Lucene search
+L

350 matches found

OSV
OSV
added 2026/02/02 10:36 a.m.10 views

CVE-2025-7105 Denial of Service via JavaScript Memory Overflow in danny-avila/librechat

A vulnerability in danny-avila/librechat allows attackers to exploit the unrestricted Fork Function in /api/convos/fork to fork numerous contents rapidly. If the forked content includes a Mermaid graph with a large number of nodes, it can lead to a JavaScript heap out of memory error upon service...

5.7CVSS6.2AI score0.00279EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/02/02 12:0 a.m.11 views

PT-2026-5653

Name of the Vulnerable Software and Affected Versions librechat affected versions not specified Description A flaw exists in danny-avila/librechat that allows attackers to exploit the unrestricted Fork Function. The vulnerable function is located at the /api/convos/fork endpoint. By rapidly forki...

5.7CVSS6.2AI score0.00279EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2026/01/30 3:39 p.m.17 views

CVE-2025-13905

CWE-276: Incorrect Default Permissions vulnerability exists that could cause privilege escalation through the reverse shell when one or more executable service binaries are modified in the installation folder by a local user with normal privilege upon service restart...

7CVSS5.9AI score0.00103EPSS
Exploits0References1
NVD
NVD
added 2026/01/29 4:16 p.m.9 views

CVE-2025-13905

CWE-276: Incorrect Default Permissions vulnerability exists that could cause privilege escalation through the reverse shell when one or more executable service binaries are modified in the installation folder by a local user with normal privilege upon service restart...

7CVSS0.00103EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/29 3:20 p.m.9 views

CVE-2025-13905

CWE-276: Incorrect Default Permissions vulnerability exists that could cause privilege escalation through the reverse shell when one or more executable service binaries are modified in the installation folder by a local user with normal privilege upon service restart...

7CVSS5.9AI score0.00103EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/01/29 3:20 p.m.34 views

CVE-2025-13905

CWE-276: Incorrect Default Permissions vulnerability exists that could cause privilege escalation through the reverse shell when one or more executable service binaries are modified in the installation folder by a local user with normal privilege upon service restart...

7CVSS0.00103EPSS
Exploits0References1
CVE
CVE
added 2026/01/29 3:20 p.m.29 views

CVE-2025-13905

CVE-2025-13905 maps to Schneider Electric EcoStruxure Process Expert (for AVEVA System Platform) with versions prior to 2025 affected. The issue is CWE-276: Incorrect Default Permissions, enabling privilege escalation via a reverse shell when one or more executable service binaries are modified i...

7CVSS5.9AI score0.00103EPSS
Exploits0References1
EUVD
EUVD
added 2026/01/29 3:20 p.m.6 views

EUVD-2025-206546

CWE-276: Incorrect Default Permissions vulnerability exists that could cause privilege escalation through the reverse shell when one or more executable service binaries are modified in the installation folder by a local user with normal privilege upon service restart...

7CVSS5.9AI score0.00103EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/29 3:20 p.m.6 views

CVE-2025-13905

CWE-276: Incorrect Default Permissions vulnerability exists that could cause privilege escalation through the reverse shell when one or more executable service binaries are modified in the installation folder by a local user with normal privilege upon service restart...

7CVSS5.9AI score0.00103EPSS
Exploits0References1
NVD
NVD
added 2026/01/29 3:16 p.m.6 views

CVE-2020-37020

SonarQube 8.3.1 contains an unquoted service path vulnerability that allows local attackers to gain SYSTEM privileges by exploiting the service executable path. Attackers can replace the wrapper.exe in the service path with a malicious executable to execute code with highest system privileges...

8.5CVSS0.00121EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/01/29 2:28 p.m.5 views

CVE-2020-37020 SonarQube 8.3.1 - Unquoted Service Path

SonarQube 8.3.1 contains an unquoted service path vulnerability that allows local attackers to gain SYSTEM privileges by exploiting the service executable path. Attackers can replace the wrapper.exe in the service path with a malicious executable to execute code with highest system privileges...

8.5CVSS6.1AI score0.00121EPSS
Exploits0References3
EUVD
EUVD
added 2026/01/29 2:28 p.m.7 views

EUVD-2020-30923

SonarQube 8.3.1 contains an unquoted service path vulnerability that allows local attackers to gain SYSTEM privileges by exploiting the service executable path. Attackers can replace the wrapper.exe in the service path with a malicious executable to execute code with highest system privileges...

8.5CVSS6.1AI score0.00121EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/01/29 2:28 p.m.6 views

CVE-2020-37020

SonarQube 8.3.1 contains an unquoted service path vulnerability that allows local attackers to gain SYSTEM privileges by exploiting the service executable path. Attackers can replace the wrapper.exe in the service path with a malicious executable to execute code with highest system privileges...

8.5CVSS6.1AI score0.00121EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/01/29 12:0 a.m.8 views

PT-2026-5293

SonarQube 8.3.1 contains an unquoted service path vulnerability that allows local attackers to gain SYSTEM privileges by exploiting the service executable path. Attackers can replace the wrapper.exe in the service path with a malicious executable to execute code with highest system privileges...

8.5CVSS6.1AI score0.00121EPSS
Exploits0References4
NVD
NVD
added 2026/01/27 7:16 p.m.8 views

CVE-2020-36983

Quick 'n Easy FTP Service 3.2 contains an unquoted service path vulnerability that allows local attackers to execute arbitrary code during service startup. Attackers can exploit the misconfigured service binary path to inject malicious executables with elevated LocalSystem privileges during syste...

8.5CVSS0.00162EPSS
Exploits0References4
EUVD
EUVD
added 2026/01/27 6:52 p.m.5 views

EUVD-2020-30868

Quick 'n Easy FTP Service 3.2 contains an unquoted service path vulnerability that allows local attackers to execute arbitrary code during service startup. Attackers can exploit the misconfigured service binary path to inject malicious executables with elevated LocalSystem privileges during syste...

8.5CVSS6.2AI score0.00162EPSS
Exploits0References4
EUVD
EUVD
added 2026/01/27 5:52 p.m.6 views

EUVD-2026-4791

The HTTP parser of Tapo C220 v1 and C520WS v2 cameras improperly handles requests containing an excessively long URL path. An invalid‑URL error path continues into cleanup code that assumes allocated buffers exist, leading to a crash and service restart. An unauthenticated attacker can force...

7.1CVSS6AI score0.00534EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/01/27 12:0 a.m.11 views

PT-2026-4988

Name of the Vulnerable Software and Affected Versions Tapo C220 version 1 Tapo C520WS version 2 Description The HTTP parser in the cameras does not correctly process requests with very long URL paths. This leads to a crash and service restart due to improper handling of allocated buffers in clean...

7.5CVSS5.7AI score0.00534EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2026/01/21 6:13 a.m.7 views

CVE-2025-14559

A flaw was found in the keycloak-services component of Keycloak. This vulnerability allows the issuance of access and refresh tokens for disabled users, leading to unauthorized use of previously revoked privileges, via a business logic vulnerability in the Token Exchange implementation when a...

6.5CVSS5.4AI score0.00443EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/01/16 7:9 p.m.1 views

CVE-2021-47845

Spy Emergency 25.0.650 contains an unquoted service path vulnerability in its Windows service configurations that allows local attackers to execute code with elevated privileges. Attackers can exploit the unquoted file paths in SpyEmergencyHealth.exe and SpyEmergencySrv.exe to inject malicious co...

8.5CVSS5.6AI score0.00153EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder