Palo Alto PAN-OS GlobalProtect Authentication Bypass

Palo Alto PAN-OS versions 10.2.x 10.2.12 / 11.0.x 11.0.6 / 11.1.x 11.0.5 / 11.2.x 11.2.4 is affected by a vulnerability allowing an attacker to bypass authentication and make administrator requests via a specially forged request. No source data...

DuckDB Installed (Linux / Unix)

Binary data duckdbnixinstalled.nbin...

DuckDB Installed (Windows)

Binary data duckdbwininstalled.nbin...

Sitecore 8.x < 10.4 Arbitrary File Read

Sitecore CMS version 8.x 10.4 are affected by an incorrect path access check vulnerability allowing unauthenticated remote attackers to read arbitrary files on the affected host. No source data...

Exploit for Improper Access Control in Adobe Coldfusion

CVE-2023-26360 Vulnerability Scanner Overview CVE-2023-2...

Metasploit Weekly Wrap-Up 11/22/2024

JetBrains TeamCity Login Scanner Metasploit added a login scanner for the TeamCity application to enable users to check for weak credentials. TeamCity has been the subject of multiple ETR vulnerabilities and is a valuable target for attackers. Targeted DCSync added to Windows Secrets Dump This...

CVE-2024-30376

Famatech Advanced IP Scanner Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Famatech Advanced IP Scanner. An attacker must first obtain the ability to execute low-privileged...

CVE-2024-30376

Famatech Advanced IP Scanner Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Famatech Advanced IP Scanner. An attacker must first obtain the ability to execute low-privileged...

CVE-2024-30376 Famatech Advanced IP Scanner Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

Famatech Advanced IP Scanner Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Famatech Advanced IP Scanner. An attacker must first obtain the ability to execute low-privileged...

CVE-2024-30376

The CVE-2024-30376 entry concerns Famatech Advanced IP Scanner. The vulnerability arises from the application's use of Qt, where Qt plugins are loaded from an unsecured location, enabling a local attacker who can run low-privileged code to escalate privileges and execute arbitrary code with admin...

CVE-2024-30376 Famatech Advanced IP Scanner Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

Famatech Advanced IP Scanner Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Famatech Advanced IP Scanner. An attacker must first obtain the ability to execute low-privileged...

Important: Red Hat Security Advisory: ACS 4.5 enhancement update

Updated images are now available for Red Hat Advanced Cluster Security. The updated image includes a bug fix and security fixes. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

Famatech Advanced IP Scanner 代码问题漏洞

Famatech Advanced IP Scanner is a fast, powerful and easy-to-use IP scanner from Famatech. A code issue vulnerability exists in Famatech Advanced IP Scanner that stems from the loading of a Qt plugin from an insecure location when the application is using Qt, which could allow a local attacker to...

JetBrains WebStorm Installed (Mac OS X)

Binary data jetbrainswebstormmacosinstalled.nbin...

PT-2024-10706 · Google · Android

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue is related to an incorrect bounds check in the bff Scanner addOutPos function of Scanner.c, which could lead to a possible out-of-bounds write...

Virtual Hosts Detected

This is an informational plugin to inform the user that the scanner detected the presence of one or multiple virtual hosts on the target server. No source data...

aioHTTP 3.10.6 < 3.10.11 Memory Leak

The version of aioHTTP installed on the remote host is prior to 3.10.11. It is, therefore, affected by a memory leak vulnerability. aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. In versions starting with 3.10.6 and prior to 3.10.11, a memory leak can occur when a...

Oracle Linux 9 : .NET / 9.0 (ELSA-2024-9543)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-9543 advisory. 9.0.100-1.0.1 - Add support for Oracle Linux 9.0.100-1 - Update to .NET SDK 9.0.100 and Runtime 9.0.0 - Resolves: RHEL-65539 9.0.100rc.2.24474.1-0.7 -...

Oracle Linux 9 : python-jwcrypto (ELSA-2024-9281)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2024-9281 advisory. 1.5.6-2 - Disable auto-generation of dependencies Related: RHEL-34809 1.5.6-1 - Rebase to version 1.5.6 Resolve: RHEL-34809 Tenable has extracted the preceding...

Oracle Linux 9 : xorg-x11-server (ELSA-2024-9122)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-9122 advisory. - Fix regression caused by the fix for CVE-2024-31083 - CVE fix for: CVE-2024-31080, CVE-2024-31081, CVE-2024-31082 and CVE-2024-31083 Tenable has...