CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

33 matches found

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2022-34244

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.01086EPSS

Exploits1References1

EUVD•added 2025/10/03 8:7 p.m.•5 views

EUVD-2025-6342

Malicious code in bioql PyPI...

6.7CVSS7AI score0.00418EPSS

Exploits0References1

BDU FSTEC•added 2025/07/30 12:0 a.m.•3 views

The vulnerability of the agent installer for data collection and delivery in Elasticsearch or Logstash Elastic Beats allows a perpetrator to enhance their privileges.

The vulnerability of the agent installer for data collection and delivery in Elasticsearch or Logstash Elastic Beats is related to an uncontrolled element in the search process. Exploiting this vulnerability can allow attackers to enhance their privileges...

7CVSS5.5AI score0.00129EPSS

Exploits0References2Affected Software1

BDU FSTEC•added 2025/07/30 12:0 a.m.•2 views

The vulnerability of the agent installer for data collection and delivery in Elasticsearch or Logstash Elastic Beats allows a perpetrator to enhance their privileges.

7CVSS5.5AI score0.00123EPSS

Exploits0References2Affected Software1

RedhatCVE•added 2025/05/22 10:47 p.m.•15 views

CVE-2022-29807

A SQL injection vulnerability exists within Quest KACE Systems Management Appliance SMA through 12.0 that can allow for remote code execution via downloadagentinstaller.php...

9.8CVSS8.9AI score0.01069EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 3:40 p.m.•6 views

CVE-2020-5909

In versions 3.0.0-3.5.0, 2.0.0-2.9.0, and 1.0.1, when users run the command displayed in NGINX Controller user interface UI to fetch the agent installer, the server TLS certificate is not verified...

5.8CVSS6.9AI score0.004EPSS

Exploits0References1

RedhatCVE•added 2025/03/14 12:30 p.m.•10 views

CVE-2025-21199

Improper privilege management in Azure Agent Installer allows an authorized attacker to elevate privileges locally...

6.7CVSS6.7AI score0.00418EPSS

Exploits0References3

CNVD•added 2025/03/12 12:0 a.m.•10 views

Microsoft Azure Agent Installer for Backup and Site Recovery Elevation of Privilege Vulnerability

Microsoft Azure Agent Installer for Backup and Site Recovery provides disaster recovery solutions for local computers and Azure VMs. An elevation of privilege vulnerability exists in Microsoft Azure Agent Installer for Backup and Site Recovery, which can be exploited by an attacker to elevate...

6.7CVSS6.9AI score0.00418EPSS

Exploits0References1

NCSC•added 2025/03/11 6:45 p.m.•32 views

Vulnerabilities fixed in Microsoft Azure

Microsoft has fixed vulnerabilities in several Azure products. A malicious person could exploit the vulnerabilities to grant themselves elevated privileges or execute arbitrary code with the privileges of the vulnerable application. Azure PromptFlow:...

8.4CVSS7.4AI score0.00813EPSS

Exploits0

OSV•added 2025/03/11 5:16 p.m.•3 views

CVE-2025-21199

Improper privilege management in Azure Agent Installer allows an authorized attacker to elevate privileges locally...

6.7CVSS5.8AI score0.00418EPSS

Exploits0References1

NVD•added 2025/03/11 5:16 p.m.•11 views

CVE-2025-21199

Improper privilege management in Azure Agent Installer allows an authorized attacker to elevate privileges locally...

6.7CVSS0.00418EPSS

Exploits0References1

Cvelist•added 2025/03/11 4:59 p.m.•12 views

CVE-2025-21199 Azure Agent Installer for Backup and Site Recovery Elevation of Privilege Vulnerability

...

6.7CVSS0.00418EPSS

Exploits0References1

CVE•added 2025/03/11 4:59 p.m.•86 views

CVE-2025-21199

Azure Agent Installer for Backup and Site Recovery is affected by CVE-2025-21199 due to improper privilege management, allowing an authorized attacker to elevate privileges locally. The issue targets the Azure Agent Installer component used for disaster recovery, with a CVSSv3.1 base score of 6.7...

6.7CVSS6.6AI score0.00418EPSS

Exploits0References1Affected Software1

Microsoft CVE•added 2025/03/11 7:0 a.m.•47 views

Azure Agent Installer for Backup and Site Recovery Elevation of Privilege Vulnerability

Improper privilege management in Azure Agent Installer allows an authorized attacker to elevate privileges locally...

6.7CVSS7.1AI score0.00418EPSS

Exploits0

CNNVD•added 2025/03/11 12:0 a.m.•3 views

Microsoft Azure 安全漏洞

6.7CVSS6.7AI score0.00418EPSS

Exploits0References2

Positive Technologies•added 2025/03/11 12:0 a.m.•4 views

PT-2025-10796

Name of the Vulnerable Software and Affected Versions Azure Agent Installer affected versions not specified Description The issue is related to improper privilege management in the Azure Agent Installer, which allows an authorized attacker to elevate privileges locally. Recommendations At the...

6.7CVSS8.5AI score0.00418EPSS

Exploits0References7

OSV•added 2022/08/02 10:15 p.m.•4 views

CVE-2022-29807

A SQL injection vulnerability exists within Quest KACE Systems Management Appliance SMA through 12.0 that can allow for remote code execution via downloadagentinstaller.php...

9.8CVSS6.3AI score0.01069EPSS

Exploits0References2

ATTACKERKB•added 2022/08/02 10:15 p.m.•4 views

CVE-2022-29807

A SQL injection vulnerability exists within Quest KACE Systems Management Appliance SMA through 12.0 that can allow for remote code execution via downloadagentinstaller.php...

9.8CVSS7.8AI score0.01069EPSS

Exploits0References3

Prion•added 2022/08/02 10:15 p.m.•14 views

Sql injection

A SQL injection vulnerability exists within Quest KACE Systems Management Appliance SMA through 12.0 that can allow for remote code execution via downloadagentinstaller.php...

7.5CVSS9.9AI score0.01069EPSS

Exploits0References2Affected Software1

OSV•added 2022/04/29 5:15 p.m.•2 views

CVE-2022-29935

USU Oracle Optimization before 5.17.5 allows attackers to discover the quantum credentials via an agent-installer download. NOTE: this is not an Oracle Corporation product...

7.5CVSS5.8AI score

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by