Lucene search
K

86 matches found

Cvelist
Cvelist
added 2026/01/21 4:26 p.m.19 views

CVE-2026-20092 Cisco Intersight Virtual Appliance Privilege Escalation Vulnerability

A vulnerability in the read-only maintenance shell of Cisco Intersight Virtual Appliance could allow an authenticated, local attacker with administrative privileges to elevate privileges to root on the virtual appliance. This vulnerability is due to improper file permissions on configuration file...

6CVSS0.00104EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.2 views

Fortinet FortiClient EMS Authenticated SQLi (FG-IR-25-735)

The version of Fortinet FortiClient EMS installed on the remote host is affected by a vulnerability as referenced in the FG-IR-25-735 advisory: - An improper neutralization of special elements used in an SQL command 'SQL Injection' vulnerability CWE-89 in FortiClientEMS may allow an authenticated...

7.2CVSS6.1AI score0.06992EPSS
Exploits0References2
NVD
NVD
added 2026/01/13 5:15 p.m.5 views

CVE-2025-59922

An improper neutralization of special elements used in an SQL command 'SQL Injection' vulnerability CWE-89 vulnerability in Fortinet FortiClientEMS 7.4.3 through 7.4.4, FortiClientEMS 7.4.0 through 7.4.1, FortiClientEMS 7.2.0 through 7.2.10, FortiClientEMS 7.0 all versions may allow an...

7.2CVSS0.06992EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:34 a.m.11 views

CVE-2019-7474

A vulnerability in SonicWall SonicOS and SonicOSv, allow authenticated read-only admin to leave the firewall in an unstable state by downloading certificate with specific extension. This vulnerability affected SonicOS Gen 5 version 5.9.1.10 and earlier, Gen 6 version 6.2.7.3, 6.5.1.3, 6.5.2.2,...

6.5CVSS6.7AI score0.00684EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/09 6:30 p.m.9 views

EUVD-2024-55312

An insertion of sensitive information into log file vulnerability CWE-532 in FortiOS 7.4.0 through 7.4.3, 7.2.0 through 7.2.7, 7.0 all versions; FortiProxy 7.4.0 through 7.4.3, 7.2.0 through 7.2.11; FortiPAM 1.4 all versions, 1.3 all versions, 1.2 all versions, 1.1 all versions, 1.0 all versions...

6.6CVSS6AI score0.00362EPSS
Exploits0References2
OSV
OSV
added 2025/12/09 6:15 p.m.4 views

CVE-2025-59923

An improper access control vulnerability in Fortinet FortiAuthenticator 6.6.0 through 6.6.6, FortiAuthenticator 6.5 all versions, FortiAuthenticator 6.4 all versions, FortiAuthenticator 6.3 all versions may allow an authenticated attacker with at least read-only admin permission to obtain the...

2.7CVSS5.8AI score0.00186EPSS
Exploits0References1
NVD
NVD
added 2025/12/09 6:15 p.m.7 views

CVE-2024-47570

An insertion of sensitive information into log file vulnerability CWE-532 in FortiOS 7.4.0 through 7.4.3, 7.2.0 through 7.2.7, 7.0 all versions; FortiProxy 7.4.0 through 7.4.3, 7.2.0 through 7.2.11; FortiPAM 1.4 all versions, 1.3 all versions, 1.2 all versions, 1.1 all versions, 1.0 all versions...

6.6CVSS0.00362EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/09 5:20 p.m.22 views

CVE-2024-47570

An insertion of sensitive information into log file vulnerability CWE-532 in FortiOS 7.4.0 through 7.4.3, 7.2.0 through 7.2.7, 7.0 all versions; FortiProxy 7.4.0 through 7.4.3, 7.2.0 through 7.2.11; FortiPAM 1.4 all versions, 1.3 all versions, 1.2 all versions, 1.1 all versions, 1.0 all versions...

6.6CVSS0.00362EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/09 5:18 p.m.5 views

EUVD-2025-202277

An improper access control vulnerability in Fortinet FortiAuthenticator 6.6.0 through 6.6.4, FortiAuthenticator 6.5 all versions, FortiAuthenticator 6.4 all versions, FortiAuthenticator 6.3 all versions may allow an authenticated attacker with at least read-only admin permission to obtain the...

2.7CVSS6.2AI score0.00186EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.6 views

PT-2025-50122

An improper access control vulnerability in Fortinet FortiAuthenticator 6.6.0 through 6.6.6, FortiAuthenticator 6.5 all versions, FortiAuthenticator 6.4 all versions, FortiAuthenticator 6.3 all versions may allow an authenticated attacker with at least read-only admin permission to obtain the...

2.7CVSS6.7AI score0.00186EPSS
Exploits0References3
OSV
OSV
added 2025/11/18 5:16 p.m.4 views

CVE-2025-54971

An exposure of sensitive information to an unauthorized actor vulnerability in Fortinet FortiADC 7.4.0, FortiADC 7.2 all versions, FortiADC 7.1 all versions, FortiADC 7.0 all versions, FortiADC 6.2 all versions may allow an admin with read-only permission to get the external resources password vi...

6.5CVSS5.8AI score0.00207EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/18 5:1 p.m.4 views

CVE-2025-54971

An exposure of sensitive information to an unauthorized actor vulnerability in Fortinet FortiADC 7.4.0, FortiADC 7.2 all versions, FortiADC 7.1 all versions, FortiADC 7.0 all versions, FortiADC 6.2 all versions may allow an admin with read-only permission to get the external resources password vi...

4.3CVSS6.2AI score0.00207EPSS
Exploits0References1
CVE
CVE
added 2025/11/18 5:1 p.m.15 views

CVE-2025-54971

The CVE-2025-54971 entry applies to Fortinet FortiADC: versions 6.2 and 7.0–7.2, and 7.4.0. The issue stems from information exposure that allows an admin with read-only privileges to obtain external resources passwords via the product logs, constituting a sensitive data disclosure vulnerability....

6.5CVSS6.2AI score0.00207EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/11/05 12:0 a.m.4 views

Cisco Identity Services Engine 安全漏洞

Cisco Identity Services Engine Cisco ISE is an environment-aware platform ISE Identity Services Engine from Cisco USA. The platform collects real-time information from the network, users, and devices, and develops and enforces policies to regulate the network. A security vulnerability exists in t...

4.9CVSS6.2AI score0.00278EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2006-0374

Malware in sbrugna...

6.5CVSS6.4AI score0.02119EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-17016

Malware in sbrugna...

6.5CVSS7.1AI score0.00684EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-27283

Malicious code in bioql PyPI...

8.8CVSS6.4AI score0.00855EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-27286

Malicious code in bioql PyPI...

7.6CVSS6.4AI score0.00515EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/11 4:26 p.m.4 views

CVE-2025-55142

Missing authorization in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote authenticated attacker with read-only admin...

8.8CVSS7AI score0.00855EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/11 4:26 p.m.7 views

CVE-2025-55144

Missing authorization in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.8R2.3-723 and Ivanti Neurons for Secure Access before 22.8R1.4 Fix deployed on 02-Aug-2025 allows a remote authenticated attacker with read-only admin...

5.4CVSS6.8AI score0.00514EPSS
Exploits0References1
Rows per page
Query Builder