Lucene search
K

16 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 8:34 a.m.11 views

CVE-2024-41922

A directory traversal vulnerability exists in the log files download functionality of Veertu Anka Build 1.42.0. A specially crafted HTTP request can lead to a disclosure of sensitive information. An attacker can make an unauthenticated HTTP request to trigger this vulnerability...

7.5CVSS6.7AI score0.08072EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/05 7:52 a.m.13 views

CVE-2024-41163

A directory traversal vulnerability exists in the archive functionality of Veertu Anka Build 1.42.0. A specially crafted HTTP request can lead to a disclosure of sensitive information. An attacker can make an unauthenticated HTTP request to trigger this vulnerability...

7.5CVSS6.8AI score0.5249EPSS
Exploits1
Talos Blog
Talos Blog
added 2024/10/09 4:0 p.m.27 views

Vulnerability in popular PDF reader could lead to arbitrary code execution; Multiple issues in GNOME project

Cisco Talos' Vulnerability Research team recently disclosed six new security vulnerabilities across a range of software, including one in a popular PDF reader that could lead to arbitrary code execution. Foxit PDF Reader, one of the most popular alternatives to Adobe Acrobat, contains a memory...

8.8CVSS8.5AI score0.5249EPSS
Exploits4
OSV
OSV
added 2024/10/03 4:15 p.m.4 views

CVE-2024-41922

A directory traversal vulnerability exists in the log files download functionality of Veertu Anka Build 1.42.0. A specially crafted HTTP request can lead to a disclosure of sensitive information. An attacker can make an unauthenticated HTTP request to trigger this vulnerability...

7.5CVSS5.8AI score0.08072EPSS
Exploits1References2
OSV
OSV
added 2024/10/03 4:15 p.m.4 views

CVE-2024-41163

A directory traversal vulnerability exists in the archive functionality of Veertu Anka Build 1.42.0. A specially crafted HTTP request can lead to a disclosure of sensitive information. An attacker can make an unauthenticated HTTP request to trigger this vulnerability...

7.5CVSS5.8AI score0.5249EPSS
Exploits1References2
OSV
OSV
added 2024/10/03 4:15 p.m.7 views

CVE-2024-39755

A privilege escalation vulnerability exists in the node update functionality of Veertu Anka Build 1.42.0. A specially crafted PKG file can lead to execute priviledged operation. An attacker can make an unauthenticated HTTP request to trigger this vulnerability...

7.8CVSS5.9AI score0.00364EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/10/03 3:16 p.m.28 views

CVE-2024-41163

A directory traversal vulnerability exists in the archive functionality of Veertu Anka Build 1.42.0. A specially crafted HTTP request can lead to a disclosure of sensitive information. An attacker can make an unauthenticated HTTP request to trigger this vulnerability...

7.5CVSS0.5249EPSS
Exploits1References1
CVE
CVE
added 2024/10/03 3:16 p.m.57 views

CVE-2024-39755

Veertu Anka Build 1.42.0 is affected by a privilege-escalation in the node update flow. Cisco Talos details a TOCTOU-style vulnerability: a low-privilege user can place a malicious PKG named ank aAgent.pkg in /tmp, which gets overwritten when a Node join/update triggers the download and installat...

7.8CVSS8.2AI score0.00364EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/10/03 3:16 p.m.15 views

CVE-2024-41922

A directory traversal vulnerability exists in the log files download functionality of Veertu Anka Build 1.42.0. A specially crafted HTTP request can lead to a disclosure of sensitive information. An attacker can make an unauthenticated HTTP request to trigger this vulnerability...

7.5CVSS7.6AI score0.08072EPSS
Exploits1References1
Talos
Talos
added 2024/10/03 12:0 a.m.26 views

Veertu Anka Build registry archive files directory traversal vulnerability

Talos Vulnerability Report TALOS-2024-2059 Veertu Anka Build registry archive files directory traversal vulnerability October 3, 2024 CVE Number CVE-2024-41163 SUMMARY A directory traversal vulnerability exists in the archive functionality of Veertu Anka Build 1.42.0. A specially crafted HTTP...

7.5CVSS7.6AI score0.5249EPSS
Exploits1
CNNVD
CNNVD
added 2024/10/03 12:0 a.m.4 views

Veertu Anka Build 路径遍历漏洞

Veertu Anka Build is a centralized dashboard from Veertu. A path traversal vulnerability exists in Veertu Anka Build version 1.42.0, which stems from the fact that a specially constructed HTTP request can lead to the disclosure of arbitrary files...

7.5CVSS6.7AI score0.5249EPSS
Exploits1References2
Talos
Talos
added 2024/10/03 12:0 a.m.20 views

Veertu Anka Build registry log files directory traversal vulnerability

Talos Vulnerability Report TALOS-2024-2061 Veertu Anka Build registry log files directory traversal vulnerability October 3, 2024 CVE Number CVE-2024-41922 SUMMARY A directory traversal vulnerability exists in the log files download functionality of Veertu Anka Build 1.42.0. A specially crafted...

7.5CVSS7.6AI score0.08072EPSS
Exploits1
CNNVD
CNNVD
added 2024/10/03 12:0 a.m.6 views

Veertu Anka Build 路径遍历漏洞

Veertu Anka Build is a centralized dashboard from Veertu. A path traversal vulnerability exists in Veertu Anka Build version 1.42.0, which stems from the fact that a specially constructed HTTP request can lead to the disclosure of arbitrary files...

7.5CVSS6.7AI score0.08072EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/10/03 12:0 a.m.4 views

PT-2024-29635 · Veertu · Veertu Anka Build

Name of the Vulnerable Software and Affected Versions: Veertu Anka Build version 1.42.0 Description: A directory traversal vulnerability exists in the log files download functionality. A specially crafted HTTP request can lead to a disclosure of sensitive information. An attacker can make an...

7.5CVSS6.8AI score0.08072EPSS
Exploits1References9
Talos
Talos
added 2024/10/03 12:0 a.m.35 views

Veertu Anka Build node agent update privilege escalation vulnerability

Talos Vulnerability Report TALOS-2024-2060 Veertu Anka Build node agent update privilege escalation vulnerability October 3, 2024 CVE Number CVE-2024-39755 SUMMARY A privilege escalation vulnerability exists in the node update functionality of Veertu Anka Build 1.42.0. A specially crafted PKG fil...

7.8CVSS8.1AI score0.00364EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2024/10/03 12:0 a.m.7 views

PT-2024-28664 · Veertu · Veertu Anka Build

Name of the Vulnerable Software and Affected Versions: Veertu Anka Build version 1.42.0 Description: A privilege escalation vulnerability exists in the node update functionality of Veertu Anka Build. The vulnerability occurs during Anka node agent update, allowing a low privilege user to trigger...

7.8CVSS7.4AI score0.00364EPSS
Exploits1References10
Rows per page
Query Builder