Lucene search
K

117 matches found

CNNVD
CNNVD
added 2024/11/20 12:0 a.m.4 views

upKeeper 安全漏洞

upKeeper is a cloud-based or local solution from upKeeper Inc. A security vulnerability exists in upKeeper versions prior to 1.2, which stems from the presence of an incorrect privilege management vulnerability that allows privilege escalation...

10CVSS6.5AI score0.00388EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/20 12:0 a.m.4 views

upKeeper 安全漏洞

upKeeper is a cloud-based or local solution from upKeeper Inc. A security vulnerability exists in upKeeper versions prior to 1.2, which stems from the presence of an incorrect privilege management vulnerability that allows privilege escalation...

10CVSS6.5AI score0.00388EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/10/03 12:0 a.m.6 views

PT-2024-39656 · Unknown · Upkeeper Instant Privilege Access

Name of the Vulnerable Software and Affected Versions: upKeeper Instant Privilege Access versions prior to 1.2 Description: The issue is related to Improper Privilege Management, allowing Privilege Escalation in upKeeper Instant Privilege Access. Recommendations: For versions prior to 1.2, update...

10CVSS7.2AI score0.00388EPSS
Exploits0References11
NVD
NVD
added 2024/08/16 2:15 p.m.27 views

CVE-2024-42466

Improper Restriction of Excessive Authentication Attempts vulnerability in upKeeper Solutions product upKeeper Manager allows Authentication Abuse.This issue affects upKeeper Manager: through 5.1.9...

9.8CVSS0.00652EPSS
Exploits0References1
OSV
OSV
added 2024/08/16 2:15 p.m.6 views

CVE-2024-42466

Improper Restriction of Excessive Authentication Attempts vulnerability in upKeeper Solutions product upKeeper Manager allows Authentication Abuse.This issue affects upKeeper Manager: through 5.1.9...

9.8CVSS5.8AI score0.00652EPSS
Exploits0References1
OSV
OSV
added 2024/08/16 2:15 p.m.4 views

CVE-2024-42465

Improper Restriction of Excessive Authentication Attempts vulnerability in upKeeper Solutions product upKeeper Manager allows Authentication Abuse.This issue affects upKeeper Manager: through 5.1.9...

9.8CVSS5.8AI score0.0047EPSS
Exploits0References1
NVD
NVD
added 2024/08/16 2:15 p.m.24 views

CVE-2024-42465

Improper Restriction of Excessive Authentication Attempts vulnerability in upKeeper Solutions product upKeeper Manager allows Authentication Abuse.This issue affects upKeeper Manager: through 5.1.9...

9.8CVSS0.0047EPSS
Exploits0References1
NVD
NVD
added 2024/08/16 2:15 p.m.18 views

CVE-2024-42462

Improper Authentication vulnerability in upKeeper Solutions product upKeeper Manager allows Authentication Bypass.This issue affects upKeeper Manager: through 5.1.9...

10CVSS0.00549EPSS
Exploits0References1
NVD
NVD
added 2024/08/16 2:15 p.m.29 views

CVE-2024-42463

Authorization Bypass Through User-Controlled Key vulnerability in upKeeper Solutions product upKeeper Manager allows Utilizing REST's Trust in the System Resource to Obtain Sensitive Data.This issue affects upKeeper Manager: through 5.1.9...

8.6CVSS0.00369EPSS
Exploits0References1
NVD
NVD
added 2024/08/16 2:15 p.m.26 views

CVE-2024-42464

Authorization Bypass Through User-Controlled Key vulnerability in upKeeper Solutions product upKeeper Manager allows Utilizing REST's Trust in the System Resource to Obtain Sensitive Data.This issue affects upKeeper Manager: through 5.1.9...

7.6CVSS0.00312EPSS
Exploits0References1
OSV
OSV
added 2024/08/16 2:15 p.m.7 views

CVE-2024-42464

Authorization Bypass Through User-Controlled Key vulnerability in upKeeper Solutions product upKeeper Manager allows Utilizing REST's Trust in the System Resource to Obtain Sensitive Data.This issue affects upKeeper Manager: through 5.1.9...

6.5CVSS5.8AI score0.00312EPSS
Exploits0References1
OSV
OSV
added 2024/08/16 2:15 p.m.5 views

CVE-2024-42462

Improper Authentication vulnerability in upKeeper Solutions product upKeeper Manager allows Authentication Bypass.This issue affects upKeeper Manager: through 5.1.9...

9.8CVSS5.8AI score0.00549EPSS
Exploits0References1
OSV
OSV
added 2024/08/16 2:15 p.m.4 views

CVE-2024-42463

Authorization Bypass Through User-Controlled Key vulnerability in upKeeper Solutions product upKeeper Manager allows Utilizing REST's Trust in the System Resource to Obtain Sensitive Data.This issue affects upKeeper Manager: through 5.1.9...

6.5CVSS5.8AI score0.00369EPSS
Exploits0References1
CVE
CVE
added 2024/08/16 1:27 p.m.53 views

CVE-2024-42466

CVE-2024-42466 affects upKeeper Manager (upKeeper Manager: through 5.1.9). The issue is an improper restriction of excessive authentication attempts, leading to authentication abuse. Public documentation in connected sources confirms the vulnerability and affected version range but does not provi...

9.8CVSS6.6AI score0.00652EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/08/16 1:27 p.m.26 views

CVE-2024-42466 Lack of resources and rate limiting - login

Improper Restriction of Excessive Authentication Attempts vulnerability in upKeeper Solutions product upKeeper Manager allows Authentication Abuse.This issue affects upKeeper Manager: through 5.1.9...

9.5CVSS0.00652EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/16 1:27 p.m.20 views

CVE-2024-42466 Lack of resources and rate limiting - login

Improper Restriction of Excessive Authentication Attempts vulnerability in upKeeper Solutions product upKeeper Manager allows Authentication Abuse.This issue affects upKeeper Manager: through 5.1.9...

9.5CVSS7AI score0.00652EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/16 1:26 p.m.15 views

CVE-2024-42465 Lack of resources and rate limiting - two factor authentication

Improper Restriction of Excessive Authentication Attempts vulnerability in upKeeper Solutions product upKeeper Manager allows Authentication Abuse.This issue affects upKeeper Manager: through 5.1.9...

9CVSS7AI score0.0047EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/16 1:26 p.m.26 views

CVE-2024-42465 Lack of resources and rate limiting - two factor authentication

Improper Restriction of Excessive Authentication Attempts vulnerability in upKeeper Solutions product upKeeper Manager allows Authentication Abuse.This issue affects upKeeper Manager: through 5.1.9...

9CVSS0.0047EPSS
Exploits0References1
CVE
CVE
added 2024/08/16 1:26 p.m.48 views

CVE-2024-42465

CVE-2024-42465 affects upKeeper Manager (upKeeper) up to version 5.1.9. The issue is an improper restriction of excessive authentication attempts, enabling authentication abuse. Root cause is inadequate rate-limiting/resources on authentication, leading to potential misuse of login mechanisms. Af...

9.8CVSS6.6AI score0.0047EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/08/16 1:25 p.m.53 views

CVE-2024-42464

CVE-2024-42464 affects upKeeper Manager (upKeeper) up to version 5.1.9. The issue is an Authorization Bypass Through User-Controlled Key, where REST’s trust in the system resource can be abused to obtain sensitive data. The root cause is described as an authorization bypass via a user-controlled ...

7.6CVSS6.5AI score0.00312EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder