CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Prion•added 2020/02/17 7:15 a.m.•18 views

Design/Logic Flaw

1.9CVSS5.4AI score0.00164EPSS

Exploits0References1Affected Software1

Cvelist•added 2020/02/17 6:35 a.m.•20 views

CVE-2020-7252 Unquoted service executable path

4.2CVSS6.2AI score0.00164EPSS

0day.today•added 2020/02/15 12:0 a.m.•70 views

SprintWork 2.3.1 - Local Privilege Escalation Vulnerability

Exploit Title: SprintWork 2.3.1 - Local Privilege Escalation Exploit Author: boku Vendor Homepage: https://veridium.net Software Link: https://veridium.net/filesu/spx/exe/SprintWork-Setup.exe Version: 2.3.1 Tested On: Windows 10 32-bit Vulnerability Overview: SprintWork v2.3.1 x86 suffers from...

0.2AI score

CNVD•added 2020/02/14 12:0 a.m.•2 views

Foxit PhantomPDF Memory Error Reference Remote Code Execution Vulnerability (CNVD-2020-10624)

PhantomPDF is a Chinese Foxit Foxit company for enterprise-level users of PDF document processing software. A memory error referencing remote code execution vulnerability exists in the fxhtml2pdf.exe module in Foxit PhantomPDF 9.7.0.29455 and earlier versions. The vulnerability stems from a failu...

7.8CVSS8.1AI score0.01469EPSS

Exploit DB•added 2020/02/14 12:0 a.m.•134 views

SprintWork 2.3.1 - Local Privilege Escalation

Exploit Title: SprintWork 2.3.1 - Local Privilege Escalation Exploit Author: boku Date: 2020-02-13 Vendor Homepage: https://veridium.net Software Link: https://veridium.net/filesu/spx/exe/SprintWork-Setup.exe Version: 2.3.1 Tested On: Windows 10 32-bit Vulnerability Overview: SprintWork v2.3.1 x8...

Packet Storm•added 2020/02/14 12:0 a.m.•91 views

SprintWork 2.3.1 Local Privilege Escalation

exploitpack•added 2020/02/14 12:0 a.m.•39 views

SprintWork 2.3.1 - Local Privilege Escalation

SprintWork 2.3.1 - Local Privilege Escalation Exploit Title: SprintWork 2.3.1 - Local Privilege Escalation Exploit Author: boku Date: 2020-02-13 Vendor Homepage: https://veridium.net Software Link: https://veridium.net/filesu/spx/exe/SprintWork-Setup.exe Version: 2.3.1 Tested On: Windows 10 32-bi...

ATTACKERKB•added 2020/02/13 12:0 a.m.•14 views

CVE-2019-3719

Dell support agent fails to properly identify the origin of updates. By DNS spoofing and crafted payloads, an attacker can serve up an executable file that the support agent will run as system. Recent assessments: bwatters-r7 at July 18, 2019 9:47pm UTC reported: As exploits go, being able to ser...

8CVSS1.3AI score0.22445EPSS

Exploits0References4

Packet Storm•added 2020/02/12 12:0 a.m.•273 views

HP System Event Utility Local Privilege Escalation

Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/HP-SYSTEM-EVENT-UTILITY-LOCAL-PRIVILEGE-ESCALATION.txt + twitter.com/hyp3rlinx + ISR: ApparitionSec Vendor www.hp.com Product HP System Event Utility The genuine HPMSGSVC.exe...

0.5AI score0.00427EPSS

Exploits5

Zero Day Initiative•added 2020/02/11 12:0 a.m.•21 views

Symantec Endpoint Protection ccJobMgr Missing Authentication Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Symantec Endpoint Protection. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

7.8CVSS5AI score0.00072EPSS

Zero Day Initiative•added 2020/02/11 12:0 a.m.•27 views

Symantec Endpoint Protection ccSvc Missing Authentication Privilege Escalation Vulnerability

7.8CVSS5.1AI score0.00072EPSS

Fedora•added 2020/02/07 1:51 a.m.•44 views

[SECURITY] Fedora 31 Update: upx-3.96-2.fc31

UPX is a free, portable, extendable, high-performance executable packer for several different executable formats. It achieves an excellent compression ratio and offers very fast decompression. Your executables suffer no memory overhead or other drawbacks...

7.8CVSS4.8AI score0.00473EPSS

Exploits3

OpenVAS•added 2020/02/07 12:0 a.m.•27 views

Fedora: Security Advisory for upx (FEDORA-2020-67590fbf08)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

6.5AI score

Exploits0References2

NVD•added 2020/02/06 2:15 p.m.•16 views

CVE-2015-6000

Unrestricted file upload vulnerability in the SettingsVtigerCompanyDetailsSaveAction class in modules/Settings/Vtiger/actions/CompanyDetailsSave.php in Vtiger CRM 6.3.0 and earlier allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then...

8.8CVSS7.5AI score0.76812EPSS

Exploits12References3

Cvelist•added 2020/02/06 1:55 p.m.•26 views

CVE-2015-6000

8AI score0.76812EPSS

Exploits12References3

Exploit DB•added 2020/02/05 12:0 a.m.•168 views

Socat 1.7.3.4 - Heap-Based Overflow (PoC)

Exploit Title: Socat 1.7.3.4 - Heap Based Overflow PoC Date: 2020-02-03 Exploit Author: hieubl from HPT Cyber Security Vendor Homepage: http://www.dest-unreach.org/ Software Link: http://www.dest-unreach.org/socat/ Version: 1.7.3.4 Tested on: Ubuntu 16.04.6 LTS CVE : Heap-Based Overflow due to...