Lucene search
K

5 matches found

Cvelist
Cvelist
added 2026/05/29 2:6 a.m.38 views

CVE-2026-7480

An Incorrect Permission Assignment for Critical Resource vulnerability in ASUS System Control Interface allows a local user to elevate privileges to SYSTEM and execute arbitrary code via a crafted RPC call that bypass the validation mechanism. Refer to the 'Security Update for ASUS System Control...

7.3CVSS0.00135EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 5:36 a.m.4 views

SUSE CVE-2013-4296

The remoteDispatchDomainMemoryStats function in daemon/remote.c in libvirt 0.9.1 through 0.10.1.x, 0.10.2.x before 0.10.2.8, 1.0.x before 1.0.5.6, and 1.1.x before 1.1.2 allows remote authenticated users to cause a denial of service uninitialized pointer dereference and crash via a crafted RPC ca...

4CVSS6.6AI score0.02678EPSS
Exploits0References6
NVD
NVD
added 2019/06/28 6:15 p.m.20 views

CVE-2018-14868

Incorrect access control in the Password Encryption module in Odoo Community 9.0 and Odoo Enterprise 9.0 allows authenticated users to change the password of other users without knowing their current password via a crafted RPC call...

6.5CVSS6.4AI score0.00603EPSS
Exploits0References2
Cvelist
Cvelist
added 2019/06/18 11:16 p.m.17 views

CVE-2019-3954

Stack-based buffer overflow in Advantech WebAccess/SCADA 8.4.0 allows a remote, unauthenticated attacker to execute arbitrary code by sending a crafted IOCTL 81024 RPC call...

9.9AI score0.03906EPSS
Exploits1References1
Prion
Prion
added 2012/04/10 9:55 p.m.23 views

Input validation

The RPC code generator in Samba 3.x before 3.4.16, 3.5.x before 3.5.14, and 3.6.x before 3.6.4 does not implement validation of an array length in a manner consistent with validation of array memory allocation, which allows remote attackers to execute arbitrary code via a crafted RPC call...

10CVSS8.1AI score0.74034EPSS
Exploits9References27Affected Software1
Rows per page
Query Builder