CVE-2021-27579

Snow Inventory Agent through 6.7.0 on Windows uses CPUID to report on processor types and versions that may be deployed and in use across an IT environment. A privilege-escalation vulnerability exists if CPUID is enabled, and thus it should be disabled via configuration settings...

EUVD-2021-14327

Malware in sbrugna...

EUVD-2023-59350

Malicious code in bioql PyPI...

EUVD-2021-33989

Malicious code in bioql PyPI...

CVE-2024-1150

Improper Verification of Cryptographic Signature vulnerability in Snow Software Inventory Agent on Unix allows File Manipulation through Snow Update Packages.This issue affects Inventory Agent: through 7.3.1...

CVE-2023-7169

Authentication Bypass by Spoofing vulnerability in Snow Software Snow Inventory Agent on Windows allows Signature Spoof.This issue affects Snow Inventory Agent: through 6.14.5. Customers advised to upgrade to version 7.0...

CVE-2023-7169

Authentication Bypass by Spoofing vulnerability in Snow Software Snow Inventory Agent on Windows allows Signature Spoof.This issue affects Snow Inventory Agent: through 6.14.5. Customers advised to upgrade to version 7.0...

CVE-2023-7169 Impersonate vendor signed Powershell scripts

Authentication Bypass by Spoofing vulnerability in Snow Software Snow Inventory Agent on Windows allows Signature Spoof.This issue affects Snow Inventory Agent: through 6.14.5. Customers advised to upgrade to version 7.0...

CVE-2023-7169

Summary (CVE-2023-7169): Affected product is Snow Software Snow Inventory Agent on Windows. The issue is an Authentication Bypass by Spoofing (signature spoof) that impacts versions up to 6.14.5; customers are advised to upgrade to version 7.0. The NVD vector shows a likely local, low-attack-vect...

CVE-2023-7169 Impersonate vendor signed Powershell scripts

Authentication Bypass by Spoofing vulnerability in Snow Software Snow Inventory Agent on Windows allows Signature Spoof.This issue affects Snow Inventory Agent: through 6.14.5. Customers advised to upgrade to version 7.0...

PT-2024-15220 · Snow · Snow Inventory Agent

Name of the Vulnerable Software and Affected Versions: Snow Inventory Agent versions through 6.14.5 Description: The issue is related to an Authentication Bypass by Spoofing vulnerability, allowing Signature Spoof. This vulnerability does not have any reported real-world incidents or estimated...

Snow Software Inventory Agent Data Forgery Issue Vulnerability

Snow Software Inventory Agent is an agent program from Snow Software of Sweden. Snow Software Inventory Agent is vulnerable to a data forgery issue that stems from incorrect cryptographic signature validation that allows file manipulation via update packages...

CVE-2021-4106

A vulnerability in Snow Inventory Java Scanner allows an attacker to run malicious code at a higher level of privileges. This issue affects: SNOW Snow Inventory Java Scanner 1.0...

CVE-2021-4106

A vulnerability in Snow Inventory Java Scanner allows an attacker to run malicious code at a higher level of privileges. This issue affects: SNOW Snow Inventory Java Scanner 1.0...

Design/Logic Flaw

A vulnerability in Snow Inventory Java Scanner allows an attacker to run malicious code at a higher level of privileges. This issue affects: SNOW Snow Inventory Java Scanner 1.0...

CVE-2021-4106 Vulnerability in Snow Inventory Java Scanner

A vulnerability in Snow Inventory Java Scanner allows an attacker to run malicious code at a higher level of privileges. This issue affects: SNOW Snow Inventory Java Scanner 1.0...

CVE-2021-4106

CVE-2021-4106 affects SNOW Snow Inventory Java Scanner 1.0. Multiple sources describe a vulnerability where an attacker can run malicious code with elevated privileges. The root cause is described in at least one source as a problem with software privilege filtering. The NVD entry notes the impac...

CVE-2021-4106

A vulnerability in Snow Inventory Java Scanner allows an attacker to run malicious code at a higher level of privileges. This issue affects: SNOW Snow Inventory Java Scanner 1.0...

PT-2022-11363 · Snow · Snow Snow Inventory Java Scanner

Name of the Vulnerable Software and Affected Versions: SNOW Snow Inventory Java Scanner version 1.0 Description: A vulnerability in Snow Inventory Java Scanner allows an attacker to run malicious code at a higher level of privileges. Recommendations: For SNOW Snow Inventory Java Scanner version...

Snow Software Snow Inventory Java Scanner 安全漏洞

Snow Software Snow Inventory Java Scanner is a Java Inventory Scanner from Snow Software, Sweden. A security vulnerability exists in Snow Software Snow Inventory Java Scanner version 1.0, which stems from a problem with software privilege filtering. The vulnerability can be exploited by an attack...