2088 matches found
CVE-1999-0240
Some filters or firewalls allow fragmented SYN packets with IP reserved bits in violation of their implemented policy...
PT-1999-1022 · Undefined · Undefined
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: The issue concerns some filters or firewalls that permit fragmented SYN packets with IP reserved bits, contrary to their intended policy. Recommendations: At the moment, there is no...
CVE-2023-4998
CVE-2023-4998 corresponds to a GitLab vulnerability where an attacker could abuse scheduled security scan policies to run pipelines as another user, potentially gaining elevated privileges. The issue affects GitLab CE/EE versions 13.12 through 16.2.7 and 16.3 through 16.3.4. The mitigation is to ...
CVE-2018-1472
CVE-2018-1472 entry is rejected/not used per initial description.
CVE-2019-15797
CVE-2019-15797 entry is rejected/not used and does not represent an active vulnerability.
CVE-2022-48138
CVE-2023-26829 describes an authentication bypass in the Password Reset component of Gladinet CentreStack prior to version 13.5.9808, allowing remote attackers to set a new password for any valid user account and bypass authentication. CVE-2022-48138 is a reservation/duplicate entry of CVE-2023-2...
CVE-2024-5609
CVE-2024-5609 is a rejected candidate; reference CVE-2023-6966 instead.
CVE-2021-0937
CVE-2021-0937 entry is rejected/not used per the Initial Description.
CVE-2024-5761
CVE-2024-5761 is a rejected candidate and not an active vulnerability entry.
CVE-2020-35156
CVE-2020-35156 is rejected/not used and does not represent an active vulnerability.
CVE-2024-2437
CVE-2024-2437 is a reservation duplicate of CVE-2023-41728; the connected records show this CVE should reference CVE-2023-41728 instead. CVE-2023-41728 describes a Cross-site Scripting (Stored XSS) vulnerability in the Rescue Shortcodes WordPress plugin (Rescue Shortcodes) affecting versions up t...
CVE-2022-42986
CVE-2022-42986 is rejected/not used; reference CVE-2023-39122 instead.
CVE-2023-37637
CVE-2023-37637 is a reservation duplicate of CVE-2023-38817. The connected Red Hat/NVD entries detail a local privilege escalation in Inspect Element Ltd Echo.ac v5.2.1.0 via a crafted command to the echo_driver.sys component, allowing privilege escalation to NT AUTHORITY\SYSTEM. Public exploit c...
CVE-2020-35158
CVE-2020-35158 is rejected/not used and does not represent an active vulnerability entry.
CVE-2021-30369
CVE-2021-30369 entry is rejected/not used per initial description.
CVE-2022-21384
CVE-2022-21384 is a duplicate of CVE-2021-39275 per the initial description. Connected sources provide concrete details for CVE-2021-39275: an out-of-bounds write in ap_escape_quotes() in Apache httpd, enabling a remote attacker to crash or potentially execute code. Affected products include all ...
CVE-2022-44450
CVE-2022-44450 entry is rejected/unused; not an active vulnerability entry.
CVE-2021-35684
CVE-2021-35684 is a duplicate of CVE-2022-21306. The connected CVE-2022-21306 describes a vulnerability in Oracle WebLogic Server (Fusion Middleware Core) affecting 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. It allows unauthenticated remote exploitation via standard ports (T3), potentiall...
CVE-2022-20128
CVE-2022-20128 is rejected/withdrawn by its CNA and does not represent an active vulnerability entry.
CVE-2023-2483
CVE-2023-2483 is rejected/not used; reference CVE-2023-33203 instead.