Lucene search
K

5 matches found

The Hacker News
The Hacker News
added 2024/03/21 3:55 a.m.85 views

Ivanti Releases Urgent Fix for Critical Sentry RCE Vulnerability

Ivanti has disclosed details of a critical remote code execution flaw impacting Standalone Sentry, urging customers to apply the fixes immediately to stay protected against potential cyber threats. Tracked as CVE-2023-41724, the vulnerability carries a CVSS score of 9.6. "An unauthenticated threa...

7.6AI score0.12844EPSS
Exploits0
Patchstack
Patchstack
added 2023/12/27 12:0 a.m.8 views

WordPress EnvíaloSimple Plugin <= 2.1 is vulnerable to PHP Object Injection

Software EnvíaloSimple Type Plugin Vulnerable versions = 2.1 Fixed in 2.2 OWASP Top 10 A3: Injection Classification PHP Object Injection CVE CVE-2023-51414 Patch priority High CVSS severity High 9.6 Developer Claim ownership PSID 134713a86bde Credits Rafie Muhammad Patchstack Required privilege...

9.8CVSS6.8AI score0.00565EPSS
Exploits0References2Affected Software1
ICS
ICS
added 2023/07/11 12:0 a.m.29 views

Rockwell Automation Enhanced HIM

1. EXECUTIVE SUMMARY CVSS v3 9.6 ATTENTION: Exploitable remotely/low attack complexity Vendor: Rockwell Automation Equipment: Enhanced HIM Vulnerability: Cross-site Request Forgery 2. RISK EVALUATION Successful exploitation of this vulnerability could lead to sensitive information disclosure and...

9.6CVSS9.5AI score0.00399EPSS
Exploits0References10
ICS
ICS
added 2022/08/09 12:0 a.m.166 views

Emerson OpenBSI

1. EXECUTIVE SUMMARY CVSS v3 9.6 ATTENTION: Exploitable remotely/low attack complexity Vendor: Emerson Equipment: OpenBSI Vulnerabilities: Use of Broken or Risky Cryptographic Algorithm, Use of Hard-coded Cryptographic Key CISA is aware of a public report, “OT:ICEFALL,” that details...

5.5CVSS6.6AI score0.00475EPSS
Exploits0References5
ICS
ICS
added 2020/09/10 12:0 a.m.59 views

AVEVA Enterprise Data Management Web

1. EXECUTIVE SUMMARY CVSS v3 9.6 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: AVEVA Equipment: Enterprise Data Management Web Vulnerability: SQL Injection 2. RISK EVALUATION Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary SQL...

9.8CVSS9.9AI score0.02912EPSS
Exploits3References5
Rows per page
Query Builder