Lucene search
K

6 matches found

NVD
NVD
added 3 days ago7 views

CVE-2026-58000

luci-proto-openvpn through 0.11.1, fixed in commit e4ff45e, contains a command injection vulnerability in the generateKey ubus method where the clmeta parameter is interpolated into a shell command without proper escaping or quoting. An authenticated LuCI user with OpenVPN protocol configuration...

8.8CVSS0.01401EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 3 days ago6 views

CVE-2026-58000 luci-proto-openvpn - Command Injection via cl_meta Parameter in generateKey

luci-proto-openvpn through 0.11.1, fixed in commit e4ff45e, contains a command injection vulnerability in the generateKey ubus method where the clmeta parameter is interpolated into a shell command without proper escaping or quoting. An authenticated LuCI user with OpenVPN protocol configuration...

8.8CVSS6AI score0.01401EPSS
Exploits0References3
CVE
CVE
added 3 days ago10 views

CVE-2026-58000

The vulnerability CVE-2026-58000 affects luci-proto-openvpn up to version 0.11.1. The root cause is a command injection in the generateKey ubus method where the cl_meta parameter is interpolated into a shell command without proper escaping or quoting, enabling an authenticated LuCI user with Open...

8.8CVSS6AI score0.01401EPSS
Exploits0References3
0day.today
0day.today
added 2018/02/07 12:0 a.m.56 views

Android - getpidcon Permission Bypass in KeyStore Service Vulnerability

Exploit for Android platform in category dos / poc The keystore binder service "android.security.IKeystoreService" allows users to issue several commands related to key management, including adding, removing, exporting and generating cryptographic keys. The service is accessible to many SELinux...

4.6CVSS0.4AI score0.00559EPSS
Exploits2
exploitpack
exploitpack
added 2018/02/07 12:0 a.m.31 views

Android - getpidcon Permission Bypass in KeyStore Service

Android - getpidcon Permission Bypass in KeyStore Service The keystore binder service "android.security.IKeystoreService" allows users to issue several commands related to key management, including adding, removing, exporting and generating cryptographic keys. The service is accessible to many...

0.6AI score
Exploits0
NVD
NVD
added 2003/12/31 5:0 a.m.14 views

CVE-2003-1417

nCipher Support Software 6.00, when using generatekey KeySafe to import keys, does not delete the temporary copies of the key, which may allow local users to gain access to the key by reading the 1 key.pem or 2 key.der files...

4.4CVSS6.6AI score0.00276EPSS
Exploits0References4
Rows per page
Query Builder