Lucene search
K

130 matches found

BDU FSTEC
BDU FSTEC
added 2022/09/23 12:0 a.m.8 views

The vulnerability of the NetKit-rsh remote execution program, related to deficiencies in access control, allows a perpetrator to compromise data integrity and cause service failures.

The vulnerability of the NetKit-rsh remote execution program lies in the fact that it only performs a superficial check on the object’s return value. Exploiting this vulnerability allows an attacker to compromise data integrity and also cause service failures through the malicious rsh server...

8.8CVSS7.1AI score0.01976EPSS
Exploits1References6Affected Software2
CNVD
CNVD
added 2022/09/21 12:0 a.m.7 views

Democritus Project d8s-dates Code Execution Vulnerability

Democritus Project is a collection of simple, effective, modular, well-tested and well-documented features from Democritus. A code execution vulnerability exists in Democritus Project version 0.1.0, which stems from a potential code execution backdoor in d8s-dates inserted by a third party, which...

9.8CVSS7.8AI score0.01033EPSS
Exploits1References1
NVD
NVD
added 2022/06/15 2:15 p.m.18 views

CVE-2022-20202

In ih264resitransquant4x4sse42 of ih264resitransquantsse42.c, there is a possible out of bounds read due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions...

6.5CVSS0.00648EPSS
Exploits0References1
ArchLinux
ArchLinux
added 2022/04/07 12:0 a.m.57 views

[ASA-202204-8] xz: arbitrary command execution

Arch Linux Security Advisory ASA-202204-8 ========================================= Severity: High Date : 2022-04-07 CVE-ID : CVE-2022-1271 Package : xz Type : arbitrary command execution Remote : No Link : https://security.archlinux.org/AVG-2665 Summary ======= The package xz before version...

8.8CVSS9.4AI score0.04271EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.23 views

Mageia: Security Advisory (MGASA-2019-0054)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS8.8AI score0.09444EPSS
Exploits2References3
Cvelist
Cvelist
added 2021/10/15 2:7 p.m.23 views

CVE-2021-40994

A remote arbitrary command execution vulnerability was discovered in Aruba ClearPass Policy Manager versions: ClearPass Policy Manager 6.10.x prior to 6.10.2 - - ClearPass Policy Manager 6.9.x prior to 6.9.7-HF1 - - ClearPass Policy Manager 6.8.x prior to 6.8.9-HF1. Aruba has released patches for...

6.8AI score0.01133EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/10/11 6:27 p.m.22 views

CVE-2021-40189

PHPFusion 9.03.110 is affected by a remote code execution vulnerability. The theme function will extract a file to "webroot/themes/Theme Folder, where an attacker can access and execute arbitrary code...

7.7AI score0.01746EPSS
Exploits1References1
NVD
NVD
added 2021/09/13 6:15 p.m.27 views

CVE-2021-33551

Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to command injection, which may allow an attacker to remotely execute arbitrary code...

7.2CVSS0.48811EPSS
Exploits4References2
Prion
Prion
added 2021/04/13 8:15 p.m.23 views

Remote code execution

Remote Development Extension for Visual Studio Code Remote Code Execution Vulnerability...

6.8CVSS7.8AI score0.04075EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2021/03/29 8:15 p.m.24 views

CVE-2020-24635

A remote execution of arbitrary commands vulnerability was discovered in some Aruba Instant Access Point IAP products in versions: Aruba Instant 6.5.x: 6.5.4.17 and below; Aruba Instant 8.3.x: 8.3.0.13 and below; Aruba Instant 8.5.x: 8.5.0.10 and below; Aruba Instant 8.6.x: 8.6.0.5 and below; Aru...

9CVSS0.02722EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/03/29 7:5 p.m.20 views

CVE-2020-24635

A remote execution of arbitrary commands vulnerability was discovered in some Aruba Instant Access Point IAP products in versions: Aruba Instant 6.5.x: 6.5.4.17 and below; Aruba Instant 8.3.x: 8.3.0.13 and below; Aruba Instant 8.5.x: 8.5.0.10 and below; Aruba Instant 8.6.x: 8.6.0.5 and below; Aru...

7.3AI score0.02722EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2021/02/27 12:0 a.m.322 views

CVE-2021-25281

An issue was discovered in through SaltStack Salt before 3002.5. salt-api does not honor eauth credentials for the wheelasync client. Thus, an attacker can remotely run any wheel modules on the master. Recent assessments: kevthehermit at February 26, 2021 5:08pm UTC reported: Vulnerability This...

9.8CVSS9.8AI score0.92312EPSS
Exploits6References9
NVD
NVD
added 2020/11/04 8:15 p.m.15 views

CVE-2020-7129

A remote execution of arbitrary commands vulnerability was discovered in Aruba Airwave Software versions: Prior to 1.3.2...

9CVSS7.2AI score0.02625EPSS
Exploits0References1
NVD
NVD
added 2020/10/26 4:15 p.m.22 views

CVE-2020-24632

A remote execution of arbitrary commandss vulnerability was discovered in Aruba Airwave Software versions: Prior to 1.3.2...

9CVSS0.02625EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2020/05/15 12:0 a.m.38 views

SUSE SLES12 Security Update : squid (SUSE-SU-2020:1227-1)

This update for squid fixes the following issues : CVE-2019-12519, CVE-2019-12521: fixes incorrect buffer handling that can result in cache poisoning, remote execution, and denial of service attacks when processing ESI responses bsc1169659. CVE-2020-11945: fixes a potential remote execution...

9.8CVSS6.7AI score0.27246EPSS
Exploits0References14
OSV
OSV
added 2020/05/08 12:14 p.m.6 views

SUSE-SU-2020:1227-1 Security update for squid

This update for squid fixes the following issues: - CVE-2019-12519, CVE-2019-12521: fixes incorrect buffer handling that can result in cache poisoning, remote execution, and denial of service attacks when processing ESI responses bsc1169659. - CVE-2020-11945: fixes a potential remote execution...

9.8CVSS7.8AI score0.27246EPSS
Exploits0References9
NVD
NVD
added 2020/05/07 6:15 p.m.10 views

CVE-2019-19164

dext5.ocx ActiveX Control in Dext5 Upload 5.0.0.112 and earlier versions contains a vulnerability that could allow remote files to be executed by setting the arguments to the activex method. A remote attacker could induce a user to access a crafted web page, causing damage such as malicious code...

8.8CVSS7.8AI score0.00773EPSS
Exploits0References2
GithubExploit
GithubExploit
added 2020/02/17 3:28 a.m.63 views

Exploit for Improper Handling of Exceptional Conditions in Openbsd Opensmtpd

cve-2020-7247 Exploit Title: OpenSMTPD 6.6.2 - Remote Code Exe...

10CVSS10AI score0.98946EPSS
Exploits27
Cvelist
Cvelist
added 2020/02/13 10:20 p.m.31 views

CVE-2020-8846

This vulnerability allows remote atackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.6.0.25114. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS7.8AI score0.19837EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/11/08 12:0 a.m.47 views

GLSA-201911-02 : pump: User-assisted execution of arbitrary code

The remote host is affected by the vulnerability described in GLSA-201911-02 pump: User-assisted execution of arbitrary code It was discovered that there was an arbitrary code execution vulnerability in the pump DHCP/BOOTP client. Impact : A remote attacker, by enticing a user to connect to a...

6.1AI score
Exploits0References2
Rows per page
Query Builder