EUVD-2021-24036

Malware in sbrugna...

EUVD-2024-33996

Malicious code in bioql PyPI...

CVE-2024-11969

The NetCloud Exchange client for Windows, version 1.110.50, contains an insecure file and folder permissions vulnerability. A normal non-admin user could exploit the weakness in file and folder permissions to escalate privileges, execute arbitrary code and maintain persistence on the compromised...

CVE-2024-11969

The NetCloud Exchange client for Windows v1.110.50 has an insecure file/folder permissions issue that grants full control to the Everyone group, enabling a local non-admin user to escalate privileges, potentially execute arbitrary code, and maintain persistence. No explicit remediation version is...

CVE-2024-11969 Incorrect default permissions in Cradlepoint NetCloud Exchange

The NetCloud Exchange client for Windows, version 1.110.50, contains an insecure file and folder permissions vulnerability. A normal non-admin user could exploit the weakness in file and folder permissions to escalate privileges, execute arbitrary code and maintain persistence on the compromised...

CVE-2024-11969 Incorrect default permissions in Cradlepoint NetCloud Exchange

The NetCloud Exchange client for Windows, version 1.110.50, contains an insecure file and folder permissions vulnerability. A normal non-admin user could exploit the weakness in file and folder permissions to escalate privileges, execute arbitrary code and maintain persistence on the compromised...

PT-2024-17372 · Unknown · Netcloud Exchange Client For Windows

Name of the Vulnerable Software and Affected Versions: NetCloud Exchange client for Windows version 1.110.50 Description: The NetCloud Exchange client for Windows contains an insecure file and folder permissions vulnerability. A normal user could exploit the weakness in file and folder permission...

Ericsson Cradlepoint NetCloud Exchange 安全漏洞

Ericsson Cradlepoint NetCloud Exchange NCX is a unified WAN networking and security architecture from Ericsson, Sweden. A security vulnerability exists in Ericsson Cradlepoint NetCloud Exchange version 1.110.50, which stems from the presence of an insecure file and folder permissions vulnerabilit...

The vulnerability in the built-in operating system Cradlepoint NetCloud (NCOS) arises from insufficient validation of arguments passed in commands, allowing a malicious actor to execute arbitrary code.

The vulnerability of the built-in operating system Cradlepoint NetCloud NCOS is related to insufficient checking of arguments passed in commands. Exploiting this vulnerability allows an attacker to execute arbitrary code by rebooting the device and accessing the BIOS...

GHSA-FQ2H-R2H9-PJ8R Jenkins NS-ND Integration Performance Publisher Plugin vulnerable to Cross-site Scripting

Jenkins NS-ND Integration Performance Publisher Plugin prior to version 4.8.0.147 does not escape configuration options of the Execute NetStorm/NetCloud Test build step, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...

CVE-2022-41229

Jenkins NS-ND Integration Performance Publisher Plugin 4.8.0.134 and earlier does not escape configuration options of the Execute NetStorm/NetCloud Test build step, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...

CVE-2022-41229

Jenkins NS-ND Integration Performance Publisher Plugin 4.8.0.134 and earlier does not escape configuration options of the Execute NetStorm/NetCloud Test build step, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...

CVE-2021-37471

Cradlepoint IBR900-600 devices running versions 7.21.10 are vulnerable to a restricted shell escape sequence that provides an attacker the capability to simultaneously deny availability to the device's NetCloud Manager console, local console and SSH command-line...

CVE-2021-37471

Cradlepoint IBR900-600 devices running versions 7.21.10 are vulnerable to a restricted shell escape sequence that provides an attacker the capability to simultaneously deny availability to the device's NetCloud Manager console, local console and SSH command-line...

CVE-2021-37471

Cradlepoint IBR900-600 devices running versions 7.21.10 are vulnerable to a restricted shell escape sequence that provides an attacker the capability to simultaneously deny availability to the device's NetCloud Manager console, local console and SSH command-line...

CVE-2021-37471

The CVE-2021-37471 entry concerns Cradlepoint IBR900-600 devices running firmware versions prior to 7.21.10. The vulnerability is caused by a restricted shell escape sequence that can be exploited to concurrently deny availability of the NetCloud Manager console, the local console, and the SSH co...

Storage-based Cross-site Scripting Vulnerability in NetCloud Original Novel PC System

Ltd. is the pioneer of professional net article all-platform technology service. A storage-based cross-site scripting vulnerability exists in the NetCloud Original Novel PC system. Attackers can utilize the vulnerability to obtain sensitive information such as user cookies...