Lucene search
K

283 matches found

Positive Technologies
Positive Technologies
added 2024/08/15 12:0 a.m.7 views

PT-2024-30103 · Unknown · Super Easy Enterprise Management System

Name of the Vulnerable Software and Affected Versions: Super easy enterprise management system versions 1.0.0 and earlier Description: The issue allows a local attacker to execute arbitrary code via a crafted script to the "/WebSet/DlgGridSet.html" component. This enables the attacker to perform...

6.1CVSS7.3AI score0.00331EPSS
Exploits1References10
OSV
OSV
added 2024/08/07 4:17 a.m.2 views

CVE-2024-36131

An insecure deserialization vulnerability in web component of EPMM prior to 12.1.0.1 allows an authenticated remote attacker to execute arbitrary commands on the underlying operating system of the appliance...

8.8CVSS6.1AI score0.02292EPSS
Exploits0References1
NVD
NVD
added 2024/08/07 4:17 a.m.25 views

CVE-2024-36131

An insecure deserialization vulnerability in web component of EPMM prior to 12.1.0.1 allows an authenticated remote attacker to execute arbitrary commands on the underlying operating system of the appliance...

8.8CVSS0.02292EPSS
Exploits0References1
OSV
OSV
added 2024/08/07 4:17 a.m.2 views

CVE-2024-34788

An improper authentication vulnerability in web component of EPMM prior to 12.1.0.1 allows a remote malicious user to access potentially sensitive information...

6.5CVSS5.8AI score0.00938EPSS
Exploits0References1
NVD
NVD
added 2024/08/07 4:17 a.m.23 views

CVE-2024-36130

An insufficient authorization vulnerability in web component of EPMM prior to 12.1.0.1 allows an unauthorized attacker within the network to execute arbitrary commands on the underlying operating system of the appliance...

9.8CVSS0.02253EPSS
Exploits0References1
OSV
OSV
added 2024/08/07 4:17 a.m.3 views

CVE-2024-36130

An insufficient authorization vulnerability in web component of EPMM prior to 12.1.0.1 allows an unauthorized attacker within the network to execute arbitrary commands on the underlying operating system of the appliance...

9.8CVSS6AI score0.02253EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/07 3:54 a.m.30 views

CVE-2024-36130

An insufficient authorization vulnerability in web component of EPMM prior to 12.1.0.1 allows an unauthorized attacker within the network to execute arbitrary commands on the underlying operating system of the appliance...

9.8CVSS0.02253EPSS
Exploits0References1
CVE
CVE
added 2024/08/07 3:54 a.m.65 views

CVE-2024-36130

Ivanti Endpoint Manager Mobile (EPMM) contains an insufficient authorization vulnerability in its web component affecting versions prior to 12.1.0.1. An unauthenticated attacker within the network could potentially execute arbitrary commands on the appliance’s underlying operating system. The PT-...

9.8CVSS7.9AI score0.02253EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/08/07 3:54 a.m.43 views

CVE-2024-34788

CVE-2024-34788 affects Ivanti Endpoint Manager Mobile (EPMM). The issue is described as an improper authentication vulnerability in the web component of EPMM, before version 12.1.0.1, allowing a remote attacker to access potentially sensitive information. Connected sources specify affected versio...

6.5CVSS6.8AI score0.00938EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/08/07 3:54 a.m.32 views

CVE-2024-36131

An insecure deserialization vulnerability in web component of EPMM prior to 12.1.0.1 allows an authenticated remote attacker to execute arbitrary commands on the underlying operating system of the appliance...

8.8CVSS0.02292EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/07 3:54 a.m.14 views

CVE-2024-36131

An insecure deserialization vulnerability in web component of EPMM prior to 12.1.0.1 allows an authenticated remote attacker to execute arbitrary commands on the underlying operating system of the appliance...

8.8CVSS7.7AI score0.02292EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/08/07 12:0 a.m.3 views

Ivanti Endpoint Manager Mobile 安全漏洞

Ivanti Endpoint Manager Mobile Ivanti EPMM is a mobile management software engine from Ivanti Corporation, USA. A security vulnerability exists in Ivanti Endpoint Manager Mobile prior to version 12.1.0.1, which stems from an insecure deserialization vulnerability in the web component that allows ...

8.8CVSS9AI score0.02292EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/07/24 12:0 a.m.7 views

The vulnerability of the application component for managing the lifecycle of mobile devices and mobile applications, Ivanti Endpoint Manager Mobile (EPMM) (formerly MobileIron Core), allows a perpetrator to execute arbitrary commands in the basic operating system.

The vulnerability of the Ivanti Endpoint Manager Mobile EPMM web component for managing the lifecycle of mobile devices and mobile applications formerly known as MobileIron Core is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor t...

10CVSS8.1AI score0.02253EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/07/24 12:0 a.m.7 views

The vulnerability of the application component for managing the lifecycle of mobile devices and mobile applications, Ivanti Endpoint Manager Mobile (EPMM) (formerly MobileIron Core), allows a perpetrator to execute arbitrary commands in the basic operating system.

The vulnerability of the Ivanti Endpoint Manager Mobile EPMM web component for managing the lifecycle of mobile devices and applications formerly known as MobileIron Core is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability allows a malicious actor to execute...

9CVSS8AI score0.02292EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/07/24 12:0 a.m.6 views

The vulnerability of the web component of the mobile device and mobile application lifecycle management application, Ivanti Endpoint Manager Mobile (EPMM) (formerly MobileIron Core), allows a perpetrator to gain access to confidential data.

The vulnerability of the Ivanti Endpoint Manager Mobile EPMM web component for managing the lifecycle of mobile devices and applications formerly known as MobileIron Core is related to authentication process flaws. Exploiting this vulnerability could allow a malicious actor to gain access to...

5.3CVSS6.2AI score0.00938EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2024/07/17 12:0 a.m.5 views

PT-2024-5161 · Ivanti · Ivanti Endpoint Manager Mobile

Name of the Vulnerable Software and Affected Versions: Ivanti Endpoint Manager Mobile EPMM versions prior to 12.1.0.1 Description: The issue is related to an improper authentication vulnerability in the web component of EPMM. This vulnerability allows a remote malicious user to access potentially...

6.5CVSS7.5AI score0.00938EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2024/07/17 12:0 a.m.4 views

PT-2024-5159 · Ivanti · Ivanti Endpoint Manager Mobile

Name of the Vulnerable Software and Affected Versions: Ivanti Endpoint Manager Mobile EPMM versions prior to 12.1.0.1 Description: The issue is related to an insecure deserialization vulnerability in the web component of EPMM. This vulnerability allows an authenticated remote attacker to execute...

9CVSS7.9AI score0.02292EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2024/07/17 12:0 a.m.4 views

PT-2024-5158 · Ivanti · Ivanti Endpoint Manager Mobile

Name of the Vulnerable Software and Affected Versions: Ivanti Endpoint Manager Mobile EPMM versions prior to 12.1.0.1 Description: The issue is related to an insufficient authorization vulnerability in the web component of EPMM. This vulnerability allows an unauthorized attacker within the networ...

9.8CVSS7.9AI score0.02253EPSS
Exploits0References7
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/06/25 12:48 p.m.2 views

Malicious code in kuaishou-mmu-web-component (npm)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
OSV
OSV
added 2024/06/25 12:48 p.m.5 views

MAL-2024-2586 Malicious code in kuaishou-mmu-web-component (npm)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0
Rows per page
Query Builder