EUVD-2026-30056

A command injection vulnerability was discovered in TeamViewer DEX Platform On-Premises former 1E DEX Platform On-Premises prior to version 9.2. Improper input validation allows authenticated users with at least questioner privileges to inject commands in specific instructions. Exploitation could...

CVE-2026-2695

The CVE-2026-2695 entry affects TeamViewer DEX Platform On-Premises (formerly 1E DEX Platform On-Premises) up to version 9.2. The root cause is improper input validation in instruction input, enabling authenticated users with at least questioner privileges to inject commands in specific instructi...

CVE-2024-45328

FortiSandbox 4.4.0–4.4.6 contains an improper authorization vulnerability (CWE-863) that can let a low-privilege administrator execute elevated CLI commands via the GUI console menu. Affected component: FortiSandbox GUI/CLI integration (exact files/functions not detailed in the provided sources)....

Design/Logic Flaw

In Composer-Setup for Windows before version 6.0.0, if the developer's computer is shared with other users, a local attacker may be able to exploit the following scenarios. 1. A local regular user may modify the existing C:\ProgramData\ComposerSetup\bin\composer.bat in order to get elevated comma...