Lucene search
+L

222 matches found

CNNVD
CNNVD
added 2023/10/25 12:0 a.m.7 views

Alexander Maier EisBaer Scada Path Traversal Vulnerability

Alexander Maier EisBaer Scada is a visual reality display and control program created on Windows operating systems by Alexander Maier of Germany. Alexander Maier EisBaer Scada suffers from a path traversal vulnerability that stems from an incorrect restriction on pathnames to restricted directori...

7.5CVSS6.8AI score0.00752EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2023/06/27 8:32 p.m.47 views

Security Bulletin: IBM i Access Client Solutions - Windows Application Package is vulnerable to a timing issue with RSA Decryption in GSKit builds prior to 8.0.55.31 (CVE-2023-32342)

Summary IBM GSKit is used by IBM i Access Client Solutions - Windows Application Package when making TLS connections to an IBM i partition. If an RSA cipher is used, IBM GSKit could allow a remote attacker to obtain sensitive information. Vulnerability Details CVEID:CVE-2023-32342 DESCRIPTION: IB...

7.5CVSS7.3AI score0.00925EPSS
Exploits0Affected Software1
Vulnrichment
Vulnrichment
added 2023/06/09 12:0 a.m.10 views

CVE-2023-27706

Bitwarden Windows desktop application versions prior to v2023.4.0 store biometric keys in Windows Credential Manager, accessible to other local unprivileged processes...

6.8AI score0.00585EPSS
Exploits1References4
OSV
OSV
added 2023/05/31 12:15 a.m.6 views

CVE-2023-28344

An issue was discovered in Faronics Insight 10.0.19045 on Windows. The Insight Teacher Console application allows unauthenticated attackers to view constantly updated screenshots of student desktops and to submit falsified screenshots on behalf of students. Attackers are able to view screenshots ...

7.1CVSS7.1AI score0.00907EPSS
Exploits1References2
Citrix
Citrix
added 2023/04/27 12:0 a.m.10 views

Webcam Preview Test Application

Please note: You can download the required file from the Citrix downloads website by visiting the following link:https://www.citrix.com/downloads/citrix-tools Simple Windows UI application to test and troubleshoot Webcam redirection on Terminal Server and Workstation VDAs, as well as to check...

7AI score
Exploits0
CNNVD
CNNVD
added 2023/04/20 12:0 a.m.6 views

Dell Display Manager 安全漏洞

Dell Display Manager is a Windows application from Dell, Inc. It is used to manage a monitor or a group of monitors. A security vulnerability exists in Dell Display Manager version 2.1.0 and prior versions. An attacker could exploit this vulnerability to execute arbitrary code...

7.8CVSS7.8AI score0.00166EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/03/30 12:0 a.m.47 views

CVE-2023-29059

3CX DesktopApp through 18.12.416 has embedded malicious code, as exploited in the wild in March 2023. This affects versions 18.12.407 and 18.12.416 of the 3CX DesktopApp Electron Windows application shipped in Update 7, and versions 18.11.1213, 18.12.402, 18.12.407, and 18.12.416 of the 3CX...

7.7AI score0.04373EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2023/03/30 12:0 a.m.12 views

CVE-2023-29059

3CX DesktopApp through 18.12.416 has embedded malicious code, as exploited in the wild in March 2023. This affects versions 18.12.407 and 18.12.416 of the 3CX DesktopApp Electron Windows application shipped in Update 7, and versions 18.11.1213, 18.12.402, 18.12.407, and 18.12.416 of the 3CX...

7.7AI score0.04373EPSS
Exploits1References6
OSV
OSV
added 2022/11/07 8:15 p.m.5 views

CVE-2022-44745

Sensitive information leak through log files. The following products are affected: Acronis Cyber Protect Home Office Windows before build 40107...

5.5CVSS5.8AI score0.00148EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/09/22 11:30 p.m.28 views

CVE-2022-40298

Crestron AirMedia for Windows before 5.5.1.84 has insecure inherited permissions, which leads to a privilege escalation vulnerability found in the AirMedia Windows Application, version 4.3.1.39. A low privileged user can initiate a repair of the system and gain a SYSTEM level shell...

9.1AI score0.00587EPSS
Exploits0References2
NVD
NVD
added 2022/09/13 10:15 p.m.19 views

CVE-2022-34102

Insufficient access control vulnerability was discovered in the Crestron AirMedia Windows Application, version 4.3.1.39, in which a user can pause the uninstallation of an executable to gain a SYSTEM level command prompt...

8.8CVSS0.00915EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/09/13 10:15 p.m.2 views

CVE-2022-34102

Insufficient access control vulnerability was discovered in the Crestron AirMedia Windows Application, version 4.3.1.39, in which a user can pause the uninstallation of an executable to gain a SYSTEM level command prompt...

8.8CVSS7.2AI score0.00915EPSS
Exploits0References3
OSV
OSV
added 2022/09/13 10:15 p.m.7 views

CVE-2022-34102

Insufficient access control vulnerability was discovered in the Crestron AirMedia Windows Application, version 4.3.1.39, in which a user can pause the uninstallation of an executable to gain a SYSTEM level command prompt...

8.8CVSS5.8AI score0.00915EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/09/13 10:15 p.m.3 views

CVE-2022-34101

A vulnerability was discovered in the Crestron AirMedia Windows Application, version 4.3.1.39, in which a user can place a malicious DLL in a certain path to execute code and preform a privilege escalation attack...

7.8CVSS6AI score0.00348EPSS
Exploits0References3
OSV
OSV
added 2022/09/13 10:15 p.m.5 views

CVE-2022-34101

A vulnerability was discovered in the Crestron AirMedia Windows Application, version 4.3.1.39, in which a user can place a malicious DLL in a certain path to execute code and preform a privilege escalation attack...

7.8CVSS5.9AI score0.00348EPSS
Exploits0References2
Prion
Prion
added 2022/09/13 10:15 p.m.11 views

Privilege escalation

A vulnerability was discovered in the Crestron AirMedia Windows Application, version 4.3.1.39, in which a user can place a malicious DLL in a certain path to execute code and preform a privilege escalation attack...

4.4CVSS7.9AI score0.00348EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2022/09/13 9:47 p.m.54 views

CVE-2022-34101

The CVE-2022-34101 issue affects Crestron AirMedia Windows Application 4.3.1.39. The root cause is a path-based DLL placement that allows an attacker to execute code locally and perform privilege escalation. The NVD entry lists a CVSSv3.1 base score of 7.8 ( HIGH ) with Local attack vector, Low a...

7.8CVSS7.9AI score0.00348EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/09/13 9:42 p.m.21 views

CVE-2022-34102

Insufficient access control vulnerability was discovered in the Crestron AirMedia Windows Application, version 4.3.1.39, in which a user can pause the uninstallation of an executable to gain a SYSTEM level command prompt...

9.1AI score0.00915EPSS
Exploits0References2
CVE
CVE
added 2022/09/13 9:42 p.m.47 views

CVE-2022-34102

CVE-2022-34102 affects the Crestron AirMedia Windows Application, v4.3.1.39. The issue is an insufficient access control in the uninstallation flow that allows a user to pause the uninstallation of an executable and obtain a SYSTEM-level command prompt . Concretely, the vulnerability enables priv...

8.8CVSS8.8AI score0.00915EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2022/09/13 7:15 p.m.5 views

CVE-2022-34100

A vulnerability was discovered in the Crestron AirMedia Windows Application, version 4.3.1.39, in which a low-privileged user can gain a SYSTEM level command prompt by pre-staging a file structure prior to the installation of a trusted service executable and change permissions on that file...

8.8CVSS5.8AI score0.01088EPSS
Exploits0References2
Rows per page
Query Builder