Lucene search
K

113 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-12328

Malware in sbrugna...

8.6CVSS8.4AI score0.02127EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-12327

Malware in sbrugna...

8.6CVSS8.4AI score0.02127EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-8909

Malware in sbrugna...

8.6CVSS7.9AI score0.01309EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-12449

Malware in sbrugna...

8.8CVSS8.2AI score0.01589EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 5:39 p.m.7 views

CVE-2020-1102

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1023, CVE-2020-1024...

8.8CVSS7.7AI score0.15134EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:17 p.m.4 views

CVE-2020-0971

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0920, CVE-2020-0929, CVE-2020-0931, CVE-2020-0932,...

8.8CVSS8.4AI score0.31213EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:17 p.m.4 views

CVE-2020-0931

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0920, CVE-2020-0929, CVE-2020-0932, CVE-2020-0971,...

8.8CVSS8.4AI score0.31213EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:5 p.m.7 views

CVE-2020-1023

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1024, CVE-2020-1102...

8.8CVSS8AI score0.15134EPSS
Exploits0References1
Snyk
Snyk
added 2025/05/01 1:43 p.m.2 views

Exposure of Sensitive System Information to an Unauthorized Control Sphere

Overview github.com/elastic/elastic-agent/internal/pkg/agent/application is a single, unified way to add monitoring for logs, metrics, and other types of data to a host Affected versions of this package are vulnerable to Exposure of Sensitive System Information to an Unauthorized Control Sphere d...

7.1CVSS6.3AI score0.00153EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/12/03 12:0 a.m.8 views

PT-2024-33523 · Unknown · Themecenter

Name of the Vulnerable Software and Affected Versions: ThemeCenter versions prior to SMR Dec-2024 Release 1 Description: The issue allows physical attackers to copy apk files to an arbitrary path with ThemeCenter privilege. This is due to a path traversal vulnerability in ThemeCenter...

4.6CVSS7.1AI score0.00223EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/10/24 12:0 a.m.1 views

Ruochan Smart 安全漏洞

Ruochan Smart is a smart home control software from Ruochan. A security vulnerability exists in Ruochan Smart version v4.4.7, which stems from incorrect access control during firmware updates and downloads, and could allow an attacker to gain access to sensitive information by analyzing code and...

8.4CVSS6.8AI score0.00201EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/10/24 12:0 a.m.3 views

PT-2024-33137 · Neye3C · Neye3C

Name of the Vulnerable Software and Affected Versions: Neye3C version 4.5.2.0 Description: The issue concerns incorrect access control in the firmware update and download processes, allowing attackers to access sensitive information by analyzing the code and data within the APK file...

9.8CVSS7.1AI score0.00476EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/10/24 12:0 a.m.3 views

PT-2024-33145 · Unknown · Dreamcatcher Life

Name of the Vulnerable Software and Affected Versions: DreamCatcher Life version 1.8.7 Description: The issue is related to incorrect access control in the firmware update and download processes. This allows attackers to access sensitive information by analyzing the code and data within the APK...

8.4CVSS7AI score0.00197EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2023/10/11 12:0 a.m.7 views

The vulnerability of the software for energy monitoring systems, including EcoStruxure Power Monitoring Expert, EcoStruxure Power Operation (EPO) with Advanced Reports, and EcoStruxure Power SCADA Operation with Advanced Reports, is related to deficiencies in the deserialization mechanism. This allows attackers to execute arbitrary code.

The vulnerabilities of the software for energy monitoring, including EcoStruxure Power Monitoring Expert, EcoStruxure Power Operation EPO with Advanced Reports, and EcoStruxure Power SCADA Operation with Advanced Reports, are related to deficiencies in the deserialization mechanism. Exploiting...

10CVSS8.3AI score0.00844EPSS
Exploits0References2
OSV
OSV
added 2023/08/30 10:45 a.m.6 views

USN-6263-2 openjdk-lts, openjdk-17 regression

USN-6263-1 fixed vulnerabilities in OpenJDK. Unfortunately, that update introduced a regression when opening APK, ZIP or JAR files in OpenJDK 11 and OpenJDK 17. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Motoyasu Saburi discovered that OpenJDK...

5.8AI score
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2023/06/27 8:32 p.m.47 views

Security Bulletin: IBM i Access Client Solutions - Windows Application Package is vulnerable to a timing issue with RSA Decryption in GSKit builds prior to 8.0.55.31 (CVE-2023-32342)

Summary IBM GSKit is used by IBM i Access Client Solutions - Windows Application Package when making TLS connections to an IBM i partition. If an RSA cipher is used, IBM GSKit could allow a remote attacker to obtain sensitive information. Vulnerability Details CVEID:CVE-2023-32342 DESCRIPTION: IB...

7.5CVSS7.3AI score0.00925EPSS
Exploits0Affected Software1
ATTACKERKB
ATTACKERKB
added 2023/05/26 10:15 p.m.4 views

CVE-2023-21515

InstantPlay which included vulnerable script which could execute javascript in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store...

8.8CVSS7.3AI score0.00521EPSS
Exploits0References2
CNVD
CNVD
added 2023/02/08 12:0 a.m.25 views

Huawei HarmonyOS Security Bypass Vulnerability (CNVD-2023-15717)

Huawei HarmonyOS is an operating system from Huawei, a Chinese company that provides a microkernel-based distributed operating system. A security bypass vulnerability exists in Huawei HarmonyOS, which stems from an improper interface permission verification in the application package management...

7.5CVSS2AI score0.00327EPSS
Exploits0References1
CNVD
CNVD
added 2022/10/13 12:0 a.m.42 views

Google Android elevation of privilege vulnerability (CNVD-2022-81237)

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability that stems from proxy obfuscation in the CarSettings of the application package, which can be exploited by an attacker to cause an elevation of privilege i...

8.8CVSS8.5AI score0.00158EPSS
Exploits0References1
OSV
OSV
added 2022/07/26 10:15 p.m.1 views

DEBIAN-CVE-2022-1495

Incorrect security UI in Downloads in Google Chrome on Android prior to 101.0.4951.41 allowed a remote attacker to spoof the APK downloads dialog via a crafted HTML page...

4.3CVSS5.6AI score0.00589EPSS
Exploits1References1
Rows per page
Query Builder