The vulnerability of the MagicINFO 9 centralized multimedia content management system lies in the improper restriction on the path name to the restricted catalog. This allows a malicious actor to gain access and add arbitrary files.

The vulnerability of the MagicINFO 9 multi-media content centralized management system is related to an incorrect restriction on the path name to the restricted catalog. Exploiting this vulnerability could allow a malicious actor to gain access and add arbitrary files...

The vulnerability of CommVault’s backup and disaster recovery platform, related to incorrect restrictions on the path to the restricted-access catalog, allows a perpetrator to execute arbitrary code.

The vulnerability of CommVault’s backup and disaster recovery platform lies in the improper limitation of the path name to the restricted-access catalog. Exploiting this vulnerability could allow an attacker operating remotely to execute arbitrary code...

The vulnerability of the DCM files on the medical image and data management system, as well as the Sante PACS Server, allows a hacker to write these files in the context of the current user.

The vulnerability of the DCM files on the medical image and data management system, as well as those on the Sante PACS Server, is related to incorrect restrictions on the path name for accessing the restricted catalog. Exploiting this vulnerability allows a malicious actor to write files under th...

The vulnerability of the DCM files on the medical image and data management system, as well as the Sante PACS Server, allows a hacker to record these files in the context of the current user.

The vulnerability of the DCM files on the medical image and data management system, as well as those on the Sante PACS Server, is related to incorrect restrictions on the path name for accessing the restricted catalog. Exploiting this vulnerability allows a malicious actor to write files under th...

The vulnerability of the ArcGIS Server server, related to incorrect restrictions on the path to the restricted catalog, allows attackers to gain unauthorized access to protected information.

The vulnerability of ArcGIS Server is related to incorrect restrictions on the path name to the restricted catalog. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of IBM Engineering Lifecycle Optimization - Publishing software relates to incorrect restrictions on the path to the restricted access catalog, allowing attackers to gain unauthorized access to protected information.

The vulnerability of IBM Engineering Lifecycle Optimization - Publishing software relates to incorrect restrictions on the path name to the restricted catalog. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the Craft CMS content management system lies in the improper restriction on the path to the restricted catalog. This allows a hacker to execute arbitrary code or perform Server Side Template Injection (SSTI) attacks.

The vulnerability of the Craft CMS content management system is related to incorrect restrictions on the path to the restricted catalog. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or perform Server Side Template Injection SSTI attacks...

The vulnerability of the Mitel MiCollab collaboration platform, related to an incorrect restriction on the path name to the restricted access catalog, allows a hacker to read arbitrary files.

The vulnerability of the Mitel MiCollab collaboration platform lies in an incorrect restriction on the path name used to access the restricted catalog. Exploiting this vulnerability could allow an attacker to read arbitrary files...

The vulnerability of the Woocommerce Product Design plugin of the WordPress content management system arises from incorrect restrictions on the path to the restricted catalog. This allows attackers to gain access to read, modify, or delete data.

The vulnerability of the Woocommerce Product Design plugin in the WordPress content management system is related to an incorrect restriction on the path to the restricted catalog. Exploiting this vulnerability could allow a malicious actor to gain access to read, modify, or delete data...

The vulnerability of the Butterfly web application development tool lies in the improper restriction on the path to the restricted catalog, which allows a hacker to perform an SSRF attack.

The vulnerability of the Butterfly web application development tool is related to an incorrect limitation on the path name to the restricted catalog. Exploiting this vulnerability could allow a malicious actor to perform a SSRF attack remotely...

The vulnerability of the Buildah container management tool arises due to an incorrect path name limitation for the restricted access catalog. This allows a malicious user to elevate their privileges within the system.

The vulnerability of the Buildah container management tool exists due to an incorrect restriction on the path name to the restricted catalog. Exploiting this vulnerability can allow a malicious user to gain increased privileges within the system...

The vulnerability of the Windscribe Service VPN client, which allows a violator to enhance their privileges

The vulnerability of the Windscribe Service VPN-client relates to an incorrect restriction on the path to the restricted access catalog. Exploiting this vulnerability can allow a hacker to increase their privileges...

The vulnerability of the Acrobat Mobile Sign software for working with electronic signatures and document management lies in the incorrect restriction on the path to the restricted catalog. This allows attackers to circumvent existing security restrictions and gain unauthorized access to protected information.

The vulnerability of the Acrobat Mobile Sign software for working with electronic signatures and document management is related to an incorrect limitation on the path name to the restricted access catalog. Exploiting this vulnerability could allow a perpetrator to bypass existing security...

The vulnerability of the Qdrant artificial intelligence-based vector search system lies in the insufficient verification of input data, allowing attackers to write arbitrary files.

The vulnerability of the Qdrant artificial intelligence-based vector search system is related to an incorrect restriction on the path name for the restricted catalog, due to insufficient verification of input data. Exploiting this vulnerability allows a malicious actor to write arbitrary files by...

The vulnerability of the MileSight DeviceHub deployment platform, caused by an incorrect path name limitation for accessing the restricted catalog, allows a violator to execute arbitrary code.

The vulnerability of the MileSight DeviceHub deployment platform exists due to an incorrect restriction on the path name to the restricted catalog. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

The vulnerability of the VideoMost server, related to incorrect restrictions on the path to the restricted catalog, allows a hacker to execute arbitrary code.

The vulnerability of the VideoMost server lies in an incorrect restriction on the path to the restricted catalog. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the FortiSandbox threat detection and mitigation system lies in its improper restriction on the path name to the restricted access catalog, allowing attackers to read arbitrary files.

The vulnerability of the FortiSandbox threat detection and mitigation system is related to an incorrect restriction on the path name to the restricted catalog. Exploiting this vulnerability allows a malicious actor to read arbitrary files using specially created HTTP requests...

The vulnerability of Deepin-Reader, a program for viewing PDF and DjVu documents, arises due to an incorrect path limitation to the restricted access catalog. This allows a violator to execute arbitrary code.

The vulnerability of Deepin-Reader for viewing PDF and DjVu documents exists due to an incorrect restriction on the path to the restricted catalog. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of the threat detection mechanism for Microsoft Defender for IoT involves an incorrect restriction on the path name to the restricted catalog, allowing attackers to execute arbitrary code.

The vulnerability of the Microsoft Defender for IoT threat detection mechanism is related to an incorrect restriction on the path name to the restricted catalog. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

The vulnerability in the Avalanche mobile device management web component allows a hacker to execute arbitrary commands with SYSTEM privileges.

The vulnerability of the Avalanche mobile device management web component is related to an incorrect restriction on the path name to the restricted catalog. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands with SYSTEM privileges remotely...