Lucene search
K

44 matches found

CVE
CVE
added 2023/08/24 10:42 p.m.63 views

CVE-2023-39519

CVE-2023-39519 affects CloudExplorer Lite (open source cloud management platform). Prior to version 1.4.0, there is a vulnerability in how user information is retrieved that can lead to leakage of sensitive data. The issue has been fixed in version 1.4.0. Detailed entries across multiple sources ...

7.5CVSS6AI score0.0063EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2023/08/24 10:42 p.m.26 views

CVE-2023-39519 CloudExplorer Lite sensitive information leakage vulnerability

Cloud Explorer Lite is an open source cloud management platform. Prior to version 1.4.0, there is a risk of sensitive information leakage in the user information acquisition of CloudExplorer Lite. The vulnerability has been fixed in version 1.4.0...

7.5CVSS5.1AI score0.0063EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2022/06/13 2:15 p.m.3 views

CVE-2022-24077

Naver Cloud Explorer Beta allows the attacker to execute arbitrary code as System privilege via malicious DLL injection...

7.8CVSS6AI score0.00292EPSS
Exploits0References2
NVD
NVD
added 2022/06/13 2:15 p.m.16 views

CVE-2022-24077

Naver Cloud Explorer Beta allows the attacker to execute arbitrary code as System privilege via malicious DLL injection...

7.8CVSS0.00292EPSS
Exploits0References1
Prion
Prion
added 2022/06/13 2:15 p.m.17 views

Design/Logic Flaw

Naver Cloud Explorer Beta allows the attacker to execute arbitrary code as System privilege via malicious DLL injection...

6.9CVSS8.1AI score0.00292EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/06/13 1:40 p.m.19 views

CVE-2022-24077

Naver Cloud Explorer Beta allows the attacker to execute arbitrary code as System privilege via malicious DLL injection...

8.3AI score0.00292EPSS
Exploits0References1
CVE
CVE
added 2022/06/13 1:40 p.m.72 views

CVE-2022-24077

CVE-2022-24077 affects Naver Cloud Explorer Beta. Vulnerability arises from malicious DLL injection enabling an attacker to execute arbitrary code with SYSTEM privileges. The description across sources confirms local-priority abuse with high impact (complete confidentiality, integrity, and availa...

7.8CVSS8AI score0.00292EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2022/06/13 12:0 a.m.3 views

Naver Cloud Explorer 代码问题漏洞

Naver Cloud Explorer is a browser for accessing cloud files in Naver by Naver Korea. A security vulnerability exists in Naver Cloud Explorer. An attacker can exploit this vulnerability to execute arbitrary code with System privileges via malicious DLL injection...

7.8CVSS7.9AI score0.00292EPSS
Exploits0References2
CNVD
CNVD
added 2020/03/24 12:0 a.m.3 views

Naver Cloud Explorer Privilege Mobilization Vulnerability

Naver Cloud Explorer is a browser for accessing cloud files in Naver by Naver Korea. A security vulnerability exists in Naver Cloud Explorer versions prior to 2.2.2.11. An attacker can exploit the vulnerability to move local files with system privileges...

9.8CVSS6.6AI score0.01149EPSS
Exploits0
OSV
OSV
added 2020/03/23 3:15 a.m.7 views

CVE-2020-9752

Naver Cloud Explorer before 2.2.2.11 allows the attacker can move a local file in any path on the filesystem as a system privilege through its named pipe...

9.8CVSS7.3AI score0.01149EPSS
Exploits0References1
NVD
NVD
added 2020/03/23 3:15 a.m.20 views

CVE-2020-9752

Naver Cloud Explorer before 2.2.2.11 allows the attacker can move a local file in any path on the filesystem as a system privilege through its named pipe...

9.8CVSS9.2AI score0.01149EPSS
Exploits0References1
Prion
Prion
added 2020/03/23 3:15 a.m.13 views

Path traversal

Naver Cloud Explorer before 2.2.2.11 allows the attacker can move a local file in any path on the filesystem as a system privilege through its named pipe...

7.5CVSS9.1AI score0.01149EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/03/23 2:15 a.m.23 views

CVE-2020-9752

Naver Cloud Explorer before 2.2.2.11 allows the attacker can move a local file in any path on the filesystem as a system privilege through its named pipe...

9.2AI score0.01149EPSS
Exploits0References1
CVE
CVE
added 2020/03/23 2:15 a.m.108 views

CVE-2020-9752

CVE-2020-9752 affects Naver Cloud Explorer prior to 2.2.2.11. The vulnerability enables an attacker to move a local file anywhere in the filesystem with system privileges via a named pipe. CVSS information in the provided data shows a high/critical impact (CVSS‑3.1: 9.8, NETWORK, NONE privileges ...

9.8CVSS9AI score0.01149EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2020/03/03 10:15 a.m.19 views

CVE-2020-9751

Naver Cloud Explorer before 2.2.2.11 allows the system to download an arbitrary file from the attacker's server and execute it during the upgrade...

9.1CVSS9.3AI score0.00485EPSS
Exploits0References1
OSV
OSV
added 2020/03/03 10:15 a.m.6 views

CVE-2020-9751

Naver Cloud Explorer before 2.2.2.11 allows the system to download an arbitrary file from the attacker's server and execute it during the upgrade...

9.1CVSS7.5AI score0.00485EPSS
Exploits0References1
Prion
Prion
added 2020/03/03 10:15 a.m.15 views

Code injection

Naver Cloud Explorer before 2.2.2.11 allows the system to download an arbitrary file from the attacker's server and execute it during the upgrade...

6.4CVSS9.2AI score0.00485EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/03/03 9:15 a.m.21 views

CVE-2020-9751

Naver Cloud Explorer before 2.2.2.11 allows the system to download an arbitrary file from the attacker's server and execute it during the upgrade...

9.3AI score0.00485EPSS
Exploits0References1
CVE
CVE
added 2020/03/03 9:15 a.m.63 views

CVE-2020-9751

CVE-2020-9751 affects Naver Cloud Explorer prior to 2.2.2.11 . The flaw allows an attacker to cause the upgrade process to download an arbitrary file from the attacker’s server and execute it. The connected documents confirm the vulnerable software and the upgrade-time arbitrary code execution ve...

9.1CVSS9.2AI score0.00485EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2019/09/03 3:15 p.m.24 views

CVE-2019-13156

NDrive1.2.2.sys in Naver Cloud Explorer has a stack-based buffer overflow, which allows attackers to cause a denial of service when reading data from IOCTL handle...

7.5CVSS7.5AI score0.01038EPSS
Exploits0References1
Rows per page
Query Builder