12 matches found
EUVD-2017-5636
Malware in sbrugna...
EUVD-2017-16947
Malware in sbrugna...
CVE-2017-14124
In eLux RP 5.x before 5.5.1000 LTSR and 5.6.x before 5.6.2 CR when classic desktop mode is used, it is possible to start applications other than defined, even if the user does not have permissions to change application definitions...
Code injection
In eLux RP 5.x before 5.5.1000 LTSR and 5.6.x before 5.6.2 CR when classic desktop mode is used, it is possible to start applications other than defined, even if the user does not have permissions to change application definitions...
CVE-2017-14124
In eLux RP 5.x before 5.5.1000 LTSR and 5.6.x before 5.6.2 CR when classic desktop mode is used, it is possible to start applications other than defined, even if the user does not have permissions to change application definitions...
CVE-2017-14124
The CVE-2017-14124 entry concerns eLux RP 5.x systems: specifically versions before 5.5.1000 LTSR and 5.6.x before 5.6.2 CR. The vulnerability arises when using the classic desktop mode, where an attacker could start applications that are not defined, even if the user lacks permissions to modify ...
CVE-2017-14124
In eLux RP 5.x before 5.5.1000 LTSR and 5.6.x before 5.6.2 CR when classic desktop mode is used, it is possible to start applications other than defined, even if the user does not have permissions to change application definitions...
CVE-2017-7977
The Screensavercc component in eLux RP before 5.5.0 allows attackers to bypass intended configuration restrictions and execute arbitrary commands with root privileges by inserting commands in a local configuration dialog in the control panel...
CVE-2017-7977
The Screensavercc component in eLux RP before 5.5.0 allows attackers to bypass intended configuration restrictions and execute arbitrary commands with root privileges by inserting commands in a local configuration dialog in the control panel...
Design/Logic Flaw
The Screensavercc component in eLux RP before 5.5.0 allows attackers to bypass intended configuration restrictions and execute arbitrary commands with root privileges by inserting commands in a local configuration dialog in the control panel...
CVE-2017-7977
The CVE affects Unicon Software eLux RP, specifically the Screensavercc component, with impact on versions prior to 5.5.0. An attacker can inject commands through the local configuration dialog in the control panel to bypass configuration restrictions and execute arbitrary commands with root priv...
CVE-2017-7977
The Screensavercc component in eLux RP before 5.5.0 allows attackers to bypass intended configuration restrictions and execute arbitrary commands with root privileges by inserting commands in a local configuration dialog in the control panel...