Lucene search
K

92 matches found

Gentoo Linux
Gentoo Linux
added 2020/08/30 12:0 a.m.61 views

Kleopatra: Remote code execution

Background Kleopatra is a certificate manager and a universal crypto GUI. It supports managing X.509 and OpenPGP certificates in the GpgSM keybox and retrieving certificates from LDAP servers. Description Kleopatra did not safely escape command line parameters provided by URLs, which it configure...

8.8CVSS4.7AI score0.04719EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2019/10/25 12:0 a.m.37 views

Cisco Wireless LAN Controller Path Traversal Vulnerability

According to its self-reported version, Cisco Wireless LAN Controller WLC is affected by a directory traversal vulnerability due to improper sanitization of user-supplied input in command-line parameters that describe file names. An authenticated, local attacker can exploit this to view system...

4.4CVSS5.2AI score0.0065EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2019/10/15 12:0 a.m.52 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : ntp Vulnerability (NS-SA-2019-0206)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has ntp packages installed that are affected by a vulnerability: - Stack-based buffer overflow in ntpq and ntpdc of NTP version 4.2.8p11 allows an attacker to achieve code execution or escalate to higher privileges via a long...

9.8CVSS7.3AI score0.29037EPSS
Exploits5References2
BDU FSTEC
BDU FSTEC
added 2019/07/23 12:0 a.m.3 views

The vulnerability of the gostsum check tool arises from buffer overflows during the processing of command-line parameters, allowing a malicious actor to cause a service failure.

The vulnerability of the gostsum checksum verification tool arises due to buffer overflows during the processing of command-line parameters. Exploiting this vulnerability can allow an attacker to cause a service failure in the application by entering a specially crafted sequence of data in the...

4CVSS5.8AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/06/27 12:0 a.m.2 views

The vulnerability of the alsa_in audio processing tool arises from buffer overflows during the processing of command-line parameters, allowing attackers to cause a service failure.

The vulnerability of the alsain sound processing utility arises due to buffer overflow during the processing of command-line parameters. Exploiting this vulnerability can allow an attacker to cause a service failure by entering a specially crafted sequence of data in the command line...

4CVSS5.9AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2019/06/27 12:0 a.m.19 views

The vulnerability of the h5ls content analysis program arises from buffer overflows during the processing of command-line parameters, allowing attackers to cause service interruptions.

The vulnerability of the h5ls content analysis program arises due to buffer overflows during the processing of command-line parameters. Exploiting this vulnerability can allow an attacker to cause a service failure by entering a specially crafted sequence of data in the command line...

4CVSS5.8AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/06/27 12:0 a.m.4 views

The vulnerability of the SQL command execution utility for the Firebird database, isql-fb, allows a hacker to cause a service failure.

The vulnerability of the SQL command execution utility for Firebird database, iSQL-FB, arises due to buffer overflows during the processing of command line parameters. Exploiting this vulnerability can allow an attacker to cause a service failure by entering a specially crafted sequence of data...

4CVSS6.1AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/06/27 12:0 a.m.4 views

The vulnerability of the h5dump program for processing hdf5 files arises from buffer overflows during the processing of command-line parameters, allowing attackers to cause service failures.

The vulnerability of the h5dump program for viewing hdf5 files arises from buffer overflows during the processing of command-line parameters. Exploiting this vulnerability can allow an attacker to cause a service failure by entering a specially crafted sequence of data in the command line...

4CVSS5.7AI score
Exploits0Affected Software1
NVD
NVD
added 2019/05/10 7:29 p.m.14 views

CVE-2018-7119

A Local Disclosure of Sensitive Information vulnerability was identified in HPE NonStop Safeguard earlier than version SPR T9750L01^AIC or T9750H05^AIH, and later versions when the PASSWORD-PROMPT configuration attribute is not set to BLIND; all versions on H-series. STDSEC-STANDARD SECURITY PROD...

7CVSS7AI score0.00316EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2018/12/13 12:0 a.m.71 views

AIX 5.3 TL 12 : xorg (IJ11551)

https://vulners.com/cve/CVE-2018-14665 https://vulners.com/cve/CVE-2018-14665 X.Org X server could allow a remote authenticated attacker to gain elevated privileges on the system, caused by improper validation of command line parameters. An attacker could exploit this vulnerability using the...

7.2CVSS7.6AI score0.2704EPSS
Exploits39References2
BDU FSTEC
BDU FSTEC
added 2018/10/31 12:0 a.m.5 views

The vulnerability of the X.Org Server software arises from errors in processing and checking command-line parameters, allowing an attacker to gain root privileges and overwrite any file in the operating system.

Vulnerability of the X.Org Server software, caused by errors in processing and checking command-line parameters. Exploiting this vulnerability can allow a remote attacker to gain root privileges and rewrite any file in the operating system using the modulepath and logfile parameters when running...

7.2CVSS7.3AI score0.2704EPSS
Exploits39References7Affected Software1
OSV
OSV
added 2018/07/31 2:29 p.m.17 views

CVE-2018-5543

The F5 BIG-IP Controller for Kubernetes 1.0.0-1.5.0 k8s-bigip-crtl passes BIG-IP username and password as command line parameters, which may lead to disclosure of the credentials used by the container...

8.8CVSS7.1AI score0.01245EPSS
Exploits0References2
Prion
Prion
added 2018/07/31 2:29 p.m.20 views

Default credentials

The F5 BIG-IP Controller for Kubernetes 1.0.0-1.5.0 k8s-bigip-crtl passes BIG-IP username and password as command line parameters, which may lead to disclosure of the credentials used by the container...

4CVSS8.7AI score0.01245EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2018/07/31 2:29 p.m.29 views

CVE-2018-5543

The F5 BIG-IP Controller for Kubernetes 1.0.0-1.5.0 k8s-bigip-crtl passes BIG-IP username and password as command line parameters, which may lead to disclosure of the credentials used by the container...

8.8CVSS8.8AI score0.01245EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/07/31 2:0 p.m.26 views

CVE-2018-5543

The F5 BIG-IP Controller for Kubernetes 1.0.0-1.5.0 k8s-bigip-crtl passes BIG-IP username and password as command line parameters, which may lead to disclosure of the credentials used by the container...

8.8AI score0.01245EPSS
Exploits0References2
CNVD
CNVD
added 2018/03/12 12:0 a.m.6 views

Huawei eNSP Software Buffer Overflow Vulnerability

Huawei eNSP Enterprise Network Simulation Platform is a free, scalable, graphical operation network simulation tool platform provided by Huawei. A buffer overflow vulnerability exists in the Huawei eNSP software due to insufficient program checksums for specific command line parameters, which can...

3.3CVSS7AI score0.00247EPSS
Exploits2References1
Prion
Prion
added 2016/11/25 3:59 a.m.13 views

Design/Logic Flaw

IBM Spectrum Scale 4.1.1.x before 4.1.1.8 and 4.2.x before 4.2.0.4 and General Parallel File System GPFS 3.5.x before 3.5.0.32 and 4.1.x before 4.1.1.8 allow local users to gain privileges via crafted command-line parameters to a /usr/lpp/mmfs/bin/ setuid program...

6.9CVSS6.8AI score0.00296EPSS
Exploits0References2Affected Software2
Check Point Advisories
Check Point Advisories
added 2015/10/13 12:0 a.m.8 views

Microsoft Internet Explorer Information Disclosure (MS15-106: CVE-2015-6053)

An information disclosure vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in Microsoft Internet Explorer while handling unsafe command line parameters. A remote attacker can exploit this issue by enticing a user to open a specially crafted...

5CVSS7.2AI score0.18937EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2015/10/13 12:0 a.m.12 views

Microsoft Internet Explorer Information Disclosure (MS15-106: CVE-2015-6046)

An information disclosure vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in Microsoft Internet Explorer while handling unsafe command line parameters. A remote attacker can exploit this issue by enticing a user to open a specially crafted...

4.3CVSS7.2AI score0.14003EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2015/09/08 12:0 a.m.32 views

Microsoft Internet Explorer Information Disclosure (MS15-094: CVE-2015-2483)

An information disclosure vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in Microsoft Internet Explorer while handling unsafe command line parameters. A remote attacker can exploit this issue by enticing a user to open a specially crafted...

5CVSS5.8AI score0.19142EPSS
Exploits0
Rows per page
Query Builder