Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

997 matches found

OSV
OSVadded 2023/10/18 8:15 p.m.3 views

CVE-2023-4601

A stack-based buffer overflow vulnerability exists in NI System Configuration that could result in information disclosure and/or arbitrary code execution. Successful exploitation requires that an attacker can provide a specially crafted response. This affects NI System Configuration 2023 Q3 and a...

9.8CVSS6.3AI score0.00623EPSS
Exploits0References1
NVD
NVDadded 2023/10/18 8:15 p.m.22 views

CVE-2023-4601

A stack-based buffer overflow vulnerability exists in NI System Configuration that could result in information disclosure and/or arbitrary code execution. Successful exploitation requires that an attacker can provide a specially crafted response. This affects NI System Configuration 2023 Q3 and a...

9.8CVSS8.7AI score0.00623EPSS
Exploits0References1
Prion
Prionadded 2023/10/18 8:15 p.m.15 views

Stack overflow

A stack-based buffer overflow vulnerability exists in NI System Configuration that could result in information disclosure and/or arbitrary code execution. Successful exploitation requires that an attacker can provide a specially crafted response. This affects NI System Configuration 2023 Q3 and a...

7.5CVSS9.4AI score0.00623EPSS
Exploits0References1Affected Software1
CVE
CVEadded 2023/10/18 7:15 p.m.46 views

CVE-2023-4601

CVE-2023-4601 describes a stack-based buffer overflow in NI System Configuration, affecting 2023 Q3 and earlier versions. The vulnerability arises in parsing/handling of response data, allowing an attacker to cause information disclosure or arbitrary code execution. Public sources in connected do...

9.8CVSS9.1AI score0.00623EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2023/10/18 7:15 p.m.32 views

CVE-2023-4601 Stack-based Buffer Overflow in NI System Configuration Software

A stack-based buffer overflow vulnerability exists in NI System Configuration that could result in information disclosure and/or arbitrary code execution. Successful exploitation requires that an attacker can provide a specially crafted response. This affects NI System Configuration 2023 Q3 and a...

8.1CVSS9.7AI score0.00623EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2023/10/18 7:15 p.m.10 views

CVE-2023-4601 Stack-based Buffer Overflow in NI System Configuration Software

A stack-based buffer overflow vulnerability exists in NI System Configuration that could result in information disclosure and/or arbitrary code execution. Successful exploitation requires that an attacker can provide a specially crafted response. This affects NI System Configuration 2023 Q3 and a...

8.1CVSS7.9AI score0.00623EPSS
Exploits0References1
CNNVD
CNNVDadded 2023/10/18 12:0 a.m.2 views

NI System Configuration Buffer Error Vulnerability

NI System Configuration is a hardware configuration utility program from NI System, Inc. It helps you view and configure the devices connected to your system. A security vulnerability exists in NI System Configuration 2023 Q3 23.5. and prior versions, which can be exploited by an attacker to caus...

9.8CVSS7.2AI score0.00623EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2023/10/18 12:0 a.m.4 views

PT-2023-29793 · National Instruments · Ni System Configuration

Name of the Vulnerable Software and Affected Versions: NI System Configuration versions prior to 2023 Q3 Description: A stack-based buffer overflow vulnerability exists in NI System Configuration that could result in information disclosure and/or arbitrary code execution. Successful exploitation...

9.8CVSS9.5AI score0.00623EPSS
Exploits0References8
OSV
OSVadded 2023/10/01 12:0 a.m.33 views

ASB-A-275339978

In validatePassword of WifiConfigurationUtil.java, there is a possible way to get the device into a boot loop due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS5.4AI score0.00106EPSS
Exploits0References3
NVD
NVDadded 2023/09/21 2:15 p.m.13 views

CVE-2023-43633

On boot, the Pillar eve container checks for the existence and content of “/config/GlobalConfig/global.json”. If the file exists, it overrides the existing configuration on the device on boot. This allows an attacker to change the system’s configuration, which also includes some debug functions...

8.8CVSS8.7AI score0.0016EPSS
Exploits0References1
NVD
NVDadded 2023/09/14 7:16 p.m.22 views

CVE-2023-39286

A vulnerability in the Connect Mobility Router component of Mitel MiVoice Connect through 9.6.2304.102 could allow an unauthenticated attacker to perform a Cross Site Request Forgery CSRF attack due to insufficient request validation. A successful exploit could allow an attacker to provide a...

4.3CVSS4.7AI score0.00233EPSS
Exploits0References1
Prion
Prionadded 2023/09/14 7:16 p.m.20 views

Cross site request forgery (csrf)

A vulnerability in the Connect Mobility Router component of Mitel MiVoice Connect through 9.6.2304.102 could allow an unauthenticated attacker to perform a Cross Site Request Forgery CSRF attack due to insufficient request validation. A successful exploit could allow an attacker to provide a...

4.3CVSS4.8AI score0.00233EPSS
Exploits0References1Affected Software1
Prion
Prionadded 2023/09/14 7:16 p.m.17 views

Cross site request forgery (csrf)

A vulnerability in the Edge Gateway component of Mitel MiVoice Connect through 19.3 SP3 22.24.5800.0 could allow an unauthenticated attacker to perform a Cross Site Request Forgery CSRF attack due to insufficient request validation. A successful exploit could allow an attacker to provide a modifi...

4.3CVSS4.8AI score0.00233EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2023/09/14 12:0 a.m.15 views

CVE-2023-39285

A vulnerability in the Edge Gateway component of Mitel MiVoice Connect through 19.3 SP3 22.24.5800.0 could allow an unauthenticated attacker to perform a Cross Site Request Forgery CSRF attack due to insufficient request validation. A successful exploit could allow an attacker to provide a modifi...

5AI score0.00233EPSS
Exploits0References1
CNNVD
CNNVDadded 2023/09/14 12:0 a.m.3 views

Mitel MiVoice Connect Cross-Site Request Forgery Vulnerability

Mitel MiVoice Connect is Mitel Canada's software for centralized management of Mitel Networks' call processing and collaboration tools. A security vulnerability exists in Mitel MiVoice Connect 19.3 SP3 22.24.5800.0 and prior versions, which stems from insufficient request authentication and could...

4.3CVSS7AI score0.00233EPSS
Exploits0References3
Cvelist
Cvelistadded 2023/09/14 12:0 a.m.31 views

CVE-2023-39286

A vulnerability in the Connect Mobility Router component of Mitel MiVoice Connect through 9.6.2304.102 could allow an unauthenticated attacker to perform a Cross Site Request Forgery CSRF attack due to insufficient request validation. A successful exploit could allow an attacker to provide a...

5AI score0.00233EPSS
Exploits0References1
CNNVD
CNNVDadded 2023/09/14 12:0 a.m.5 views

Mitel Connect Mobility Router Cross-Site Request Forgery Vulnerability

Mitel Connect Mitel ShoreTel is a software for office communication from Mitel Canada. The software provides access to corporate contacts, support for selecting contacts to open conferences, and an interface to manage calls and voicemail. A security vulnerability exists in Mitel Connect Mobility...

4.3CVSS7AI score0.00233EPSS
Exploits0References3
Kitploit
Kitploitadded 2023/09/13 11:30 a.m.29 views

KaliPackergeManager - Kali Packerge Manager

kalipm.sh is a powerful package management tool for Kali Linux that provides a user-friendly menu-based interface to simplify the installation of various packages and tools. It streamlines the process of managing software and enables users to effortlessly install packages from different categorie...

7.2AI score
Exploits0References1
Vulnrichment
Vulnrichmentadded 2023/09/01 9:55 a.m.9 views

CVE-2023-4704 External Control of System or Configuration Setting in instantsoft/icms2

External Control of System or Configuration Setting in GitHub repository instantsoft/icms2 prior to 2.16.1-git...

8.8CVSS6.8AI score0.00739EPSS
Exploits1References2
Cvelist
Cvelistadded 2023/09/01 9:55 a.m.37 views

CVE-2023-4704 External Control of System or Configuration Setting in instantsoft/icms2

External Control of System or Configuration Setting in GitHub repository instantsoft/icms2 prior to 2.16.1-git...

8.8CVSS5.4AI score0.00739EPSS
Exploits1References2
Rows per page
Query Builder