276 matches found
CVE-2024-23550 HCL DevOps Deploy / HCL Launch (UCD) may be vulnerable to sensitive information disclosure
HCL DevOps Deploy / HCL Launch UCD could disclose sensitive user information when installing the Windows agent...
PT-2024-19933 · Hcl +1 · Hcl Launch +2
Name of the Vulnerable Software and Affected Versions: HCL DevOps Deploy / HCL Launch UCD affected versions not specified Description: The issue could disclose sensitive user information when installing the Windows agent. Recommendations: At the moment, there is no information about a newer versi...
CVE-2023-1705
Missing Authorization vulnerability in Forcepoint F|One SmartEdge Agent on Windows bgAutoinstaller service modules allows Privilege Escalation, Functionality Bypass.This issue affects F|One SmartEdge Agent: before 1.7.0.230330-554...
PT-2023-9003 · Acronis · Acronis Cyber Protect Cloud Agent
Name of the Vulnerable Software and Affected Versions: Acronis Cyber Protect Cloud Agent Windows versions before build 36943 Description: The issue is related to sensitive information disclosure and manipulation due to missing authorization. This could allow an attacker to gain unauthorized acces...
Fortinet FortiSIEM Information Disclosure Vulnerability (CNVD-2023-98186)
Fortinet FortiSIEM is a suite of security information and event management systems from the American company Fiat Fortinet. The system includes features such as asset discovery, workflow automation and unified management. Fortinet FortiSIEM has an information disclosure vulnerability that...
CVE-2023-41676
An exposure of sensitive information to an unauthorized actor CWE-200 in FortiSIEM version 7.0.0 and before 6.7.5 may allow an attacker with access to windows agent logs to obtain the windows agent password via searching through the logs...
CVE-2023-41676
An exposure of sensitive information to an unauthorized actor CWE-200 in FortiSIEM version 7.0.0 and before 6.7.5 may allow an attacker with access to windows agent logs to obtain the windows agent password via searching through the logs...
Design/Logic Flaw
An exposure of sensitive information to an unauthorized actor CWE-200 in FortiSIEM version 7.0.0 and before 6.7.5 may allow an attacker with access to windows agent logs to obtain the windows agent password via searching through the logs...
CVE-2023-41676
An exposure of sensitive information to an unauthorized actor CWE-200 in FortiSIEM version 7.0.0 and before 6.7.5 may allow an attacker with access to windows agent logs to obtain the windows agent password via searching through the logs...
PT-2023-7268 · Microsoft +1 · Windows +1
Name of the Vulnerable Software and Affected Versions: FortiSIEM versions 6.7.5 and earlier FortiSIEM version 7.0.0 Description: The issue is related to insufficient protection of sensitive data, which may allow an unauthorized actor to obtain sensitive information. An attacker with access to...
Fortinet FortiSIEM 安全漏洞
Fortinet FortiSIEM is a suite of security information and event management systems from the American company Fiat Fortinet. The system includes features such as asset discovery, workflow automation and unified management. Fortinet FortiSIEM has an information disclosure vulnerability that...
CVE-2023-44213
Sensitive information disclosure due to excessive collection of system information. The following products are affected: Acronis Cyber Protect Cloud Agent Windows before build 35739, Acronis Cyber Protect 16 Windows before build 37391...
CVE-2023-2818 ITM Windows Agent Insecure Filesystem Permissions
An insecure filesystem permission in the Insider Threat Management Agent for Windows enables local unprivileged users to disrupt agent monitoring. All versions prior to 7.14.3 are affected. Agents for MacOS and Linux and Cloud are unaffected...
CVE-2023-2818 ITM Windows Agent Insecure Filesystem Permissions
An insecure filesystem permission in the Insider Threat Management Agent for Windows enables local unprivileged users to disrupt agent monitoring. All versions prior to 7.14.3 are affected. Agents for MacOS and Linux and Cloud are unaffected...
Proofpoint Insider Threat Management Server 安全漏洞
Proofpoint Insider Threat Management Server is a server-side application from U.S.-based Proofpoint, Inc. that is used to prevent malicious operations by enterprise insiders. A security vulnerability exists in Proofpoint Insider Threat Management Server versions prior to 7.14.3 that stems from a...
Proofpoint Insider Threat Management Server 安全漏洞
Proofpoint Insider Threat Management Server is a server-side application from U.S.-based Proofpoint, Inc. that is used to prevent malicious operations by enterprise insiders. A security vulnerability exists in Proofpoint Insider Threat Management Server versions prior to 7.14.3, which stems from...
PT-2023-21613 · Unknown · Insider Threat Management Agent For Windows
Name of the Vulnerable Software and Affected Versions: Insider Threat Management Agent for Windows versions prior to 7.14.3 Description: The issue is related to an insecure filesystem permission that allows local unprivileged users to disrupt agent monitoring. Recommendations: For versions prior ...
CVE-2023-26278
IBM QRadar WinCollect Agent 10.0 through 10.1.3 could allow a local authenticated attacker to gain elevated privileges on the system. IBM X-Force ID: 248158...
OCS Inventory NG 2.3.0.0 Unquoted Service Path
Exploit Title: OCS Inventory NG 2.3.0.0 - Unquoted Service Path Date: 2023/04/21 Exploit Author: msd0pe Vendor Homepage: https://oscinventory-ng.org Software Link: https://github.com/OCSInventory-NG/WindowsAgent My Github: https://github.com/msd0pe-1 Fixed in version 2.3.1.0 OCS Inventory NG...
OCS Inventory NG 2.3.0.0 - Unquoted Service Path
Exploit Title: OCS Inventory NG 2.3.0.0 - Unquoted Service Path Date: 2023/04/21 Exploit Author: msd0pe Vendor Homepage: https://oscinventory-ng.org Software Link: https://github.com/OCSInventory-NG/WindowsAgent My Github: https://github.com/msd0pe-1 Fixed in version 2.3.1.0 OCS Inventory NG...