Lucene search
K

36 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2014-2600

Malware in sbrugna...

6.5CVSS6.4AI score0.00716EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/07/23 12:0 a.m.3 views

The vulnerability of the Java-Script templater Nunjacks in the PROTECH system for analysis and monitoring of production processes allows attackers to execute arbitrary code and gain increased privileges.

The vulnerability of the Java-Script templater Nunjacks in the PROTECH production analysis and monitoring system exists due to insufficient validation of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code and gain increased privileges...

9.9CVSS6AI score
Exploits0Affected Software1
Fedora
Fedora
added 2025/06/15 1:49 a.m.5 views

[SECURITY] Fedora 42 Update: golang-x-perf-0-0.28.20250326git02a15fd.fc42

This package holds the source for various tools related to performance measurement, storage, and analysis. - cmd/benchstat contains a command-line tool that computes and 7 compares statistics about benchmarks. - cmd/benchsave contains a command-line tool for publishing benchmark results. - storag...

7.2AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/02/19 12:0 a.m.4 views

The vulnerability of the IBM QRadar SIEM system, related to the transmission of critical information in plaintext, allows a perpetrator to execute a “man-in-the-middle” type attack.

The vulnerability of the IBM QRadar SIEM event collection and analysis system is related to the transmission of critical information in plaintext. Exploiting this vulnerability could allow a malicious actor to execute a “man-in-the-middle” type attack...

6.5CVSS5.6AI score0.00151EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/10/30 12:0 a.m.4 views

SAS Studio 安全漏洞

SAS Studio is a Web browser-based programming environment from SAS. A security vulnerability exists in SAS Studio version 9.4. A remote attacker could exploit the vulnerability to access internal files by manipulating the default path during file download...

7.7CVSS6.7AI score0.00963EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/12/22 12:0 a.m.3 views

The vulnerability of the IBM QRadar SIEM system for event collection and analysis, related to insufficient protection of operational data, allows attackers to gain unauthorized access to protected information.

The vulnerability of the IBM QRadar SIEM event collection and analysis system is related to insufficient protection for operational data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

4.6CVSS6.6AI score0.00733EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/10/09 12:0 a.m.5 views

SICK APU Security Vulnerability

SICK APU is a railroad analysis system from SICK, Germany. A security vulnerability exists in the SICK APU RDT400, which originates from the plaintext transmission of sensitive information, allowing a remote attacker to retrieve sensitive information by intercepting unencrypted network traffic...

6.5CVSS6.6AI score0.0035EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/10/09 12:0 a.m.4 views

SICK APU RDT400 Security Vulnerability

SICK APU is a railroad analysis system from SICK, Germany. A security vulnerability exists in the SICK APU RDT400 that stems from insufficient control flow management of the device, which allows an attacker to enable hidden functionality via an HTTP request...

5.3CVSS6.8AI score0.00574EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/10/09 12:0 a.m.7 views

SICK APU Security Vulnerability

SICK APU is a railroad analysis system from SICK Germany. A security vulnerability exists in the SICK APU RDT400 that stems from a lack of authorization checks. An attacker could exploit the vulnerability to modify data via an HTTP request...

7.7CVSS6.7AI score0.00628EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2023/09/19 12:0 a.m.5 views

The vulnerability of the IBM QRadar SIEM system for event collection and analysis, related to the use of cryptographic algorithms containing defects, allows attackers to bypass the cryptographic mechanisms used for encryption protection.

The vulnerability of the IBM QRadar SIEM event collection and analysis system is related to the use of cryptographic algorithms that contain vulnerabilities. Exploiting this vulnerability could allow a malicious actor to bypass the cryptographic security measures...

7.8CVSS7.3AI score0.00388EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2021/12/20 12:0 a.m.4 views

The vulnerability of the IBM QRadar SIEM system for event collection and analysis, related to insufficient validation of incoming requests, allows a perpetrator to carry out an SSRF attack.

The vulnerability of the IBM QRadar SIEM event collection and analysis system is related to insufficient checking of incoming requests. Exploiting this vulnerability could allow a malicious actor, operating remotely, to execute an SSRF attack by sending specially crafted requests...

5.5CVSS5.9AI score0.00616EPSS
Exploits0References4
CNVD
CNVD
added 2021/02/24 12:0 a.m.11 views

Fluent Bit Code Issue Vulnerability

Fluent Bit is an open source log processing and analysis system written in C. A code issue vulnerability exists in Fluent Bit that arises from improper design or implementation during code development of a networked system or product. No detailed vulnerability details are provided at this time...

7.5CVSS6.9AI score0.01987EPSS
Exploits1References1
CNVD
CNVD
added 2020/05/23 12:0 a.m.2 views

Heat Measurement and Temperature Control Integration Analysis System of Shandong Lichuang Technology Co.

Shandong Lichuang Technology Co., Ltd. heating measurement and temperature control integrated analysis system is a data analysis system designed with energy saving, consumption reduction and cost saving as the starting point according to the current guiding direction of energy saving and emission...

6.7AI score
Exploits0
CNVD
CNVD
added 2020/02/24 12:0 a.m.3 views

SAS Visual Analytics Cross-Site Scripting Vulnerability

SAS Visual Analytics is data visualization software that helps build and design interactive Web dashboards. A cross-site scripting vulnerability exists in the graph generator in SAS Visual Analytics 8.5. An attacker can exploit this vulnerability to execute malicious Javascript in a user's browse...

5.4CVSS6.4AI score0.00521EPSS
Exploits0References1
CNVD
CNVD
added 2017/06/08 12:0 a.m.2 views

Memory Corruption Vulnerability in Packet Processing by Kolai Packet Player

Kelai Packet Player is a packet playback tool provided by Kelai Network Analysis System, which can play back the packet file and the original packet file from Kelai Network Analysis System to reproduce the communication of the network. A memory corruption vulnerability exists in the packet...

7AI score
Exploits0
OSV
OSV
added 2017/04/05 3:59 p.m.4 views

CVE-2016-9091

Blue Coat Advanced Secure Gateway ASG 6.6 before 6.6.5.4 and Content Analysis System CAS 1.3 before 1.3.7.4 are susceptible to an OS command injection vulnerability. An authenticated malicious administrator can execute arbitrary OS commands with elevated system privileges...

7.2CVSS6AI score
Exploits0References4
NVD
NVD
added 2017/04/05 3:59 p.m.16 views

CVE-2016-9091

Blue Coat Advanced Secure Gateway ASG 6.6 before 6.6.5.4 and Content Analysis System CAS 1.3 before 1.3.7.4 are susceptible to an OS command injection vulnerability. An authenticated malicious administrator can execute arbitrary OS commands with elevated system privileges...

9CVSS7.4AI score0.10126EPSS
Exploits8References4
Prion
Prion
added 2017/04/05 3:59 p.m.14 views

Command injection

Blue Coat Advanced Secure Gateway ASG 6.6 before 6.6.5.4 and Content Analysis System CAS 1.3 before 1.3.7.4 are susceptible to an OS command injection vulnerability. An authenticated malicious administrator can execute arbitrary OS commands with elevated system privileges...

9CVSS8AI score0.10126EPSS
Exploits8References4Affected Software2
CNVD
CNVD
added 2017/04/05 12:0 a.m.6 views

Bluecoat ASG 6.6/CAS OS Command Injection Vulnerability Vulnerability

Blue Coat Advanced Secure Gateway ASG and Content Analysis System CAS are both products of Blue Coat Systems, Inc. ASG is a secure Web gateway appliance; CAS is a malware analysis system that integrates application whitelisting and dual anti-malware signature databases. CAS is a malware analysis...

9CVSS8.2AI score0.10126EPSS
Exploits8References1
CNVD
CNVD
added 2016/07/13 12:0 a.m.5 views

SQL Injection Vulnerability in the Online Data Analysis System of Jinan Angliwan Software Development Co.

Online data analysis system of Jinan Onlivan Software Development Co. Online Data Analysis System suffers from SQL injection vulnerability, which can be exploited by attackers to obtain sensitive database information...

7.9AI score
Exploits0References1
Rows per page
Query Builder