Lucene search
K

149 matches found

Citrix
Citrix
added 2023/12/20 12:0 a.m.6 views

The VDI screen does not display properly when used with Third-party remote connection application

Connecting to the client via a Third-party remote connection application, Then connecting through ICA, the VDI screen is not displayed correctly...

7.1AI score
Exploits0
CNNVD
CNNVD
added 2023/08/21 12:0 a.m.4 views

Devolutions Remote Desktop Manager 授权问题漏洞

Devolutions Remote Desktop Manager is an application from Devolutions Canada. It provides remote desktop management functionality. A security vulnerability exists in Devolutions Remote Desktop Manager version 2023.2.19 and prior versions that stems from insufficient privilege validation. An...

9.8CVSS8.5AI score0.00656EPSS
Exploits0References2
FreeBSD Advisory
FreeBSD Advisory
added 2023/08/01 12:0 a.m.56 views

FreeBSD-SA-23:08.ssh

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-23:08.ssh Security Advisory The FreeBSD Project Topic: Potential remote code execution via ssh-agent forwarding Category: contrib Module: OpenSSH Announced:...

9.8CVSS7.7AI score0.76768EPSS
Exploits10
CVE
CVE
added 2023/07/26 12:0 a.m.240 views

CVE-2023-30367

The CVE-2023-30367 entry concerns mRemoteNG prior to fixed versions (<= v1.76.20 and

7.5CVSS7.5AI score0.00431EPSS
Exploits4References4Affected Software1
NVD
NVD
added 2023/06/28 8:15 p.m.27 views

CVE-2023-34761

An unauthenticated attacker within BLE proximity can remotely connect to a 7-Eleven LED Message Cup, Hello Cup 1.3.1 for Android, and bypass the application's client-side chat censor filter...

6.5CVSS6.6AI score0.00531EPSS
Exploits1References2
OSV
OSV
added 2023/06/28 8:15 p.m.5 views

CVE-2023-34761

An unauthenticated attacker within BLE proximity can remotely connect to a 7-Eleven LED Message Cup, Hello Cup 1.3.1 for Android, and bypass the application's client-side chat censor filter...

6.5CVSS5.8AI score0.00531EPSS
Exploits1References2
Prion
Prion
added 2023/06/28 8:15 p.m.26 views

Authentication flaw

An unauthenticated attacker within BLE proximity can remotely connect to a 7-Eleven LED Message Cup, Hello Cup 1.3.1 for Android, and bypass the application's client-side chat censor filter...

3.3CVSS6.5AI score0.00531EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2023/04/03 11:15 p.m.12 views

CVE-2023-0922

The Samba AD DC administration tool, when operating against a remote LDAP server, will by default send new or reset passwords over a signed-only connection...

5.9CVSS6AI score0.00484EPSS
Exploits0References4
Cvelist
Cvelist
added 2023/04/03 12:0 a.m.23 views

CVE-2023-0922

The Samba AD DC administration tool, when operating against a remote LDAP server, will by default send new or reset passwords over a signed-only connection...

6.5AI score0.00484EPSS
Exploits0References4
F5 Networks
F5 Networks
added 2023/02/21 7:2 p.m.61 views

K71960814: OpenSSH vulnerability CVE-2016-1908

Security Advisory Description The client in OpenSSH before 7.2 mishandles failed cookie generation for untrusted X11 forwarding and relies on the local X11 server for access-control decisions, which allows remote X11 clients to trigger a fallback and obtain trusted X11 forwarding privileges by...

9.8CVSS7.8AI score0.13736EPSS
Exploits0Affected Software2
CNNVD
CNNVD
added 2023/01/31 12:0 a.m.3 views

mRemoteNG 安全漏洞

mRemoteNG is mRemoteNG open source an open source, tabbed, multi-protocol remote connection manager for Windows. A security vulnerability exists in mRemoteNG version 1.76.20 that stems from improper privilege management. An attacker can exploit the vulnerability to elevate privileges...

7.8CVSS7.5AI score0.00368EPSS
Exploits1References5
OSV
OSV
added 2022/12/28 6:15 p.m.3 views

CVE-2022-41579

There is an insufficient authentication vulnerability in some Huawei band products. Successful exploit could allow the attacker to spoof then connect to the band...

6.5CVSS5.8AI score0.00283EPSS
Exploits0References1
Prion
Prion
added 2022/09/12 9:15 p.m.12 views

Design/Logic Flaw

An issue was discovered in AnyDesk before 6.2.6 and 6.3.x before 6.3.5. An upload of an arbitrary file to a victim's local /Downloads/ directory is possible if the victim is using the AnyDesk Windows client to connect to a remote machine, if an attacker is also connected remotely with AnyDesk to...

6.8CVSS8.6AI score0.00985EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2022/09/12 8:47 p.m.87 views

CVE-2021-44426

The CVE-2021-44426 issue affects AnyDesk for Windows prior to version 6.2.6 and 6.3.x prior to 6.3.5. The vulnerability enables an attacker who is remotely connected to the same remote machine as the victim (without victim interaction) to upload an arbitrary file to the victim’s local ~/Downloads...

8.8CVSS8.6AI score0.00985EPSS
Exploits1References2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/08/11 10:32 a.m.34 views

Security Bulletin: Operations Dashboard is vulnerable to remote connection exploit by Go CVE-2022-30629

Summary Operations Dashboard is vulnerable to remote connection exploit by Go CVE-2022-30629 with details below Vulnerability Details CVEID:CVE-2022-30629 DESCRIPTION: Golang Go could allow a remote attacker to obtain sensitive information, caused by an issue with session tickets generated by...

3.1CVSS7.3AI score0.0088EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/08/11 12:0 a.m.76 views

Splunk Enterprise and Universal Forwarder < 9.0 Improper Certificate Validation

In Splunk Enterprise and Universal Forwarder versions before 9.0, the Splunk command-line interface CLI did not validate TLS certificates while connecting to a remote Splunk platform instance by default. Splunk peer communications configured properly with valid certificates were not vulnerable...

8.1CVSS7.8AI score0.00762EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/06/22 12:0 a.m.24 views

Jenkins Plugin Beaker 跨站请求伪造漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is an application. Jenkins Plugin is an application that provides hundreds of plugins to support building, deploying, and automating any project. An attacker could use this vulnerability to connect to a specified URL by...

6.5CVSS5.7AI score0.00468EPSS
Exploits0References4
Cvelist
Cvelist
added 2022/05/10 6:58 p.m.23 views

CVE-2022-0947 Arctic Wireless Gateway Firewall vulnerability

A vulnerability in ABB ARG600 Wireless Gateway series that could allow an attacker to exploit the vulnerability by remotely connecting to the serial port gateway, and/or protocol converter, depending on the configuration...

9CVSS9.5AI score0.00819EPSS
Exploits0References1
CVE
CVE
added 2022/05/10 6:58 p.m.81 views

CVE-2022-0947

CVE-2022-0947 affects the ABB ARG600 Wireless Gateway series. The vulnerability allows an attacker to remotely connect to the serial port gateway and/or protocol converter, depending on configuration, enabling high-severity impact. Public metrics show a CVSS v3.1 base score of 9.8 (CRITICAL) with...

9.8CVSS9.3AI score0.00819EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2022/03/23 4:15 p.m.22 views

CVE-2022-23242

TeamViewer Linux versions before 15.28 do not properly execute a deletion command for the connection password in case of a process crash. Knowledge of the crash event and the TeamViewer ID as well as either possession of the pre-crash connection password or local authenticated access to the machi...

6.3CVSS0.00201EPSS
Exploits0References1
Rows per page
Query Builder