Lucene search
K

485 matches found

NVD
NVD
added 2023/05/25 7:15 p.m.14 views

CVE-2023-26216

The server component of TIBCO Software Inc.'s TIBCO EBX Add-ons contains an exploitable vulnerability that allows an attacker to upload files to a directory accessible by the web server. Affected releases are TIBCO Software Inc.'s TIBCO EBX Add-ons: versions 4.5.16 and below...

9.1CVSS9.3AI score0.00755EPSS
Exploits0References1
Prion
Prion
added 2023/05/25 7:15 p.m.17 views

Design/Logic Flaw

The server component of TIBCO Software Inc.'s TIBCO EBX Add-ons contains an exploitable vulnerability that allows an attacker to upload files to a directory accessible by the web server. Affected releases are TIBCO Software Inc.'s TIBCO EBX Add-ons: versions 4.5.16 and below...

5.8CVSS6.9AI score0.00755EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/05/25 7:15 p.m.13 views

Design/Logic Flaw

The server component of TIBCO Software Inc.'s TIBCO EBX Add-ons contains a vulnerability that allows an attacker with low-privileged application access to read system files that are accessible to the web server. Affected releases are TIBCO Software Inc.'s TIBCO EBX Add-ons: versions 4.5.16 and...

4CVSS6.3AI score0.00657EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/05/25 6:38 p.m.57 views

CVE-2023-26216

The CVE-2023-26216 issue affects TIBCO EBX Add-ons ≤ 4.5.16, where the server component allows an attacker to upload files to a directory accessible by the web server, effectively a path-traversal/arbitrary-file-write vulnerability. Root cause: improper handling of file uploads in the server comp...

9.1CVSS7.2AI score0.00755EPSS
Exploits0References1Affected Software1
SUSE CVE
SUSE CVE
added 2023/05/20 2:16 a.m.3 views

SUSE CVE-2023-32254

A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the processing of SMB2TREEDISCONNECT commands. The issue results from the lack of proper locking when performing operations on an object. An attacker can leverage this...

9.8CVSS6.8AI score0.02937EPSS
Exploits0References3
CNVD
CNVD
added 2023/05/10 12:0 a.m.4 views

Siemens Siveillance Video Code Execution Vulnerability

Siveillance Video formerly known as Siveillance VMS is an IP video management software designed for deployments ranging from small and simple to large and highly secure. A code execution vulnerability exists in Siemens Siveillance Video due to the event server component of the affected applicatio...

9.9CVSS7.4AI score0.01114EPSS
Exploits0References1
CNVD
CNVD
added 2023/05/10 12:0 a.m.7 views

Siemens Siveillance Video Code Execution Vulnerability (CNVD-2023-35775)

Siveillance Video formerly known as Siveillance VMS is an IP video management software designed for deployments ranging from small and simple to large and highly secure. A code execution vulnerability exists in Siemens Siveillance Video due to the event server component of the affected applicatio...

9.9CVSS7.4AI score0.01114EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/05/09 11:51 a.m.6 views

CVE-2023-30899

A vulnerability has been identified in Siveillance Video 2020 R2 All versions V20.2 HotfixRev14, Siveillance Video 2020 R3 All versions V20.3 HotfixRev12, Siveillance Video 2021 R1 All versions V21.1 HotfixRev12, Siveillance Video 2021 R2 All versions V21.2 HotfixRev8, Siveillance Video 2022 R1 A...

9.9CVSS9.3AI score0.01114EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/05/09 12:0 a.m.5 views

PT-2023-2732 · Unknown · Siveillance Video

Name of the Vulnerable Software and Affected Versions: Siveillance Video 2020 R2 versions prior to V20.2 HotfixRev14 Siveillance Video 2020 R3 versions prior to V20.3 HotfixRev12 Siveillance Video 2021 R1 versions prior to V21.1 HotfixRev12 Siveillance Video 2021 R2 versions prior to V21.2...

9.9CVSS9.1AI score0.01114EPSS
Exploits0References3
CVE
CVE
added 2023/02/22 12:0 a.m.41 views

CVE-2022-41566

The CVE-2022-41566 issue affects the server component of TIBCO EBX Add-ons for versions 5.6.0 and below. The vulnerability enables a low-privileged, network-access attacker to perform stored XSS on the affected system, with confidentiality and integrity impacts reported as high in the CVSS metric...

8.7CVSS5.9AI score0.00394EPSS
Exploits0References1Affected Software1
F5 Networks
F5 Networks
added 2023/02/21 7:59 p.m.53 views

K42842401: MySQL vulnerabilities CVE-2018-3145, CVE-2018-3155, CVE-2018-3156, CVE-2018-3161, and CVE-2018-3162

Security Advisory Description CVE-2018-3145 Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Parser. Supported versions that are affected are 8.0.12 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protoco...

7.7CVSS6.7AI score0.03716EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:56 p.m.40 views

K63545041: Server component of Oracle MySQL vulnerabilities CVE-2017-3317, CVE-2017-3318, and CVE-2017-3319

Security Advisory Description CVE-2017-3317 Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Logging. Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows high privileged attacker...

4CVSS5.4AI score0.01346EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:56 p.m.49 views

K34205867: Server component of Oracle MySQL vulnerabilities CVE-2016-8327, CVE-2017-3238, CVE-2017-3251, CVE-2017-3256, and CVE-2017-3258

Security Advisory Description CVE-2016-8327 Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Replication. Supported versions that are affected are 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows high privileged attacker with...

6.5CVSS6AI score0.04792EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2023/02/15 5:48 a.m.3 views

SUSE CVE-2012-0574

Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier, and 5.5.28 and earlier, allows remote authenticated users to affect availability via unknown vectors...

4CVSS4.5AI score0.02829EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:46 a.m.4 views

SUSE CVE-2012-3152

Unspecified vulnerability in the Oracle Reports Developer component in Oracle Fusion Middleware 11.1.1.4, 11.1.1.6, and 11.1.2.0 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Report Server Component. NOTE: the previous information is from the Octob...

9.1CVSS9.1AI score0.98695EPSS
Exploits11References3
BDU FSTEC
BDU FSTEC
added 2023/02/06 12:0 a.m.6 views

The vulnerability of the Core server component of Oracle WebLogic Server, a software platform of Oracle Fusion Middleware, allows attackers to disclose protected information.

The vulnerability of the Core server component of Oracle WebLogic Server, a software platform of Oracle Fusion Middleware, is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to disclose sensitive information...

7.8CVSS7.7AI score0.99811EPSS
Exploits10References4Affected Software1
OSV
OSV
added 2023/02/01 2:15 p.m.3 views

CVE-2023-0613

A vulnerability has been found in TRENDnet TEW-811DRU 1.0.10.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /wireless/security.asp of the component httpd. The manipulation leads to memory corruption. The attack can be launched remotely. The...

7.5CVSS6.6AI score0.00933EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/11/18 12:0 a.m.47 views

MariaDB 5.5.0 < 5.5.61 Multiple Vulnerabilities

The version of MariaDB installed on the remote host is prior to 5.5.61. It is, therefore, affected by multiple vulnerabilities as referenced in the 5.5.61 advisory. - Vulnerability in the MySQL Client component of Oracle MySQL subcomponent: Client programs. Supported versions that are affected ar...

7.1CVSS6.8AI score0.03213EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2022/11/18 12:0 a.m.48 views

MariaDB 10.0.0 < 10.0.1 Multiple Vulnerabilities

The version of MariaDB installed on the remote host is prior to 10.0.1. It is, therefore, affected by multiple vulnerabilities as referenced in the 10.0.1 advisory. - Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier, and 5.5.28 and earlier, allows local users t...

6.8CVSS7AI score0.24564EPSS
Exploits11References20
Veracode
Veracode
added 2022/11/10 12:32 a.m.25 views

Denial Of Service (DoS)

rh-mysql80-mysql is vulnerable to denial of service. The vulnerability exists in the Server: Optimizer component in the library, allowing attacker to cause an application crash through the multiple protocols...

4.9CVSS5.8AI score0.01439EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder