Lucene search
K

170 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2024/06/25 1:25 p.m.3 views

Malicious code in Be.Vlaandеren.Basіsregisters.CommandHanԁliոg.Idempotency (NuGet)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
OSV
OSV
added 2024/06/25 1:25 p.m.4 views

MAL-2024-4174 Malicious code in Be.Vlaandеren.Basіsregisters.CommandHanԁliոg.Idempotency (NuGet)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/06/25 1:25 p.m.2 views

Malicious code in Be.Vlaaոderen.Basisregistеrs.CommandHandling (NuGet)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/06/25 1:24 p.m.3 views

Malicious code in Be.Vlaaոdereո.Basisrеgistеrs.CommandHandling (NuGet)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/06/25 1:24 p.m.3 views

Malicious code in Be.Vlaаnderеո.Basisregisters.CommandHandling.Idempotency.Miсrosoft (NuGet)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/06/25 1:23 p.m.5 views

Malicious code in Bе.Vlaaոderen.Basіsregisters.CommandHandling.SqlStreаmStore (NuGet)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/06/24 12:0 a.m.9 views

The vulnerability of the web server of the microprogramming software in the industrial cellular LTE modem OnCell G3470A-LTE allows a hacker to execute arbitrary code.

The vulnerability of the web server of the microprogramming software in the industrial cellular LTE modem OnCell G3470A-LTE is related to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to...

7.5CVSS6AI score0.0044EPSS
Exploits0References2Affected Software1
Zero Day Initiative
Zero Day Initiative
added 2024/06/21 12:0 a.m.29 views

(Pwn2Own) Autel MaxiCharger AC Elite Business C50 BLE AppChargingControl Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Autel MaxiCharger AC Elite Business C50 charging stations. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The...

8CVSS7.6AI score0.00817EPSS
Exploits0
OSV
OSV
added 2024/04/28 1:15 p.m.6 views

UBUNTU-CVE-2022-48650

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix memory leak in qlt24xxhandleabts Commit 8f394da36a36 "scsi: qla2xxx: Drop TARGETSCFLOOKUPLUNFROMTAG" made the qlt24xxhandleabts function return early if tcmqla2xxxfindcmdbytag didn't find a command, but it miss...

4.7CVSS6.1AI score0.00229EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2024/04/23 12:0 a.m.9 views

The vulnerability of the processAnalyticsReport method of the com.webos.service.cloudupload service in the LG WebOS operating system allows a hacker to elevate their privileges to the root level.

The vulnerability of the processAnalyticsReport method of the com.webos.service.cloudupload service in the LG WebOS operating system exists because measures to neutralize the special elements used in the operating system commands have not been taken. Exploiting this vulnerability allows a malicio...

9.1CVSS7.8AI score0.04667EPSS
Exploits1References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/04/19 12:0 a.m.7 views

The vulnerability of the svc_cifssupport utility in the Dell Unity Operating Environment (OE) system allows a malicious actor to execute arbitrary operating system commands with root privileges.

The vulnerability of the svccifssupport utility in the Dell Unity Operating Environment DELL Unity Operating Environment system exists due to the lack of measures taken to neutralize special elements used in the operating system’s commands. Exploiting this vulnerability allows an attacker to...

7.8CVSS7.5AI score0.00644EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/03/20 12:0 a.m.5 views

The vulnerability of the CLI interface of ArubaOS operating systems allows a perpetrator to execute arbitrary commands.

The vulnerability of the CLI interface of ArubaOS operating systems is related to the lack of measures taken to neutralize special elements used in operating system commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

8.3CVSS7.5AI score0.0124EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2024/02/07 12:0 a.m.2 views

PT-2024-40844 · Git +1 · Cras

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-double-free crash. Technical details include a crash state with functions such as handle at command and handle at command...

7AI score
Exploits0References2
OSV
OSV
added 2024/01/22 9:21 p.m.21 views

GHSA-R7QV-8R2H-PG27 Multiple issues involving quote API in shlex

Issue 1: Failure to quote characters Affected versions of this crate allowed the bytes and \xa0 to appear unquoted and unescaped in command arguments. If the output of quote or join is passed to a shell, then what should be a single command argument could be interpreted as multiple arguments. Thi...

3.2CVSS6.3AI score0.0078EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2024/01/06 12:0 a.m.6 views

The vulnerability of the PAN-OS operating system arises from the lack of measures taken to neutralize special elements used in the operating system’s commands. This allows attackers to execute arbitrary code.

The vulnerability of the PAN-OS operating system exists due to the lack of measures taken to neutralize special elements used in the operating system’s commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

6.8CVSS6.7AI score0.01144EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/12/25 12:0 a.m.6 views

The vulnerability of the flupl function in D-Link G416 router microprogramming software allows a hacker to execute arbitrary code.

The vulnerability of the flupl function in D-Link G416 router microprogramming software is related to the failure to take measures to neutralize special elements used in the operating system’s command set. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by...

8.8CVSS8.1AI score0.00946EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2023/11/07 12:0 a.m.5 views

PT-2023-21817 · Wlan Hal · Wlan Hal

Name of the Vulnerable Software and Affected Versions: WLAN HAL affected versions not specified Description: The issue involves information disclosure in the WLAN HAL when handling commands through WMI interfaces. Recommendations: At the moment, there is no information about a newer version that...

6.1CVSS5.7AI score0.00138EPSS
Exploits0References2
OSV
OSV
added 2023/09/15 7:15 p.m.5 views

DEBIAN-CVE-2023-36479

Eclipse Jetty Canonical Repository is the canonical repository for the Jetty project. Users of the CgiServlet with a very specific command structure may have the wrong command executed. If a user sends a request to a org.eclipse.jetty.servlets.CGI Servlet for a binary with a space in its name, th...

3.1CVSS6.2AI score0.01006EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2023/07/12 12:0 a.m.6 views

PT-2023-7953 · D Link · D-Link G416

Name of the Vulnerable Software and Affected Versions: D-Link G416 affected versions not specified Description: The issue is related to the cfgsave upusb function in the D-Link G416 router's firmware, which does not properly neutralize special elements used in an operating system command. This ca...

8.8CVSS7.5AI score0.00916EPSS
Exploits0References7
Redos
Redos
added 2023/07/06 12:0 a.m.13 views

ROS-2-1301

2.1301 Vulnerability in Mozilla Thunderbird email client CVE-2021-29970, CVE-2021-30547, CVE-2021-29976, CVE-2021-29969. 1. Vulnerability Description: CVE-2021-29970 Vulnerability in Mozilla Thunderbird email client, related to HTML content processing error. Exploitation of the vulnerability coul...

8.8CVSS8.3AI score0.03582EPSS
Exploits1
Rows per page
Query Builder