Lucene search
K

14 matches found

Vulnrichment
Vulnrichment
added 2026/05/27 2:29 p.m.10 views

CVE-2026-42184 Tauri: Origin Confusion Allows Remote Pages to Invoke Local-Only IPC Commands

Tauri is a framework for building binaries for all major desktop platforms. From 2.0 to 2.11.0, a flaw in Tauri's islocalurl function causes it to incorrectly classify remote URLs as trusted local origins on Windows and Android. On these systems, Tauri maps custom URI scheme protocols to...

6.1CVSS5.8AI score0.00312EPSS
Exploits1References1
OSV
OSV
added 2025/02/12 3:15 p.m.12 views

CVE-2025-1244

A command injection flaw was found in the text editor Emacs. It could allow a remote, unauthenticated attacker to execute arbitrary shell commands on a vulnerable system. Exploitation is possible by tricking users into visiting a specially crafted website or an HTTP URL with a redirect...

8.8CVSS9.2AI score0.0256EPSS
Exploits0References16
Debian CVE
Debian CVE
added 2025/02/12 2:27 p.m.10 views

CVE-2025-1244

A command injection flaw was found in the text editor Emacs. It could allow a remote, unauthenticated attacker to execute arbitrary shell commands on a vulnerable system. Exploitation is possible by tricking users into visiting a specially crafted website or an HTTP URL with a redirect...

8.8CVSS8.3AI score0.0256EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/12 8:35 a.m.10 views

CVE-2025-1244

A command injection flaw was found in the text editor Emacs. It could allow a remote, unauthenticated attacker to execute arbitrary shell commands on a vulnerable system. Exploitation is possible by tricking users into visiting a specially crafted website or an HTTP URL with a redirect. Mitigatio...

8.8CVSS9.2AI score0.0256EPSS
Exploits0References3
OSV
OSV
added 2024/06/14 9:31 a.m.31 views

GHSA-HVXG-77MG-VRVP Mattermost Desktop App Remote Code Execution

Mattermost Desktop App versions =5.7.0 fail to correctly prompt for permission when opening external URLs which allows a remote attacker to force a victim over the Internet to run arbitrary programs on the victim's system via custom URI schemes...

4.7CVSS5.4AI score0.003EPSS
Exploits0References4
OSV
OSV
added 2024/06/14 8:39 a.m.10 views

CVE-2024-37182 Lack of permissions prompting when opening external URLs

Mattermost Desktop App versions =5.7.0 fail to correctly prompt for permission when opening external URLs which allows a remote attacker to force a victim over the Internet to run arbitrary programs on the victim's system via custom URI schemes...

4.7CVSS6.1AI score0.003EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/06/14 8:39 a.m.31 views

CVE-2024-37182 Lack of permissions prompting when opening external URLs

Mattermost Desktop App versions =5.7.0 fail to correctly prompt for permission when opening external URLs which allows a remote attacker to force a victim over the Internet to run arbitrary programs on the victim's system via custom URI schemes...

4.7CVSS0.003EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/06/14 12:0 a.m.7 views

PT-2024-27360 · Mattermost · Mattermost Desktop App

Name of the Vulnerable Software and Affected Versions: Mattermost Desktop App versions =5.7.0 Description: The issue allows a remote attacker to force a victim to run arbitrary programs on their system via custom URI schemes, due to the application's failure to correctly prompt for permission whe...

6.1CVSS7.4AI score0.003EPSS
Exploits0References7
Microsoft KB
Microsoft KB
added 2020/06/15 12:0 a.m.6 views

May 29, 2019—KB4497935 (OS Build 18362.145)

May 29, 2019—KB4497935 OS Build 18362.145 Improvements and fixes This update includes quality improvements. Key changes include: Addresses an issue in which Device-S4 may be applied unexpectedly while the system is using AC power. For more information, see Device-S4 may be applied unexpectedly...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2019/06/21 12:0 a.m.526 views

EA Origin Remote Code Execution

Exploit Title: EA Origin 10.5.38 Remote Code Execution Date: 05/22/2019 Exploit Author: Dominik Penner @zer0pwn Vendor Homepage: https://www.origin.com Software Link: https://www.origin.com/can/en-us/store/download Version: 10.5.38 and below Tested on: Windows 7, Windows 8, Windows 10 CVE :...

9.3CVSS0.2AI score0.71776EPSS
Exploits14
Microsoft KB
Microsoft KB
added 2019/04/09 7:0 a.m.76 views

April 9, 2019—KB4493451 (Monthly Rollup)

April 9, 2019—KB4493451 Monthly Rollup Improvements and fixes This security update includes improvements and fixes that were a part of update KB4489920 released March 19, 2019 and addresses the following issues: Addresses an issue that causes the error "0x3Bc0000005win32k!vSetPointer" when the...

9.3CVSS7.5AI score0.81551EPSS
Exploits48
Microsoft KB
Microsoft KB
added 2019/04/09 7:0 a.m.57 views

April 9, 2019—KB4493475 (OS Build 10240.18186)

April 9, 2019—KB4493475 OS Build 10240.18186 Improvements and fixes This update includes quality improvements. Key changes include: Addresses an issue that may cause applications that use MSXML6 to stop responding if an exception was thrown during node operations. Addresses an issue that causes t...

9.3CVSS7.6AI score0.81551EPSS
Exploits48
Microsoft KB
Microsoft KB
added 2019/03/12 7:0 a.m.49 views

March 12, 2019—KB4489886 (OS Build 16299.1029)

March 12, 2019—KB4489886 OS Build 16299.1029 Reminder: March 12th and April 9th will be the last two Delta updates for Windows 10, version 1709. Security and quality updates will continue to be available via the express and full cumulative update packages. For more information on this change plea...

9.3CVSS7.4AI score0.48501EPSS
Exploits8
Microsoft KB
Microsoft KB
added 2019/03/12 7:0 a.m.186 views

March 12, 2019—KB4489878 (Monthly Rollup)

March 12, 2019—KB4489878 Monthly Rollup Improvements and fixes This security update includes improvements and fixes that were a part of update KB4486565 released February 19, 2019 and addresses the following issues: Addresses an issue that may prevent the Event Viewer from showing some event...

9.3CVSS8.5AI score0.53298EPSS
Exploits11
Rows per page
Query Builder