Lucene search
K

19647 matches found

Tenable Nessus
Tenable Nessus
added 2024/05/23 12:0 a.m.16 views

RHEL 9 : pcp (RHSA-2024:3325)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:3325 advisory. Performance Co-Pilot PCP is a suite of tools, services, and libraries for acquisition, archiving, and analysis of system-level performance...

8.8CVSS7.4AI score0.01002EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/05/23 12:0 a.m.27 views

RHEL 9 : pcp (RHSA-2024:3321)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:3321 advisory. Performance Co-Pilot PCP is a suite of tools, services, and libraries for acquisition, archiving, and analysis of system-level performance...

8.8CVSS7.4AI score0.01002EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/05/23 12:0 a.m.19 views

RHEL 8 : pcp (RHSA-2024:3323)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:3323 advisory. Performance Co-Pilot PCP is a suite of tools, services, and libraries for acquisition, archiving, and analysis of system-level performance...

8.8CVSS7.4AI score0.01002EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/05/23 12:0 a.m.18 views

RHEL 8 : pcp (RHSA-2024:3324)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:3324 advisory. Performance Co-Pilot PCP is a suite of tools, services, and libraries for acquisition, archiving, and analysis of system-level performance...

8.8CVSS7.4AI score0.01002EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/05/23 12:0 a.m.22 views

RHEL 8 : pcp (RHSA-2024:3322)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:3322 advisory. Performance Co-Pilot PCP is a suite of tools, services, and libraries for acquisition, archiving, and analysis of system-level performance...

8.8CVSS7.4AI score0.01002EPSS
Exploits0References4
CVE
CVE
added 2024/05/22 12:0 p.m.61 views

CVE-2024-5196

CVE-2024-5196 targets Arris VAP2500 v08.50. A vulnerability in /tools_command.php (parameter cmb_header/txt_command) allows remote command injection. Exploitation is possible remotely; public disclosure noted. No remediation details provided in the supplied documents.

7.2CVSS5.4AI score0.04164EPSS
Exploits0References4Affected Software1
RedHat Linux
RedHat Linux
added 2024/05/22 11:56 a.m.2 views

pcp: exposure of the redis server backend allows remote command execution via pmproxy

A flaw was found in PCP. The default pmproxy configuration exposes the Redis server backend to the local network, allowing remote command execution with the privileges of the Redis user. This issue can only be exploited when pmproxy is running. By default, pmproxy is not running and needs to be...

8.8CVSS6.9AI score0.01002EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/05/22 11:56 a.m.33 views

Important: Red Hat Security Advisory: pcp security update

An update for pcp is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...

8.8CVSS7.1AI score0.01002EPSS
Exploits0References2
OSV
OSV
added 2024/05/22 11:15 a.m.4 views

CVE-2024-5194

A vulnerability was found in Arris VAP2500 08.50. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /assoctable.php. The manipulation of the argument id leads to command injection. The attack can be launched remotely. The exploit has been...

7.2CVSS5.6AI score0.03614EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2024/05/22 12:0 a.m.3 views

Vulnerability of the /useratte/resmanage.php script of the D-Link DAR-7000 and DAR-8000 routers, allowing attackers to execute arbitrary commands

The vulnerability of the D-Link DAR-7000 and DAR-8000 router microprogramming systems exists due to the failure to take measures to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

6.5CVSS6.9AI score0.02853EPSS
Exploits0References6Affected Software2
OSV
OSV
added 2024/05/22 12:0 a.m.22 views

ALSA-2024:3264 Important: pcp security update

Performance Co-Pilot PCP is a suite of tools, services, and libraries for acquisition, archiving, and analysis of system-level performance measurements. Its light-weight distributed architecture makes it particularly well-suited to centralized analysis of complex systems. Security Fixes: pcp:...

8.8CVSS8.8AI score0.01002EPSS
Exploits0References4
AlmaLinux
AlmaLinux
added 2024/05/22 12:0 a.m.27 views

Important: pcp security update

Performance Co-Pilot PCP is a suite of tools, services, and libraries for acquisition, archiving, and analysis of system-level performance measurements. Its light-weight distributed architecture makes it particularly well-suited to centralized analysis of complex systems. Security Fixes: pcp:...

8.8CVSS7.2AI score0.01002EPSS
Exploits0References4
OSV
OSV
added 2024/05/21 3:15 p.m.2 views

CVE-2024-33529

ILIAS 7 before 7.30 and ILIAS 8 before 8.11 as well as ILIAS 9.0 allow remote authenticated attackers with administrative privileges to execute operating system commands via file uploads with dangerous types...

7.2CVSS7.5AI score
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/05/21 2:46 p.m.19 views

CVE-2024-33529

ILIAS 7 before 7.30 and ILIAS 8 before 8.11 as well as ILIAS 9.0 allow remote authenticated attackers with administrative privileges to execute operating system commands via file uploads with dangerous types...

7.3AI score0.00901EPSS
Exploits1References2
GithubExploit
GithubExploit
added 2024/05/20 3:29 a.m.792 views

Exploit for CVE-2024-22120

CVE-2024-22120 ToolKit Affected Version/s 6.0.0 - 6.0...

9.1CVSS6.9AI score0.76618EPSS
Exploits5
BDU FSTEC
BDU FSTEC
added 2024/05/20 12:0 a.m.6 views

The vulnerabilities of the System Management Module (SMM/SMM2) and the Fan Power Controller (FPC) in the microprogramming software for Lenovo ThinkSystem, ThinkAgile, NeXtScale storage systems, as well as Lenovo CP-CB-10 laptops, allow attackers to execute arbitrary commands.

The vulnerability of the System Management Module SMM/SMM2 and the Fan Power Controller FPC in the microprogramming operating systems of Lenovo’s ThinkSystem, ThinkAgile, NeXtScale storage systems, and Lenovo CP-CB-10 laptops exists due to the failure to take measures to neutralize the special...

9CVSS5.9AI score0.00665EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2024/05/20 12:0 a.m.6 views

The vulnerabilities of the System Management Module (SMM/SMM2) and the Fan Power Controller (FPC) in the microprogramming software for Lenovo ThinkSystem, ThinkAgile, NeXtScale storage systems, as well as Lenovo CP-CB-10 laptops, allow attackers to execute arbitrary commands.

The vulnerability of the System Management Module SMM/SMM2 and the Fan Power Controller FPC in the microprogramming operating systems of Lenovo’s ThinkSystem, ThinkAgile, NeXtScale storage systems, and Lenovo CP-CB-10 laptops exists due to the failure to take measures to neutralize the special...

9CVSS5.9AI score0.01131EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2024/05/20 12:0 a.m.5 views

The vulnerabilities of the System Management Module (SMM/SMM2) and the Fan Power Controller (FPC) in the microprogramming software for Lenovo ThinkSystem, ThinkAgile, NeXtScale storage systems, as well as Lenovo CP-CB-10 laptops, allow attackers to execute arbitrary commands.

The vulnerability of the System Management Module SMM/SMM2 and the Fan Power Controller FPC in the microprogramming operating systems of Lenovo’s ThinkSystem, ThinkAgile, NeXtScale storage systems, and Lenovo CP-CB-10 laptops exists due to the failure to take measures to neutralize the special...

9CVSS5.9AI score0.01131EPSS
Exploits0References3
Packet Storm
Packet Storm
added 2024/05/20 12:0 a.m.348 views

Backdrop CMS 1.27.1 Remote Command Execution

Exploit Title: Backdrop CMS 1.27.1 - Remote Command Execution RCE Date: 04/27/2024 Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: https://backdropcms.org/ Software Link: https://github.com/backdrop/backdrop/releases/download/1.27.1/backdrop.zip Version: latest Tested on: MacOS import os impor...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/05/20 12:0 a.m.280 views

PopojiCMS 2.0.1 Remote Command Execution

Exploit Title: PopojiCMS 2.0.1 - Remote Command Execution Date: 14/04/2024 Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: https://www.popojicms.org/ Software Link: https://github.com/PopojiCMS/PopojiCMS/archive/refs/tags/v2.0.1.zip Version: Version : 2.0.1 Tested on:...

7.4AI score
Exploits0
Rows per page
Query Builder