Lucene search
K

4205 matches found

Positive Technologies
Positive Technologies
added 2023/03/21 12:0 a.m.11 views

PT-2023-2000 · NetGear · Netgear Orbi Router Rbr750

Name of the Vulnerable Software and Affected Versions: Netgear Orbi Router RBR750 version 4.6.8.5 Description: A command execution issue exists in the hidden telnet service functionality. This can be exploited by sending a specially-crafted network request, potentially allowing an attacker to...

9CVSS8.8AI score0.02089EPSS
Exploits1References11
ALT Linux
ALT Linux
added 2023/03/18 12:0 a.m.44 views

Security fix for the ALT Linux 10 package dotnet-bootstrap-3.1 version 3.1.32-alt1

3.1.32-alt1 built March 18, 2023 Vitaly Lipatov in task 316692 March 12, 2023 Vitaly Lipatov - .NET Core 3.1.32 and .NET Core SDK 3.1.426 releases - CVE-2022-41089: .NET Remote Code Execution Vulnerability - CVE-2022-41032: .NET Elevation of Privilege Vulnerability - CVE-2022-38013: .NET Denial o...

7.5AI score0.03074EPSS
Exploits0
CNVD
CNVD
added 2023/03/17 12:0 a.m.7 views

Adobe Dimension Out-of-Bounds Read Vulnerability (CNVD-2023-31291)

Adobe Dimension is the United States of America Odo than Adobe company is a set of 2D and 3D composite design tools. Adobe Dimension suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to execute code in the context of the current user...

7.8CVSS6.9AI score0.0032EPSS
Exploits0References1
CNVD
CNVD
added 2023/03/16 12:0 a.m.30 views

Microsoft Excel Code Execution Vulnerability (CNVD-2023-53911)

Microsoft Excel is a spreadsheet processing software in the Office suite from Microsoft USA. A code execution vulnerability exists in Microsoft Excel, which can be exploited by an attacker to execute arbitrary code on a system...

7.8CVSS7.9AI score0.02532EPSS
Exploits3References1
Vulnrichment
Vulnrichment
added 2023/03/16 12:0 a.m.6 views

CVE-2023-23150

SA-WR915ND router firmware v17.35.1 was discovered to be vulnerable to code execution...

9.8AI score0.00787EPSS
Exploits0References2
Talos
Talos
added 2023/03/16 12:0 a.m.220 views

Ghost Foundation node-sqlite3 code execution vulnerability

Talos Vulnerability Report TALOS-2022-1645 Ghost Foundation node-sqlite3 code execution vulnerability March 16, 2023 CVE Number CVE-2022-43441 SUMMARY A code execution vulnerability exists in the Statement Bindings functionality of Ghost Foundation node-sqlite3 5.1.1. A specially-crafted Javascri...

9.8CVSS9.2AI score0.02356EPSS
Exploits1
Vulnrichment
Vulnrichment
added 2023/03/14 4:55 p.m.7 views

CVE-2023-23403 Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability

...

8.8CVSS8.7AI score0.01289EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/03/14 9:32 a.m.5 views

CVE-2023-27399

A vulnerability has been identified in Tecnomatix Plant Simulation All versions V2201.0006. The affected application contains an out of bounds write past the end of an allocated buffer while parsing a specially crafted SPP file. This could allow an attacker to execute code in the context of the...

7.8CVSS7.7AI score0.00223EPSS
Exploits0References1
CNVD
CNVD
added 2023/03/14 12:0 a.m.2 views

NETGEAR Nighthawk WiFi6 Router Code Execution Vulnerability

The NETGEAR Nighthawk WiFi6 Router is a series of wireless routers from NETGEAR. The NETGEAR Nighthawk WiFi6 Router suffers from a code execution vulnerability that stems from the fact that the device contains a file sharing mechanism that can be exploited by an attacker to execute arbitrary code...

8.8CVSS8.9AI score0.00766EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/03/14 12:0 a.m.213 views

KB5023706: Windows 11 version 22H2 Security Update (March 2023)

The remote Windows host is missing security update 5023706. It is, therefore, affected by multiple vulnerabilities - An out-of-bounds write vulnerability exists in TPM2.0's Module Library allowing writing of a 2-byte data past the end of TPM2.0 command in the CryptParameterDecryption routine. An...

9.8CVSS8AI score0.78152EPSS
Exploits1References55
Circl
Circl
added 2023/03/13 5:23 p.m.25 views

CVE-2023-26076

creationtimestamp| type| source ---|---|--- 2023-03-13 17:23:33+00:00| seen| https://t.me/cibsecurity/59905 2023-03-16 18:07:00+00:00| seen| https://googleprojectzero.blogspot.com/2023/03/multiple-internet-to-baseband-remote-rce.html 2023-03-20 14:22:52+00:00| published-proof-of-concept|...

9.8CVSS8.7AI score0.00926EPSS
Exploits0References3
Circl
Circl
added 2023/03/13 3:53 p.m.33 views

CVE-2023-24033

creationtimestamp| type| source ---|---|--- 2023-03-13 15:53:22+00:00| seen| https://t.me/cibsecurity/59888 2023-03-16 18:07:00+00:00| seen| https://googleprojectzero.blogspot.com/2023/03/multiple-internet-to-baseband-remote-rce.html 2023-03-17 15:00:08+00:00| seen| https://t.me/truesecator/4181...

9.8CVSS8.7AI score0.34305EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/03/13 12:0 a.m.4 views

PT-2023-21224 · Github · Github-Slug-Action

Name of the Vulnerable Software and Affected Versions: github-slug-action versions 4.0.0 through 4.4.1 Description: The github-slug-action uses the github.head ref parameter in an insecure way, allowing any user on GitHub to trigger the vulnerability by creating a pull request with a branch name...

8.8CVSS8.8AI score0.01576EPSS
Exploits1References9
OSV
OSV
added 2023/03/09 3:6 p.m.5 views

SUSE-SU-2023:0692-1 Security update for xen

This update for xen fixes the following issues: - CVE-2022-27672: Fixed speculative execution vulnerability due to RAS being dynamically partitioned between non-idle threads bsc1208286. Bugfixes: - Fixed launch-xenstore error bsc1205792 - Fixed issues in VMX bsc1027519...

4.7CVSS6.7AI score0.00289EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2023/03/08 12:0 a.m.6 views

CVE-2021-33352

An issue in Wyomind Help Desk Magento 2 extension v.1.3.6 and before fixed in v.1.3.7 allows attacker to execute arbitrary code via a phar file upload in the ticket message field...

8.1AI score0.01361EPSS
Exploits1References2
CNNVD
CNNVD
added 2023/03/07 12:0 a.m.4 views

Fortinet FortiAnalyzer 安全漏洞

Fortinet FortiAnalyzer is a set of centralized network security reporting solutions from the U.S. company Fiat Fortinet. The product is mainly used to collect network log data, and through the reporting suite of security events in the log, network traffic, Web content, etc. to analyze, report,...

7.3CVSS7.3AI score0.00263EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/03/01 12:0 a.m.6 views

Imperative 命令注入漏洞

Imperative is an open source command processing system from Zowe. Imperative has a security vulnerability that stems from the presence of a command execution vulnerability...

7.8CVSS7.5AI score0.00255EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2023/02/28 4:4 a.m.25 views

Security Bulletin: IBM WebSphere Application Server shipped with IBM Security Access Manager for Enterprise Single Sign-On is vulnerable to remote code execution vulnerability (CVE-2023-23477)

Summary IBM WebSphere Application Server shipped with IBM Security Access Manager for Enterprise Single Sign-On is vulnerable to remote code execution vulnerability CVE-2023-23477. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a securi...

9.8CVSS9.1AI score0.01949EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2023/02/28 12:0 a.m.8 views

Command Execution Vulnerability in Tianqing Hanma USG Firewall of Beijing Qixing Information Security Technology Co.

Tianqing Hanma USG Firewall is a new firewall series product launched by Qixing. There is a command execution vulnerability in Tianqing Hanma USG Firewall, which can be exploited by attackers to obtain server control privileges...

7.2AI score
Exploits0
OSV
OSV
added 2023/02/25 2:15 a.m.2 views

UBUNTU-CVE-2023-26035

ZoneMinder is a free, open source Closed-circuit television software application for Linux which supports IP, USB and Analog cameras. Versions prior to 1.36.33 and 1.37.33 are vulnerable to Unauthenticated Remote Code Execution via Missing Authorization. There are no permissions check on the...

9.8CVSS7.4AI score0.80462EPSS
Exploits11References3
Rows per page
Query Builder