Lucene search
K

42 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2010-0671

Malware in sbrugna...

2.6CVSS6.4AI score0.01017EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2011-1897

Malware in sbrugna...

4.3CVSS6.4AI score0.01263EPSS
Exploits0References10
NVD
NVD
added 2021/03/26 8:15 a.m.23 views

CVE-2021-28249

CA eHealth Performance Manager through 6.3.2.12 is affected by Privilege Escalation via a Dynamically Linked Shared Object Library. To exploit the vulnerability, the ehealth user must create a malicious library in the writable RPATH, to be dynamically linked when the FtpCollector executable is ru...

8.8CVSS0.00415EPSS
Exploits1References1
NVD
NVD
added 2021/03/26 8:15 a.m.21 views

CVE-2021-28248

CA eHealth Performance Manager through 6.3.2.12 is affected by Improper Restriction of Excessive Authentication Attempts. An attacker is able to perform an arbitrary number of /web/frames/ authentication attempts using different passwords, and eventually gain access to a targeted account, NOTE:...

7.5CVSS0.01392EPSS
Exploits1References1
NVD
NVD
added 2021/03/26 8:15 a.m.18 views

CVE-2021-28250

CA eHealth Performance Manager through 6.3.2.12 is affected by Privilege Escalation via a setuid and/or setgid file. When a component is run as an argument of the runpicEhealth executable, the script code will be executed as the ehealth user. NOTE: This vulnerability only affects products that ar...

7.8CVSS0.00339EPSS
Exploits1References1
NVD
NVD
added 2021/03/26 8:15 a.m.22 views

CVE-2021-28247

CA eHealth Performance Manager through 6.3.2.12 is affected by Cross Site Scripting XSS. The impact is: An authenticated remote user is able to inject arbitrary web script or HTML due to incorrect sanitization of user-supplied data and perform a Reflected Cross-Site Scripting attack against the...

5.4CVSS0.0074EPSS
Exploits1References1
OSV
OSV
added 2021/03/26 8:15 a.m.6 views

CVE-2021-28248

CA eHealth Performance Manager through 6.3.2.12 is affected by Improper Restriction of Excessive Authentication Attempts. An attacker is able to perform an arbitrary number of /web/frames/ authentication attempts using different passwords, and eventually gain access to a targeted account, NOTE:...

7.5CVSS7.2AI score0.01392EPSS
Exploits1References1
NVD
NVD
added 2021/03/26 8:15 a.m.22 views

CVE-2021-28246

CA eHealth Performance Manager through 6.3.2.12 is affected by Privilege Escalation via a Dynamically Linked Shared Object Library. A regular user must create a malicious library in the writable RPATH, to be dynamically linked when the emtgtctl2 executable is run. The code in the library will be...

7.8CVSS0.00393EPSS
Exploits1References1
Prion
Prion
added 2021/03/26 8:15 a.m.11 views

Privilege escalation

UNSUPPORTED WHEN ASSIGNED CA eHealth Performance Manager through 6.3.2.12 is affected by Privilege Escalation via a Dynamically Linked Shared Object Library. To exploit the vulnerability, the ehealth user must create a malicious library in the writable RPATH, to be dynamically linked when the...

7.2CVSS8.5AI score0.00415EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2021/03/26 8:15 a.m.19 views

Privilege escalation

UNSUPPORTED WHEN ASSIGNED CA eHealth Performance Manager through 6.3.2.12 is affected by Privilege Escalation via a setuid and/or setgid file. When a component is run as an argument of the runpicEhealth executable, the script code will be executed as the ehealth user. NOTE: This vulnerability onl...

4.6CVSS7.6AI score0.00339EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2021/03/26 8:15 a.m.15 views

Privilege escalation

UNSUPPORTED WHEN ASSIGNED CA eHealth Performance Manager through 6.3.2.12 is affected by Privilege Escalation via a Dynamically Linked Shared Object Library. A regular user must create a malicious library in the writable RPATH, to be dynamically linked when the emtgtctl2 executable is run. The co...

4.4CVSS7.5AI score0.00393EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2021/03/26 7:18 a.m.45 views

CVE-2021-28250

CA eHealth Performance Manager up to v6.3.2.12 is affected by a privilege-escalation vulnerability via a setuid/setgid file. When a component is run as an argument to the runpicEhealth executable, the script can execute as the ehealth user. The issue affects products no longer supported by the ma...

7.8CVSS7.6AI score0.00339EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/03/26 7:14 a.m.26 views

CVE-2021-28248

CA eHealth Performance Manager through 6.3.2.12 is affected by Improper Restriction of Excessive Authentication Attempts. An attacker is able to perform an arbitrary number of /web/frames/ authentication attempts using different passwords, and eventually gain access to a targeted account, NOTE:...

8AI score0.01392EPSS
Exploits1References1
CVE
CVE
added 2021/03/26 7:11 a.m.47 views

CVE-2021-28249

CA eHealth Performance Manager up to version 6.3.2.12 is affected by a Privilege Escalation due to a Dynamically Linked Shared Object Library. An attacker must place a malicious library in the writable RPATH, which is loaded when the FtpCollector executable runs, causing the code in the library t...

8.8CVSS8.5AI score0.00415EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2021/03/26 7:9 a.m.13 views

CVE-2021-28247

CA eHealth Performance Manager through 6.3.2.12 is affected by Cross Site Scripting XSS. The impact is: An authenticated remote user is able to inject arbitrary web script or HTML due to incorrect sanitization of user-supplied data and perform a Reflected Cross-Site Scripting attack against the...

6.1AI score0.0074EPSS
Exploits1References1
Cvelist
Cvelist
added 2021/03/26 7:9 a.m.28 views

CVE-2021-28247

CA eHealth Performance Manager through 6.3.2.12 is affected by Cross Site Scripting XSS. The impact is: An authenticated remote user is able to inject arbitrary web script or HTML due to incorrect sanitization of user-supplied data and perform a Reflected Cross-Site Scripting attack against the...

5.6AI score0.0074EPSS
Exploits1References1
CVE
CVE
added 2021/03/26 7:9 a.m.50 views

CVE-2021-28247

CA eHealth Performance Manager (Data Edge) versions up to 6.3.2.12 are affected by a reflected XSS due to improper sanitization. The vulnerability allows an authenticated remote user to inject scripts via endpoints cgi/nhWeb with report, aviewbin/filtermibobjects.pl with namefilter, and aviewbin/...

5.4CVSS5.3AI score0.0074EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/03/26 7:4 a.m.27 views

CVE-2021-28246

CA eHealth Performance Manager through 6.3.2.12 is affected by Privilege Escalation via a Dynamically Linked Shared Object Library. A regular user must create a malicious library in the writable RPATH, to be dynamically linked when the emtgtctl2 executable is run. The code in the library will be...

7.7AI score0.00393EPSS
Exploits1References1
CVE
CVE
added 2021/03/26 7:4 a.m.52 views

CVE-2021-28246

CVE-2021-28246 affects CA eHealth Performance Manager up to version 6.3.2.12. The issue is a privilege-escalation defect where a regular user can place a malicious library in the writable RPATH, which is dynamically linked when the emtgtctl2 executable runs, causing the library code to execute wi...

7.8CVSS7.5AI score0.00393EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2021/03/26 12:0 a.m.5 views

Data Edge CA eHealth Performance Manager 跨站脚本漏洞

Data Edge CA eHealth Performance Manager is an application from Data Edge Ireland. It provides real-time and predictive performance analytics to take corrective action before business processes are negatively impacted. A cross-site scripting vulnerability exists in Data Edge CA eHealth Performanc...

5.4CVSS5.1AI score0.0074EPSS
Exploits1References2
Rows per page
Query Builder