Lucene search
K

4323 matches found

Positive Technologies
Positive Technologies
added 2024/06/13 12:0 a.m.4 views

PT-2024-24916 · Dell · Dell Client Platform Bios

Name of the Vulnerable Software and Affected Versions: Dell Client Platform BIOS affected versions not specified Description: The issue is related to an Improper Input Validation vulnerability in an externally developed component. A high privileged attacker with local access could potentially...

8.2CVSS6.6AI score0.00176EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/06/12 12:0 a.m.5 views

PT-2024-22647 · Dell · Dell Common Event Enabler

Name of the Vulnerable Software and Affected Versions: Dell Common Event Enabler versions 8.9.10.0 and prior Description: The issue is related to an insecure deserialization vulnerability in CAVATools. A local unauthenticated attacker could potentially exploit this, leading to arbitrary code...

7.8CVSS8.1AI score0.00357EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2024/06/08 3:4 a.m.3 views

SUSE CVE-2024-23793

The file upload feature in OTRS and OTRS Community Edition has a path traversal vulnerability. This issue permits authenticated agents or customer users to upload potentially harmful files to directories accessible by the web server, potentially leading to the execution of local code like Perl...

6.3CVSS7AI score0.00775EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2024/06/06 7:15 p.m.20 views

CVE-2024-23793

The file upload feature in OTRS and OTRS Community Edition has a path traversal vulnerability. This issue permits authenticated agents or customer users to upload potentially harmful files to directories accessible by the web server, potentially leading to the execution of local code like Perl...

6.3CVSS6.1AI score0.00775EPSS
Exploits0References2
OSV
OSV
added 2024/06/06 7:15 p.m.18 views

CVE-2024-23793

The file upload feature in OTRS and OTRS Community Edition has a path traversal vulnerability. This issue permits authenticated agents or customer users to upload potentially harmful files to directories accessible by the web server, potentially leading to the execution of local code like Perl...

6.3CVSS6.9AI score0.00775EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2024/06/06 6:6 p.m.62 views

CVE-2024-23793

The CVE-2024-23793 issue is a path traversal vulnerability in the file upload feature of OTRS and ((OTRS)) Community Edition. An authenticated agent or customer user can upload files to directories accessible by the web server, which could enable local code execution (e.g., Perl scripts). Affecte...

6.3CVSS6.4AI score0.00775EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/06 6:6 p.m.24 views

CVE-2024-23793 Upload of files outside application directory

The file upload feature in OTRS and OTRS Community Edition has a path traversal vulnerability. This issue permits authenticated agents or customer users to upload potentially harmful files to directories accessible by the web server, potentially leading to the execution of local code like Perl...

6.3CVSS0.00775EPSS
Exploits0References1
OSV
OSV
added 2024/06/04 7:15 a.m.5 views

CVE-2024-20877

Heap out-of-bound write vulnerability in parsing grid image header in libsavscmn.so prior to SMR Jun-2024 Release 1 allows local attackers to execute arbitrary code...

7.8CVSS6AI score0.00208EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/05/30 12:0 a.m.5 views

Vulnerability of the search_byEntryKey function (fs/reiserfs/namei.c) in the Linux operating system, allowing a local attacker to execute arbitrary code

The vulnerability of the searchbyentrykey function in the reiserfs file system of the Linux operating system is related to insufficient data validation during searches after mounting a faulty file system. This can lead to access to arbitrary memory. Exploiting this vulnerability allows an attacke...

7.8CVSS5.9AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/05/28 12:0 a.m.4 views

PT-2024-23218 · Amazon · Amazon Aws Client Vpn

Name of the Vulnerable Software and Affected Versions: Amazon AWS Client VPN versions prior to 3.11.1 on Windows Amazon AWS Client VPN versions prior to 3.9.1 on macOS Amazon AWS Client VPN versions prior to 3.12.1 on Linux Description: A buffer overflow issue exists that could allow a local acto...

6.7CVSS8.3AI score0.00271EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2024/05/16 12:0 a.m.22 views

Fedora 38 : python-tqdm (2024-24e4bba70f)

The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-24e4bba70f advisory. Address CVE-2024-34062 local code execution Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessu...

4.8CVSS6.5AI score0.00432EPSS
Exploits0References2
OSV
OSV
added 2024/05/15 5:15 p.m.2 views

CVE-2024-4200

In Progress® Telerik® Reporting versions prior to 2024 Q2 18.1.24.2.514, a code execution attack is possible by a local threat actor through an insecure deserialization vulnerability...

7.8CVSS6.2AI score0.00286EPSS
Exploits0References1
OSV
OSV
added 2024/05/15 5:15 p.m.2 views

CVE-2024-3892

A local code execution vulnerability is possible in Telerik UI for WinForms beginning in v2021.1.122 but prior to v2024.2.514. This vulnerability could allow an untrusted theme assembly to execute arbitrary code on the local Windows system...

6.7CVSS6.4AI score0.00217EPSS
Exploits0References1
NVD
NVD
added 2024/05/15 5:15 p.m.14 views

CVE-2024-3892

A local code execution vulnerability is possible in Telerik UI for WinForms beginning in v2021.1.122 but prior to v2024.2.514. This vulnerability could allow an untrusted theme assembly to execute arbitrary code on the local Windows system...

7.2CVSS7.2AI score0.00217EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/15 4:43 p.m.22 views

CVE-2024-3892 Local code execution vulnerability in Telerik UI for WinForms

A local code execution vulnerability is possible in Telerik UI for WinForms beginning in v2021.1.122 but prior to v2024.2.514. This vulnerability could allow an untrusted theme assembly to execute arbitrary code on the local Windows system...

7.2CVSS7.5AI score0.00217EPSS
Exploits0References1
CVE
CVE
added 2024/05/15 4:43 p.m.28 views

CVE-2024-3892

CVE-2024-3892 affects Telerik UI for WinForms. The vulnerability allows a local code execution through an untrusted theme assembly on Windows, starting from version 2021.1.122 and affecting versions before 2024.2.514. Practical impact is local compromise when processing a theme assembly within th...

7.2CVSS7.8AI score0.00217EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/05/15 12:0 a.m.3 views

PT-2024-28275 · Telerik · Telerik Ui For Winforms

Name of the Vulnerable Software and Affected Versions: Telerik UI for WinForms versions 2021.1.122 through 2024.2.514 Description: A local code execution issue is possible, allowing an untrusted theme assembly to execute arbitrary code on the local Windows system. This could lead to system...

7.2CVSS7.5AI score0.00217EPSS
Exploits0References6
OSV
OSV
added 2024/05/14 8:15 p.m.2 views

CVE-2021-22280

Improper DLL loading algorithms in B&R Automation Studio versions =4.0 and 4.12 may allow an authenticated local attacker to execute code in the context of the product...

7.2CVSS5.9AI score0.00166EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/05/14 12:0 a.m.3 views

Cloud customer service management platform 安全漏洞

Cloud customer service management platform is an application. A security vulnerability exists in Cloud customer service management platform, which originates from the presence of a SQL injection vulnerability that could allow a local attacker to execute arbitrary code via a crafted payload...

5.5CVSS8.2AI score0.01577EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/05/14 12:0 a.m.3 views

BlueRiSC WindowsSCOPE Cyber Forensics 安全漏洞

BlueRiSC WindowsSCOPE Cyber Forensics is a GUI-based memory forensic capture and analysis toolkit from BlueRiSC. A security vulnerability exists in BlueRiSC WindowsSCOPE Cyber Forensics versions prior to 3.3 that originates from a vulnerability that could allow a local attacker to execute arbitra...

7.8CVSS7.2AI score0.00409EPSS
Exploits0References2
Rows per page
Query Builder