Lucene search
K

2324 matches found

Vulnrichment
Vulnrichment
added 2024/08/29 7:12 p.m.18 views

CVE-2024-34019

Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Snap Deploy Windows before build 4569...

6.7CVSS6.8AI score0.00139EPSS
Exploits0References1
CVE
CVE
added 2024/08/29 7:12 p.m.48 views

CVE-2024-34019

CVE-2024-34019 involves a DLL hijacking local privilege escalation affecting Acronis Snap Deploy on Windows prior to build 4569. The Red Hat and NVD entries corroborate the same vulnerability description: local privilege escalation due to DLL hijacking, with affected software being Acronis Snap D...

7.3CVSS6.8AI score0.00139EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/08/29 12:0 a.m.3 views

Acronis Snap Deploy 代码问题漏洞

Acronis Snap Deploy is a platform for bulk deployment of system images from Acronis Singapore. A code issue vulnerability previously existed in Acronis Snap Deploy version 4569, which stemmed from the inclusion of a DLL hijacking vulnerability leading to local elevation of privilege...

7.3CVSS6.5AI score0.00139EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/08/29 12:0 a.m.5 views

PT-2024-25644 · Acronis · Acronis Snap Deploy

Name of the Vulnerable Software and Affected Versions: Acronis Snap Deploy Windows versions prior to build 4569 Description: The issue is related to sensitive information disclosure due to insecure folder permissions. This allows sensitive information to be exposed. Recommendations: For versions...

5.5CVSS6.7AI score0.00146EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/08/29 12:0 a.m.3 views

Acronis Snap Deploy 代码问题漏洞

Acronis Snap Deploy is a platform for bulk deployment of system images from Acronis Singapore. A code issue vulnerability previously existed in Acronis Snap Deploy version 4569, which stemmed from the inclusion of a DLL hijacking vulnerability leading to local elevation of privilege...

7.3CVSS6.5AI score0.00139EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/08/29 12:0 a.m.3 views

Acronis Snap Deploy 安全漏洞

Acronis Snap Deploy is a platform for batch deployment of system images from Acronis Singapore. A security vulnerability previously existed in Acronis Snap Deploy version 4569, which stemmed from the inclusion of an insecure folder permission leading to the disclosure of sensitive information...

5.5CVSS5.4AI score0.00146EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/08/29 12:0 a.m.6 views

PT-2024-25643 · Acronis · Acronis Snap Deploy

Name of the Vulnerable Software and Affected Versions: Acronis Snap Deploy Windows versions prior to build 4569 Description: The issue is related to a local privilege escalation due to a DLL hijacking vulnerability. This vulnerability allows attackers to increase their privileges locally in certa...

7.3CVSS7.3AI score0.00139EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/08/28 12:0 a.m.67 views

ManageEngine OpManager RCE (CVE-2024-5466)

Zohocorp ManageEngine OpManager and Remote Monitoring and Management versions 128329 and below are vulnerable to the authenticated remote code execution in the deploy agent option. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported versio...

8.8CVSS6.3AI score0.06911EPSS
Exploits0References2
OSV
OSV
added 2024/08/23 3:15 p.m.2 views

CVE-2024-38869

Zohocorp ManageEngine Endpoint Central affected by Incorrect authorization vulnerability in remote office deploy configurations.This issue affects Endpoint Central: before 11.3.2416.04 and before 11.3.2400.25...

5.4CVSS5.8AI score0.0101EPSS
Exploits0References1
OSV
OSV
added 2024/08/23 2:15 p.m.5 views

CVE-2024-5466

Zohocorp ManageEngine OpManager and Remote Monitoring and Management versions 128329 and below are vulnerable to the authenticated remote code execution in the deploy agent option...

8.8CVSS6.3AI score0.06911EPSS
Exploits0References1
NVD
NVD
added 2024/08/23 2:15 p.m.20 views

CVE-2024-5466

Zohocorp ManageEngine OpManager and Remote Monitoring and Management versions 128329 and below are vulnerable to the authenticated remote code execution in the deploy agent option...

8.8CVSS0.06911EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/23 1:23 p.m.22 views

CVE-2024-5466 Remote Code Execution

Zohocorp ManageEngine OpManager and Remote Monitoring and Management versions 128329 and below are vulnerable to the authenticated remote code execution in the deploy agent option...

8.8CVSS7.7AI score0.06911EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/23 1:23 p.m.48 views

CVE-2024-5466 Remote Code Execution

Zohocorp ManageEngine OpManager and Remote Monitoring and Management versions 128329 and below are vulnerable to the authenticated remote code execution in the deploy agent option...

8.8CVSS0.06911EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/08/23 12:0 a.m.5 views

PT-2024-36395

Name of the Vulnerable Software and Affected Versions Zohocorp ManageEngine OpManager and Remote Monitoring and Management versions 128329 and below Description The issue concerns an authenticated remote code execution vulnerability in the deploy agent option. This allows for potential...

8.8CVSS6.4AI score0.06911EPSS
Exploits0References12
Positive Technologies
Positive Technologies
added 2024/08/10 12:0 a.m.3 views

PT-2024-7210 · Gitlab · Gitlab Ce/Ee +1

Name of the Vulnerable Software and Affected Versions: GitLab CE/EE versions 8.16 through 17.2.9 GitLab CE/EE versions 17.3 through 17.3.5 GitLab CE/EE versions 17.4 through 17.4.2 Description: An issue was discovered in GitLab CE/EE, which allows deploy keys to push to an archived repository. Th...

6.8CVSS6.6AI score0.0033EPSS
Exploits0References16
Positive Technologies
Positive Technologies
added 2024/08/09 12:0 a.m.5 views

PT-2024-29904 · Litestar · Litestar

Name of the Vulnerable Software and Affected Versions: Litestar versions 2.10.0 and prior Description: The issue is related to Environment Variable injection in Litestar's docs-preview.yml workflow, which may lead to secret exfiltration and repository manipulation. This grants a malicious actor...

8.3CVSS8.2AI score0.00614EPSS
Exploits0References13
vulnersOsv
vulnersOsv
added 2024/08/07 3:30 p.m.9 views

ColumnPack:ColumnPack-plugin (=1.0.3), CustomHistory:CustomHistory (>=1.1 <=1.3) +1603 more potentially affected by CVE-2024-43045 via org.jenkins-ci.main:jenkins-core (>=1.396 <=2.452.3)

org.jenkins-ci.main:jenkins-core MAVEN version =1.396, =1.1, =0.0.1, =1.0, =1.0, =0.0.1, =0.1.0, =1.0, =0.9, =1.3, =1.0.5.0, =1.0.6.1 and more Source cves: CVE-2024-43045 Source advisory: OSV:GHSA-8PV9-QH96-9HC6...

6.3CVSS6.7AI score0.04263EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/08/01 12:0 a.m.5 views

The vulnerability of the Dashboard component of the software control panel allows for the insertion of arbitrary HTML code by attackers, enabling them to implement applications through IBM App Connect Enterprise.

The vulnerability of the Dashboard component of the software platform for integrating IBM App Connect Enterprise applications exists due to the lack of protective measures for the website structure. Exploiting this vulnerability allows a malicious actor to inject arbitrary HTML code remotely...

5.5CVSS5.6AI score0.0033EPSS
Exploits0References4Affected Software1
vulnersOsv
vulnersOsv
added 2024/07/18 10:3 p.m.5 views

eisen (=0.1.9), eisen-deploy (>=0.0.1 <=0.0.2) potentially affected by CVE-2024-35198 via torchserve (=0.0.1b20200409)

torchserve PYPI version =0.0.1b20200409 is affected by a known vulnerability. The following packages have a transitive dependency on torchserve and may be impacted: - eisen =0.1.9 - eisen-deploy =0.0.1, =0.0.2 Source cves: CVE-2024-35198 Source advisory: OSV:GHSA-WXCX-GG9C-FWP2...

9.8CVSS5.8AI score0.00792EPSS
Exploits0
OSV
OSV
added 2024/07/16 10:15 p.m.4 views

CVE-2024-6395

An exposure of sensitive information vulnerability in GitHub Enterprise Server would allow an attacker to enumerate the names of private repositories that utilize deploy keys. This vulnerability did not allow unauthorized access to any repository content besides the name. This vulnerability...

5.3CVSS5.8AI score0.00492EPSS
Exploits0References5
Rows per page
Query Builder