Lucene search
+L

343 matches found

BDU FSTEC
BDU FSTEC
added 2024/03/18 12:0 a.m.6 views

The vulnerability of the software for X-Rite’s MAT 6 Kohinoor integrated spectrophotometers arises from an incorrect limitation on the path name to the restricted access catalog. This allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The software vulnerability of the X-Rite MAT 6 Kohinoor spectrometer exists due to an incorrect limitation on the path name to the restricted access catalog. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality, integrity, and accessibility of the protecte...

8.3CVSS5.5AI score
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2024/01/08 12:0 a.m.7 views

PT-2024-2152

Name of the Vulnerable Software and Affected Versions X-Rite MAT 6 Kohinoor affected versions not specified Description The issue is related to incorrect restriction of a directory path name with limited access in the X-Rite MAT 6 Kohinoor embedded spectrophotometer software. Exploitation of this...

9.8CVSS7AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/01/08 12:0 a.m.7 views

PT-2024-2148

Name of the Vulnerable Software and Affected Versions X-Rite MAT 6 Kohinoor affected versions not specified Description The issue is related to insufficient input validation in the software of embedded spectrophotometers. This could allow a remote attacker to impact the confidentiality, integrity...

9.8CVSS6.7AI score
Exploits0References3
Openbugbounty
Openbugbounty
added 2023/12/15 11:31 p.m.4 views

watanabe-mat.com Improper Access Control vulnerability OBB-3815520

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

7AI score
Exploits0
NVD
NVD
added 2023/11/09 6:15 p.m.20 views

CVE-2023-46614

Cross-Site Request Forgery CSRF vulnerability in Mat Bao Corp WP Helper Premium plugin = 4.5.1 versions...

8.8CVSS0.00256EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2023/11/09 6:15 p.m.5 views

CVE-2023-46614

A vulnerability in Mat Bao Corporation WP Helper Premium wp-helper-lite.This issue affects WP Helper Premium: from n/a through = 4.5.1...

8.8CVSS8.5AI score0.00256EPSS
Exploits0References3
OSV
OSV
added 2023/11/09 6:15 p.m.8 views

CVE-2023-46614

Cross-Site Request Forgery CSRF vulnerability in Mat Bao Corp WP Helper Premium plugin = 4.5.1 versions...

8.8CVSS7.3AI score0.00256EPSS
Exploits0References1
Prion
Prion
added 2023/11/09 6:15 p.m.21 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in Mat Bao Corp WP Helper Premium plugin = 4.5.1 versions...

6.8CVSS7.2AI score0.00256EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/11/09 6:6 p.m.74 views

CVE-2023-46614

CVE-2023-46614 affects the WordPress WP Helper Premium plugin (

8.8CVSS8.8AI score0.00256EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/11/09 6:6 p.m.28 views

CVE-2023-46614 WordPress WP Helper Premium Plugin <= 4.5.1 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Mat Bao Corp WP Helper Premium plugin = 4.5.1 versions...

5.4CVSS9AI score0.00256EPSS
Exploits0References1
OSV
OSV
added 2023/04/11 9:15 a.m.6 views

CVE-2023-22282

WAB-MAT Ver.5.0.0.8 and earlier starts another program with an unquoted file path. Since a registered Windows service path contains spaces and are unquoted, if a malicious executable is placed on a certain path, the executable may be executed with the privilege of the Windows service...

7.3CVSS5.8AI score0.00198EPSS
Exploits0References2
NVD
NVD
added 2023/04/11 9:15 a.m.35 views

CVE-2023-22282

WAB-MAT Ver.5.0.0.8 and earlier starts another program with an unquoted file path. Since a registered Windows service path contains spaces and are unquoted, if a malicious executable is placed on a certain path, the executable may be executed with the privilege of the Windows service...

7.3CVSS7.3AI score0.00198EPSS
Exploits0References2
CVE
CVE
added 2023/04/11 12:0 a.m.66 views

CVE-2023-22282

WAB-MAT Ver.5.0.0.8 and earlier registers its Windows service executable with an unquoted file path. If a malicious executable is placed on the unquoted path, it may be executed with the privilege of the Windows service, enabling local privilege escalation. Affected software: ELECOM WAB-MAT (Wind...

7.3CVSS7.2AI score0.00198EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/04/11 12:0 a.m.43 views

CVE-2023-22282

WAB-MAT Ver.5.0.0.8 and earlier starts another program with an unquoted file path. Since a registered Windows service path contains spaces and are unquoted, if a malicious executable is placed on a certain path, the executable may be executed with the privilege of the Windows service...

7.4AI score0.00198EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/04/11 12:0 a.m.8 views

CVE-2023-22282

WAB-MAT Ver.5.0.0.8 and earlier starts another program with an unquoted file path. Since a registered Windows service path contains spaces and are unquoted, if a malicious executable is placed on a certain path, the executable may be executed with the privilege of the Windows service...

7.2AI score0.00198EPSS
Exploits0References2
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2023/03/24 5:35 a.m.4 views

ELECOM WAB-MAT registers its windows service executable with an unquoted file path

Overview WAB-MAT provided by ELECOM CO.,LTD. is Access Point Management Tool for corporate users. WAB-MAT registers its windows service executable with an unquoted file path CWE-428. Tomohisa Hasegawa of Canon IT Solutions Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the...

8.2CVSS6.6AI score0.00198EPSS
Exploits0References6
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2023/03/24 12:0 a.m.38 views

JVN#35246979: ELECOM WAB-MAT registers its windows service executable with an unquoted file path

WAB-MAT provided by ELECOM CO.,LTD. is Access Point Management Tool for corporate users. WAB-MAT registers its windows service executable with an unquoted file path CWE-428. Impact If a malicious executable is placed on a certain path, it may be executed with the privilege of the Windows service...

7.3CVSS7.2AI score0.00198EPSS
Exploits0
CNNVD
CNNVD
added 2023/03/24 12:0 a.m.6 views

ELECOM WAB-MAT 代码问题漏洞

ELECOM WAB-MAT is a management tool for enterprise access points from ELECOM. A security vulnerability exists in ELECOM WAB-MAT version 5.0.0.8 and earlier, which originates from the use of unquoted file paths to register its Windows service executable...

7.3CVSS7.5AI score0.00198EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.7 views

Debian: Security Advisory (DLA-650-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:54 a.m.3 views

SUSE CVE-2016-10070

Heap-based buffer overflow in the CalcMinMax function in coders/mat.c in ImageMagick before 6.9.4-0 allows remote attackers to cause a denial of service out-of-bounds read and application crash via a crafted mat file...

5.5CVSS8.9AI score0.02144EPSS
Exploits0References6
Rows per page
Query Builder