Lucene search
K

9 matches found

Positive Technologies
Positive Technologies
added 2026/05/07 12:0 a.m.11 views

PT-2026-38558

manage.get.gov is the .gov TLD registrar maintained by CISA. manage.get.gov allows an organization administrator to assign domain manager privileges for domains not already in another organization. Fixed in 1.176.0 on or around 2026-04-30...

7.6CVSS5.8AI score0.00398EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2013-4280

Malware in sbrugna...

8.5CVSS7.8AI score0.01689EPSS
Exploits0References10
NCSC
NCSC
added 2025/06/18 12:18 p.m.5 views

Vulnerabilities fixed in Veeam Backup

Veeam has fixed vulnerabilities in Veeam Backup & Replication 12.3.2.3617 and Veeam Agent for Microsoft Windows 6.3.2.1205. The vulnerabilities can be exploited after access to compromise backup servers. The highest rated vulnerability, CVE-2025-23121, allows an attacker with domain user privileg...

9.9CVSS9.2AI score0.12442EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 5:36 a.m.2 views

SUSE CVE-2013-4401

The virConnectDomainXMLToNative API function in libvirt 1.1.0 through 1.1.3 checks for the connect:read permission instead of the connect:write permission, which allows attackers to gain domain:write privileges and execute Qemu binaries via crafted XML. NOTE: some of these details are obtained fr...

8.5CVSS7.3AI score0.01689EPSS
Exploits0References3
exploitpack
exploitpack
added 2014/12/23 12:0 a.m.32 views

SysAid Server - Arbitrary File Disclosure

SysAid Server - Arbitrary File Disclosure Vantage Point Security Advisory 2014-004 ======================================== Title: SysAid Server Arbitrary File Disclosure ID: VP-2014-004 Vendor: SysAid Affected Product: SysAid On-Premise Affected Versions: Summary: --- SysAid Server is vulnerable...

Exploits0
UbuntuCve
UbuntuCve
added 2014/10/13 1:55 a.m.30 views

CVE-2014-1572

The confirmcreateaccount function in the account-creation feature in token.cgi in Bugzilla 2.x through 4.0.x before 4.0.15, 4.1.x and 4.2.x before 4.2.11, 4.3.x and 4.4.x before 4.4.6, and 4.5.x before 4.5.6 does not specify a scalar context for the realname parameter, which allows remote attacke...

5CVSS6.9AI score0.0184EPSS
Exploits0References2
Prion
Prion
added 2009/07/01 1:0 p.m.21 views

Authorization

The Virtual Network Terminal Server daemon vntsd for Logical Domains aka LDoms in Sun Solaris 10, and OpenSolaris snv41 through snv108, on SPARC platforms does not check authorization for guest console access, which allows local control-domain users to gain guest-domain privileges via unknown...

4.6CVSS7.1AI score0.00386EPSS
Exploits0References5Affected Software2
Cvelist
Cvelist
added 2009/07/01 12:26 p.m.28 views

CVE-2009-2282

The Virtual Network Terminal Server daemon vntsd for Logical Domains aka LDoms in Sun Solaris 10, and OpenSolaris snv41 through snv108, on SPARC platforms does not check authorization for guest console access, which allows local control-domain users to gain guest-domain privileges via unknown...

6.6AI score0.00386EPSS
Exploits0References5
CVE
CVE
added 2009/07/01 12:26 p.m.50 views

CVE-2009-2282

The CVE-2009-2282 issue affects Sun Solaris 10 on SPARC and OpenSolaris snv_41–snv_108, where the Virtual Network Terminal Server daemon (vntsd) does not validate authorization for guest console access. This allows local control-domain users to obtain guest-domain privileges via unspecified vecto...

4.6CVSS6.8AI score0.00386EPSS
Exploits0References5Affected Software2
Rows per page
Query Builder