Lucene search
K

117 matches found

Vulnrichment
Vulnrichment
added 2024/08/16 1:25 p.m.17 views

CVE-2024-42464 Leak of user information

Authorization Bypass Through User-Controlled Key vulnerability in upKeeper Solutions product upKeeper Manager allows Utilizing REST's Trust in the System Resource to Obtain Sensitive Data.This issue affects upKeeper Manager: through 5.1.9...

7.6CVSS6.8AI score0.00312EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/16 1:25 p.m.33 views

CVE-2024-42464 Leak of user information

Authorization Bypass Through User-Controlled Key vulnerability in upKeeper Solutions product upKeeper Manager allows Utilizing REST's Trust in the System Resource to Obtain Sensitive Data.This issue affects upKeeper Manager: through 5.1.9...

7.6CVSS0.00312EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/16 1:24 p.m.16 views

CVE-2024-42463 Leak of organizations messages

Authorization Bypass Through User-Controlled Key vulnerability in upKeeper Solutions product upKeeper Manager allows Utilizing REST's Trust in the System Resource to Obtain Sensitive Data.This issue affects upKeeper Manager: through 5.1.9...

8.6CVSS6.8AI score0.00369EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/16 1:24 p.m.29 views

CVE-2024-42463 Leak of organizations messages

Authorization Bypass Through User-Controlled Key vulnerability in upKeeper Solutions product upKeeper Manager allows Utilizing REST's Trust in the System Resource to Obtain Sensitive Data.This issue affects upKeeper Manager: through 5.1.9...

8.6CVSS0.00369EPSS
Exploits0References1
CVE
CVE
added 2024/08/16 1:24 p.m.55 views

CVE-2024-42463

The connected documents provide concrete details for CVE-2024-42463: in upKeeper Manager, versions through 5.1.9 are affected by an Authorization Bypass via a user-controlled key that abuses REST’s trust in system resources to obtain sensitive data. Practical impact is unauthorized access to sens...

8.6CVSS6.5AI score0.00369EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/08/16 1:22 p.m.61 views

CVE-2024-42462

CVE-2024-42462 affects upKeeper Manager (upKeeper) up to version 5.1.9. The issue is an improper authentication vulnerability that allows authentication bypass. Severity is rated CRITICAL (CVSS v3.1: AV/N, AC/L, PR/N, UI/N, S/U, C/H, I/H, A/H; CVSS v4.0: VC/H, SC/H, VI/H, SI/H, VA/H, SA/H). Docum...

10CVSS6.6AI score0.00549EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/08/16 1:22 p.m.17 views

CVE-2024-42462 Bypass multifactor authentication

Improper Authentication vulnerability in upKeeper Solutions product upKeeper Manager allows Authentication Bypass.This issue affects upKeeper Manager: through 5.1.9...

10CVSS7AI score0.00549EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/16 1:22 p.m.36 views

CVE-2024-42462 Bypass multifactor authentication

Improper Authentication vulnerability in upKeeper Solutions product upKeeper Manager allows Authentication Bypass.This issue affects upKeeper Manager: through 5.1.9...

10CVSS0.00549EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/08/16 12:0 a.m.5 views

upKeeper 安全漏洞

upKeeper is a cloud-based or local solution from upKeeper, Inc. A security vulnerability exists in upKeeper version 5.1.9 and prior versions that stems from the presence of an incorrect authentication vulnerability that allows bypassing authentication...

10CVSS6.7AI score0.00549EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/08/16 12:0 a.m.4 views

upKeeper 安全漏洞

upKeeper is a cloud-based or local solution from upKeeper, Inc. A security vulnerability exists in upKeeper version 5.1.9 and prior versions that stems from the presence of a vulnerability that improperly restricts excessive authentication attempts, allowing for misuse of authentication...

9.8CVSS6.7AI score0.00652EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/08/16 12:0 a.m.8 views

PT-2024-29960 · Unknown · Upkeeper Manager

Name of the Vulnerable Software and Affected Versions: upKeeper Manager versions through 5.1.9 Description: An Authorization Bypass Through User-Controlled Key issue exists in upKeeper Manager, allowing an attacker to utilize REST's trust in the system resource to obtain sensitive data...

7.6CVSS6.9AI score0.00312EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2024/08/16 12:0 a.m.5 views

PT-2024-29959 · Unknown · Upkeeper Manager

Name of the Vulnerable Software and Affected Versions: upKeeper Manager versions through 5.1.9 Description: The issue allows unauthorized access to sensitive data by exploiting REST's trust in system resources through a user-controlled key. This can lead to an authorization bypass, enabling threa...

8.6CVSS6.7AI score0.00369EPSS
Exploits0References9
CNNVD
CNNVD
added 2024/08/16 12:0 a.m.4 views

upKeeper 安全漏洞

upKeeper is a cloud-based or local solution from upKeeper, Inc. A security vulnerability exists in upKeeper version 5.1.9 and prior versions that stems from the presence of a vulnerability that improperly restricts excessive authentication attempts, allowing for misuse of authentication...

9.8CVSS6.7AI score0.0047EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/08/16 12:0 a.m.4 views

upKeeper 安全漏洞

upKeeper is a cloud-based or local solution from upKeeper, Inc. A security vulnerability exists in upKeeper version 5.1.9 and earlier, which stems from the presence of an authorization bypass via user control key vulnerability that allows the use of REST trust in system resources to gain access t...

7.6CVSS6.6AI score0.00312EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/08/16 12:0 a.m.5 views

upKeeper 安全漏洞

upKeeper is a cloud-based or local solution from upKeeper, Inc. A security vulnerability exists in upKeeper that stems from allowing trust in system resources using REST to access sensitive data...

8.6CVSS6.4AI score0.00369EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/08/16 12:0 a.m.4 views

PT-2024-29961 · Unknown · Upkeeper Manager

Name of the Vulnerable Software and Affected Versions: upKeeper Manager versions through 5.1.9 Description: The issue is related to an improper restriction of excessive authentication attempts in upKeeper Manager, allowing authentication abuse. This problem can be exploited, potentially leading t...

9.8CVSS7.3AI score0.0047EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2024/08/16 12:0 a.m.12 views

PT-2024-29962 · Unknown · Upkeeper Manager

Name of the Vulnerable Software and Affected Versions: upKeeper Manager versions through 5.1.9 Description: The issue affects upKeeper Manager, allowing authentication abuse due to improper restriction of excessive authentication attempts. This enables potential attackers to exploit the system...

9.8CVSS7.3AI score0.00652EPSS
Exploits0References9
Rows per page
Query Builder