Lucene search
K

1723 matches found

Cvelist
Cvelist
added 2026/02/10 5:35 a.m.26 views

CVE-2025-11547

AXIS Camera Station Pro contained a flaw to perform a privilege escalation attack on the server as a non-admin user...

7.8CVSS0.00148EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/02/10 12:0 a.m.5 views

Axis Camera Station Pro 安全漏洞

Axis Camera Station Pro is a video management software developed by the Swedish company Axis. There is a security vulnerability in Axis Camera Station Pro, which allows non-administrator users to execute privilege escalation attacks on the server...

7.8CVSS5.9AI score0.00148EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/10 12:0 a.m.6 views

PT-2026-7229

Name of the Vulnerable Software and Affected Versions AXIS Camera Station Pro affected versions not specified Description AXIS Camera Station Pro contains a flaw that allows a non-administrative user to perform a privilege escalation attack on the server. Recommendations At the moment, there is n...

7.8CVSS5.4AI score0.00148EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/02/10 12:0 a.m.10 views

PT-2026-7230

An AXIS Camera Station Pro feature can be exploited in a way that allows a non-admin user to view information they are not permitted to...

4.6CVSS5.5AI score0.00266EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/10 12:0 a.m.6 views

Axis Camera Station Pro 安全漏洞

Axis Camera Station Pro is a video management software developed by the Swedish company Axis. There is a security vulnerability in Axis Camera Station Pro, which allows unauthorized users to access unauthorized information...

4.6CVSS5.8AI score0.00266EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/10 12:0 a.m.8 views

AXIS OS 安全漏洞

AXIS OS is an edge device operating system developed by AXIS, a company from Sweden. There is a security vulnerability in AXIS OS, which stems from insufficient input validation. This vulnerability may allow for the execution of remote code after authentication is performed using a service accoun...

8.8CVSS6.2AI score0.00499EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/10 12:0 a.m.8 views

AXIS Camera Station Pro 安全漏洞

AXIS Camera Station Pro is a video management software developed by the Swedish company Axis. There is a security vulnerability in AXIS Camera Station Pro, which allows malicious administrators to perform server-side injections, potentially leading to the execution of malicious scripts...

4.5CVSS5.9AI score0.00227EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2026/01/29 6:59 a.m.10 views

Security Bulletin: Multiple Vulnerabilities affects IBM Data Studio Client 4.2.0

Summary Security Fix of multiple Vulnerabilities of IBM Data Studio Client 4.2.0 Vulnerability Details CVEID:CVE-2021-2163 DESCRIPTION: An unspecified vulnerability in Java SE related to the Libraries component could allow an unauthenticated attacker to cause no confidentiality impact, high...

7.8CVSS7.2AI score0.05219EPSS
Exploits3Affected Software1
Metasploit
Metasploit
added 2026/01/23 6:59 p.m.411 views

Cacti Graph Template authenticated RCE versions prior to 1.2.29

This module exploits an authenticated remote code execution vulnerability in Cacti versions prior to 1.2.29. Authenticated users can upload a graph template through the /graphtemplates.php endpoint. The rightaxislabel parameter is vulnerable to code injection, allowing attackers to execute...

8.8CVSS9.8AI score0.51488EPSS
Exploits10
Packet Storm
Packet Storm
added 2026/01/23 12:0 a.m.145 views

📄 Cacti Graph Template Authenticated Remote Code Execution

This Metasploit module exploits an authenticated remote code execution vulnerability in Cacti versions prior to 1.2.29. Authenticated users can upload a graph template through the /graphtemplates.php endpoint. The rightaxislabel parameter is vulnerable to code injection, allowing attackers to...

8.8CVSS7AI score0.51488EPSS
Exploits10
vulnersOsv
vulnersOsv
added 2026/01/21 10:49 p.m.7 views

@alithya-oss/backstage-plugin-aws-apps-backend (=0.4.7), @alithya-oss/backstage-plugin-changelog-backend (=1.0.3) +165 more potentially affected by CVE-2026-24048 via @backstage/backend-defaults (>=0.0.0-nightly-20240929023448 <=0.12.1-next.1)

@backstage/backend-defaults NPM version =0.0.0-nightly-20240929023448, =1.0.7, =0.1.8, =0.3.10, =0.3.6, =0.1.0, =0.4.0, =4.6.0, =0.10.0, =0.12.0 and more Source cves: CVE-2026-24048 Source advisory: OSV:GHSA-Q2X5-4XJX-C6P9...

3.7CVSS5.4AI score0.00201EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/19 12:0 a.m.5 views

MiracleLinux 7 : microcode_ctl-2.1-47.2.el7 (AXEA:2019-3880:01)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXEA:2019-3880:01 advisory. - Microarchitectural Store Buffer Data Sampling MSBDS: Store buffers on some microprocessors utilizing speculative execution may allow an...

5.6CVSS7AI score0.01497EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.3 views

MiracleLinux 4 : samba-3.6.9-168.AXS4.0.1 (AXSA:2014-176:02)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2014-176:02 advisory. CVE-2012-6150 The winbindnamelisttosidstringlist function in nsswitch/pamwinbind.c in Samba through 4.1.2 handles invalid requiremembershipof group...

5CVSS7.7AI score0.10642EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

MiracleLinux 4 : axis-1.2.1-7.3.AXS4 (AXSA:2013-129:01)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2013-129:01 advisory. Apache AXIS is an implementation of the SOAP Simple Object Access Protocol submission to W3C. From the draft W3C specification: SOAP is a lightweight protocol...

5.8CVSS7.6AI score0.05722EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

MiracleLinux 3 : axis-1.2.1-2jpp.8.AXS3 (AXSA:2014-536:01)

The remote MiracleLinux 3 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2014-536:01 advisory. Description : Apache AXIS is an implementation of the SOAP Simple Object Access Protocol submission to W3C. From the draft W3C specification: SOAP is a...

5.8CVSS7.3AI score0.05806EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.3 views

MiracleLinux 4 : axis-1.2.1-7.5.AXS4 (AXSA:2014-534:01)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2014-534:01 advisory. Description : Apache AXIS is an implementation of the SOAP Simple Object Access Protocol submission to W3C. From the draft W3C specification: SOAP is a...

5.8CVSS7.3AI score0.05806EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.3 views

MiracleLinux 4 : java-1.6.0-openjdk-1.6.0.33-1.13.5.0.AXS4 (AXSA:2014-605:05)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2014-605:05 advisory. Description : The OpenJDK runtime environment. Security issues fixed with this release: CVE-2014-6457 Unspecified vulnerability in Oracle Java SE...

6.8CVSS7.1AI score0.04102EPSS
Exploits0References11
RedhatCVE
RedhatCVE
added 2026/01/09 12:30 p.m.14 views

CVE-2023-40743

UNSUPPORTED WHEN ASSIGNED When integrating Apache Axis 1.x in an application, it may not have been obvious that looking up a service through "ServiceFactory.getService" allows potentially dangerous lookup mechanisms such as LDAP. When passing untrusted input to this API method, this could expose...

9.8CVSS6.8AI score0.01931EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:24 a.m.9 views

CVE-2021-31989

A user with permission to log on to the machine hosting the AXIS Device Manager client could under certain conditions extract a memory dump from the built-in Windows Task Manager application. The memory dump may potentially contain credentials of connected Axis devices...

5.3CVSS6.8AI score0.00397EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:54 a.m.8 views

CVE-2021-41211

TensorFlow is an open source platform for machine learning. In affected versions the shape inference code for QuantizeV2 can trigger a read outside of bounds of heap allocated array. This occurs whenever axis is a negative value less than -1. In this case, we are accessing data before the start o...

7.1CVSS6.8AI score0.00201EPSS
Exploits1References1
Rows per page
Query Builder