26 matches found
EUVD-2017-18380
Malware in sbrugna...
EUVD-2020-7841
Malware in sbrugna...
EUVD-2020-23368
Malware in sbrugna...
EUVD-2020-29798
Malware in sbrugna...
EUVD-2022-44127
Malicious code in bioql PyPI...
CVE-2022-40870
The Web Client of Parallels Remote Application Server v18.0 is vulnerable to Host Header Injection attacks. This vulnerability allows attackers to execute arbitrary commands via a crafted payload injected into the Host header...
CVE-2020-15860
Parallels Remote Application Server RAS 17.1.1 has a Business Logic Error causing remote code execution. It allows an authenticated user to execute any application in the backend operating system through the web application, despite the affected application not being published. In addition, it wa...
CVE-2020-35710
Parallels Remote Application Server RAS 18 allows remote attackers to discover an intranet IP address because submission of the login form even with blank credentials provides this address to the attacker's client for use as a "host" value. In other words, after an attacker's web browser sent a...
CVE-2023-45894
The Remote Application Server in Parallels RAS before 19.2.23975 does not segment virtualized applications from the server, which allows a remote attacker to achieve remote code execution via standard kiosk breakout techniques...
CVE-2023-45894
The Remote Application Server in Parallels RAS before 19.2.23975 does not segment virtualized applications from the server, which allows a remote attacker to achieve remote code execution via standard kiosk breakout techniques...
PT-2023-29752 · Parallels · Parallels Ras
Name of the Vulnerable Software and Affected Versions: Parallels RAS versions prior to 19.2.23975 Description: The issue allows a remote attacker to achieve remote code execution via standard kiosk breakout techniques because the Remote Application Server in Parallels RAS does not segment...
Design/Logic Flaw
The Web Client of Parallels Remote Application Server v18.0 is vulnerable to Host Header Injection attacks. This vulnerability allows attackers to execute arbitrary commands via a crafted payload injected into the Host header...
Parallels Remote Application Server 安全漏洞
Parallels Remote Application Server RAS is an application delivery and VDI Virtual Desktop Infrastructure solution from Parallels, Inc. in the United States. A security vulnerability exists in Parallels Remote Application Server version v18.0 that stems from the vulnerability of the web client to...
CVE-2022-40870
The Web Client of Parallels Remote Application Server v18.0 is vulnerable to Host Header Injection attacks. This vulnerability allows attackers to execute arbitrary commands via a crafted payload injected into the Host header...
Unspecified Vulnerability in Parallels Remote Application Server
Parallels Remote Application Server RAS is an application delivery and VDI Virtual Desktop Infrastructure solution from Parallels, Inc. A security vulnerability exists in Parallels Remote Application Server RAS that originated from a vulnerability that allows a local attacker to retrieve certain...
CVE-2020-8968
Parallels Remote Application Server RAS allows a local attacker to retrieve certain profile password in clear text format by uploading a previously stored cyphered file by Parallels RAS. The confidentiality, availability and integrity of the information of the user could be compromised if an...
CVE-2020-8968
CVE-2020-8968 affects Parallels Remote Application Server (RAS). A local attacker can retrieve certain profile passwords in clear text by uploading a previously stored cyphered file, compromising confidentiality (and potentially integrity/availability of user data). Exploitation is local and requ...
PT-2021-12818 · Parallels · Parallels Remote Application Server
Name of the Vulnerable Software and Affected Versions: Parallels Remote Application Server RAS affected versions not specified Description: The issue allows a local attacker to retrieve certain profile passwords in clear text format by uploading a previously stored cyphered file. This could...
Parallels Remote Application Server Information Disclosure Vulnerability
Parallels Remote Application Server RAS is an application delivery and VDI Virtual Desktop Infrastructure solution from Parallels, Inc. in the United States. A security vulnerability exists in Parallels Remote Application Server that allows a remote attacker to discover an intranet IP address...
Parallels Remote Application Server (RAS) Remote Code Execution Vulnerability
Parallels Remote Application Server RAS is a comprehensive virtual application and desktop delivery solution for your employees to access and use applications and data from any device. A remote code execution vulnerability exists in Parallels Remote Application Server RAS 17.1.1. The vulnerabilit...