Lucene search
K

5 matches found

Snyk
Snyk
added 2026/06/15 5:18 p.m.8 views

External Control of File Name or Path

Overview launch-editor is a launch editor from node.js Affected versions of this package are vulnerable to External Control of File Name or Path in the handling of UNC paths on Windows systems. An attacker can obtain NTLMv2 password hashes by tricking a user into accessing a malicious SMB server...

8.3CVSS5.4AI score0.00322EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-33074

Malicious code in bioql PyPI...

5.5CVSS7.5AI score0.00185EPSS
Exploits0References4
Prion
Prion
added 2023/06/19 10:15 a.m.18 views

Code injection

A local attacker can trick the Mozilla Maintenance Service into applying an unsigned update file by pointing the service at an update file on a malicious SMB server. The update file can be replaced after the signature check, before the use, because the write-lock requested by the service does not...

1.7CVSS6AI score0.00185EPSS
Exploits0References4Affected Software3
Vulnrichment
Vulnrichment
added 2023/06/19 9:58 a.m.8 views

CVE-2023-29532

A local attacker can trick the Mozilla Maintenance Service into applying an unsigned update file by pointing the service at an update file on a malicious SMB server. The update file can be replaced after the signature check, before the use, because the write-lock requested by the service does not...

5.1AI score0.00185EPSS
Exploits0References4
Check Point Advisories
Check Point Advisories
added 2010/02/09 12:0 a.m.4 views

Microsoft Windows SMB Client Pool Corruption (MS10-006; CVE-2010-0016)

The SMB Protocol is a network file sharing protocol that is implemented in Microsoft Windows. A remote code execution vulnerability has been reported in the Microsoft Server Message Block SMB Protocol. The vulnerability is due to an error in the Microsoft SMB implementation that improperly...

9.3CVSS7.4AI score0.0867EPSS
Exploits1
Rows per page
Query Builder