Lucene search
K

11 matches found

EUVD
EUVD
added 2026/04/07 6:21 p.m.5 views

EUVD-2026-19858

OrangeHRM is a comprehensive human resource management HRM system. From 5.0 to 5.8, OrangeHRM Open Source omits authorization on job specification and vacancy attachment download handlers, allowing authenticated low-privilege users to read attachments via direct reference to attachment identifier...

5.3CVSS5.9AI score0.00165EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/07 6:19 p.m.16 views

CVE-2026-39346 OrangeHRM has Improper Access Control Allowing Access to Disabled Modules via URL Encoding

OrangeHRM is a comprehensive human resource management HRM system. From 5.0 to 5.8, OrangeHRM Open Source allowed authenticated users to bypass disabled-module access controls via URL-encoded request paths and access functionality of modules disabled by an administrator. This vulnerability is fix...

5.3CVSS0.00153EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/20 8:25 p.m.1 views

CVE-2026-33155 DeepDiff has Memory Exhaustion DoS through SAFE_TO_IMPORT

DeepDiff is a project focused on Deep Difference and search of any Python data. From version 5.0.0 to before version 8.6.2, the pickle unpickler RestrictedUnpickler validates which classes can be loaded but does not limit their constructor arguments. A few of the types in SAFETOIMPORT have...

8.7CVSS5.8AI score0.00452EPSS
Exploits1References2
CNNVD
CNNVD
added 2023/07/25 12:0 a.m.5 views

Vocera Report Server 路径遍历漏洞

Vocera Report Server is a reporting application from Vocera USA. It is used to collect data from data logs created by Vocera system software and to build reports. A security vulnerability exists in Vocera Report Server and Voice Server versions 5.x - 5.8 that stems from the fact that the Vocera...

9.8CVSS7.1AI score0.00683EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/07/25 12:0 a.m.6 views

Vocera Report Server 代码问题漏洞

Vocera Report Server is a reporting application from Vocera USA. It is used to collect data from data logs created by the Vocera system software and to build reports. A security vulnerability exists in Vocera Report Server and Voice Server versions 5.x - 5.8 that stems from the BaseController...

9.8CVSS7.2AI score0.00683EPSS
Exploits0References3
OSV
OSV
added 2019/01/16 7:30 p.m.3 views

CVE-2019-2433

Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products subcomponent: XML Publisher. Supported versions that are affected are 8.55, 8.56 and 8.57. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise...

7.2CVSS7.1AI score0.01844EPSS
Exploits0References2
CNVD
CNVD
added 2019/01/16 12:0 a.m.6 views

Unspecified Vulnerability in Oracle PeopleSoft Enterprise PeopleTools (CNVD-2019-28456)

Oracle PeopleSoft Products is a suite of enterprise human capital management solutions from Oracle that provides human capital management, financial management, supplier relationship management, and more.PeopleSoft Enterprise PeopleTools is one of the tools and technology platform components that...

6.1CVSS8.4AI score0.01123EPSS
Exploits0References1
OSV
OSV
added 2018/01/12 11:29 p.m.1 views

CVE-2017-13210

In CameraDeviceClient::submitRequestList of CameraDeviceClient.cpp, there is an out-of-bounds write if metadataSize is too small. This could lead to a local elevation of privilege enabling code execution as a privileged process with no additional execution privileges needed. User interaction is n...

7.8CVSS6.2AI score0.00215EPSS
Exploits0References3
OSV
OSV
added 2017/11/16 11:29 p.m.3 views

DEBIAN-CVE-2017-0841

A remote code execution vulnerability in the Android system libutils. Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-37723026...

7.8CVSS8.2AI score0.01337EPSS
Exploits0References1
OSV
OSV
added 2017/10/04 1:29 a.m.3 views

CVE-2017-0811

A remote code execution vulnerability in the Android media framework libhevc. Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-37930177...

7.8CVSS6.3AI score0.01484EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2014/08/07 9:24 p.m.4 views

OpenJDK: SubjectDelegator protection insufficient (JMX, 8029755)

Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5 allows remote attackers to affect confidentiality and integrity via vectors related to JMX...

6.4CVSS7.4AI score0.03826EPSS
Exploits0References5
Rows per page
Query Builder