Lucene search
+L

276 matches found

cvelist
cvelist
added 2024/02/03 5:32 a.m.31 views

CVE-2024-23550 HCL DevOps Deploy / HCL Launch (UCD) may be vulnerable to sensitive information disclosure

HCL DevOps Deploy / HCL Launch UCD could disclose sensitive user information when installing the Windows agent...

6.2CVSS6.4AI score0.00214EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2024/02/02 12:0 a.m.6 views

PT-2024-19933 · Hcl +1 · Hcl Launch +2

Name of the Vulnerable Software and Affected Versions: HCL DevOps Deploy / HCL Launch UCD affected versions not specified Description: The issue could disclose sensitive user information when installing the Windows agent. Recommendations: At the moment, there is no information about a newer versi...

6.2CVSS5.3AI score0.00214EPSS
Exploits0References6
vulnrichment
vulnrichment
added 2024/01/29 4:29 p.m.3 views

CVE-2023-1705

Missing Authorization vulnerability in Forcepoint F|One SmartEdge Agent on Windows bgAutoinstaller service modules allows Privilege Escalation, Functionality Bypass.This issue affects F|One SmartEdge Agent: before 1.7.0.230330-554...

8.4CVSS7AI score0.0015EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2023/12/14 12:0 a.m.7 views

PT-2023-9003 · Acronis · Acronis Cyber Protect Cloud Agent

Name of the Vulnerable Software and Affected Versions: Acronis Cyber Protect Cloud Agent Windows versions before build 36943 Description: The issue is related to sensitive information disclosure and manipulation due to missing authorization. This could allow an attacker to gain unauthorized acces...

7.1CVSS3.8AI score0.00209EPSS
Exploits0References7
cnvd
cnvd
added 2023/11/17 12:0 a.m.6 views

Fortinet FortiSIEM Information Disclosure Vulnerability (CNVD-2023-98186)

Fortinet FortiSIEM is a suite of security information and event management systems from the American company Fiat Fortinet. The system includes features such as asset discovery, workflow automation and unified management. Fortinet FortiSIEM has an information disclosure vulnerability that...

6.5CVSS6.2AI score0.00449EPSS
Exploits0References1
nvd
nvd
added 2023/11/14 6:15 p.m.33 views

CVE-2023-41676

An exposure of sensitive information to an unauthorized actor CWE-200 in FortiSIEM version 7.0.0 and before 6.7.5 may allow an attacker with access to windows agent logs to obtain the windows agent password via searching through the logs...

6.5CVSS0.00449EPSS
Exploits0References1
osv
osv
added 2023/11/14 6:15 p.m.7 views

CVE-2023-41676

An exposure of sensitive information to an unauthorized actor CWE-200 in FortiSIEM version 7.0.0 and before 6.7.5 may allow an attacker with access to windows agent logs to obtain the windows agent password via searching through the logs...

6.5CVSS5.8AI score0.00449EPSS
Exploits0References1
prion
prion
added 2023/11/14 6:15 p.m.19 views

Design/Logic Flaw

An exposure of sensitive information to an unauthorized actor CWE-200 in FortiSIEM version 7.0.0 and before 6.7.5 may allow an attacker with access to windows agent logs to obtain the windows agent password via searching through the logs...

4CVSS6.8AI score0.00449EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2023/11/14 6:5 p.m.36 views

CVE-2023-41676

An exposure of sensitive information to an unauthorized actor CWE-200 in FortiSIEM version 7.0.0 and before 6.7.5 may allow an attacker with access to windows agent logs to obtain the windows agent password via searching through the logs...

4.3CVSS6.5AI score0.00449EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2023/11/14 12:0 a.m.24 views

PT-2023-7268 · Microsoft +1 · Windows +1

Name of the Vulnerable Software and Affected Versions: FortiSIEM versions 6.7.5 and earlier FortiSIEM version 7.0.0 Description: The issue is related to insufficient protection of sensitive data, which may allow an unauthorized actor to obtain sensitive information. An attacker with access to...

6.5CVSS6.5AI score0.00449EPSS
Exploits0References6
cnnvd
cnnvd
added 2023/11/14 12:0 a.m.7 views

Fortinet FortiSIEM 安全漏洞

Fortinet FortiSIEM is a suite of security information and event management systems from the American company Fiat Fortinet. The system includes features such as asset discovery, workflow automation and unified management. Fortinet FortiSIEM has an information disclosure vulnerability that...

6.5CVSS6AI score0.00449EPSS
Exploits0References3
osv
osv
added 2023/10/05 10:15 p.m.5 views

CVE-2023-44213

Sensitive information disclosure due to excessive collection of system information. The following products are affected: Acronis Cyber Protect Cloud Agent Windows before build 35739, Acronis Cyber Protect 16 Windows before build 37391...

5.5CVSS5.8AI score0.0017EPSS
Exploits0References1
cvelist
cvelist
added 2023/06/27 2:29 p.m.20 views

CVE-2023-2818 ITM Windows Agent Insecure Filesystem Permissions

An insecure filesystem permission in the Insider Threat Management Agent for Windows enables local unprivileged users to disrupt agent monitoring. All versions prior to 7.14.3 are affected. Agents for MacOS and Linux and Cloud are unaffected...

5.5CVSS5.6AI score0.00154EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2023/06/27 2:29 p.m.12 views

CVE-2023-2818 ITM Windows Agent Insecure Filesystem Permissions

An insecure filesystem permission in the Insider Threat Management Agent for Windows enables local unprivileged users to disrupt agent monitoring. All versions prior to 7.14.3 are affected. Agents for MacOS and Linux and Cloud are unaffected...

5.5CVSS6.9AI score0.00154EPSS
Exploits0References1
cnnvd
cnnvd
added 2023/06/27 12:0 a.m.5 views

Proofpoint Insider Threat Management Server 安全漏洞

Proofpoint Insider Threat Management Server is a server-side application from U.S.-based Proofpoint, Inc. that is used to prevent malicious operations by enterprise insiders. A security vulnerability exists in Proofpoint Insider Threat Management Server versions prior to 7.14.3 that stems from a...

4.3CVSS5.2AI score0.00254EPSS
Exploits0References3
cnnvd
cnnvd
added 2023/06/27 12:0 a.m.4 views

Proofpoint Insider Threat Management Server 安全漏洞

Proofpoint Insider Threat Management Server is a server-side application from U.S.-based Proofpoint, Inc. that is used to prevent malicious operations by enterprise insiders. A security vulnerability exists in Proofpoint Insider Threat Management Server versions prior to 7.14.3, which stems from...

4.6CVSS5.1AI score0.00245EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2023/06/27 12:0 a.m.7 views

PT-2023-21613 · Unknown · Insider Threat Management Agent For Windows

Name of the Vulnerable Software and Affected Versions: Insider Threat Management Agent for Windows versions prior to 7.14.3 Description: The issue is related to an insecure filesystem permission that allows local unprivileged users to disrupt agent monitoring. Recommendations: For versions prior ...

5.5CVSS5.3AI score0.00154EPSS
Exploits0References2
osv
osv
added 2023/05/31 8:15 p.m.2 views

CVE-2023-26278

IBM QRadar WinCollect Agent 10.0 through 10.1.3 could allow a local authenticated attacker to gain elevated privileges on the system. IBM X-Force ID: 248158...

7.8CVSS7.1AI score0.00203EPSS
Exploits0References2
packetstorm
packetstorm
added 2023/04/26 12:0 a.m.366 views

OCS Inventory NG 2.3.0.0 Unquoted Service Path

Exploit Title: OCS Inventory NG 2.3.0.0 - Unquoted Service Path Date: 2023/04/21 Exploit Author: msd0pe Vendor Homepage: https://oscinventory-ng.org Software Link: https://github.com/OCSInventory-NG/WindowsAgent My Github: https://github.com/msd0pe-1 Fixed in version 2.3.1.0 OCS Inventory NG...

6.8AI score
Exploits0
exploitdb
exploitdb
added 2023/04/25 12:0 a.m.305 views

OCS Inventory NG 2.3.0.0 - Unquoted Service Path

Exploit Title: OCS Inventory NG 2.3.0.0 - Unquoted Service Path Date: 2023/04/21 Exploit Author: msd0pe Vendor Homepage: https://oscinventory-ng.org Software Link: https://github.com/OCSInventory-NG/WindowsAgent My Github: https://github.com/msd0pe-1 Fixed in version 2.3.1.0 OCS Inventory NG...

7.4AI score
Exploits0
Rows per page
Query Builder