Lucene search
K

144 matches found

CNNVD
CNNVD
added 2023/12/19 12:0 a.m.3 views

Paxton Access Net2 Trust Management Issues Vulnerability

Paxton Access Net2 is an application from Paxton Access that provides simple and flexible site management. Paxton Access Net2 suffers from a trust management issue vulnerability that originates when installing the Net2 software, where the root certificate is installed to a trusted store. An...

9.8CVSS7AI score0.00404EPSS
Exploits0References2
CNVD
CNVD
added 2023/10/23 12:0 a.m.22 views

HCL Technologies Compass Access Control Error Vulnerability

HCL Technologies Compass is a low-code change management software from HCL Technologies, USA. Manages the full range of testing activities and integration with developer tools. HCL Technologies Compass suffers from an Access Control Error vulnerability that stems from the application not disablin...

7.1CVSS6.7AI score0.00292EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/03/20 12:0 a.m.54 views

CBL Mariner 2.0 Security Update: kernel (CVE-2022-1852)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-1852 advisory. - A NULL pointer dereference flaw was found in the Linux kernel's KVM module, which can lead to a denial of...

5.5CVSS6.8AI score0.00302EPSS
Exploits0References2
OSV
OSV
added 2022/12/27 7:15 p.m.4 views

CVE-2022-3156

A remote code execution vulnerability exists in Rockwell Automation Studio 5000 Logix Emulate software. Users are granted elevated permissions on certain product services when the software is installed. Due to this misconfiguration, a malicious user could potentially achieve remote code execution...

7.8CVSS6.4AI score0.00368EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/12/27 6:17 p.m.17 views

CVE-2022-3156 Rockwell Automation Studio 5000 Logix Emulate Vulnerable to a Remote Code Execution Vulnerability

A remote code execution vulnerability exists in Rockwell Automation Studio 5000 Logix Emulate software. Users are granted elevated permissions on certain product services when the software is installed. Due to this misconfiguration, a malicious user could potentially achieve remote code execution...

7.8CVSS8.1AI score0.00368EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/12/27 6:17 p.m.9 views

CVE-2022-3156 Rockwell Automation Studio 5000 Logix Emulate Vulnerable to a Remote Code Execution Vulnerability

A remote code execution vulnerability exists in Rockwell Automation Studio 5000 Logix Emulate software. Users are granted elevated permissions on certain product services when the software is installed. Due to this misconfiguration, a malicious user could potentially achieve remote code execution...

7.8CVSS7.6AI score0.00368EPSS
Exploits0References1
CVE
CVE
added 2022/12/27 6:17 p.m.51 views

CVE-2022-3156

CVE-2022-3156 affects Rockwell Automation Studio 5000 Logix Emulate, specifically versions around v.20-33. The root cause is improper access control (CWE-284) that grants elevated permissions on certain product services, potentially enabling remote code execution. The advisory notes a CVSS v3 bas...

7.8CVSS7.9AI score0.00368EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2022/12/27 12:0 a.m.12 views

PT-2022-20832 · Rockwell Automation · Rockwell Automation Studio 5000 Logix Emulate

Name of the Vulnerable Software and Affected Versions: Rockwell Automation Studio 5000 Logix Emulate software affected versions not specified Description: A remote code execution issue exists due to a misconfiguration in the software, where users are granted elevated permissions on certain produc...

7.8CVSS7.8AI score0.00368EPSS
Exploits0References3
ICS
ICS
added 2022/12/22 12:0 a.m.51 views

Rockwell Automation Studio 5000 Logix Emulate

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Rockwell Automation Equipment: Studio 5000 Logix Emulate Vulnerability: Improper Access Control 2. RISK EVALUATION Successful exploitation of this vulnerability could allow a malicious user to perform remote code execution,...

7.8CVSS8.1AI score0.00368EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/11/15 11:38 a.m.6 views

kernel: NULL pointer dereference in x86_emulate_insn may lead to DoS

A NULL pointer dereference flaw was found in the Linux kernel’s KVM module, which can lead to a denial of service in the x86emulateinsn in arch/x86/kvm/emulate.c. This flaw occurs while executing an illegal instruction in guest in the Intel CPU...

5.5CVSS6.6AI score0.00302EPSS
Exploits0References5
CNNVD
CNNVD
added 2022/09/08 12:0 a.m.5 views

Open Policy Agent 安全漏洞

Open Policy Agent is an open source, general-purpose policy engine that enables uniform, context-aware policy enforcement across the stack. A security vulnerability exists in Open Policy Agent OPA that stems from the use of the with keyword to bypass WithUnsafeBuiltins to emulate functions...

9.8CVSS8.2AI score0.01224EPSS
Exploits1References8
OpenVAS
OpenVAS
added 2022/08/10 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2022:2721-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.6AI score0.05542EPSS
Exploits4References17
Microsoft CVE
Microsoft CVE
added 2022/07/09 7:0 a.m.8 views

A NULL pointer dereference flaw was found in the Linux kernel’s KVM module which can lead to a denial of service in the x86_emulate_insn in arch/x86/kvm/emulate.c. This flaw occurs while executing an illegal instruction in guest in the Intel CPU.

...

5.5CVSS7.3AI score0.00302EPSS
Exploits0
CNVD
CNVD
added 2022/06/17 12:0 a.m.16 views

Cisco Unified IP Phones Security Feature Issue Vulnerability

Cisco Unified IP Phones is a series of IP phones from Cisco, U.S.A. A security feature issue vulnerability exists in Cisco Unified IP Phones, which stems from the failure to properly generate keys during the manufacturing process resulting in the installation of duplicate manufacturing keys on...

7.4CVSS2AI score0.01124EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/06/15 12:0 a.m.4 views

Cisco Unified IP Phones 安全特征问题漏洞

Cisco Unified IP Phones is a series of IP phones from Cisco, U.S.A. A security feature issue vulnerability exists in Cisco Unified IP Phones, which stems from the failure to properly generate keys during the manufacturing process resulting in the installation of duplicate manufacturing keys on...

7.4CVSS5.7AI score0.01124EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/04/06 12:0 a.m.3 views

HTCondor 安全漏洞

HTCondor is a workload management system at the University of Wisconsin-Madison USA. The system provides job queuing mechanisms, scheduling policies, prioritization schemes, resource monitoring, and resource management. A security vulnerability exists in HTCondor that stems from the fact that whe...

8.8CVSS7.9AI score0.01402EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.38 views

Mageia: Security Advisory (MGASA-2017-0146)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS8.3AI score0.55724EPSS
Exploits0References4
CNNVD
CNNVD
added 2021/12/21 12:0 a.m.7 views

Fresenius Kabi Agilia Connect Infusion System 安全漏洞

Fresenius Kabi Agilia Connect Infusion System is an infusion system from the German company Fresenius Kabi.A security vulnerability exists in the Fresenius Kabi Agilia Connect Infusion System, which could be exploited by an attacker to emulate a user to manipulate RabbitMQ queues and messages...

6.5CVSS5.6AI score0.00218EPSS
Exploits0References5
CNVD
CNVD
added 2021/12/08 12:0 a.m.11 views

Alexandr Korsak Devise Masquerade has an unspecified vulnerability

Alexandr Korsak Devise Masquerade is a library of utilities from the Spanish company Alexandr Korsak. Alexandr Korsak Devise Masquerade is a security vulnerability that could be exploited by attackers to emulate any user on the site...

8.1CVSS4.4AI score0.0121EPSS
Exploits1References1
CNVD
CNVD
added 2021/07/16 12:0 a.m.22 views

IBM Security Access Manager Appliance Privilege License and Access Control Issues Vulnerability

IBM Security Access Manager Appliance ISAM Appliance is a network appliance-based security solution from IBM, USA. The product is mainly used for access control and Web-based threat protection, providing system performance monitoring, log analysis and diagnosis. IBM Security Access Manager...

8CVSS7.8AI score0.00367EPSS
Exploits0References1
Rows per page
Query Builder