22 matches found
EUVD-2020-12101
Malware in sbrugna...
EUVD-2019-9728
Malware in sbrugna...
EUVD-2020-2262
Malware in sbrugna...
EUVD-2019-9729
Malware in sbrugna...
Untrusted Search Path
Overview Affected versions of this package are vulnerable to Untrusted Search Path. An attacker can achieve remote code execution by planting malicious files on the victim's system, with knowledge of where they should be placed, then tricking a user to run these files. Remediation Upgrade...
PT-2024-18110 · Unknown · Lollms-Webui
Name of the Vulnerable Software and Affected Versions: lollms-webui affected versions not specified Description: A Cross-Site Request Forgery CSRF issue in the lollms-webui project allows remote attackers to execute arbitrary code on a victim's system. The issue stems from the "/execute code" API...
BIT-MLFLOW-2023-6940 Command Injection
with only one user interactiondownload a malicious config, attackers can gain full command execution on the victim system...
TIBCO WebFOCUS 跨站脚本漏洞
TIBCO WebFOCUS is an enterprise business intelligence and analytics solution from TIBCO USA. Equipped with data management, visual discovery, predictive analytics and powerful visualization capabilities. A security vulnerability exists in TIBCO WebFOCUS Client that allows a low-privileged attacke...
Microsoft Visual Studio Code 代码注入漏洞
Microsoft Visual Studio Code is an open source code editor from Microsoft USA. A code execution vulnerability exists in Microsoft Visual Studio, which can be exploited by an attacker to execute arbitrary code on a system with the privileges of the victim...
Bosch BVMS 代码问题漏洞
Bosch BVMS is an application system from Bosch, Germany. It is used for video management. A code issue vulnerability exists in Bosch BVMS and BVMS Viewer, which can be exploited by an attacker to execute arbitrary code on the victim's system...
Microsoft Windows Language Pack Installer Elevation of Privilege Vulnerability
Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. An elevation of privilege vulnerability exists in Microsoft Windows Language Pack Installe...
PT-2020-3810 · Microsoft · Windows Backup Engine +1
Name of the Vulnerable Software and Affected Versions: Windows Backup Engine affected versions not specified Description: The issue is related to an elevation of privilege vulnerability that occurs when the Windows Backup Engine improperly handles memory. To exploit this, an attacker must first...
CVE-2020-1365
An elevation of privilege vulnerability exists when the Windows Event Logging Service improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Event Logging Service Elevation of Privilege Vulnerability'. This CVE ID...
CVE-2020-1354
An elevation of privilege vulnerability exists when the Windows UPnP Device Host improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows UPnP Device Host Elevation of Privilege Vulnerability'. This CVE ID is unique...
Windows Runtime Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in an elevated context. An attacker could exploit this vulnerability by running a specially crafted...
CVE-2020-1271
An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Backup Service Elevation of Privilege Vulnerability'...
Windows State Repository Service Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists when the Windows State Repository Service improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in an elevated context. An attacker could exploit this vulnerability by running a...
Windows Runtime Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in an elevated context. An attacker could exploit this vulnerability by running a specially crafted...
CVE-2020-0705
An information disclosure vulnerability exists when the Windows Network Driver Interface Specification NDIS improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Network Driver Interface Specification NDIS...
CVE-2020-0638
An elevation of privilege vulnerability exists in the way the Update Notification Manager handles files.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Update Notification Manager Elevation of Privilege Vulnerability'...