Lucene search
K

23 matches found

Snyk
Snyk
added 2026/03/17 4:45 a.m.4 views

Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read in the uclobjectemit function when operating in UCLPARSERZEROCOPY mode and processing input containing a key with an embedded null byte. An attacker can cause a segmentation fault and disrupt service by submitting...

8.3CVSS5.8AI score0.00387EPSS
Exploits1References2
NVD
NVD
added 2026/03/17 4:16 a.m.3 views

CVE-2026-0708

A flaw was found in libucl. A remote attacker could exploit this by providing a specially crafted Universal Configuration Language UCL input that contains a key with an embedded null byte. This can cause a segmentation fault SEGV fault in the uclobjectemit function when parsing and emitting the...

8.3CVSS0.00387EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/03/17 2:28 a.m.35 views

CVE-2026-0708 Libucl: libucl: denial of service via embedded null byte in ucl input

A flaw was found in libucl. A remote attacker could exploit this by providing a specially crafted Universal Configuration Language UCL input that contains a key with an embedded null byte. This can cause a segmentation fault SEGV fault in the uclobjectemit function when parsing and emitting the...

8.3CVSS0.00387EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/03/17 12:0 a.m.22 views

PT-2026-25869

A flaw was found in libucl. A remote attacker could exploit this by providing a specially crafted Universal Configuration Language UCL input that contains a key with an embedded null byte. This can cause a segmentation fault SEGV fault in the ucl object emit function when parsing and emitting the...

8.3CVSS5.8AI score0.00387EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2013-6043

Malware in sbrugna...

4CVSS6.4AI score0.01145EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2013-6044

Malware in sbrugna...

8.5CVSS6.3AI score0.02594EPSS
Exploits1References3
CNVD
CNVD
added 2019/01/03 12:0 a.m.1 views

HPE UCMDB Configuration Management Service Directory Traversal Vulnerability

HPE UCMDB full name Universal CMDB is a set of resource management solutions. The solution provides bottom-up functions including automatic discovery of IT infrastructure, data modeling, service mapping definition and service impact analysis, etc. Configuration Manager Service is one of the...

7.5CVSS6.8AI score0.06592EPSS
Exploits0References1
CNVD
CNVD
added 2018/07/03 12:0 a.m.5 views

Micro Focus Universal Configuration Management Database Server Cross-Site Request Forgery Vulnerability

Micro Focus Universal Configuration Management Database UCMDB is a suite of database software from Micro Focus UK that stores, controls and manages software and infrastructure components and their interrelationships.UCMDB Server is one of the UCMDB Server is one of the server applications. A...

8.8CVSS7.8AI score0.00578EPSS
Exploits0References1
CNVD
CNVD
added 2018/05/25 12:0 a.m.2 views

Micro Focus Universal CMDB, CMS and UCMDB Browser Cross-Site Scripting Vulnerabilities

Micro Focus Universal CMDB, CMS and UCMDB Browser are all products of Micro Focus, a UK-based company. Micro Focus Universal CMDB is a resource management solution; CMS is a CMDB configuration management system; UCMDB Browser is a lightweight, web-based client for accessing UCMDB Universal...

6.3CVSS6.2AI score0.00653EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2018/05/03 12:0 a.m.6 views

The vulnerability of the UploadFileOnUIServerServlet component in the HPE UCMDB database configuration units allows a attacker to execute arbitrary code.

The vulnerability of the UploadFileOnUIServerServlet component in the HPE UCMDB Universal Configuration Management Database is related to deficiencies in path name validation for restricted access directories. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code i...

10CVSS5.9AI score0.30312EPSS
Exploits0References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/07/25 12:0 a.m.143 views

HP UCMDB Server Java Deserialization RCE

The HP Universal Configuration Management Database UCMDB Server running on the remote host is affected by a remote code execution vulnerability due to unsafe deserialize calls of unauthenticated Java objects to the Apache Commons Collections ACC library. An unauthenticated, remote attacker can...

9.8CVSS9.7AI score0.04734EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2016/01/19 12:0 a.m.4 views

The vulnerability of clients to universal configuration management databases like USMDB Browser allows attackers to obtain confidential information or circumvent existing access restrictions.

The vulnerability of the client for universal configuration management databases of the USMDB Browser is related to lack of access control. Exploiting this vulnerability could allow an attacker, operating locally, to obtain confidential information or circumvent existing access restrictions...

7.2CVSS7.5AI score0.01435EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2015/09/22 12:0 a.m.36 views

HP Universal Configuration Management Database Server (UCMDB) Local Information Disclosure (HPSBGN03504)

The version of HP Universal Configuration Management Database Server UCMDB running on the remote web server is affected by an unspecified local information disclosure vulnerability. A local attacker can exploit this to gain access to admin or root password information. C Tenable Network Security,...

4.9CVSS5.6AI score0.00574EPSS
Exploits0References3
CNVD
CNVD
added 2015/09/10 12:0 a.m.4 views

HP UCMDB Local Information Disclosure Vulnerability

HP UCMDB is the federated configuration management database. HP UCMDB has a security vulnerability in its implementation that can be exploited by an attacker to cause a local information disclosure...

4.9CVSS6.4AI score0.00574EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2015/03/18 12:0 a.m.27 views

HP Universal Configuration Management Database Data Flow Probe Gateway Cross-Site Tracing

The version of HP Universal Configuration Management Database Data Flow Probe Gateway running on the remote web server is affected by a cross-site tracing vulnerability. A remote attacker can exploit this to gain access to information in HTTP headers such as cookies and authentication data...

5.6AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2015/03/18 12:0 a.m.96 views

HP Universal Configuration Management Database Server Authentication Bypass

The version of HP Universal Configuration Management Database Server running on the remote web server is affected by an authentication bypass vulnerability due to the JMX-Console component performing access control only for GET and POST methods. A remote attacker, using the HTTP HEAD method, can...

5CVSS5.7AI score0.37022EPSS
Exploits5References2
seebug.org
seebug.org
added 2014/04/21 12:0 a.m.36 views

HP Universal Configuration Management Database远程代码执行漏洞

Bugtraq ID:66963 CVE ID:CVE-2013-6215 HP Universal Configuration Management Database是惠普公司的统一配置管理数据库应用。 HP Universal Configuration Management Database存在一个未明安全漏洞,允许远程攻击者利用漏洞以应用程序上下文执行任意代码。 0 HP Universal Configuration Management Database Integration Service v10.01 HP Universal Configuration...

8.5CVSS6.6AI score0.02594EPSS
Exploits1
securityvulns
securityvulns
added 2014/04/21 12:0 a.m.35 views

HP Universal Configuration Management multiple security vulnerabilities

Code execution, information leakage...

8.5CVSS2.9AI score0.02594EPSS
Exploits2References2Affected Software1
seebug.org
seebug.org
added 2014/04/21 12:0 a.m.27 views

HP Universal Configuration Management Database远程代码执行漏洞

Bugtraq ID:66962 CVE ID:CVE-2013-6214 HP Universal Configuration Management Database是惠普公司的统一配置管理数据库应用。 HP Universal Configuration Management Database存在一个未明安全漏洞,允许远程攻击者利用漏洞获取敏感信息。 0 HP Universal Configuration Management Database Integration Service v9.05 HP Universal Configuration Management...

4CVSS6.6AI score0.01145EPSS
Exploits1
securityvulns
securityvulns
added 2014/04/21 12:0 a.m.67 views

[security bulletin] HPSBMU02988 rev.1 - HP Universal Configuration Management Database, Disclosure of Information

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04220407 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04220407 Version: 1 HPSBMU02988 rev....

4CVSS0.2AI score0.01145EPSS
Exploits1
Rows per page
Query Builder