7 matches found
CVE-2026-10786
Improper access control in the ticketing integration settings in Devolutions Server allows an authenticated low-privileged user to obtain cleartext credentials for configured ticketing integrations via a crafted API request. This issue affects : Devolutions Server 2026.2.4.0 Devolutions Server...
PT-2026-37648
Name of the Vulnerable Software and Affected Versions Cisco Unity Connection affected versions not specified Description Insufficient validation of user-supplied input in the web-based management interface allows an authenticated remote attacker to execute arbitrary code as root. This is achieved...
The vulnerability of the Cisco Identity Services Engine (ISE) policy management platform and the Cisco ISE Passive Identity Connector (ISE-PIC) virtual authentication data collection device exists due to the lack of measures to neutralize specific elements, allowing attackers to execute arbitrary commands with root privileges.
The vulnerability of the Cisco Identity Services Engine ISE policy management platform and the Cisco ISE Passive Identity Connector ISE-PIC virtual authentication data collection device exists due to the lack of measures to neutralize specific elements. Exploiting this vulnerability allows a...
CVE-2024-44757
CVE-2024-44757 describes an arbitrary file download vulnerability in the component /Basics/DownloadInpFile of NUS-M9 ERP Management Software v3.0.0, exploitable via a crafted interface request that can expose sensitive files. The initial data indicates a high-severity impact (C:H/I:N/A:N, CVSS 3....
CVE-2022-4003
A denial-of-service vulnerability could allow an authenticated user to trigger an internal service restart via a specially crafted API request...
Motorola Q14 安全漏洞
The Motorola Q14 is a mesh router system from Motorola USA. A security vulnerability exists in Motorola Q14 versions prior to v1.5.0.16, which stems from a denial of service vulnerability that could allow an authenticated user to trigger an internal service restart via a specially crafted API...
PT-2024-21971
Name of the Vulnerable Software and Affected Versions Ladder versions 0.0.1 through 0.0.21 Description The issue allows a remote attacker to obtain sensitive information via a crafted request to the API. Recommendations For versions 0.0.1 through 0.0.21, update to a version that contains a fix fo...