CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2023/12/13 9:15 p.m.•7 views

CVE-2023-50439

ZED containers produced by PRIMX ZED! for Windows before Q.2020.3 ANSSI qualification submission, ZED! for Windows before Q.2021.2 ANSSI qualification submission, ZONECENTRAL for Windows before Q.2021.2 ANSSI qualification submission, ZONECENTRAL for Windows before 2023.5, or ZEDMAIL for Windows...

5.3CVSS0.00359EPSS

Prion•added 2023/12/13 9:15 p.m.•10 views

Code injection

ZED containers produced by PRIMX ZED! for Windows before Q.2020.3 ANSSI qualification submission; ZED! for Windows before Q.2021.2 ANSSI qualification submission; ZONECENTRAL for Windows before Q.2021.2 ANSSI qualification submission; ZONECENTRAL for Windows before 2023.5; ZEDMAIL for Windows...

1.9CVSS7.3AI score0.00116EPSS

Prion•added 2023/12/13 8:15 p.m.•9 views

Design/Logic Flaw

By default, .ZED containers produced by PRIMX ZED! for Windows before Q.2020.3 ANSSI qualification submission; ZED! for Windows before Q.2021.2 ANSSI qualification submission; ZONECENTRAL for Windows before Q.2021.2 ANSSI qualification submission; ZONECENTRAL for Windows before 2023.5; ZEDMAIL fo...

5CVSS7.1AI score0.00352EPSS

Prion•added 2023/12/13 8:15 p.m.•11 views

Design/Logic Flaw

Encrypted folders created by PRIMX ZONECENTRAL for Windows before Q.2021.2 ANSSI qualification submission or ZONECENTRAL for Windows before 2023.5 can be modified by an unauthenticated attacker to include a UNC reference so that it could trigger outbound network traffic from computers on which...

1.9CVSS7.3AI score0.00143EPSS

Exploits0References2Affected Software1

CVE•added 2023/12/13 12:0 a.m.•25 views

CVE-2023-50443

CVE-2023-50443 affects PRIMX CRYHOD for Windows (versions prior to Q.2020.4 and prior to 2023.5). Root cause: an unauthenticated attacker can modify encrypted disks to inject a UNC reference, causing the host to initiate outbound network traffic when such disks are opened. Impact is outbound traf...

4.6CVSS4.8AI score0.00182EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2023/12/13 12:0 a.m.•5 views

CVE-2023-50444

6.9AI score0.00352EPSS

Cvelist•added 2023/12/13 12:0 a.m.•12 views

CVE-2023-50439

5.5AI score0.00359EPSS

Cvelist•added 2023/12/13 12:0 a.m.•13 views

CVE-2023-50441

5.8AI score0.00143EPSS

CVE•added 2023/12/13 12:0 a.m.•21 views

CVE-2023-50441

CVE-2023-50441 affects PRIMX ZONECENTRAL for Windows: encrypted folders created before Q.2021.2 or before 2023.5 can be modified by an unauthenticated attacker to include a UNC reference, potentially triggering outbound network traffic when folders are opened. The entry indicates a low attack com...

5.5CVSS5.5AI score0.00143EPSS

Exploits0References2Affected Software1

CVE•added 2023/12/13 12:0 a.m.•33 views

CVE-2023-50440

The CVE-2023-50440 issue affects multiple PRIMX ZED ecosystem containers. Specifically, ZED! for Windows prior to Q.2020.3, ZED! for Windows prior to Q.2021.2, ZONECENTRAL for Windows prior to Q.2021.2 and prior to Q.2023.5, ZEDMAIL (Windows prior to 2023.5), and ZED! (Windows, Mac, Linux prior t...

5.5CVSS5.5AI score0.00116EPSS

CVE•added 2023/12/13 12:0 a.m.•30 views

CVE-2023-50444

CVE-2023-50444 affects PRIMX ZED! and related products where default containers include an encrypted version of sensitive user information. According to the sources, affected items include: ZED! for Windows before Q.2020.3; ZED! for Windows before Q.2021.2; ZONECENTRAL for Windows before Q.2021.2...

7.5CVSS7.5AI score0.00352EPSS

CVE•added 2023/12/13 12:0 a.m.•28 views

CVE-2023-50439

The CVE-2023-50439 entry concerns PRIMX ZED! and ZONECENTRAL/ZEDMAIL on Windows. Affected versions disclose the original path in which containers were created, allowing an unauthenticated attacker to obtain contextual information (e.g., project name). Specifically, ZED! for Windows before Q.2020....

5.3CVSS5.2AI score0.00359EPSS

OpenVAS•added 2021/11/11 12:0 a.m.•8 views

Mozilla Firefox Security Advisory (MFSA2013-117) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

7.4AI score

Exploits0References3

AlmaLinux•added 2021/11/02 10:34 a.m.•15 views

scap-security-guide bug fix and enhancement update

The scap-security-guide project provides a guide for configuration of the system from the final system's security point of view. The guidance is specified in the Security Content Automation Protocol SCAP format and constitutes a catalog of practical hardening advice, linked to government...

6.9AI score

Tenable Nessus•added 2021/06/24 12:0 a.m.•43 views

Debian DLA-2690-1 : linux-4.19 security update

Several vulnerabilities have been discovered in the Linux kernel that may lead to the execution of arbitrary code, privilege escalation, denial of service, or information leaks. CVE-2020-24586, CVE-2020-24587, CVE-2020-26147 Mathy Vanhoef discovered that many Wi-Fi implementations, including...

7.8CVSS7.8AI score0.02254EPSS

Exploits14References33

Intel•added 2021/06/08 12:0 a.m.•42 views

BlueZ Advisory

Summary: Potential security vulnerabilities in BlueZ may allow information disclosure. BlueZ is releasing Linux kernel Bluetooth subsystem updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2021-0129 Description: Improper access control in BlueZ may allow an...

5.7CVSS6.2AI score0.00147EPSS

Malwarebytes•added 2021/03/02 8:7 p.m.•185 views

Ryuk ransomware develops worm-like capability

The French governments computer emergency readiness team, thats part of the National Cybersecurity Agency of France, or ANSSI, has discovered a Ryuk variant that has worm-like capabilities during an incident response. For those unacquainted with Ryuk, it is a type of ransomware that is used in...

7.1AI score