Lucene search
K

33 matches found

CVE
CVE
added 2026/06/22 9:4 p.m.7 views

CVE-2026-56221

CVE-2026-56221 : Cap-go before 12.128.2 contains SQL injection flaws in cloudflare.ts. User-controlled values from API request bodies are interpolated directly into SQL strings without sanitization or parameterization. Authenticated users with read-level API key permissions can inject arbitrary S...

7.1CVSS6AI score0.00276EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 5:4 a.m.16 views

CVE-2023-1168

An authenticated remote code execution vulnerability exists in the AOS-CX Network Analytics Engine. Successful exploitation of this vulnerability results in the ability to execute arbitrary code as a privileged user on the underlying operating system, leading to a complete compromise of the switc...

8.8CVSS8.1AI score0.01141EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/05 10:47 a.m.29 views

CVE-2024-53011

Information disclosure may occur due to improper permission and access controls to Video Analytics engine...

7.9CVSS7AI score0.0011EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/03/03 11:15 a.m.5 views

CVE-2024-53011

Information disclosure may occur due to improper permission and access controls to Video Analytics engine...

7.9CVSS5.8AI score0.0011EPSS
Exploits0References2
NVD
NVD
added 2025/03/03 11:15 a.m.11 views

CVE-2024-53011

Information disclosure may occur due to improper permission and access controls to Video Analytics engine...

7.9CVSS0.0011EPSS
Exploits0References1
CVE
CVE
added 2025/03/03 10:7 a.m.71 views

CVE-2024-53011

CVE-2024-53011 is a permissions/Access-Controls information-disclosure issue affecting the Video Analytics engine. The CVSS 3.1 vector (AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N) yields a base score of 7.9 (High) with LOCAL attack vector and HIGH privileges required, implying local access is needed and...

7.9CVSS7AI score0.0011EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/03/03 12:0 a.m.4 views

PT-2025-9300 · Qualcomm · Snapdragon +70

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: Information disclosure may occur due to improper permission and access controls to the Video Analytics engine. Recommendations: At the moment, there is no information about a newer version...

7.9CVSS6.1AI score0.0011EPSS
Exploits0References10
IBM Security Bulletins
IBM Security Bulletins
added 2024/08/01 8:18 a.m.24 views

Security Bulletin: IBM Analytics Engine in Cloud pak for Data affected by vulnerability in GNOME's GdkPixbuf library (CVE-2022-48622)

Summary IBM Analytics Engine in Cloud pak for Data contains a vulnerable version of GNOME's GdkPixbuf library. Vulnerability Details CVEID:CVE-2022-48622 DESCRIPTION: GNOME GdkPixbuf could allow a remote attacker to execute arbitrary code on the system, caused by a heap memory corruption in the...

7.8CVSS8.2AI score0.00415EPSS
Exploits1Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/07/25 12:0 a.m.5 views

The vulnerability of the SQL engine of the Dell Data Analytics Engine (DDAE) in the Dell Data Lakehouse data storage platform allows a hacker to disclose protected information.

The vulnerability of the SQL engine of the Dell Data Analytics Engine DDAE in the Dell Data Lakehouse data storage platform is related to the lack of data encryption measures. Exploiting this vulnerability could allow a malicious actor to disclose protected information...

6.8CVSS5.6AI score0.00096EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2024/04/19 12:0 a.m.3 views

Wazuh 安全漏洞

Wazuh is a Wazuh open source application. It is used to collect, aggregate, index and analyze security data to help organizations detect intrusions, threats and behavioral anomalies. A security vulnerability exists in Wazuh versions prior to 4.7.1 that stems from a null pointer dereference detect...

6.5CVSS6.6AI score0.00881EPSS
Exploits1References4
OSV
OSV
added 2023/03/22 6:15 a.m.3 views

CVE-2023-1168

An authenticated remote code execution vulnerability exists in the AOS-CX Network Analytics Engine. Successful exploitation of this vulnerability results in the ability to execute arbitrary code as a privileged user on the underlying operating system, leading to a complete compromise of the switc...

8.8CVSS6.6AI score
Exploits0References1
NVD
NVD
added 2023/03/22 6:15 a.m.37 views

CVE-2023-1168

An authenticated remote code execution vulnerability exists in the AOS-CX Network Analytics Engine. Successful exploitation of this vulnerability results in the ability to execute arbitrary code as a privileged user on the underlying operating system, leading to a complete compromise of the switc...

8.8CVSS7.8AI score0.01141EPSS
Exploits0References1
Prion
Prion
added 2023/03/22 6:15 a.m.19 views

Remote code execution

An authenticated remote code execution vulnerability exists in the AOS-CX Network Analytics Engine. Successful exploitation of this vulnerability results in the ability to execute arbitrary code as a privileged user on the underlying operating system, leading to a complete compromise of the switc...

6.5CVSS8.8AI score0.01141EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/03/22 12:0 a.m.27 views

Aruba Networks AOS-CX Network Analytics Engine 安全漏洞

The Aruba Networks AOS-CX is a modern programmable network from Aruba Networks. A security vulnerability exists in the Aruba Networks AOS-CX Network Analytics Engine that can be exploited by an attacker to execute arbitrary code on the underlying operating system as a privileged user, resulting i...

8.8CVSS8.5AI score0.01141EPSS
Exploits0References2
CVE
CVE
added 2023/03/21 8:22 p.m.79 views

CVE-2023-1168

CVE-2023-1168: An authenticated remote code execution vulnerability exists in the Aruba AOS-CX Network Analytics Engine. Multiple sources confirm that exploitation allows arbitrary code execution as a privileged user on the underlying OS, resulting in a full compromise of the switch running AOS-C...

8.8CVSS8.2AI score0.01141EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/03/21 8:22 p.m.40 views

CVE-2023-1168 Authenticated Remote Code Execution in Aruba CX Switches

An authenticated remote code execution vulnerability exists in the AOS-CX Network Analytics Engine. Successful exploitation of this vulnerability results in the ability to execute arbitrary code as a privileged user on the underlying operating system, leading to a complete compromise of the switc...

7.2CVSS9AI score0.01141EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/03/21 12:0 a.m.5 views

PT-2023-16796 · Aruba · Aos-Cx Network Analytics Engine

Name of the Vulnerable Software and Affected Versions: AOS-CX Network Analytics Engine affected versions not specified Description: The issue is an authenticated remote code execution vulnerability. Successful exploitation results in the ability to execute arbitrary code as a privileged user on t...

8.8CVSS8.7AI score0.01141EPSS
Exploits0References3
OSV
OSV
added 2022/09/06 6:15 p.m.4 views

CVE-2022-23683

Authenticated command injection vulnerabilities exist in the AOS-CX Network Analytics Engine via NAE scripts. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system, leading to a complete...

7.2CVSS6.1AI score0.01631EPSS
Exploits0References1
NVD
NVD
added 2022/09/06 6:15 p.m.14 views

CVE-2022-23683

Authenticated command injection vulnerabilities exist in the AOS-CX Network Analytics Engine via NAE scripts. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system, leading to a complete...

7.2CVSS0.01631EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/09/06 6:15 p.m.5 views

CVE-2022-23683

Authenticated command injection vulnerabilities exist in the AOS-CX Network Analytics Engine via NAE scripts. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system, leading to a complete...

7.2CVSS7.3AI score0.01631EPSS
Exploits0References2
Rows per page
Query Builder