Lucene search
K

13 matches found

Vulnrichment
Vulnrichment
added 2025/11/18 12:18 a.m.4 views

CVE-2025-12792

The Mac App Store distribution of the Canva for Mac desktop app before 1.117.1 was built without Hardened Runtime. A local threat actor with unprivileged access could execute arbitrary code that inherits the TCC Transparency, Consent, and Control permissions assigned to Canva...

3.2CVSS7AI score0.001EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-4302

Malicious code in bioql PyPI...

5.3CVSS6.5AI score0.00471EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-32754

Malicious code in bioql PyPI...

7.8CVSS6.6AI score0.00286EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/14 6:24 p.m.10 views

CVE-2024-6097

In Progress® Telerik® Reporting versions prior to 2025 Q1 19.0.25.211, information disclosure is possible by a local threat actor through an absolute path vulnerability...

5.3CVSS6.2AI score0.00471EPSS
Exploits0References1
NVD
NVD
added 2025/02/12 6:15 p.m.14 views

CVE-2024-6097

In Progress® Telerik® Reporting versions prior to 2025 Q1 19.0.25.211, information disclosure is possible by a local threat actor through an absolute path vulnerability...

5.3CVSS0.00471EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/12 5:37 p.m.11 views

CVE-2024-6097 Absolute Path Traversal Vulnerability

In Progress® Telerik® Reporting versions prior to 2025 Q1 19.0.25.211, information disclosure is possible by a local threat actor through an absolute path vulnerability...

5.3CVSS5AI score0.00471EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/12 5:37 p.m.12 views

CVE-2024-6097 Absolute Path Traversal Vulnerability

In Progress® Telerik® Reporting versions prior to 2025 Q1 19.0.25.211, information disclosure is possible by a local threat actor through an absolute path vulnerability...

5.3CVSS0.00471EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 5:21 a.m.5 views

CVE-2024-1801

In Progress® Telerik® Reporting versions prior to 2024 Q1 18.0.24.130, a code execution attack is possible by a local threat actor through an insecure deserialization vulnerability...

7.8CVSS7.2AI score0.00422EPSS
Exploits0References1
CVE
CVE
added 2024/11/12 5:6 p.m.41 views

CVE-2024-10945

The CVE-2024-10945 entry maps to Rockwell Automation FactoryTalk Updater Agent privilege escalation. The vulnerability stems from a failure to perform proper security checks before installation, enabling a local, low-privileged attacker to replace certain files during an update. Affected software...

7.3CVSS7.1AI score0.00178EPSS
Exploits0References1
NVD
NVD
added 2024/05/15 5:15 p.m.15 views

CVE-2024-4200

In Progress® Telerik® Reporting versions prior to 2024 Q2 18.1.24.2.514, a code execution attack is possible by a local threat actor through an insecure deserialization vulnerability...

7.8CVSS7.7AI score0.00286EPSS
Exploits0References1
CVE
CVE
added 2024/05/15 4:56 p.m.36 views

CVE-2024-4200

Progress Telerik Reporting (prior to 2024 Q2; 18.1.24.2.514) is affected by an insecure deserialization vulnerability that can lead to code execution by a local attacker. The issue affects the remote Windows host running the product, with the root cause being insecure deserialization in the appli...

7.8CVSS7.1AI score0.00286EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2024/03/20 1:15 p.m.25 views

CVE-2024-1801

In Progress® Telerik® Reporting versions prior to 2024 Q1 18.0.24.130, a code execution attack is possible by a local threat actor through an insecure deserialization vulnerability...

7.8CVSS7.7AI score0.00422EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/03/20 1:12 p.m.11 views

CVE-2024-1801 Progress Telerik Reporting Local Deserialization Vulnerability

In Progress® Telerik® Reporting versions prior to 2024 Q1 18.0.24.130, a code execution attack is possible by a local threat actor through an insecure deserialization vulnerability...

7.7CVSS7.2AI score0.01129EPSS
Exploits0References2
Rows per page
Query Builder