Lucene search
K

11 matches found

ATTACKERKB
ATTACKERKB
added 2026/04/07 2:12 p.m.3 views

CVE-2026-5380

An issue that could allow an authorized user to view the clear-text secrets for a subset of credential types and fields has been resolved. This is an instance of CWE-522: Insufficiently Protected Credentials, and has an estimated CVSS score of CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N 5.3...

5.3CVSS5.8AI score0.00196EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/04/07 12:0 a.m.7 views

PT-2026-30875

An issue that could allow an authorized user to view the clear-text secrets for a subset of credential types and fields has been resolved. This is an instance of CWE-522: Insufficiently Protected Credentials, and has an estimated CVSS score of CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N 5.3...

5.3CVSS5.8AI score0.00196EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/02/02 12:0 a.m.10 views

PT-2026-5605

Name of the Vulnerable Software and Affected Versions MagicINFO 9 Server versions prior to 21.1090.1 Description A flaw exists in MagicINFO 9 Server that permits authorized users to upload HTML files without requiring authentication. This can lead to Stored Cross-Site Scripting XSS, potentially...

9.8CVSS5.4AI score0.00494EPSS
Exploits1References11
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-10187

Malware in sbrugna...

4.3CVSS4.8AI score0.00673EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-51897

Malicious code in bioql PyPI...

7.2CVSS6.6AI score0.01464EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:18 a.m.5 views

CVE-2023-51699

Fluid is an open source Kubernetes-native Distributed Dataset Orchestrator and Accelerator for data-intensive applications. An OS command injection vulnerability within the Fluid project's JuicefsRuntime can potentially allow an authenticated user, who has the authority to create or update the K8...

6CVSS7.9AI score0.00611EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:1 a.m.12 views

CVE-2023-42781

Apache Airflow, versions before 2.7.3, has a vulnerability that allows an authorized user who has access to read specific DAGs only, to read information about task instances in other DAGs. This is a different issue than CVE-2023-42663 but leading to similar outcome. Users of Apache Airflow are...

6.5CVSS6.3AI score0.01657EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/03/05 12:0 a.m.5 views

Aruba AirWave Management Platform 跨站请求伪造漏洞

Aruba Networks AirWave Management Platform is a suite of network management software for multi-vendor management from Aruba Networks. The software provides real-time monitoring, proactive alerting and historical data reporting. A cross-site request forgery vulnerability exists in the web manageme...

8.8CVSS5.5AI score0.00611EPSS
Exploits0References1
NVD
NVD
added 2020/12/01 3:15 p.m.30 views

CVE-2020-7545

A CWE-284:Improper Access Control vulnerability exists in EcoStruxureª and SmartStruxureª Power Monitoring and SCADA Software see security notification for version information that could allow for arbitrary code execution on the server when an authorized user access an affected webpage...

7.2CVSS7.4AI score0.01995EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2019/08/15 12:0 a.m.7 views

PT-2019-16570 · Zte · Zxhn F670

Name of the Vulnerable Software and Affected Versions: ZTE ZXHN F670 product versions up to V1.1.10P3T18 Description: The issue is related to a cross-site scripting vulnerability XSS due to incomplete input validation. An authorized user can exploit this to execute malicious scripts...

5.7CVSS5.3AI score0.00716EPSS
Exploits0References3
OSV
OSV
added 2018/07/24 3:29 p.m.3 views

CVE-2017-3183

Sage XRT Treasury, version 3, fails to properly restrict database access to authorized users, which may enable any authenticated user to gain full access to privileged database functions. Sage XRT Treasury is a business finance management application. Database user access privileges are determine...

8.8CVSS5.8AI score0.02117EPSS
Exploits0References2
Rows per page
Query Builder