Lucene search
+L

43 matches found

ubuntucve
ubuntucve
added 2023/04/25 7:15 p.m.26 views

CVE-2021-23176

Improper access control in reporting engine of l10nfrfec module in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to extract accounting information via crafted RPC packets...

6.5CVSS6.9AI score0.00788EPSS
Exploits0References2
cve
cve
added 2023/04/25 6:32 p.m.50 views

CVE-2021-23176

CVE-2021-23176 affects Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier. The vulnerability is due to improper access control in the l10n_fr_fec reporting engine, allowing remote authenticated users to extract accounting information via crafted RPC packets. Affected products an...

6.5CVSS6.2AI score0.00788EPSS
Exploits0References2Affected Software1
vulnrichment
vulnrichment
added 2023/04/25 6:32 p.m.18 views

CVE-2021-23176

Improper access control in reporting engine of l10nfrfec module in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to extract accounting information via crafted RPC packets...

6.5CVSS6.1AI score0.00788EPSS
Exploits0References2
cvelist
cvelist
added 2023/04/25 6:32 p.m.28 views

CVE-2021-23176

Improper access control in reporting engine of l10nfrfec module in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to extract accounting information via crafted RPC packets...

6.5CVSS6.6AI score0.00788EPSS
Exploits0References2
debiancve
debiancve
added 2023/04/25 6:32 p.m.26 views

CVE-2021-23176

Improper access control in reporting engine of l10nfrfec module in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to extract accounting information via crafted RPC packets...

6.5CVSS6.5AI score0.00788EPSS
Exploits0
cnnvd
cnnvd
added 2023/04/25 12:0 a.m.4 views

Odoo 安全漏洞

Odoo is an Enterprise Resource Planning ERP and Customer Relationship Management CRM system from Odoo Belgium. The system is developed in Python, with PostgreSQL as the database, and includes modules for sales management, inventory management, and financial management. A security vulnerability...

6.5CVSS7.2AI score0.00788EPSS
Exploits0References5
susecve
susecve
added 2023/02/15 6:21 a.m.3 views

SUSE CVE-2003-0033

Buffer overflow in the RPC preprocessor for Snort 1.8 and 1.9.x before 1.9.1 allows remote attackers to execute arbitrary code via fragmented RPC packets...

10CVSS8.3AI score0.11895EPSS
Exploits0References3
checkpoint_advisories
checkpoint_advisories
added 2020/11/16 12:0 a.m.3 views

Microsoft Windows Network File System Denial of Service (CVE-2020-17047)

A denial of service vulnerability has been reported in Windows Network File System. The vulnerability is due to improper handling of crafted RPC packets. A remote attacker can exploit this vulnerability by sending malicious RPC calls to a targe server...

7.8CVSS3.2AI score0.25285EPSS
Exploits0
openvas
openvas
added 2013/12/09 12:0 a.m.25 views

Debian Security Advisory DSA 2812-1 (samba - several vulnerabilities)

Two security issues were found in Samba, a SMB/CIFS file, print, and login server: CVE-2013-4408 It was discovered that multiple buffer overflows in the processing of DCE-RPC packets may lead to the execution of arbitrary code. CVE-2013-4475 Hemanth Thummala discovered that ACLs were not checked...

8.3CVSS0.5AI score0.09017EPSS
Exploits0References1
osv
osv
added 2013/12/09 12:0 a.m.34 views

DSA-2812-1 samba - several

Bulletin has no description...

8.3CVSS8.7AI score0.09017EPSS
Exploits0
ptsecurity
ptsecurity
added 2010/08/04 12:0 a.m.7 views

PT-2010-3251 · Cisco · Cisco Asa +1

Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliances ASA 5500 series devices versions 7.2 through 7.24 Cisco Adaptive Security Appliances ASA 5500 series devices versions 8.0 through 8.05.18 Cisco Adaptive Security Appliances ASA 5500 series devices versions 8...

7.8CVSS6.5AI score0.01772EPSS
Exploits0References4
openvas
openvas
added 2009/11/11 12:0 a.m.22 views

Microsoft Windows License Logging Server Remote Code Execution Vulnerability (974783)

This host is missing a critical security update according to Microsoft Bulletin MS09-064. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

10CVSS5AI score0.26456EPSS
Exploits1References4
cvelist
cvelist
added 2007/03/31 1:0 a.m.25 views

CVE-2007-1785

The RPC service in mediasvr.exe in CA BrightStor ARCserve Backup 11.5 SP2 build 4237 allows remote attackers to execute arbitrary code via crafted xdrhandlet data in RPC packets, which is used in calculating an address for a function call, as demonstrated using the 191 0xbf RPC request...

7.4AI score0.15352EPSS
Exploits0References13
cvelist
cvelist
added 2006/01/18 2:0 a.m.18 views

CVE-2005-3658

Multiple heap-based buffer overflows in EMC Legato NetWorker 7.1.x before 7.1.4 and 7.2.x before 7.2.1.Build.314, and other products such as Sun Solstice Backup SBU 6.0 and 6.1 and StorEdge Enterprise Backup Software EBS 7.1 through 7.2L, allow remote attackers to execute arbitrary code or cause ...

8AI score0.05151EPSS
Exploits0References14
nvd
nvd
added 2005/12/31 5:0 a.m.13 views

CVE-2005-3658

Multiple heap-based buffer overflows in EMC Legato NetWorker 7.1.x before 7.1.4 and 7.2.x before 7.2.1.Build.314, and other products such as Sun Solstice Backup SBU 6.0 and 6.1 and StorEdge Enterprise Backup Software EBS 7.1 through 7.2L, allow remote attackers to execute arbitrary code or cause ...

7.5CVSS8AI score0.05151EPSS
Exploits0References14
cvelist
cvelist
added 2004/09/01 4:0 a.m.26 views

CVE-2001-1279

Buffer overflow in print-rx.c of tcpdump 3.x probably 3.6x allows remote attackers to cause a denial of service and possibly execute arbitrary code via AFS RPC packets with invalid lengths that trigger an integer signedness error, a different vulnerability than CVE-2000-1026...

7.8AI score0.04784EPSS
Exploits0References8
cve
cve
added 2004/09/01 4:0 a.m.68 views

CVE-2001-1279

CVE-2001-1279 affects tcpdump 3.x (likely 3.6x) with a buffer overflow in the AFS RPC decoding path (print-rx.c). Exploitation via crafted AFS RPC packets with invalid lengths can cause a denial of service and may allow remote code execution with the privileges of tcpdump (typically root). The is...

7.5CVSS8AI score0.04784EPSS
Exploits0References8Affected Software1
debiancve
debiancve
added 2004/09/01 4:0 a.m.36 views

CVE-2003-0033

Removed by vendor...

10CVSS6.7AI score0.11895EPSS
Exploits0
cvelist
cvelist
added 2003/09/17 4:0 a.m.32 views

CVE-2003-0722

The default installation of sadmind on Solaris uses weak authentication AUTHSYS, which allows local and remote attackers to spoof Solstice AdminSuite clients and gain root privileges via a certain sequence of RPC packets...

6.6AI score0.85678EPSS
Exploits9References9
cve
cve
added 2003/09/17 4:0 a.m.70 views

CVE-2003-0722

CVE-2003-0722 affects the Solaris sadmind RPC service, which ships by default with AUTH_SYS. The weakness allows remote/local attackers to spoof Solstice AdminSuite clients and gain root privileges via a sequence of RPC packets. Public details in connected sources show an in-the-wild/poised Metas...

10CVSS6.6AI score0.85678EPSS
Exploits9References9Affected Software1
Rows per page
Query Builder