143 matches found
CVE-2023-41887 Remote Code exec in project import with mysql jdbc url attack
OpenRefine is a powerful free, open source tool for working with messy data. Prior to version 3.7.5, a remote code execution vulnerability allows any unauthenticated user to execute code on the server. Version 3.7.5 has a patch for this issue...
CVE-2023-41887 Remote Code exec in project import with mysql jdbc url attack
OpenRefine is a powerful free, open source tool for working with messy data. Prior to version 3.7.5, a remote code execution vulnerability allows any unauthenticated user to execute code on the server. Version 3.7.5 has a patch for this issue...
CVE-2023-36898 Tablet Windows User Interface Application Core Remote Code Execution Vulnerability
...
Apache Airflow ODBC Provider Remote Code Execution Vulnerability
Apache Airflow is the United States Apache Apache Foundation's set of open source platform for creating, managing and monitoring workflow. A remote code execution vulnerability exists in Apache Airflow ODBC Provider, which can be exploited by an attacker to cause command execution...
CVE-2023-21517
The CVE-2023-21517 entry corresponds to a heap out-of-bounds write in Exynos baseband prior to Samsung SMR Jun-2023 Release 1, enabling a remote attacker to execute arbitrary code. Connected PT-2023-18273 and related sources confirm the affected software is Exynos baseband versions prior to SMR J...
CVE-2023-28224
Windows Point-to-Point Protocol over Ethernet PPPoE Remote Code Execution Vulnerability...
CVE-2023-21727 Remote Procedure Call Runtime Remote Code Execution Vulnerability
...
Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability
...
3D Builder Remote Code Execution Vulnerability
...
Windows Layer 2 Tunneling Protocol (L2TP) Remote Code Execution Vulnerability
...
Microsoft Windows Scripting Languages Remote Code Execution Vulnerability
Microsoft Windows contains an unspecified vulnerability in the JScript9 scripting language which allows for remote code execution...
CVE-2022-22035 Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability
...
(Pwn2Own) ConnMan received_data Out-Of-Bounds Write Remote Code Execution Vulnerability
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installation of ConnMan. Authentication is not required to exploit this vulnerability. The specific flaw exists within the receiveddata method. Crafted data in a HTTP response can trigger a write past the e...
Apache Airflow Remote Code Execution Vulnerability (CNVD-2022-59057)
Apache Airflow is an open source platform for creating, managing and monitoring workflows from the Apache Foundation. The platform is scalable and dynamically monitored, etc. A remote code execution vulnerability exists in versions of Apache Airflow prior to 3.0.0. The vulnerability stems from th...
CVE-2022-35766 Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability
...
CVE-2022-22038 Remote Procedure Call Runtime Remote Code Execution Vulnerability
...
GHSA-7FH9-933G-885P Drupal Core Remote Code Execution Vulnerability
Drupal before 7.58, 8.x before 8.3.9, 8.4.x before 8.4.6, and 8.5.x before 8.5.1 allows remote attackers to execute arbitrary code because of an issue affecting multiple subsystems with default or common module configurations...
NETGEAR Multiple Routers Remote Code Execution Vulnerability
NETGEAR confirmed multiple routers allow unauthenticated web pages to pass form input directly to the command-line interface, permitting remote code execution...
GNU Bourne-Again Shell (Bash) Arbitrary Code Execution Vulnerability
GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows remote attackers to execute code. This CVE correctly remediates the vulnerability in CVE-2014-6271...
CVE-2021-36072 Adobe Bridge SGI File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
Adobe Bridge versions 11.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...