Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

5 matches found

OSV
OSVadded 2025/02/01 12:0 a.m.15 views

ASB-A-281848557

In applyCustomDescription of SaveUi.java, there is a possible way to view another user's image due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

3.3CVSS3.4AI score0.00023EPSS
Exploits0References2
OSV
OSVadded 2024/02/16 2:15 a.m.1 views

CVE-2024-0037

In applyCustomDescription of SaveUi.java, there is a possible way to view images belonging to a different user due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation...

3.3CVSS5.9AI score
Exploits0References2
Prion
Prionadded 2024/02/16 2:15 a.m.9 views

Information disclosure

In applyCustomDescription of SaveUi.java, there is a possible way to view other user's images due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

6.6AI score0.00073EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2024/02/15 12:0 a.m.3 views

PT-2024-15312 · Softwarex · Softwarex

Name of the Vulnerable Software and Affected Versions: SoftwareX affected versions not specified Description: The issue is related to a missing permission check in the applyCustomDescription function of SaveUi.java, allowing potential local information disclosure with user execution privileges...

3.3CVSS6.2AI score0.00021EPSS
Exploits0References7
Positive Technologies
Positive Technologiesadded 2024/02/15 12:0 a.m.1 views

PT-2024-12854 · Softwarex · Softwarex

Name of the Vulnerable Software and Affected Versions: SoftwareX affected versions not specified Description: The issue is related to a confused deputy in the applyCustomDescription function of SaveUi.java, allowing an attacker to view other users' images. This could lead to local information...

5.3CVSS6.2AI score0.00073EPSS
Exploits0References7
Rows per page
Query Builder