Lucene search
K

427 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-26131

Malicious code in bioql PyPI...

7.2CVSS7.1AI score0.01081EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-36455

Malicious code in bioql PyPI...

6.7CVSS6.7AI score0.00157EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2023-24194

Malicious code in bioql PyPI...

6.7CVSS6.5AI score0.00223EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-52202

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.02199EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-26039

Malicious code in bioql PyPI...

8.5CVSS6.5AI score0.013EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-34393

Malicious code in bioql PyPI...

9.4CVSS9.2AI score0.01004EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-50434

Malicious code in bioql PyPI...

8.6CVSS9.7AI score0.01104EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-37389

Malicious code in bioql PyPI...

6.7CVSS6.7AI score0.00179EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-22458

Malicious code in bioql PyPI...

7.8CVSS6.7AI score0.00162EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-18074

Malicious code in bioql PyPI...

6CVSS8.6AI score0.16995EPSS
Exploits1References1
Microsoft CVE
Microsoft CVE
added 2025/09/03 9:32 p.m.4 views

npm packing does not respect root-level ignore files in workspaces

...

7.5CVSS9.3AI score0.03465EPSS
Exploits0
CNVD
CNVD
added 2025/08/18 12:0 a.m.2 views

Kenwood DMX958XR Command Injection Vulnerability (CNVD-2025-20290)

The Kenwood DMX958XR is an in-car infotainment system from Kenwood. The Kenwood DMX958XR suffers from a command injection vulnerability that can be exploited by an attacker to execute code in a root context...

6.8CVSS8.1AI score0.00972EPSS
Exploits0References1
NVD
NVD
added 2025/08/07 5:15 p.m.8 views

CVE-2025-34151

A command injection vulnerability exists in the 'passwd' parameter of the PPPoE setup process on the Shenzhen Aitemi M300 Wi-Fi Repeater hardware model MT02. The input is passed directly to system-level commands without sanitation, enabling unauthenticated attackers to achieve root-level code...

9.4CVSS0.03826EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/08/07 4:45 p.m.12 views

CVE-2025-34151 Shenzhen Aitemi M300 Wi-Fi Repeater PPPoE Password Command Injection

A command injection vulnerability exists in the 'passwd' parameter of the PPPoE setup process on the Shenzhen Aitemi M300 Wi-Fi Repeater hardware model MT02. The input is passed directly to system-level commands without sanitation, enabling unauthenticated attackers to achieve root-level code...

9.4CVSS0.03826EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/08/05 12:0 a.m.5 views

PT-2025-32045 · Kenwood · Kenwood Dmx958Xr

Name of the Vulnerable Software and Affected Versions: Kenwood DMX958XR affected versions not specified Description: This issue allows attackers with physical access to execute arbitrary code on affected Kenwood DMX958XR devices. The flaw resides in the firmware update process due to insufficient...

6.8CVSS6.8AI score0.00972EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2025/07/22 12:0 a.m.9 views

The vulnerability of the RemotePC software for providing remote access lies in its insecure management of privileges, allowing attackers to escalate their privileges.

The vulnerability of the RemotePC remote access software is related to insecure management of privileges. Exploiting this vulnerability can allow an attacker to elevate their privileges to the root level...

7.3CVSS5.5AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/07/21 12:0 a.m.8 views

The vulnerability of the software for providing secure remote access to data in the Palo Alto Networks GlobalProtect App lies in the lack of measures to neutralize substitution characters or identical symbols. This allows attackers to elevate their privileges to the root level.

The vulnerability of the software for providing secure remote access to data in the Palo Alto Networks GlobalProtect App is related to the lack of measures taken to neutralize substitution characters or identical symbols. Exploiting this vulnerability can allow attackers to elevate their privileg...

7.8CVSS5.9AI score0.00426EPSS
Exploits0References2Affected Software1
RedHat Linux
RedHat Linux
added 2025/06/26 12:12 p.m.4 views

oath-toolkit: Local root exploit in a PAM module

A vulnerability was found in a PAM module, the oath-toolkit. The module gained a feature that allowed placing the OTP state file, called the usersfile, in the home directory of the to-be-authenticated user. The PAM module performed unsafe file operations in the users' home directories. Since PAM...

7.1CVSS5.7AI score0.00341EPSS
Exploits0References4
NVD
NVD
added 2025/06/11 12:15 a.m.10 views

CVE-2024-9062

The Archify application contains a local privilege escalation vulnerability due to insufficient client validation in its privileged helper tool, com.oct4pie.archifyhelper, which is exposed via XPC. Archify follows the "factored applications" model, delegating privileged operations—such as arbitra...

7.8CVSS0.00125EPSS
Exploits0References2
CVE
CVE
added 2025/06/10 11:25 p.m.55 views

CVE-2024-9062

CVE-2024-9062 – macOS Archify local privilege escalation : The vulnerability affects the Archify privileged helper tool, com.oct4pie.archifyhelper, which runs as root and is exposed via XPC. The root cause is insufficient client validation by the helper, which does not verify code signatures, ent...

7.8CVSS7.7AI score0.00125EPSS
Exploits0References2
Rows per page
Query Builder