Lucene search
+L

138 matches found

Positive Technologies
Positive Technologies
added 2025/01/17 12:0 a.m.5 views

PT-2025-1228 · Mercedes Benz · Mercedes-Benz Head-Unit Ntg6

Name of the Vulnerable Software and Affected Versions: Mercedes-Benz head-unit NTG6 affected versions not specified Description: The issue is related to a race condition in the Mercedes-Benz head-unit NTG6, which can be exploited by connecting to the Ethernet pins on the Base Board. This allows a...

4.9CVSS7.5AI score0.00228EPSS
Exploits0References10
BDU FSTEC
BDU FSTEC
added 2024/12/27 12:0 a.m.11 views

The vulnerability of the CI/CD application deployment and integration teamcity backup file of JetBrains, which allows a hacker to expose user credentials and session cookie files.

The vulnerability of the CI/CD application deployment and integration team environment from JetBrains TeamCity is related to improper cross-border deletion of critical data. Exploiting this vulnerability can allow a malicious actor to access user credentials and cookie session files remotely...

7.5CVSS5.5AI score0.0031EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2024/11/07 12:0 a.m.7 views

Svakom Siime Eye 安全漏洞

Svakom Siime Eye is a smart home device from Svakom USA. A security vulnerability exists in Svakom Siime Eye version 14.1.00000001.3.330.0.0.3.14, which originates from the fact that when a backup file is created through the web interface, information about all users can be found in plaintext in...

5.4CVSS6.4AI score0.0028EPSS
Exploits1References1
OSV
OSV
added 2024/09/07 5:15 p.m.5 views

CVE-2024-42019

A vulnerability that allows an attacker to access the NTLM hash of the Veeam Reporter Service service account. This attack requires user interaction and data collected from Veeam Backup & Replication...

8CVSS5.8AI score0.00513EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/09/04 12:0 a.m.10 views

PT-2024-6472 · Veeam · Veeam Reporter Service +1

Name of the Vulnerable Software and Affected Versions: Veeam Reporter Service affected versions not specified Description: A vulnerability exists in Veeam Reporter Service that allows an attacker to access the NTLM hash of the service account. This attack requires user interaction and data...

9CVSS9.2AI score0.00513EPSS
Exploits0References19
Veeam
Veeam
added 2024/08/06 12:0 a.m.19 views

Alternative Method for Migrating Backups to Hardened Linux Repository

Please review the information in this article closely before performing any actions documented herein. This article documents a series of steps that if not performed precisely as documented, could result in data loss. Purpose This article documents an alternative method for migrating backups from...

6.5AI score
Exploits0Affected Software1
OSV
OSV
added 2024/01/08 7:15 p.m.8 views

CVE-2023-6750

The Clone WordPress plugin before 2.4.3 uses buffer files to store in-progress backup informations, which is stored at a publicly accessible, statically defined file path...

7.5CVSS7.3AI score0.01961EPSS
Exploits2References1
CNNVD
CNNVD
added 2024/01/08 12:0 a.m.7 views

WordPress Plugin Clone Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, which supports personal blogs on PHP and MySQL servers.WordPress plugin is an...

7.5CVSS6.6AI score0.01961EPSS
Exploits2References2
OSV
OSV
added 2024/01/01 3:15 p.m.16 views

CVE-2023-6271

The Backup Migration WordPress plugin before 1.3.6 stores in-progress backups information in easy to find, publicly-accessible files, which may allow attackers monitoring those to leak sensitive information from the site's backups...

7.5CVSS5.8AI score0.00688EPSS
Exploits2References2
CNNVD
CNNVD
added 2024/01/01 12:0 a.m.5 views

WordPress Plugin Backup Migration Staging Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, which supports personal blog sites on PHP and MySQL servers.WordPress plugin is an...

7.5CVSS6.3AI score0.00688EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2023/11/07 12:0 a.m.15 views

Fedora 39 : borgbackup (2023-467632ecbe)

The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-467632ecbe advisory. fix for CVE-2023-36811: spoofed archive leads to data loss Please note that starting with borgbackup 1.2.5 all borg repos must use TAM authentication:...

4.7CVSS5AI score0.00106EPSS
Exploits0References2
NVD
NVD
added 2023/10/04 4:15 a.m.31 views

CVE-2023-30735

Improper Preservation of Permissions vulnerability in SAssistant prior to version 8.7 allows local attackers to access backup data in SAssistant...

5.1CVSS5.1AI score0.0013EPSS
Exploits0References1
OSV
OSV
added 2023/10/04 4:15 a.m.6 views

CVE-2023-30735

Improper Preservation of Permissions vulnerability in SAssistant prior to version 8.7 allows local attackers to access backup data in SAssistant...

3.3CVSS5.8AI score0.0013EPSS
Exploits0References1
Prion
Prion
added 2023/10/04 4:15 a.m.22 views

Design/Logic Flaw

Improper Preservation of Permissions vulnerability in SAssistant prior to version 8.7 allows local attackers to access backup data in SAssistant...

1.7CVSS4AI score0.0013EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/10/04 3:2 a.m.30 views

CVE-2023-30735

Improper Preservation of Permissions vulnerability in SAssistant prior to version 8.7 allows local attackers to access backup data in SAssistant...

5.1CVSS5.4AI score0.0013EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/10/04 3:2 a.m.10 views

CVE-2023-30735

Improper Preservation of Permissions vulnerability in SAssistant prior to version 8.7 allows local attackers to access backup data in SAssistant...

5.1CVSS6.9AI score0.0013EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/10/03 12:0 a.m.9 views

PT-2023-22938 · Unknown · S Assistant

Name of the Vulnerable Software and Affected Versions: SAssistant versions prior to 8.7 Description: The issue allows local attackers to access backup data in SAssistant due to an improper preservation of permissions. This enables unauthorized access to sensitive information. Recommendations: For...

5.1CVSS3.8AI score0.0013EPSS
Exploits0References5
NVD
NVD
added 2023/08/30 6:15 p.m.14 views

CVE-2023-36811

borgbackup is an opensource, deduplicating archiver with compression and authenticated encryption. A flaw in the cryptographic authentication scheme in borgbackup allowed an attacker to fake archives and potentially indirectly cause backup data loss in the repository. The attack requires an...

4.7CVSS4.6AI score0.00106EPSS
Exploits0References6
Cvelist
Cvelist
added 2023/08/30 5:32 p.m.45 views

CVE-2023-36811 Archive spoofing vulnerability in borgbackup

borgbackup is an opensource, deduplicating archiver with compression and authenticated encryption. A flaw in the cryptographic authentication scheme in borgbackup allowed an attacker to fake archives and potentially indirectly cause backup data loss in the repository. The attack requires an...

4.7CVSS5AI score0.00106EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2023/08/30 5:32 p.m.33 views

CVE-2023-36811

borgbackup is an opensource, deduplicating archiver with compression and authenticated encryption. A flaw in the cryptographic authentication scheme in borgbackup allowed an attacker to fake archives and potentially indirectly cause backup data loss in the repository. The attack requires an...

4.7CVSS4.6AI score0.00106EPSS
Exploits0
Rows per page
Query Builder