Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

26 matches found

ATTACKERKB
ATTACKERKBadded 2026/02/04 11:15 p.m.3 views

CVE-2019-25271

NETGATE Data Backup 3.0.620 contains an unquoted service path vulnerability in its NGDatBckpSrv Windows service configuration. Attackers can exploit the unquoted path to inject and execute malicious code with LocalSystem privileges by placing executable files in specific directory locations...

8.5CVSS5.5AI score0.00034EPSS
Exploits0References3Affected Software1
CVE
CVEadded 2025/12/11 9:33 p.m.7 views

CVE-2024-58288

Genexus Protection Server 9.7.2.10 has an unquoted service path in the protsrvservice Windows service configuration. Exploitation allows arbitrary code execution with LocalSystem privileges by placing malicious executables in specific file system locations. Remediation: quote the service path in ...

8.7CVSS7.5AI score0.00091EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2025-6138

Malicious code in bioql PyPI...

7.8CVSS7.7AI score0.00063EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2022-37772

Malicious code in bioql PyPI...

7.8CVSS8.1AI score0.00057EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2024-35997

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.00259EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2025-6140

Malicious code in bioql PyPI...

7.8CVSS7.7AI score0.00063EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2025/05/22 11:6 p.m.6 views

CVE-2022-34866

Passage Drive versions v1.4.0 to v1.5.1.0 and Passage Drive for Box version v1.0.0 contain an insufficient data verification vulnerability for interprocess communication. By running a malicious program, an arbitrary OS command may be executed with LocalSystem privilege of the Windows system where...

7.8CVSS7.2AI score0.00057EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/04/08 5:28 a.m.7 views

CVE-2024-36246

Missing authorization vulnerability exists in Unifier and Unifier Cast. If this vulnerability is exploited, arbitrary code may be executed with LocalSystem privilege. As a result, a malicious program may be installed, data may be altered or deleted...

9.8CVSS7.7AI score0.00259EPSS
Exploits0References6
RedhatCVE
RedhatCVEadded 2025/03/08 4:40 a.m.4 views

CVE-2025-22447

Incorrect access permission of a specific service issue exists in RemoteView Agent for Windows versions prior to v8.1.5.2. If this vulnerability is exploited, a non-administrative user on the remote PC may execute an arbitrary OS command with LocalSystem privilege...

7.8CVSS7.2AI score0.00063EPSS
Exploits0References1
NVD
NVDadded 2025/03/06 4:15 a.m.4 views

CVE-2025-22447

Incorrect access permission of a specific service issue exists in RemoteView Agent for Windows versions prior to v8.1.5.2. If this vulnerability is exploited, a non-administrative user on the remote PC may execute an arbitrary OS command with LocalSystem privilege...

7.8CVSS0.00063EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2025/03/06 3:56 a.m.3 views

CVE-2025-22447

Incorrect access permission of a specific service issue exists in RemoteView Agent for Windows versions prior to v8.1.5.2. If this vulnerability is exploited, a non-administrative user on the remote PC may execute an arbitrary OS command with LocalSystem privilege...

7.8CVSS7.5AI score0.00063EPSS
Exploits0References2
CVE
CVEadded 2025/03/06 3:56 a.m.64 views

CVE-2025-22447

CVE-2025-22447 affects RemoteView Agent (Windows) prior to version 8.1.5.2. The root cause is an incorrect access permission (CWE-276) on a specific service, enabling a non-administrative user on the remote PC to run arbitrary OS commands with LocalSystem privileges. The documented remediation is...

7.8CVSS7.5AI score0.00063EPSS
Exploits0References2
Cvelist
Cvelistadded 2025/03/06 3:56 a.m.9 views

CVE-2025-22447

Incorrect access permission of a specific service issue exists in RemoteView Agent for Windows versions prior to v8.1.5.2. If this vulnerability is exploited, a non-administrative user on the remote PC may execute an arbitrary OS command with LocalSystem privilege...

7.8CVSS0.00063EPSS
Exploits0References2
NVD
NVDadded 2024/05/31 6:15 a.m.7 views

CVE-2024-36246

Missing authorization vulnerability exists in Unifier and Unifier Cast. If this vulnerability is exploited, arbitrary code may be executed with LocalSystem privilege. As a result, a malicious program may be installed, data may be altered or deleted...

9.8CVSS7AI score0.00259EPSS
Exploits0References4
NVD
NVDadded 2024/05/31 6:15 a.m.11 views

CVE-2024-23847

Incorrect default permissions issue exists in Unifier and Unifier Cast. If this vulnerability is exploited, arbitrary code may be executed with LocalSystem privilege. As a result, a malicious program may be installed, data may be altered or deleted...

7.8CVSS7AI score0.00092EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2024/05/31 6:11 a.m.9 views

CVE-2024-36246

Missing authorization vulnerability exists in Unifier and Unifier Cast. If this vulnerability is exploited, arbitrary code may be executed with LocalSystem privilege. As a result, a malicious program may be installed, data may be altered or deleted...

9.8CVSS9.6AI score0.00259EPSS
Exploits0References4
CVE
CVEadded 2024/05/31 6:11 a.m.71 views

CVE-2024-36246

CVE-2024-36246 corresponds to a Missing Authorization for coejobhook Command Execution (CWE-862) in Yokogawa Unifier and Unifier Cast. Public sources confirm an Arbitrary Code Execution vector with LocalSystem privileges if exploited. Affected versions include Unifier and Unifier Cast 5.0+ (befor...

9.8CVSS9.6AI score0.00259EPSS
Exploits0References4
Cvelist
Cvelistadded 2024/05/31 6:11 a.m.19 views

CVE-2024-36246

Missing authorization vulnerability exists in Unifier and Unifier Cast. If this vulnerability is exploited, arbitrary code may be executed with LocalSystem privilege. As a result, a malicious program may be installed, data may be altered or deleted...

9.8CVSS7AI score0.00259EPSS
Exploits0References4
Cvelist
Cvelistadded 2024/05/31 6:11 a.m.17 views

CVE-2024-23847

Incorrect default permissions issue exists in Unifier and Unifier Cast. If this vulnerability is exploited, arbitrary code may be executed with LocalSystem privilege. As a result, a malicious program may be installed, data may be altered or deleted...

7.8CVSS7AI score0.00092EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2024/05/31 6:11 a.m.9 views

CVE-2024-23847

Incorrect default permissions issue exists in Unifier and Unifier Cast. If this vulnerability is exploited, arbitrary code may be executed with LocalSystem privilege. As a result, a malicious program may be installed, data may be altered or deleted...

7.8CVSS6.7AI score0.00092EPSS
Exploits0References4
Rows per page
Query Builder