Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-2369

Malicious code in bioql PyPI...

8.2CVSS7.8AI score0.02951EPSS
Exploits3References5
Github Security Blog
Github Security Blog
added 2023/08/14 6:32 p.m.32 views

OpenNMS privilege elevation vulnerability

The Horizon REST API includes a users endpoint in OpenNMS Horizon 31.0.8 and versions earlier than 32.0.2 on multiple platforms is vulnerable to elevation of privilege. The solution is to upgrade to Meridian 2023.1.6, 2022.1.19, 2021.1.30, 2020.1.38 or Horizon 32.0.2 or newer. Meridian and Horizo...

8.2CVSS6.8AI score0.02951EPSS
Exploits3References5Affected Software1
NVD
NVD
added 2023/08/14 6:15 p.m.32 views

CVE-2023-0872

The Horizon REST API includes a users endpoint in OpenMNS Horizon 31.0.8 and versions earlier than 32.0.2 on multiple platforms is vulnerable to elevation of privilege. The solution is to upgrade to Meridian 2023.1.6, 2022.1.19, 2021.1.30, 2020.1.38 or Horizon 32.0.2 or newer. Meridian and Horizo...

8.2CVSS8.1AI score0.02951EPSS
Exploits3References2
OSV
OSV
added 2023/08/14 6:15 p.m.44 views

CVE-2023-0872

The Horizon REST API includes a users endpoint in OpenMNS Horizon 31.0.8 and versions earlier than 32.0.2 on multiple platforms is vulnerable to elevation of privilege. The solution is to upgrade to Meridian 2023.1.6, 2022.1.19, 2021.1.30, 2020.1.38 or Horizon 32.0.2 or newer. Meridian and Horizo...

8CVSS7AI score
Exploits0References2
Prion
Prion
added 2023/08/14 6:15 p.m.23 views

Privilege escalation

The Horizon REST API includes a users endpoint in OpenMNS Horizon 31.0.8 and versions earlier than 32.0.2 on multiple platforms is vulnerable to elevation of privilege. The solution is to upgrade to Meridian 2023.1.6, 2022.1.19, 2021.1.30, 2020.1.38 or Horizon 32.0.2 or newer. Meridian and Horizo...

5.2CVSS7.8AI score0.02951EPSS
Exploits3References2Affected Software2
CVE
CVE
added 2023/08/14 5:21 p.m.2692 views

CVE-2023-0872

OpenNMS Horizon CVE-2023-0872 affects Horizon REST API users endpoint in Horizon 31.0.8 and older than 32.0.2, enabling privilege elevation (to admin) via REST. The issue stems from role escalation between ROLE_REST and ROLE_ADMIN when accessing /rest/users, with confirmed guidance that upgrading...

8.2CVSS7.8AI score0.02951EPSS
Exploits3References2Affected Software2
Rows per page
Query Builder