CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16 matches found

RedhatCVE•added 2025/05/22 7:42 a.m.•4 views

CVE-2019-1010101

Akeo Consulting Rufus 3.0 and earlier is affected by: Insecure Permissions. The impact is: arbitrary code execution with escalation of privilege. The component is: Executable installer, portable executable ALL executables available. The attack vector is: CWE-29, CWE-377, CWE-379...

9.8CVSS8.1AI score0.00341EPSS

Exploits0References1

CNVD•added 2019/07/22 12:0 a.m.•1 views

Unspecified Vulnerability in Akeo Consulting Rufus

Akeo Consulting Rufus is an open source formatting tool for USB drives and other storage devices. A security vulnerability exists in Akeo Consulting Rufus 3.0 and earlier versions. An attacker can exploit the vulnerability to execute arbitrary code with elevated privileges...

9.8CVSS7.7AI score0.00341EPSS

Exploits0References1

OSV•added 2019/07/19 4:15 p.m.•15 views

CVE-2019-1010101

9.8CVSS8AI score

Exploits0References1

NVD•added 2019/07/19 4:15 p.m.•13 views

CVE-2019-1010101

9.8CVSS9.9AI score0.00341EPSS

Exploits0References1

OSV•added 2019/07/19 4:15 p.m.•9 views

CVE-2019-1010100

Akeo Consulting Rufus 3.0 and earlier is affected by: DLL search order hijacking. The impact is: Arbitrary code execution WITH escalation of privilege. The component is: Executable installers, portable executables ALL executables on the web site. The attack vector is: CAPEC-471, CWE-426, CWE-427...

7.8CVSS7.7AI score

Exploits0References1

NVD•added 2019/07/19 4:15 p.m.•14 views

CVE-2019-1010100

7.8CVSS8.1AI score0.00388EPSS

Exploits0References1

Prion•added 2019/07/19 4:15 p.m.•13 views

Privilege escalation

7.5CVSS9.8AI score0.00341EPSS

Exploits0References1Affected Software1

Cvelist•added 2019/07/19 3:38 p.m.•14 views

CVE-2019-1010101

9.9AI score0.00341EPSS

Exploits0References1

CVE•added 2019/07/19 3:38 p.m.•95 views

CVE-2019-1010101

CVE-2019-1010101 affects Akeo Consulting Rufus 3.0 and earlier. The vulnerability is described as Insecure Permissions that enable arbitrary code execution with elevation of privilege. Affected component is the Executable installer and portable executable (ALL executables). Attack vectors are CWE...

9.8CVSS9.8AI score0.00341EPSS

Exploits0References1Affected Software1

Cvelist•added 2019/07/19 3:37 p.m.•18 views

CVE-2019-1010100

8.1AI score0.00388EPSS

Exploits0References1

CVE•added 2019/07/19 3:37 p.m.•132 views

CVE-2019-1010100

CVE-2019-1010100 affects Akeo Consulting Rufus 3.0 and earlier. The vulnerability is DLL search order hijacking in executable installers/portable executables on the site. Root cause: DLL search order issue leading to Arbitrary code execution with escalation of privilege. Documented attack referen...

7.8CVSS8AI score0.00388EPSS

Exploits0References1Affected Software1

NVD•added 2017/10/18 1:29 p.m.•18 views

CVE-2017-13083

Akeo Consulting Rufus prior to version 2.17.1187 does not adequately validate the integrity of updates downloaded over HTTP, allowing an attacker to easily convince a user to execute arbitrary code...

8.1CVSS6.7AI score0.00114EPSS

Exploits0References4

OSV•added 2017/10/18 1:29 p.m.•15 views

CVE-2017-13083

8.1CVSS8AI score

Exploits0References4

Prion•added 2017/10/18 1:29 p.m.•10 views

Code injection

6.8CVSS8.3AI score0.00114EPSS

Exploits0References4Affected Software1

Cvelist•added 2017/10/18 1:0 p.m.•27 views

CVE-2017-13083

5.3CVSS8.3AI score0.00114EPSS

Exploits0References4

CVE•added 2017/10/18 1:0 p.m.•70 views

CVE-2017-13083

CVE-2017-13083 relates to Akeo Consulting Rufus (pre-2.17.1187) failing to securely validate downloads over HTTP, allowing a MITM to cause arbitrary code execution via manipulated updates. Affected: Rufus before 2.17.1187. Root cause: update integrity checked but not validated against a trusted C...

8.1CVSS8.3AI score0.00114EPSS

Exploits0References4Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by