Lucene search
K

40 matches found

Prion
Prion
added 2022/05/20 12:15 p.m.14 views

Authorization

In certain Goverlan products, the Windows Firewall is temporarily turned off upon a Goverlan agent update operation. This allows remote attackers to bypass firewall blocking rules for a time period of up to 30 seconds. This affects Goverlan Reach Console before 10.5.1, Reach Server before 3.70.1,...

3.5CVSS6.6AI score0.01149EPSS
Exploits1References2Affected Software3
CNNVD
CNNVD
added 2022/05/20 12:0 a.m.4 views

多款Goverlan产品安全漏洞

Goverlan Reach Console is a software-based, self-hosted IT remote support solution. Goverlan Reach Server is the central organization for all Goverlan services. Goverlan Reach Server is the central organization for all Goverlan services. Goverlan Client Agent is a secure, low footprint,...

6.5CVSS6.6AI score0.01149EPSS
Exploits1References3
Microsoft Security Update
Microsoft Security Update
added 2022/05/04 9:0 p.m.14 views

Azure File Sync Agent v15.0 Release – March 2022 (KB5003882)

Update for Azure File Sync agent version 15.0.0.0. For more details, see the associated Microsoft Knowledge Base article...

3.7AI score
Exploits0
NVD
NVD
added 2021/08/24 12:15 p.m.26 views

CVE-2021-33191

From Apache NiFi MiNiFi C++ version 0.5.0 the c2 protocol implements an "agent-update" command which was designed to patch the application binary. This "patching" command defaults to calling a trusted binary, but might be modified to an arbitrary value through a "c2-update" command. Said command ...

9.8CVSS0.04024EPSS
Exploits0References3
OSV
OSV
added 2021/08/24 12:15 p.m.16 views

CVE-2021-33191

From Apache NiFi MiNiFi C++ version 0.5.0 the c2 protocol implements an "agent-update" command which was designed to patch the application binary. This "patching" command defaults to calling a trusted binary, but might be modified to an arbitrary value through a "c2-update" command. Said command ...

9.8CVSS7AI score
Exploits0References3
Cvelist
Cvelist
added 2021/08/24 11:20 a.m.21 views

CVE-2021-33191 MiNiFi CPP arbitrary script execution is possible on the agent's host machine through the c2 protocol

From Apache NiFi MiNiFi C++ version 0.5.0 the c2 protocol implements an "agent-update" command which was designed to patch the application binary. This "patching" command defaults to calling a trusted binary, but might be modified to an arbitrary value through a "c2-update" command. Said command ...

9.6AI score0.04024EPSS
Exploits0References3
OSV
OSV
added 2020/10/09 7:15 a.m.3 views

CVE-2020-15838

The Agent Update System in ConnectWise Automate before 2020.8 allows Privilege Escalation because the LTUPDATE folder has weak permissions...

8.8CVSS5.8AI score0.01235EPSS
Exploits0References2
Prion
Prion
added 2020/10/09 7:15 a.m.14 views

Privilege escalation

The Agent Update System in ConnectWise Automate before 2020.8 allows Privilege Escalation because the LTUPDATE folder has weak permissions...

6.5CVSS8.6AI score0.01235EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/10/09 6:37 a.m.22 views

CVE-2020-15838

The Agent Update System in ConnectWise Automate before 2020.8 allows Privilege Escalation because the LTUPDATE folder has weak permissions...

8.7AI score0.01235EPSS
Exploits0References2
OSV
OSV
added 2020/02/29 5:14 p.m.4 views

OPENSUSE-SU-2020:0261-1 Security update for python-azure-agent

This update for python-azure-agent fixes the following issues: python-azure-agent was updated to version 2.2.45 jscECO-80 + Add support for Gen2 VM resource disks + Use alternate systemd detection + Fix /proc/net/route requirement that causes errors on FreeBSD + Add cloud-init auto-detect to...

6.5CVSS6.4AI score0.05255EPSS
Exploits0References3
OSV
OSV
added 2019/10/11 2:12 p.m.8 views

SUSE-SU-2019:2345-2 Security update for webkit2gtk3

This update for webkit2gtk3 fixes the following issues: Updated to version 2.24.4 bsc1148931. Security issues fixed: - CVE-2019-8644, CVE-2019-8649, CVE-2019-8658, CVE-2019-8669, CVE-2019-8678, CVE-2019-8680, CVE-2019-8683, CVE-2019-8684, CVE-2019-8688, CVE-2019-8595, CVE-2019-8607, CVE-2019-8615...

9.3CVSS7.5AI score0.12852EPSS
Exploits7References27
Microsoft Security Update
Microsoft Security Update
added 1970/01/01 12:0 a.m.10 views

Detectoid for AzureConnectMachineAgent 1.44 - July 2024 Update

Detectoid for AzureConnectMachineAgent 1.44 - July 2024 Update...

7.4AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 1970/01/01 12:0 a.m.32 views

Microsoft System Center Virtual Machine Manager 1807 Guest Agent (KB4135035)

This update fixes the problems described in KB article 4135042...

2.5AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 1970/01/01 12:0 a.m.15 views

Microsoft System Center Operations Manager 1807 - Agent (KB4133779)

This updates resolves problems described in KB4133779...

2AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 1970/01/01 12:0 a.m.6 views

Detectoid for AzureConnectMachineAgent 1.29 - April 2023 Update

Detectoid for AzureConnectMachineAgent 1.29 - April 2023 Update...

7.1AI score
Exploits0
Microsoft KB
Microsoft KB
added 1970/01/01 12:0 a.m.23 views

Azure File Sync Agent v17 Release - December 2023

None None...

5.3CVSS6.4AI score0.00497EPSS
Exploits0
Microsoft Security Update
Microsoft Security Update
added 1970/01/01 12:0 a.m.13 views

Update Rollup 2 for Microsoft System Center 2016 - Operations Manager Agent (KB3209591)

This updates resolves problems described in KB3209591...

1.7AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 1970/01/01 12:0 a.m.10 views

Security Update for Windows 2000 (KB938827)

A security issue has been identified in Microsoft Agent that could allow an attacker to compromise your Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer...

2.9AI score
Exploits0
Microsoft KB
Microsoft KB
added 1970/01/01 12:0 a.m.1006 views

Update Rollup 7 for System Center 2016 Data Protection Manager

None None...

5.8AI score
Exploits0
Microsoft KB
Microsoft KB
added 1970/01/01 12:0 a.m.33 views

Update Rollup 6 for System Center 2016 Data Protection Manager

None None...

5.8AI score
Exploits0
Rows per page
Query Builder