00194EPSS
Exploits0References1
NVD
NVD
added 2025/01/07 3:15 a.m.13 views

CVE-2025-22395

Dell Update Package Framework, versions prior to 22.01.02, contains a Local Privilege Escalation Vulnerability. A local low privileged attacker could potentially exploit this vulnerability, leading to the execution of arbitrary remote scripts on the server. Exploitation may lead to a denial of...

8.2CVSS0.00194EPSS
Exploits0References1
CVE
CVE
added 2025/01/07 2:52 a.m.61 views

CVE-2025-22395

Dell Update Package Framework (DUPF) vulnerabilities affect versions prior to 22.01.02, with a Local Privilege Escalation that could allow a local, low-privilege attacker to execute arbitrary remote scripts on the server and potentially cause a denial of service. Root cause is local privilege esc...

8.2CVSS7AI score0.00194EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/01/07 12:0 a.m.6 views

Dell Update Package Framework 安全漏洞

Dell Update Package Framework is a framework for updating system components from Dell USA. The product focuses on providing installers for drivers, applications, BIOS, and firmware. The Dell Update Package Framework suffers from a local elevation of privilege vulnerability that originates from a...

8.2CVSS7.3AI score0.00194EPSS
Exploits0References1
CNVD
CNVD
added 2019/09/25 12:0 a.m.3 views

Dell Update Package Framework Code Issue Vulnerability

Dell Update Package DUP Framework is a framework for updating system components from Dell USA. The product primarily provides installers for drivers, applications, BIOS, and firmware. A code issue vulnerability exists in the Dell DUP Framework file, which can be exploited by a local attacker to...

6.7CVSS7.5AI score0.00463EPSS
Exploits0References1
Rows per page
Query Builder