Lucene search
K

31255 matches found

CNNVD
CNNVD
added 2023/11/27 12:0 a.m.8 views

Terrafrost phpseclib Security Vulnerabilities

Terrafrost phpseclib is a Terrafrost open source application. pure PHP implementation under the MIT license. A security vulnerability exists in Terrafrost phpseclib versions prior to 3.0.34, which stems from a Denial of Service DOS vulnerability in the file Math/BinaryField.php...

7.5CVSS6.7AI score0.00756EPSS
Exploits0References2
OSV
OSV
added 2023/11/22 5:15 a.m.2 views

CVE-2023-46814

A binary hijacking vulnerability exists within the VideoLAN VLC media player before 3.0.19 on Windows. The uninstaller attempts to execute code with elevated privileges out of a standard user writable location. Standard users may use this to gain arbitrary code execution as SYSTEM...

7.8CVSS6.3AI score
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2023/11/22 5:15 a.m.4 views

CVE-2023-46814

A binary hijacking vulnerability exists within the VideoLAN VLC media player before 3.0.19 on Windows. The uninstaller attempts to execute code with elevated privileges out of a standard user writable location. Standard users may use this to gain arbitrary code execution as SYSTEM...

7.8CVSS7.7AI score0.00281EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2023/11/22 5:15 a.m.19 views

CVE-2023-46814

A binary hijacking vulnerability exists within the VideoLAN VLC media player before 3.0.19 on Windows. The uninstaller attempts to execute code with elevated privileges out of a standard user writable location. Standard users may use this to gain arbitrary code execution as SYSTEM...

7.8CVSS7.7AI score0.00281EPSS
Exploits0References2
Prion
Prion
added 2023/11/22 5:15 a.m.25 views

Design/Logic Flaw

A binary hijacking vulnerability exists within the VideoLAN VLC media player before 3.0.19 on Windows. The uninstaller attempts to execute code with elevated privileges out of a standard user writable location. Standard users may use this to gain arbitrary code execution as SYSTEM...

4.3CVSS8.2AI score0.00281EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/11/22 12:0 a.m.21 views

CVE-2023-46814

A binary hijacking vulnerability exists within the VideoLAN VLC media player before 3.0.19 on Windows. The uninstaller attempts to execute code with elevated privileges out of a standard user writable location. Standard users may use this to gain arbitrary code execution as SYSTEM...

7.9AI score0.00281EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/11/22 12:0 a.m.5 views

Apache Superset Installed (Linux / Unix)

Binary data apachesupersetnixinstalled.nbin...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/11/22 12:0 a.m.22 views

Citrix ADC and Citrix NetScaler Gateway Information Disclosure (CTX579459) (Direct Check)

Binary data citrixCTX579459directcheck.nbin...

9.4CVSS7.3AI score0.99999EPSS
Exploits15References2
CVE
CVE
added 2023/11/22 12:0 a.m.63 views

CVE-2023-46814

The vulnerability CVE-2023-46814 affects VideoLAN VLC media player on Windows prior to 3.0.19. The issue is a binary hijack where the uninstaller runs actions with elevated privileges from a standard-user-writable location, allowing arbitrary code execution as SYSTEM. Impact is elevated privilege...

7.8CVSS8AI score0.00281EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/11/22 12:0 a.m.4 views

VideoLAN VLC media player security vulnerability

VideoLAN VLC media player is a free, open source cross-platform multimedia player also a multimedia framework organized by VideoLAN France. It supports playback of multiple media files, CD-ROMs, etc., multiple audio and video formats WMV, MP3, etc., etc. A security vulnerability exists in VideoLA...

7.8CVSS7.7AI score0.00281EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2023/11/21 11:51 a.m.33 views

Moderate: Red Hat Security Advisory: binutils security update

An update for binutils is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

5.5CVSS6.2AI score0.00437EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/11/20 12:0 a.m.5 views

PT-2024-19522 · D Link · D-Link Dir-815

Name of the Vulnerable Software and Affected Versions: D-Link DIR-815 router firmware version 1.04 Description: There is a command injection issue in the ssdpcgi main function of the cgibin binary. This affects the D-Link DIR-815 router firmware. Recommendations: For D-Link DIR-815 router firmwar...

10CVSS7.7AI score0.20188EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2023/11/20 12:0 a.m.5 views

Fortinet FortiSIEM Web Interface Detection

Binary data fortinetfortisiemwebdetect.nbin...

7.3AI score
Exploits0References1
Fedora
Fedora
added 2023/11/18 1:33 a.m.27 views

[SECURITY] Fedora 37 Update: syncthing-1.26.0-1.fc37

Syncthing replaces other file synchronization services with something open, trustworthy and decentralized. Your data is your data alone and you deserve to choose where it is stored, if it is shared with some third party and how it's transmitted over the Internet. Using syncthing, that control is...

7.5CVSS7.7AI score0.03796EPSS
Exploits0
Fedora
Fedora
added 2023/11/18 1:27 a.m.20 views

[SECURITY] Fedora 38 Update: syncthing-1.26.0-1.fc38

Syncthing replaces other file synchronization services with something open, trustworthy and decentralized. Your data is your data alone and you deserve to choose where it is stored, if it is shared with some third party and how it's transmitted over the Internet. Using syncthing, that control is...

7.5CVSS7.7AI score0.03796EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/11/17 12:0 a.m.10 views

Microsoft Azure Pipelines Agent Installed (Windows)

Binary data microsoftazurepipelinesagentwininstalled.nbin...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/11/16 12:0 a.m.8 views

SysAid Server Installed (Windows)

Binary data sysaidserverwininstalled.nbin...

7.3AI score
Exploits0References1
Wallarm Lab
Wallarm Lab
added 2023/11/15 8:25 p.m.18 views

What Is Microservices Architecture

Mastering the Essential Elements of Services-Focused Programming The methodology of programming using tiny, interdependent software units, often simplified to 'Microservices', has seen a marked uptick in usage in recent times. This distinct architectural paradigm shapes an application as a group ...

7.9AI score
Exploits0
Github Security Blog
Github Security Blog
added 2023/11/14 10:24 p.m.160 views

Java: DoS Vulnerability in JSON-JAVA

Summary A denial of service vulnerability in JSON-Java was discovered by ClusterFuzz. A bug in the parser means that an input string of modest size can lead to indefinite amounts of memory being used. There are two issues: 1 the parser bug can be used to circumvent a check that is supposed to...

7.5CVSS6.9AI score0.01449EPSS
Exploits1References7Affected Software1
Positive Technologies
Positive Technologies
added 2023/11/14 12:0 a.m.6 views

PT-2023-7106 · NetGear · Netgear Cax30

Name of the Vulnerable Software and Affected Versions: NETGEAR CAX30 affected versions not specified Description: This issue allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR CAX30 routers. The specific flaw exists within the sso binary, resulting fr...

8.8CVSS7.3AI score0.00756EPSS
Exploits0References7
Rows per page
Query Builder