18 matches found
EUVD-2014-2342
Malware in sbrugna...
EUVD-2021-10303
Malware in sbrugna...
EUVD-2019-4088
Malware in sbrugna...
EUVD-2020-28924
Malware in sbrugna...
EUVD-2025-31923
Malicious code in bioql PyPI...
The vulnerability of the access controller service allows attackers to exploit the Capability Access Management Service (camsvc) of Windows operating systems, thereby enabling them to increase their privileges.
The vulnerability of the access controller service related to the Capability Access Management Service camsvc on Windows operating systems is associated with competitive access to resources during a “race condition”. Exploiting this vulnerability can allow an attacker to enhance their privileges...
Apache NiFi Credentials Gather
This module will grab Apache NiFi credentials from various files on Linux. Module Options msf use post/linux/gather/apachenificredentials msf postapachenificredentials show actions ...actions... msf postapachenificredentials set ACTION msf postapachenificredentials show options ...show and set...
CVE-2023-31011
NVIDIA DGX H100 BMC contains a vulnerability in the REST service where an attacker may cause improper input validation. A successful exploit of this vulnerability may lead to escalation of privileges and information disclosure...
Veritas Enterprise Vault EVTaskGuardian Deserialization of Untrusted Data Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Veritas Enterprise Vault. Authentication is not required to exploit this vulnerability. The specific flaw exists within EVTaskGuardian.exe. The issue results from the lack of proper validation of...
CVE-2021-23197
Unquoted service path vulnerability in the Gallagher Controller Service allows an unprivileged user to execute arbitrary code as the account that runs the Controller Service. This issue affects: Gallagher Command Centre 8.50 versions prior to 8.50.2048 MR3 ;...
CVE-2021-23197
Unquoted service path vulnerability in the Gallagher Controller Service allows an unprivileged user to execute arbitrary code as the account that runs the Controller Service. This issue affects: Gallagher Command Centre 8.50 versions prior to 8.50.2048 MR3 ;...
CVE-2021-34415
The Zone Controller service in the Zoom On-Premise Meeting Connector Controller before version 4.6.358.20210205 does not verify the cnt field sent in incoming network packets, which leads to exhaustion of resources and system crash...
ZOOM on-premise Meeting Connector 输入验证错误漏洞
ZOOM on-premise Meeting Connector is a meeting connector from Zoom ZOOM USA. A security vulnerability exists in versions prior to ZOOM On-Premise Meeting Connector Controller 4.6.358.20210205, which stems from the zone controller service failing to validate the cnt field sent in incoming network...
CVE-2020-8011
CA Unified Infrastructure Management Nimsoft/UIM 20.1, 20.3.x, and 9.20 and below contains a null pointer dereference vulnerability in the robot controller component. A remote attacker can crash the Controller service...
CVE-2020-8011
CA Unified Infrastructure Management Nimsoft/UIM 20.1, 20.3.x, and 9.20 and below contains a null pointer dereference vulnerability in the robot controller component. A remote attacker can crash the Controller service...
CA Unified Infrastructure Management Null Pointer Dereference Vulnerability
CA Unified Infrastructure Management is a unified IT monitoring solution that helps organizations deliver reliable, flexible IT services. A null pointer dereference vulnerability exists in the robot component in CA Unified Infrastructure Management 9.20 and earlier. A remote attacker could exploi...
Apache NiFi Information Disclosure Vulnerability
Apache NiFi is a data processing and distribution system of the American Apache Apache Software Foundation. The system is primarily used for data routing, transformation and system intermediary logic. An information disclosure vulnerability exists in Apache NiFi versions 1.3.0 through 1.9.2, whic...
Design/Logic Flaw
A vulnerability in version 0.90 of the Open Floodlight SDN controller software could result in a denial of service attack and crashing of the controller service. This effect is the result of a flaw in OpenFlow protocol processing, where specific malformed and mistimed FEATURESREPLY messages cause...