Lucene search
K

200 matches found

CNNVD
CNNVD
added 2023/04/18 12:0 a.m.4 views

Oracle Virtualization 安全漏洞

Oracle Virtualization is a suite of virtualization solutions from Oracle. The product is used to unify the management of the entire hardware and software architecture from applications to disk, enabling virtualization from the desktop to the data center. A security vulnerability exists in the Cor...

8.2CVSS7.6AI score0.00332EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/03/23 12:0 a.m.4 views

Tailscale 安全漏洞

Tailscale is an open source WireGuard based application from Tailscale. Can provide a secure private network for any size team . A security vulnerability exists in Tailscale versions prior to 1.38.2 that stems from allowing commands to be run using a privilege group ID higher than the privilege...

8CVSS6.9AI score0.0046EPSS
Exploits0References5
F5 Networks
F5 Networks
added 2023/02/21 7:30 p.m.29 views

K68652018: iControl REST vulnerability CVE-2021-22974

Security Advisory Description An authenticated attacker with access to iControl REST over the control plane may be able to take advantage of a race condition to execute commands with an elevated privilege level. This vulnerability is due to an incomplete fix for CVE-2017-6167. CVE-2021-22974...

7.5CVSS6.8AI score0.00805EPSS
Exploits0Affected Software15
CNNVD
CNNVD
added 2023/01/18 12:0 a.m.4 views

Oracle Communications Applications 安全漏洞

Oracle Communications Applications is an advanced communications and collaboration services application from Oracle Corporation. A security vulnerability exists in Oracle Communications BRM that can be exploited by an attacker to allow an elevated privilege attacker to log in to the infrastructur...

4.4CVSS6.4AI score0.00214EPSS
Exploits0References2
OSV
OSV
added 2022/12/30 2:15 p.m.7 views

CVE-2022-4861

Incorrect implementation in authentication protocol in M-Files Client before 22.5.11356.0 allows high privileged user to get other users tokens to another resource...

4.9CVSS5.8AI score0.00548EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2022/11/28 1:0 p.m.5 views

CVE-2022-4020 Acer Aspire BIOS vulnerability

Vulnerability in the HQSwSmiDxe DXE driver on some consumer Acer Notebook devices may allow an attacker with elevated privileges to modify UEFI Secure Boot settings by modifying an NVRAM variable...

8.1CVSS8.1AI score0.00239EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/11/03 12:0 a.m.5 views

PT-2022-15434 · Ibm · Ibm Infosphere Information Server

Name of the Vulnerable Software and Affected Versions: IBM InfoSphere Information Server version 11.7 Description: The issue is related to improper access controls, which could allow an authenticated user to access information restricted to users with elevated privileges. Recommendations: For IBM...

6.5CVSS6.1AI score0.00486EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/08/29 12:0 a.m.7 views

WordPress plugin Mailchimp for WooCommerce 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability...

2.7CVSS7.3AI score0.00632EPSS
Exploits2References2
CNNVD
CNNVD
added 2022/08/29 12:0 a.m.4 views

WordPress plugin Fluent Support SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A SQL injection vulnerability exists in...

7.2CVSS7.8AI score0.00966EPSS
Exploits2References2
OSV
OSV
added 2022/08/17 4:15 p.m.3 views

CVE-2022-22455

IBM Security Verify Governance Identity Manager 10.0 virtual appliance component performs an operation at a privilege level that is higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses. IBM X-Force ID: 224989...

9.8CVSS5.8AI score0.00438EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/08/01 12:0 a.m.5 views

WordPress plugin Login with phone number 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...

4.8CVSS4.9AI score0.00579EPSS
Exploits2References2
CNNVD
CNNVD
added 2022/07/19 12:0 a.m.6 views

Oracle ZFS Storage Appliance 输入验证错误漏洞

Oracle ZFS Storage Appliance is a storage appliance that supports flash memory, petabyte file storage and built-in Oracle database from Oracle USA. A security vulnerability exists in Oracle ZFS Storage Appliance Kit version 8.8, which stems from a vulnerability that allows an elevated-privilege...

8.2CVSS5.6AI score0.00273EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/06/09 12:0 a.m.6 views

OPSWAT MetaDefender Core 安全漏洞

OPSWAT MetaDefender Core OPSWAT MDCore is a multi-engine anti-malware software from OPSWAT, Inc. It prevents the upload of malicious files on web applications that bypass sandboxes and other detection-based security solutions. A security vulnerability exists in OPSWAT MetaDefender Core MDCore...

9.8CVSS8.3AI score0.09095EPSS
Exploits3References9
CNNVD
CNNVD
added 2022/04/19 12:0 a.m.5 views

Oracle Virtualization 输入验证错误漏洞

Oracle Virtualization and Oracle VM VirtualBox are both products of Oracle Corporation.Oracle Virtualization is a suite of virtualization solutions. The product is used to unify the management of the entire hardware and software system from the application to the disk, can be virtualized from the...

6.7CVSS8.2AI score0.00358EPSS
Exploits0References6
CNNVD
CNNVD
added 2021/11/20 12:0 a.m.7 views

NVIDIA GPU 安全漏洞

Nvidia Gpu is a graphics processing unit from the American company Nvidia. It is used in machine learning, video editing and gaming applications. A security vulnerability exists in NVIDIA GPU and Tegra hardware, which stems from an internal microcontroller containing a vulnerability that allows...

4.9CVSS5.1AI score0.00192EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/09/08 2:47 p.m.21 views

CVE-2021-1882

A memory corruption issue was addressed with improved validation. This issue is fixed in Security Update 2021-002 Catalina, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5, macOS Big Sur 11.3. An application may be able to gain elevated privileges...

8.6AI score0.01692EPSS
Exploits0References5
NVD
NVD
added 2021/07/22 5:15 a.m.22 views

CVE-2021-1091

NVIDIA GPU Display driver for Windows contains a vulnerability where an unprivileged user can create a file hard link that causes the driver to overwrite a file that requires elevated privilege to modify, which could lead to data loss or denial of service...

7.1CVSS0.0026EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/07/13 12:0 a.m.4 views

Lenovo Bios 授权问题漏洞

Lenovo Bios is a boot method for computers from the Chinese company Lenovo Lenovo. It is used to boot the system during computer startup. Lenovo BIOS has an authorization issue vulnerability that stems from a lack of privilege control in the system shutdown SMI callback function, which allows an...

6.7CVSS6.8AI score0.00273EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/06/08 12:0 a.m.5 views

GitLab CE/EE 日志信息泄露漏洞

GitLab is a Ruby on Rails-developed, self-hosted, Git version control system project repository application from the American company GitLab. The program can be used to access a project's file contents, commit history, bug lists, and more. An information disclosure vulnerability exists in GitLab...

4.9CVSS5.6AI score0.00885EPSS
Exploits0References3
OSV
OSV
added 2021/03/15 4:15 p.m.3 views

CVE-2020-4184

IBM Security Guardium 11.2 performs an operation at a privilege level that is higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses. IBM X-Force ID: 174802...

7.3CVSS6.5AI score0.0084EPSS
Exploits0References2
Rows per page
Query Builder