Lucene search
K

111 matches found

CVE
CVE
added 2026/02/25 12:57 p.m.17 views

CVE-2026-28194

CVE-2026-28194 concerns JetBrains TeamCity (pre-2025.11.3) where the React project creation flow allowed an open redirect. The description identifies the affected software and the vulnerable flow, noting an impact with confidentiality at LOW and no other impact, with user interaction required. Th...

6.1CVSS5.3AI score0.00174EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/25 12:57 p.m.4 views

CVE-2026-28194

In JetBrains TeamCity before 2025.11.3 open redirect was possible in the React project creation flow...

4.3CVSS5.3AI score0.00174EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/25 12:57 p.m.2 views

CVE-2026-28194

In JetBrains TeamCity before 2025.11.3 open redirect was possible in the React project creation flow...

6.1CVSS5.9AI score0.00174EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/25 12:0 a.m.8 views

JetBrains TeamCity 输入验证错误漏洞

JetBrains TeamCity is a set of distributed build management and continuous integration tools developed by the Czech company JetBrains. This tool offers features such as continuous unit testing, code quality analysis, and reporting on build issues. Versions of JetBrains TeamCity prior to 2025.11.3...

6.1CVSS5.9AI score0.00174EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/25 12:0 a.m.6 views

PT-2026-21904

In JetBrains TeamCity before 2025.11.3 open redirect was possible in the React project creation flow...

4.3CVSS5.3AI score0.00174EPSS
Exploits0References1
EUVD
EUVD
added 2026/01/31 12:30 a.m.10 views

EUVD-2020-30938

Code Blocks 17.12 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by crafting a malicious file name with Unicode characters. Attackers can trigger the vulnerability by pasting a specially crafted payload into the file name field during project...

8.4CVSS6.5AI score0.00188EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/01/31 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2020-37040

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Code Blocks 17.12 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by crafting a malicious file name with Unicode...

8.4CVSS6.4AI score0.00188EPSS
Exploits0References2
OSV
OSV
added 2026/01/30 11:16 p.m.5 views

DEBIAN-CVE-2020-37040

Code Blocks 17.12 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by crafting a malicious file name with Unicode characters. Attackers can trigger the vulnerability by pasting a specially crafted payload into the file name field during project...

8.4CVSS6.3AI score0.00188EPSS
Exploits0References1
NVD
NVD
added 2026/01/30 11:16 p.m.8 views

CVE-2020-37040

Code Blocks 17.12 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by crafting a malicious file name with Unicode characters. Attackers can trigger the vulnerability by pasting a specially crafted payload into the file name field during project...

8.4CVSS0.00188EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/01/30 11:16 p.m.7 views

CVE-2020-37040

Code Blocks 17.12 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by crafting a malicious file name with Unicode characters. Attackers can trigger the vulnerability by pasting a specially crafted payload into the file name field during project...

8.4CVSS6.4AI score0.00188EPSS
Exploits0References5
OSV
OSV
added 2026/01/30 11:16 p.m.5 views

UBUNTU-CVE-2020-37040

Code Blocks 17.12 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by crafting a malicious file name with Unicode characters. Attackers can trigger the vulnerability by pasting a specially crafted payload into the file name field during project...

8.4CVSS6.4AI score0.00188EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/01/30 10:7 p.m.3 views

CVE-2020-37040

Code Blocks 17.12 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by crafting a malicious file name with Unicode characters. Attackers can trigger the vulnerability by pasting a specially crafted payload into the file name field during project...

8.4CVSS6.5AI score0.00188EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/01/30 10:7 p.m.4 views

CVE-2020-37040 Code Blocks 17.12 - 'File Name' Local Buffer Overflow

Code Blocks 17.12 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by crafting a malicious file name with Unicode characters. Attackers can trigger the vulnerability by pasting a specially crafted payload into the file name field during project...

8.4CVSS6.2AI score0.00188EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/01/30 10:7 p.m.21 views

CVE-2020-37040 Code Blocks 17.12 - 'File Name' Local Buffer Overflow

Code Blocks 17.12 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by crafting a malicious file name with Unicode characters. Attackers can trigger the vulnerability by pasting a specially crafted payload into the file name field during project...

8.4CVSS0.00188EPSS
Exploits0References4
CVE
CVE
added 2026/01/30 10:7 p.m.20 views

CVE-2020-37040

CVE-2020-37040 affects Code Blocks 17.12 and is caused by a local buffer overflow in the file-name handling. An attacker can trigger arbitrary code execution by pasting a specially crafted Unicode file name during project creation (e.g., commands like calc.exe). The vulnerability impact is descri...

8.4CVSS6.5AI score0.00188EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2026/01/30 10:7 p.m.5 views

CVE-2020-37040

Removed by vendor...

8.4CVSS5.8AI score0.00188EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/01/30 12:0 a.m.9 views

PT-2026-5480

Name of the Vulnerable Software and Affected Versions Code Blocks version 17.12 Description Code Blocks 17.12 contains a local buffer overflow that allows attackers to execute arbitrary code. This is achieved by crafting a malicious file name with Unicode characters. Attackers can trigger the iss...

8.4CVSS6AI score0.00188EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2026/01/27 12:26 a.m.15 views

SUSE CVE-2026-23520

Arcane provides modern docker management. Prior to 1.13.0, Arcane has a command injection in the updater service. Arcane's updater service supported lifecycle labels com.getarcaneapp.arcane.lifecycle.pre-update and com.getarcaneapp.arcane.lifecycle.post-update that allowed defining a command to r...

9CVSS5.9AI score0.01643EPSS
Exploits6References2
Github Security Blog
Github Security Blog
added 2026/01/15 8:10 p.m.14 views

Arcane Has a Command Injection in Arcane Updater Lifecycle Labels That Enables RCE

Summary Arcane’s updater service supported lifecycle labels com.getarcaneapp.arcane.lifecycle.pre-update and com.getarcaneapp.arcane.lifecycle.post-update that allowed defining a command to run before or after a container update. The label value is passed directly to /bin/sh -c without sanitizati...

9CVSS7.7AI score0.01643EPSS
Exploits6References6Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/01/15 7:20 p.m.17 views

CVE-2026-23520

Arcane provides modern docker management. Prior to 1.13.0, Arcane has a command injection in the updater service. Arcane’s updater service supported lifecycle labels com.getarcaneapp.arcane.lifecycle.pre-update and com.getarcaneapp.arcane.lifecycle.post-update that allowed defining a command to r...

9CVSS5.7AI score0.01643EPSS
Exploits6References5Affected Software1
Rows per page
Query Builder