31243 matches found
CVE-2022-48199
SoftPerfect NetWorx 7.1.1 on Windows allows an attacker to execute a malicious binary with potentially higher privileges via a low-privileged user account that abuses the Notifications function. The Notifications function allows for arbitrary binary execution and can be modified by any user. The...
CVE-2022-48199
SoftPerfect NetWorx 7.1.1 on Windows allows an attacker to execute a malicious binary with potentially higher privileges via a low-privileged user account that abuses the Notifications function. The Notifications function allows for arbitrary binary execution and can be modified by any user. The...
Design/Logic Flaw
SoftPerfect NetWorx 7.1.1 on Windows allows an attacker to execute a malicious binary with potentially higher privileges via a low-privileged user account that abuses the Notifications function. The Notifications function allows for arbitrary binary execution and can be modified by any user. The...
SoftPerfect NetWorx 安全漏洞
SoftPerfect NetWorx is a simple and versatile tool from SoftPerfect that helps you monitor Internet connections. A security vulnerability exists in SoftPerfect NetWorx version 7.1.1, which stems from a vulnerability that allows an attacker to execute a malicious binary with potentially elevated...
McAfee Total Protection Installed (Windows)
Binary data mcafeetotalprotectioninstalled.nbin...
PT-2023-14127 · Siretta · Siretta Quartz-Gold
Name of the Vulnerable Software and Affected Versions: Siretta QUARTZ-GOLD version G5.0.1.5-210720-141020 Description: Several OS command injection vulnerabilities exist in the m2m binary. A specially-crafted network request can lead to arbitrary command execution. An attacker can send a network...
Siretta QUARTZ-GOLD m2m m2m_parse_router_config cmd OS command injection vulnerabilities
Talos Vulnerability Report TALOS-2022-1640 Siretta QUARTZ-GOLD m2m m2mparserouterconfig cmd OS command injection vulnerabilities January 26, 2023 CVE Number CVE-2022-42492,CVE-2022-42491,CVE-2022-42493,CVE-2022-42490 SUMMARY Several OS command injection vulnerabilities exist in the m2m binary of...
Host Active Directory Configuration (Windows)
Binary data hostadconfigwin.nbin...
CVE-2022-48199
SoftPerfect NetWorx 7.1.1 on Windows allows an attacker to execute a malicious binary with potentially higher privileges via a low-privileged user account that abuses the Notifications function. The Notifications function allows for arbitrary binary execution and can be modified by any user. The...
CVE-2022-48199
SoftPerfect NetWorx 7.1.1 on Windows allows an attacker to execute a malicious binary with potentially higher privileges via a low-privileged user account that abuses the Notifications function. The Notifications function allows for arbitrary binary execution and can be modified by any user. The...
CVE-2022-48199
SoftPerfect NetWorx 7.1.1 (Windows) is affected by a vulnerability where the Notifications function can be modified by any user to execute an arbitrary binary, potentially with higher privileges, and the resulting binary runs in the context of every user running NetWorx. The root cause is the abi...
OPENSUSE-SU-2023:0031-1 Security update for upx
upx was updated to fix the following issues: - CVE-2023-23457: Fixed a segmentation fault when processing malicious elf files boo1207122 Update to release 4.0.1 Fix crash when a linux/armeb LZMA-packed binary unpacks itself. Resolve 'CantPackException: bad ElfXXShdrs' with staticly-linked program...
Host Active Directory Configuration (MacOS/Unix)
Binary data hostadconfigunix.nbin...
PAM Database Host Auto Collection
Binary data pamdatabaseautocollect.nbin...
RHEL 7 : rh-nodejs10-nodejs (RHSA-2020:0597)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:0597 advisory. Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The...
RHEL 7 : rh-nodejs12-nodejs (RHSA-2020:0602)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:0602 advisory. Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The...
CVE-2023-24039
CVE-2023-24039 affects Common Desktop Environment 1.6, specifically the ParseColors function in libXm. A stack-based buffer overflow can be exploited by local, low-privilege users via the dtprintinfo setuid binary to escalate to root on Solaris 10. Several connected sources confirm the issue and ...
A flaw was found in python. In algorithms with quadratic time complexity using non-binary bases when using int("text") a system could take 50ms to parse an int string with 100000 digits and 5s for 1000000 digits (float decimal int.from_bytes() and int() for binary bases 2 4 8 16 and 32 are not affected). The highest threat from this vulnerability is to system availability.
...
Auth0 JsonWebToken Library Installed (Windows)
Binary data auth0jsonwebtokenwininstalled.nbin...
Infinite Loop Vulnerability in endIdForWithdraw() Function.
Lines of code Vulnerability details Impact While loop within the endIdForWithdraw function. while left time test = left + right / 2; // left test right because left right - 1 if queuetest.availableAt = time left = test; else right = test; This loop can cause an infinite loop if the loop invariant...