Lucene search
K

448 matches found

OSV
OSV
added 2024/12/30 5:15 p.m.7 views

CVE-2024-12754

AnyDesk Link Following Information Disclosure Vulnerability. This vulnerability allows local attackers to disclose sensitive information on affected installations of AnyDesk. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this...

5.5CVSS6.2AI score0.01165EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/02 1:48 p.m.17 views

CVE-2024-53781 WordPress SpatialMatch IDX plugin <= 3.0.9 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in homejunction SpatialMatch IDX spatialmatch-free-lifestyle-search allows Stored XSS.This issue affects SpatialMatch IDX: from n/a through = 3.0.9...

7.1CVSS0.00152EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/12/02 12:0 a.m.6 views

PT-2024-35894 · Home Junction · Spatialmatch Idx

Name of the Vulnerable Software and Affected Versions: Home Junction SpatialMatch IDX versions n/a through 3.0.9 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS. This means an attacker can trick a user into performing unintended actions on a web...

7.1CVSS7AI score0.00152EPSS
Exploits0References4
NVD
NVD
added 2024/11/22 10:15 p.m.12 views

CVE-2024-7243

Panda Security Dome Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Panda Security Dome. An attacker must first obtain the ability to execute low-privileged code on the target system in order to...

7.8CVSS0.00341EPSS
Exploits0References1
OSV
OSV
added 2024/11/22 10:15 p.m.3 views

CVE-2024-7243

Panda Security Dome Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Panda Security Dome. An attacker must first obtain the ability to execute low-privileged code on the target system in order to...

7.8CVSS6.2AI score0.00341EPSS
Exploits0References1
NVD
NVD
added 2024/11/22 10:15 p.m.8 views

CVE-2024-7242

Panda Security Dome Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Panda Security Dome. An attacker must first obtain the ability to execute low-privileged code on the target system in order to...

7.8CVSS0.00338EPSS
Exploits0References1
OSV
OSV
added 2024/11/22 10:15 p.m.3 views

CVE-2024-7242

Panda Security Dome Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Panda Security Dome. An attacker must first obtain the ability to execute low-privileged code on the target system in order to...

7.8CVSS7.4AI score0.00338EPSS
Exploits0References1
OSV
OSV
added 2024/11/22 10:15 p.m.3 views

CVE-2024-7241

Panda Security Dome Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Panda Security Dome. An attacker must first obtain the ability to execute low-privileged code on the target system in order to...

7.8CVSS7.4AI score0.00337EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/11/22 9:12 p.m.11 views

CVE-2024-7242 Panda Security Dome Link Following Local Privilege Escalation Vulnerability

Panda Security Dome Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Panda Security Dome. An attacker must first obtain the ability to execute low-privileged code on the target system in order to...

7.8CVSS7.2AI score0.00338EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/22 9:12 p.m.14 views

CVE-2024-7242 Panda Security Dome Link Following Local Privilege Escalation Vulnerability

Panda Security Dome Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Panda Security Dome. An attacker must first obtain the ability to execute low-privileged code on the target system in order to...

7.8CVSS0.00338EPSS
Exploits0References1
CVE
CVE
added 2024/11/22 9:12 p.m.45 views

CVE-2024-7242

CVE-2024-7242 is a local privilege escalation impacting Panda Security Dome. The flaw exists in the PSANHost executable: an attacker who can run low-privileged code can create a junction to abuse the service, enabling deletion of arbitrary files and escalation to SYSTEM, potentially enabling arbi...

7.8CVSS7.8AI score0.00338EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/11/22 9:12 p.m.17 views

CVE-2024-7243 Panda Security Dome Link Following Local Privilege Escalation Vulnerability

Panda Security Dome Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Panda Security Dome. An attacker must first obtain the ability to execute low-privileged code on the target system in order to...

7.8CVSS0.00341EPSS
Exploits0References1
Veeam
Veeam
added 2024/10/11 12:0 a.m.16 views

Guest OS File Restore Fails on Self-Referencing Junction Points

Challenge Using Guest OS File Restore to restore a folder containing a junction point that redirects back to the initial folder fails with the error: Win32 error:The name of the file cannot be resolved by the system. Code: 1921 For example, attempting to restore a user's AppData folder the restor...

6.8AI score
Exploits0Affected Software2
Positive Technologies
Positive Technologies
added 2024/10/08 12:0 a.m.2 views

PT-2024-10228 · Foxit · Foxit Pdf Reader

Name of the Vulnerable Software and Affected Versions: Foxit PDF Reader affected versions not specified Description: This issue allows local attackers to escalate privileges on affected installations of Foxit PDF Reader. An attacker must first obtain the ability to execute low-privileged code on...

7.3CVSS7.5AI score0.00278EPSS
Exploits0References11
OSV
OSV
added 2024/08/26 3:15 p.m.8 views

CVE-2024-7987

A remote code execution vulnerability exists in the Rockwell Automation ThinManager® ThinServer™ that allows a threat actor to execute arbitrary code with System privileges. To exploit this vulnerability and a threat actor must abuse the ThinServer™ service by creating a junction and use it to...

7.8CVSS6.5AI score0.00316EPSS
Exploits0References1
NVD
NVD
added 2024/08/26 3:15 p.m.11 views

CVE-2024-7987

A remote code execution vulnerability exists in the Rockwell Automation ThinManager® ThinServer™ that allows a threat actor to execute arbitrary code with System privileges. To exploit this vulnerability and a threat actor must abuse the ThinServer™ service by creating a junction and use it to...

8.5CVSS0.00316EPSS
Exploits0References1
CVE
CVE
added 2024/08/26 2:40 p.m.49 views

CVE-2024-7987

Rockwell Automation ThinManager ThinServer contains a remote code execution vulnerability (CVE-2024-7987) exposed by the ThinServer service. The issue arises from Incorrect Permission Assignment for a Critical Resource, enabling an attacker to execute arbitrary code with SYSTEM privileges by abus...

8.5CVSS8AI score0.00316EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/08/26 2:40 p.m.11 views

CVE-2024-7987 Rockwell Automation ThinManager® ThinServer™ Information Disclosure and Remote Code Execution Vulnerabilities

A remote code execution vulnerability exists in the Rockwell Automation ThinManager® ThinServer™ that allows a threat actor to execute arbitrary code with System privileges. To exploit this vulnerability and a threat actor must abuse the ThinServer™ service by creating a junction and use it to...

8.5CVSS8.3AI score0.00316EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/26 2:40 p.m.19 views

CVE-2024-7987 Rockwell Automation ThinManager® ThinServer™ Information Disclosure and Remote Code Execution Vulnerabilities

A remote code execution vulnerability exists in the Rockwell Automation ThinManager® ThinServer™ that allows a threat actor to execute arbitrary code with System privileges. To exploit this vulnerability and a threat actor must abuse the ThinServer™ service by creating a junction and use it to...

8.5CVSS0.00316EPSS
Exploits0References1
OSV
OSV
added 2024/08/23 12:15 p.m.7 views

CVE-2024-7986

A vulnerability exists in the Rockwell Automation ThinManager® ThinServer that allows a threat actor to disclose sensitive information. A threat actor can exploit this vulnerability by abusing the ThinServer™ service to read arbitrary files by creating a junction that points to the target directo...

7.5CVSS5.8AI score0.00559EPSS
Exploits0References1
Rows per page
Query Builder