Lucene search
K

26 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-48201

Malicious code in bioql PyPI...

7.1CVSS6.3AI score0.00313EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-48212

Malicious code in bioql PyPI...

8.8CVSS6.3AI score0.00492EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/16 11:3 a.m.14 views

CVE-2025-4430

Unauthorized access to "/api/Token/gettoken" endpoint in EZD RP allows file manipulation.This issue affects EZD RP in versions before 20.19 published on 22nd August 2024...

8.6CVSS6.9AI score0.00298EPSS
Exploits0References1
NVD
NVD
added 2025/05/14 11:16 a.m.16 views

CVE-2025-4430

Unauthorized access to "/api/Token/gettoken" endpoint in EZD RP allows file manipulation.This issue affects EZD RP in versions before 20.19 published on 22nd August 2024...

8.6CVSS0.00298EPSS
Exploits0References2
CVE
CVE
added 2025/05/14 10:36 a.m.42 views

CVE-2025-4430

CVE-2025-4430 describes an unauthorized access vulnerability in EZD RP where the endpoint /api/Token/gettoken can be exploited to manipulate files. The issue affects EZD RP versions before 20.19 (published 22 Aug 2024). Based on connected documents, the root cause is an access control/endpoint ex...

8.6CVSS6.5AI score0.00298EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/05/14 10:36 a.m.7 views

CVE-2025-4430 Unauthorized file manipulation in EZD RP

Unauthorized access to "/api/Token/gettoken" endpoint in EZD RP allows file manipulation.This issue affects EZD RP in versions before 20.19 published on 22nd August 2024...

8.6CVSS6.5AI score0.00298EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/05/14 10:36 a.m.20 views

CVE-2025-4430 Unauthorized file manipulation in EZD RP

Unauthorized access to "/api/Token/gettoken" endpoint in EZD RP allows file manipulation.This issue affects EZD RP in versions before 20.19 published on 22nd August 2024...

8.6CVSS0.00298EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/05/14 12:0 a.m.3 views

PT-2025-21144 · Ezd Rp · Ezd Rp

Name of the Vulnerable Software and Affected Versions: EZD RP versions prior to 20.19 Description: The issue allows unauthorized access to the "/api/Token/gettoken" endpoint in EZD RP, enabling file manipulation. Recommendations: For versions prior to 20.19, update to version 20.19 or later to...

8.6CVSS6.4AI score0.00298EPSS
Exploits0References9
CNNVD
CNNVD
added 2025/05/14 12:0 a.m.3 views

NASK EZD RP 安全漏洞

NASK EZD RP is a modern document management and archiving system from NASK designed for seamless electronic management. A security vulnerability exists in NASK EZD RP versions prior to 20.19 that stems from unauthorized access that may result in file manipulation...

8.6CVSS6.7AI score0.00298EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/03/17 9:18 a.m.9 views

CVE-2024-7266

Incorrect User Management vulnerability in Naukowa i Akademicka Sieć Komputerowa - Państwowy Instytut Badawczy EZD RP allows logged-in user to list all users in the system, including those from other organizations. This issue affects EZD RP: from 15 before 15.84, from 16 before 16.15, from 17...

7.1CVSS6.3AI score0.00313EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/17 9:18 a.m.11 views

CVE-2024-7267

Exposure of Sensitive Information vulnerability in Naukowa i Akademicka Sieć Komputerowa - Państwowy Instytut Badawczy EZD RP allows logged-in user to retrieve information about IP infrastructure and credentials. This issue affects EZD RP all versions before 19.6...

7.1CVSS6AI score0.00595EPSS
Exploits0References1
NVD
NVD
added 2024/08/07 11:15 a.m.30 views

CVE-2024-7267

Exposure of Sensitive Information vulnerability in Naukowa i Akademicka Sieć Komputerowa - Państwowy Instytut Badawczy EZD RP allows logged-in user to retrieve information about IP infrastructure and credentials. This issue affects EZD RP all versions before 19.6...

7.1CVSS0.00595EPSS
Exploits0References3
OSV
OSV
added 2024/08/07 11:15 a.m.5 views

CVE-2024-7267

Exposure of Sensitive Information vulnerability in Naukowa i Akademicka Sieć Komputerowa - Państwowy Instytut Badawczy EZD RP allows logged-in user to retrieve information about IP infrastructure and credentials. This issue affects EZD RP all versions before 19.6...

6.5CVSS5.8AI score0.00595EPSS
Exploits0References3
NVD
NVD
added 2024/08/07 11:15 a.m.21 views

CVE-2024-7266

Incorrect User Management vulnerability in Naukowa i Akademicka Sieć Komputerowa - Państwowy Instytut Badawczy EZD RP allows logged-in user to list all users in the system, including those from other organizations. This issue affects EZD RP: from 15 before 15.84, from 16 before 16.15, from 17...

7.1CVSS0.00492EPSS
Exploits0References3
OSV
OSV
added 2024/08/07 11:15 a.m.5 views

CVE-2024-7265

Incorrect User Management vulnerability in Naukowa i Akademicka Sieć Komputerowa - Państwowy Instytut Badawczy EZD RP allows logged-in user to change the password of any user, including root user, which could lead to privilege escalation. This issue affects EZD RP: from 15 before 15.84, from 16...

8.8CVSS5.8AI score0.00492EPSS
Exploits0References3
NVD
NVD
added 2024/08/07 11:15 a.m.35 views

CVE-2024-7265

Incorrect User Management vulnerability in Naukowa i Akademicka Sieć Komputerowa - Państwowy Instytut Badawczy EZD RP allows logged-in user to change the password of any user, including root user, which could lead to privilege escalation. This issue affects EZD RP: from 15 before 15.84, from 16...

8.8CVSS0.00492EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/08/07 10:59 a.m.26 views

CVE-2024-7267 Internal infrastructure data leak in EZD RP

Exposure of Sensitive Information vulnerability in Naukowa i Akademicka Sieć Komputerowa - Państwowy Instytut Badawczy EZD RP allows logged-in user to retrieve information about IP infrastructure and credentials. This issue affects EZD RP all versions before 19.6...

7.1CVSS6.6AI score0.00595EPSS
Exploits0References3
CVE
CVE
added 2024/08/07 10:59 a.m.36 views

CVE-2024-7267

CVE-2024-7267 affects EZD RP (Naukowa i Akademicka Sieć Komputerowa) where all versions before 19.6 are affected. Logged-in users can retrieve information about IP infrastructure and credentials, indicating a confidentiality impact (HIGH). The provided sources describe the vulnerability scope but...

7.1CVSS6.3AI score0.00595EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2024/08/07 10:59 a.m.27 views

CVE-2024-7267 Internal infrastructure data leak in EZD RP

Exposure of Sensitive Information vulnerability in Naukowa i Akademicka Sieć Komputerowa - Państwowy Instytut Badawczy EZD RP allows logged-in user to retrieve information about IP infrastructure and credentials. This issue affects EZD RP all versions before 19.6...

7.1CVSS0.00595EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/08/07 10:58 a.m.26 views

CVE-2024-7266 Users listing in EZD RP

Incorrect User Management vulnerability in Naukowa i Akademicka Sieć Komputerowa - Państwowy Instytut Badawczy EZD RP allows logged-in user to list all users in the system, including those from other organizations. This issue affects EZD RP: from 15 before 15.84, from 16 before 16.15, from 17...

7.1CVSS7.1AI score0.00492EPSS
Exploits0References3
Rows per page
Query Builder