Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

RedhatCVE
RedhatCVEadded 2025/05/23 2:27 a.m.3 views

CVE-2023-27982

A CWE-345: Insufficient Verification of Data Authenticity vulnerability exists in the Data Server that could cause manipulation of dashboard files in the IGSS project report directory, when an attacker sends specific crafted messages to the Data Server TCP port, this could lead to remote code...

8.8CVSS7.6AI score0.00383EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 1:8 a.m.4 views

CVE-2022-24311

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory vulnerability exists that could cause modification of an existing file by inserting at beginning of file or create a new file in the context of the Data Server potentially leading to remote code execution when an attacker sends...

9.8CVSS7.7AI score0.03703EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2024/02/21 12:0 a.m.2 views

PT-2024-1860 · Cisco · Cisco Unified Intelligence Center

Name of the Vulnerable Software and Affected Versions: Cisco Unified Intelligence Center affected versions not specified Description: A vulnerability in the Live Data server could allow an unauthenticated, local attacker to read and modify data in a repository that belongs to an internal service ...

7.1CVSS4.8AI score0.00072EPSS
Exploits0References7
OSV
OSVadded 2023/03/21 2:15 p.m.0 views

CVE-2023-27983

A CWE-306: Missing Authentication for Critical Function vulnerability exists in the Data Server TCP interface that could allow deletion of reports from the IGSS project report directory, this would lead to loss of data when an attacker abuses this functionality. Affected Products: IGSS Data...

5.3CVSS6.1AI score
Exploits0References1
Vulnrichment
Vulnrichmentadded 2023/03/21 12:0 a.m.7 views

CVE-2023-27979

A CWE-345: Insufficient Verification of Data Authenticity vulnerability exists in the Data Server that could allow the renaming of files in the IGSS project report directory, this could lead to denial of service when an attacker sends specific crafted messages to the Data Server TCP port. Affecte...

6.5CVSS6.3AI score0.0016EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2023/03/21 12:0 a.m.10 views

CVE-2023-27983

A CWE-306: Missing Authentication for Critical Function vulnerability exists in the Data Server TCP interface that could allow deletion of reports from the IGSS project report directory, this would lead to loss of data when an attacker abuses this functionality. Affected Products: IGSS Data...

6.5CVSS6.4AI score0.00193EPSS
Exploits0References1
Veracode
Veracodeadded 2021/05/20 3:27 p.m.24 views

Denial Of Service (DoS)

evolution-data-server is vulnerable to denial of service DoS. The vulnerability exists through a NULL pointer dereference by sending an invalid e.g., minimal CAPABILITY line on a connection attempt...

5.9CVSS2.9AI score0.01593EPSS
Exploits1References8Affected Software1
Rows per page
Query Builder