Lucene search
K

65 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-3341

Malicious code in bioql PyPI...

5.1CVSS6.3AI score0.00598EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-28570

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.03214EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.19 views

EUVD-2022-4041

Malicious code in bioql PyPI...

8.5CVSS7.5AI score0.01795EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/09/26 9:5 p.m.8 views

CVE-2025-10657 Docker Desktop with ECI Fails to Enforce Socket Command Restrictions

In a hardened Docker environment, with Enhanced Container Isolation ECI https://docs.docker.com/enterprise/security/hardened-desktop/enhanced-container-isolation/ enabled, an administrator can utilize the command restrictions feature...

8.7CVSS0.00136EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2022-42717

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Hashicorp Packer before 2.3.1. The recommended sudoers configuration for Vagrant on Linux is insecure. If the host has been configure...

7.8CVSS7.3AI score0.00227EPSS
Exploits0References2
Cisco
Cisco
added 2025/08/14 4:0 p.m.8 views

Cisco Secure Firewall Management Center Software Command Injection Vulnerability

A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center FMC Software could allow an authenticated, remote attacker with Administrator-level privileges to execute arbitrary commands on the underlying operating system. This vulnerability is due to insufficie...

4.9CVSS7.9AI score0.00344EPSS
Exploits0References1
Fedora
Fedora
added 2025/07/10 4:30 p.m.29 views

[SECURITY] Fedora 41 Update: sudo-1.9.17-2.p1.fc41

Sudo superuser do allows a system administrator to give certain users or groups of users the ability to run some or all commands as root while logging all commands and arguments. Sudo operates on a per-command basis. It is not a replacement for the shell. Features include: the ability to restrict...

8.8CVSS7.6AI score0.03239EPSS
Exploits12
RedhatCVE
RedhatCVE
added 2025/05/23 2:31 a.m.4 views

CVE-2023-1862

Cloudflare WARP client for Windows up to v2023.3.381.0 allowed a malicious actor to remotely access the warp-svc.exe binary due to an insufficient access control policy on an IPC Named Pipe. This would have enabled an attacker to trigger WARP connect and disconnect commands, as well as obtaining...

7.3CVSS7AI score0.00754EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:6 p.m.11 views

CVE-2021-33885

An Insufficient Verification of Data Authenticity vulnerability in B. Braun SpaceCom2 prior to 012U000062 allows a remote unauthenticated attacker to send the device malicious data that will be used in place of the correct data. This results in full system command access and execution because of...

10CVSS7.3AI score0.0558EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:13 p.m.10 views

CVE-2020-26606

An issue was discovered on Samsung mobile devices with O8.x, P9.0, Q10.0, and R11.0 software. An attacker can access certain Secure Folder content via a debugging command. The Samsung ID is SVE-2020-18673 October 2020...

7.5CVSS7AI score0.00431EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2024/12/18 12:0 a.m.12 views

CVE-2024-49202

Keyfactor Command before 12.5.0 has Incorrect Access Control: access tokens are over permissioned, aka 64099. The fixed versions are 11.5.1.1, 11.5.2.1, 11.5.3.1, 11.5.4.5, 11.5.6.1, 11.6.0, 12.2.0.1, 12.3.0.1, 12.4.0.1, 12.5.0, and 24.4.0...

7.3AI score0.00283EPSS
Exploits0References2
OSV
OSV
added 2024/10/23 6:15 p.m.7 views

CVE-2024-20424

A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center FMC Software, formerly Firepower Management Center Software, could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system as root. This vulnerability ...

9.9CVSS6.1AI score0.00941EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/10/16 12:0 a.m.5 views

PT-2024-7340 · Cisco · Cisco Ata 190 Series Analog Telephone Adapter

Name of the Vulnerable Software and Affected Versions: Cisco ATA 190 Series Analog Telephone Adapter firmware affected versions not specified Description: The issue exists due to the lack of proper sanitization of CLI input, allowing an attacker to execute arbitrary commands as the root user by...

6.2CVSS7.8AI score0.00181EPSS
Exploits0References8
OSV
OSV
added 2024/09/10 3:15 p.m.1 views

UBUNTU-CVE-2024-45044

Bareos is open source software for backup, archiving, and recovery of data for operating systems. When a command ACL is in place and a user executes a command in bconsole using an abbreviation i.e. "w" for "whoami" the ACL check did not apply to the full form i.e. "whoami" but to the abbreviated...

8.8CVSS5.8AI score0.00531EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/09/10 12:0 a.m.7 views

PT-2024-31395 · Bareos · Bareos

Name of the Vulnerable Software and Affected Versions: Bareos versions prior to 21.1.11 Bareos versions prior to 22.1.6 Bareos versions prior to 23.0.4 Description: The issue concerns the command ACL in Bareos, where command restrictions can be bypassed using abbreviations. When a command ACL is ...

8.8CVSS7.7AI score0.00531EPSS
Exploits0References14
CNNVD
CNNVD
added 2024/08/13 12:0 a.m.6 views

SolarWinds Web Help Desk 代码问题漏洞

SolarWinds Web Help Desk is a suite of help desk and asset management software from US-based SolarWinds. The software supports centralized knowledge base, IT asset management, project and task management, and other features. A code issue vulnerability exists in SolarWinds Web Help Desk 12.8.3 and...

9.8CVSS8.3AI score0.84628EPSS
Exploits0References3
OSV
OSV
added 2024/03/25 3:33 p.m.16 views

USN-6714-1 debian-goodies vulnerability

It was discovered that debmany in Debian Goodies incorrectly handled certain deb files. An attacker could possibly use this issue to execute arbitrary shell commands...

7.8CVSS6AI score0.00446EPSS
Exploits0References2
OSV
OSV
added 2024/02/27 1:15 a.m.4 views

CVE-2024-27356

An issue was discovered on certain GL-iNet devices. Attackers can download files such as logs via commands, potentially obtaining critical user information. This affects MT6000 4.5.5, XE3000 4.4.4, X3000 4.4.5, MT3000 4.5.0, MT2500 4.5.0, AXT1800 4.5.0, AX1800 4.5.0, A1300 4.5.0, S200 4.1.4-0300,...

7.5CVSS5.8AI score0.23905EPSS
Exploits3References2
CNNVD
CNNVD
added 2024/02/26 12:0 a.m.3 views

Indu-Sol PROFINET-INspektor NT Security Vulnerability

The Indu-Sol PROFINET-INspektor NT is an analysis and test set for PROFINET communication verification, acceptance, quality checking and monitoring from Indu-Sol, Germany. A security vulnerability exists in Indu-Sol PROFINET-INspektor NT version 2.4.0 and earlier, which stems from a command...

9.8CVSS8.2AI score0.01379EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/02/15 12:0 a.m.4 views

EC-WEB FS-EZViewer SQL Injection Vulnerability

EC-WEB FS-EZViewer is an online document viewing application. EC-WEB FS-EZViewer suffers from a SQL injection vulnerability that stems from a lack of proper restrictions on user input. A remote attacker could use this vulnerability to inject SQL commands to read, modify, and delete database recor...

8.8CVSS8.2AI score0.00803EPSS
Exploits0References2
Rows per page
Query Builder