Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2026/01/10 5:40 a.m.8 views

CVE-2025-55125

This vulnerability allows a Backup or Tape Operator to perform remote code execution RCE as root by creating a malicious backup configuration file...

9.8CVSS8.1AI score0.00801EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/11/05 12:0 a.m.8 views

PT-2025-45120

Name of the Vulnerable Software and Affected Versions Snipe-IT versions prior to 8.3.3 Description An authenticated attacker can execute system commands by uploading a malicious backup file containing arbitrary files. The issue is a remote code execution that allows for arbitrary file uploads and...

9.9CVSS8.2AI score0.00587EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-11455

Malicious code in bioql PyPI...

7.2CVSS6.5AI score0.00327EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 10:3 p.m.6 views

CVE-2022-30075

In TP-Link Router AX50 firmware 210730 and older, import of a malicious backup file via web interface can lead to remote code execution due to improper validation...

8.8CVSS7.8AI score0.37199EPSS
Exploits7References1
RedhatCVE
RedhatCVE
added 2025/04/25 11:41 p.m.7 views

CVE-2025-20178

A vulnerability in the web-based management interface of Cisco Secure Network Analytics could allow an authenticated, remote attacker with valid administrative credentials to execute arbitrary commands as root on the underlying operating system. This vulnerability is due to insufficient integrity...

7.2CVSS7.7AI score0.00327EPSS
Exploits0References1
CVE
CVE
added 2025/04/16 4:7 p.m.64 views

CVE-2025-20178

CVE-2025-20178 affects Cisco Secure Network Analytics (web-based management interface). An authenticated attacker with valid administrative credentials can restore a malicious backup file to the device, exploiting insufficient integrity checks in device backups to obtain shell access as root on t...

7.2CVSS6.4AI score0.00327EPSS
Exploits0References1Affected Software1
Cisco
Cisco
added 2025/04/16 4:0 p.m.12 views

Cisco Secure Network Analytics Privilege Escalation Vulnerability

A vulnerability in the web-based management interface of Cisco Secure Network Analytics could allow an authenticated, remote attacker with valid administrative credentials to execute arbitrary commands as root on the underlying operating system. This vulnerability is due to insufficient integrity...

6CVSS7.9AI score0.00327EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/17 7:38 p.m.24 views

CVE-2024-54525

A logic issue was addressed with improved file handling. This issue is fixed in iOS 18.2 and iPadOS 18.2, macOS Sequoia 15.2, tvOS 18.2, visionOS 2.2, watchOS 11.2. Restoring a maliciously crafted backup file may lead to modification of protected system files...

0.0054EPSS
Exploits0References5
NVD
NVD
added 2024/10/28 9:15 p.m.17 views

CVE-2024-44252

A logic issue was addressed with improved file handling. This issue is fixed in iOS 17.7.1 and iPadOS 17.7.1, iOS 18.1 and iPadOS 18.1, tvOS 18.1, visionOS 2.1. Restoring a maliciously crafted backup file may lead to modification of protected system files...

7.1CVSS0.00302EPSS
Exploits0References8
Vulnrichment
Vulnrichment
added 2024/10/28 9:7 p.m.18 views

CVE-2024-44258

This issue was addressed with improved handling of symlinks. This issue is fixed in iOS 18.1 and iPadOS 18.1, iOS 17.7.1 and iPadOS 17.7.1, visionOS 2.1, tvOS 18.1. Restoring a maliciously crafted backup file may lead to modification of protected system files...

5.8AI score0.0075EPSS
Exploits2References4
Rows per page
Query Builder